Re: [TLS] Review of draft-santesson-tls-gssapi-00

To: jaltman at secure-endpoints.com
Subject: Re: [TLS] Review of draft-santesson-tls-gssapi-00
From: Martin Rex <martin.rex at sap.com>
Date: Thu, 22 Mar 2007 15:06:25 +0100 (MET)
Cc: arimed at windows.microsoft.com, tls at ietf.org
In-reply-to: <46022064.70702@secure-endpoints.com> from "Jeffrey Altman" at Mar 22, 7 02:21:24 am
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
Reply-to: martin.rex at sap.com

Jeffrey Altman wrote:
> 
> EKR wrote:
> > Jeffrey Altman <jaltman at secure-endpoints.com> wrote:
> > Sure, but as we're seeing in a number of applications, this doesn't
> > preclude the use of self-signed certs.
>
> No it doesn't.  However, as I've seen in a number of commercial and open
> source products, the authors don't want to go to the trouble of
> writing code to generate certificates as part of the install
> so they install the same self-signed certificate and private key
> on every system in the world.

For an administrative UI, the generation of a new keypair should
always be equal or less work than importing an existing keypair.
The problem with vendors/products installing with a static/fixed
keypair from the installation medium is unfortunately real.

One of the reasons for this is likely shortcoming of the PKI toolkit
(broken APIs) and shortcoming of the PKI toolkit documentation
(it lacks examples to create self-signed credentials for common
usage scenarios (e.g. SSL-Server).

>
> Most users are to naive to know how to replace the certificate,
> probably don't know that they should, and assume that because there
> is a certificate there that they are secure.

One can not blame the users/customers for such a problem. 
Those who ship a pre-generated keypair instead freshly generating
one are to blame.

> 
> Self-signed certificates have their place but they should not be used as
> a bootstrap method for other authentication technologies.

I can not see anything bad about the SSH host key generation
as it is designed one many Unix system today.  If the server is started
without a host key, it simply creates a new keypair on startup.

>
> Too many people make the wrong assumptions just based upon their
> presence.  Please do not insist that they be used as part of a TLS-GSS
> solution.

Please DO!  Up to today TLS interoperability has been great because
pretty much every server had one of the mandatory-to-implement
ciphersuites available for interoperability.

Making it easy or encouraging people to configure future Web-Servers
with TLS_GSSAPI only ciphersuites is equal to dropping
mandatory to implement ciphersuites and traditional strong interoperability
of TLS will be lost forever.

-Martin

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Jeffrey Altman

References:
- Re: [***SPAM*** Score/Req: 11.0/5.0] Re: [TLS] Review of draft-santesson-tls-gssapi-00
  - From: Jeffrey Altman

Prev by Date: RE: [TLS] TLS state machine
Next by Date: Re: [TLS] Review of draft-santesson-tls-gssapi-00
Previous by thread: Re: [***SPAM*** Score/Req: 11.0/5.0] Re: [TLS] Review of draft-santesson-tls-gssapi-00
Next by thread: Re: [TLS] Review of draft-santesson-tls-gssapi-00
Index(es):
- Date
- Thread

Re: [TLS] Review of draft-santesson-tls-gssapi-00

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.