[secdir] Secdir review of draft-ietf-appsawg-acct-uri-03
Charlie Kaufman <charliek@microsoft.com> Wed, 27 February 2013 19:12 UTC
Return-Path: <charliek@microsoft.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA7A521F8A67; Wed, 27 Feb 2013 11:12:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 2.533
X-Spam-Level: **
X-Spam-Status: No, score=2.533 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, SARE_RAND_6=2, UNRESOLVED_TEMPLATE=3.132]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Nc-rYTHM1SA0; Wed, 27 Feb 2013 11:12:48 -0800 (PST)
Received: from na01-bl2-obe.outbound.protection.outlook.com (mail-bl2lp0206.outbound.protection.outlook.com [207.46.163.206]) by ietfa.amsl.com (Postfix) with ESMTP id AC2AE21F8942; Wed, 27 Feb 2013 11:12:47 -0800 (PST)
Received: from BY2FFO11FD016.protection.gbl (10.1.15.204) by BY2FFO11HUB035.protection.gbl (10.1.14.119) with Microsoft SMTP Server (TLS) id 15.0.620.12; Wed, 27 Feb 2013 19:12:38 +0000
Received: from TK5EX14HUBC107.redmond.corp.microsoft.com (131.107.125.37) by BY2FFO11FD016.mail.protection.outlook.com (10.1.14.148) with Microsoft SMTP Server (TLS) id 15.0.620.12 via Frontend Transport; Wed, 27 Feb 2013 19:12:38 +0000
Received: from co1outboundpool.messaging.microsoft.com (157.54.51.113) by mail.microsoft.com (157.54.80.67) with Microsoft SMTP Server (TLS) id 14.2.318.3; Wed, 27 Feb 2013 19:12:12 +0000
Received: from mail39-co1-R.bigfish.com (10.243.78.229) by CO1EHSOBE025.bigfish.com (10.243.66.88) with Microsoft SMTP Server id 14.1.225.23; Wed, 27 Feb 2013 19:11:03 +0000
Received: from mail39-co1 (localhost [127.0.0.1]) by mail39-co1-R.bigfish.com (Postfix) with ESMTP id 91D5810019B; Wed, 27 Feb 2013 19:11:03 +0000 (UTC)
X-Forefront-Antispam-Report-Untrusted: CIP:157.56.240.21; KIP:(null); UIP:(null); (null); H:BL2PRD0310HT005.namprd03.prod.outlook.com; R:internal; EFV:INT
X-SpamScore: 4
X-BigFish: PS4(zzzz1f42h1ee6h1de0h1202h1e76h1d1ah1d2ahzz8275bhz31h2a8h668h839h944hd24hf0ah1220h1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh162dh1631h1758h18e1h1946h19b5h17ej9a9j1155h)
Received-SPF: softfail (mail39-co1: transitioning domain of microsoft.com does not designate 157.56.240.21 as permitted sender) client-ip=157.56.240.21; envelope-from=charliek@microsoft.com; helo=BL2PRD0310HT005.namprd03.prod.outlook.com ; .outlook.com ;
X-Forefront-Antispam-Report-Untrusted: SFV:SKI; SFS:; DIR:OUT; SFP:; SCL:-1; SRVR:BL2PR03MB592; H:BL2PR03MB592.namprd03.prod.outlook.com; LANG:en;
Received: from mail39-co1 (localhost.localdomain [127.0.0.1]) by mail39-co1 (MessageSwitch) id 1361992261628026_4437; Wed, 27 Feb 2013 19:11:01 +0000 (UTC)
Received: from CO1EHSMHS012.bigfish.com (unknown [10.243.78.238]) by mail39-co1.bigfish.com (Postfix) with ESMTP id 945ADE0075; Wed, 27 Feb 2013 19:11:01 +0000 (UTC)
Received: from BL2PRD0310HT005.namprd03.prod.outlook.com (157.56.240.21) by CO1EHSMHS012.bigfish.com (10.243.66.22) with Microsoft SMTP Server (TLS) id 14.1.225.23; Wed, 27 Feb 2013 19:10:58 +0000
Received: from BL2PR03MB592.namprd03.prod.outlook.com (10.255.109.35) by BL2PRD0310HT005.namprd03.prod.outlook.com (10.255.97.40) with Microsoft SMTP Server (TLS) id 14.16.275.5; Wed, 27 Feb 2013 19:10:56 +0000
Received: from BL2PR03MB592.namprd03.prod.outlook.com (10.255.109.35) by BL2PR03MB592.namprd03.prod.outlook.com (10.255.109.35) with Microsoft SMTP Server (TLS) id 15.0.620.20; Wed, 27 Feb 2013 19:10:54 +0000
Received: from BL2PR03MB592.namprd03.prod.outlook.com ([169.254.11.203]) by BL2PR03MB592.namprd03.prod.outlook.com ([169.254.11.166]) with mapi id 15.00.0620.020; Wed, 27 Feb 2013 19:10:54 +0000
From: Charlie Kaufman <charliek@microsoft.com>
To: "secdir@ietf.org" <secdir@ietf.org>
Thread-Topic: Secdir review of draft-ietf-appsawg-acct-uri-03
Thread-Index: Ac4VHepHeEHRvHE8QZSlPLGrtEMclw==
Date: Wed, 27 Feb 2013 19:10:53 +0000
Message-ID: <bfe401a4a8e54781bb74eda4fc37be26@BL2PR03MB592.namprd03.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [2001:4898:e0:1012:7105:ef48:3323:af2b]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OrganizationHeadersPreserved: BL2PR03MB592.namprd03.prod.outlook.com
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
X-FOPE-CONNECTOR: Id%59$Dn%TOOLS.IETF.ORG$RO%2$TLS%6$FQDN%corpf5vips-237160.customer.frontbridge.com$TlsDn%
X-FOPE-CONNECTOR: Id%59$Dn%IETF.ORG$RO%2$TLS%6$FQDN%corpf5vips-237160.customer.frontbridge.com$TlsDn%
X-CrossPremisesHeadersPromoted: TK5EX14HUBC107.redmond.corp.microsoft.com
X-CrossPremisesHeadersFiltered: TK5EX14HUBC107.redmond.corp.microsoft.com
X-Forefront-Antispam-Report: CIP:131.107.125.37; CTRY:US; IPV:CAL; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(189002)(199002)(56816002)(16676001)(4396001)(56776001)(53806001)(54356001)(54316002)(5343635001)(77982001)(51856001)(76482001)(23726001)(33646001)(46406002)(47736001)(63696002)(47976001)(80022001)(59766001)(6806001)(74662001)(65816001)(47446002)(20776003)(46102001)(49866001)(74502001)(47776003)(79102001)(50986001)(44976002)(31966008)(50466001)(3826001)(24736002); DIR:OUT; SFP:; SCL:1; SRVR:BY2FFO11HUB035; H:TK5EX14HUBC107.redmond.corp.microsoft.com; RD:InfoDomainNonexistent; MX:1; A:1; LANG:en;
X-OriginatorOrg: microsoft.onmicrosoft.com
X-Forefront-PRVS: 0770F75EA9
Cc: "draft-ietf-appsawg-acct-uri.all@tools.ietf.org" <draft-ietf-appsawg-acct-uri.all@tools.ietf.org>, "iesg@ietf.org" <iesg@ietf.org>
Subject: [secdir] Secdir review of draft-ietf-appsawg-acct-uri-03
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Feb 2013 19:12:49 -0000
I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The fact that this document only defines a syntax and does not define uses for it implies that the security implications are minimal. This document specifies a new URI format for specifying names of accounts. The syntax looks like: acct:johnsmith@example.com The chosen syntax is apparently already proposed for use in the WebFinger protocol in a separate I-D and one could imagine lots of other uses. This draft does not specify any semantics associated with the account specification or any means of contacting the entity, though it will likely be a common practice to have the value be usable as an email address to reach the named entity. This draft specifies that any protocols using this new URI format must specify the associated semantics. The Security Considerations notes this and says that therefore any security considerations must therefore be described by the protocol using this syntax. My only quibble is that the spec does not specify any algorithm by which two acct URIs can be compared for equality. Perhaps the world has evolved to the point where everyone accepts that as being impossible. The part after the @ is a DNS host, subject to IDN rules, while the part before may contain many ASCII characters and %-encoded UTF8. I believe that makes this different from what is allowed in the name portion of an email address in many subtle cases. Case-blind comparisons are probably intended but are not specified. Having an "almost canonical" way to specify an account identifier has the potential of introducing security problems, but they may be unavoidable. --Charlie
- [secdir] Secdir review of draft-ietf-appsawg-acct… Charlie Kaufman
- Re: [secdir] Secdir review of draft-ietf-appsawg-… Peter Saint-Andre