Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt

To: sidr at ietf.org
Subject: Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt
From: Rob Austein <sra at isc.org>
Date: Mon, 02 Nov 2009 11:49:55 -0500
Delivered-to: sidr at core3.amsl.com
In-reply-to: <C7147975.12A8%terry.manderson at icann.org>
List-archive: <http://www.ietf.org/mail-archive/web/sidr>
List-help: <mailto:sidr-request@ietf.org?subject=help>
List-id: Secure Interdomain Routing <sidr.ietf.org>
List-post: <mailto:sidr@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sidr>, <mailto:sidr-request@ietf.org?subject=unsubscribe>
References: <20091101194636.AB26022807 at thrintun.hactrn.net> <C7147975.12A8%terry.manderson at icann.org>
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

At Sun, 1 Nov 2009 17:56:37 -0800, Terry Manderson wrote:
> 
> > to allow for audit: if one is paranoid, one can archive a copy of
> > every CMS message and use it (along with archived PKI material) to
> > prove at some later date that the action was properly authorized.  So
> > I view CMS as the main security mechanism here, and the one that's
> > most closely aligned with the underlying semantics.
> 
> Right, I also have a similar PoV. Although, and it may be an academic
> distinction - my reading is that if the XML operations are not truly
> idempotent then the 'CMS Signing Time' would have been a more pragmatic
> implementation.

Don't think I follow.  CMS profile for this draft specifies use of
signing time (and, optionally, binary time).  You need a signature
that covers both the timestamp and the dated material to be audited,
which this profile provides.

Am I missing something?

> So if you do authentication and authorisation in the CMS, why do you need 2
> way identification at the HTTPS layer if it's just for privacy?

TLS without checking signatures gives you a secure channel to an
unknown entity.  Professor Moriarty speaks TLS too.

> > The protocol nesting is tedious but straightforward:
> > 
> >    IP(TCP(TLS(HTTP(CMS(XML(up-down))))))
> 
> So, given that ASN.1 is fully capable of describing the data going back and
> forth (up/down). Why add the extra XML blob?

Primarily because there is running code using XML, secondarily because
XML is somewhat easier to code and debug.

> thinking from a different point of view - noting that the draft is
> using HTTPS with identification of server and client, for replay and
> privacy - why not consider the W3Cs XML Signature Syntax?

Considered and rejected, because it's broken.  The XML world doesn't
really have the concept of a single canonical format, and the attempt
to reconcile that world view with the requirements of digital
signatures resulted in a protocol in which otherwise valid signatures
can fail to validate because of disagreements about the canonical form
of the signed data.

References:
- Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt
  - From: Rob Austein
- Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt
  - From: Terry Manderson

Prev by Date: Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt
Next by Date: Re: [sidr] revision to draft-ietf-sidr-roa-validation
Previous by thread: Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt
Next by thread: Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt
Index(es):
- Date
- Thread

Re: [sidr] Working Group Last Call - draft-ietf-sidr-rescerts-provisioning-05.txt

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.