Re: [TLS] Re: Comments on draft-housley-tls-authz-extns-07

To: "Simon Josefsson" <simon at josefsson.org>
Subject: Re: [TLS] Re: Comments on draft-housley-tls-authz-extns-07
From: "Andres Marin" <amarin at it.uc3m.es>
Date: Tue, 12 Jun 2007 14:00:00 +0200
Cc: hartmans-ietf at mit.edu, iesg at ietf.org, free-ietf-review at josefsson.org, tls at ietf.org
Dkim-signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=HacFIYx1zVXoU5apS6o+vlyqoyj1pzMsVJbDIoZvN0XHztFWsVSufJWi/TvfMHd/kfvNBCrXGvibBk6/nJZbbQhn8NwWR7S3PgMpTmsSnuj6KaSUlvNR3oTmmt4sDETsf+8IQNXOQhLvyuKWM9FfikHMLfj30zkwyD+yugeqqQs=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=guSREW46Ez/QeeuwM2WYSI5R9CChHV2wf+9Pv/swYfP68cQaqBvMXowcgmG30fNgkX/16xbu1ypsYQuGIEIK/bQxBCoS2QPdTpoCKuEe7u9Yo7aNdYJG/kSQDZ64jWHbgHVd4Vv/DpnnsGPIprGg2WqMb3wmJdGXYNgdLBRU3HY=
In-reply-to: <87vedu25a1.fsf@mocca.josefsson.org>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <tsld50hgan6.fsf@mit.edu> <B356D8F434D20B40A8CEDAEC305A1F24043C46C6@esebe105.NOE.Nokia.com> <87vedu25a1.fsf@mocca.josefsson.org>

On 6/11/07, Simon Josefsson <simon at josefsson.org> wrote:

If someone knows of prior art where X.509 Attribute Certificates and/or
SAML assertions are sent over TLS (possibly in the handshake, but that
doesn't seem critical), that would be very useful information.


We have been working in authorization extensions for TLS since 2004 at
the University Carlos III de Madrid. When we noticed the drafts of Mr.
Housley and Mr. Brown, we contacted them since the discussion in the
TLS group by then was over. We sent them our comments plus the paper
we were writing to a journal, and also a toolkit for AC
attributes based on openssl. The API is available for download at
http://www.it.uc3m.es/dds/swRelease/pmi/pmi.xml.
We exchanged some emails since our intention was to collaborate in
writing a better draft for authorization, but in the end this did not
happen.

Our main comments to draft-housley-tls-authz-extns-07 were:

- The double handshake to ensure auth data is exchanged over a secure
channel can be unacceptable for some applications, or at least it
could be improved. We are unsure if there is another motivation for
this, perhaps the reduced complexity to implement new servers... We
think that after the extension, a new authorization protocol message
should be used, to avoid double handshake and also to prevent
man-in-the-middle attacks and preserve privacy of authorization
information.
- In the case of SAML, the extension does not allow a server to
indicate the client if a given issuer would be accepted as a valid
SoA. It does not either allow the client to indicate the SAML protocol
binding or the assertion consumer endpoint.

We submitted our work to IEEE Security & Privacy Conference 2007,
but they found it more appropriate for IETF discussion. You can find
it here: http://karajan.it.uc3m.es:9673/pervasive/tls-auth/TLSExtv4.pdf
user:draft passwd:extn-07

We were considering sending a draft with a proposal for authorization
extension in TLS. But after this discussion, and specially some
reasonable complaints about the increasing complexity in client and
server hello messages, we think that may be it is better to specify
new layers for dealing with such extensions. The idea is not to
include further negotiations in TLS handshake (in our case
authorization, but may be others), and just indicate in the hello
messages the layer ids to deal with such negotiation, where the new
layers will be clients of the Record Layer.

-- Daniel Díaz Sánchez & Andres Marin Lopez
Universidad Carlos III de Madrid
http://www.it.uc3m.es/pervasive


/Simon

_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

References:
- Re: [TLS] Comments on draft-housley-tls-authz-extns-07
  - From: Sam Hartman
- RE: [TLS] Comments on draft-housley-tls-authz-extns-07
  - From: Pasi.Eronen
- [TLS] Re: Comments on draft-housley-tls-authz-extns-07
  - From: Simon Josefsson

Prev by Date: Re: [TLS] Issue 16: Alert clarifications
Next by Date: Re: [TLS] Issue 16: Alert clarifications
Previous by thread: [TLS] Re: Comments on draft-housley-tls-authz-extns-07
Next by thread: RE: [TLS] Comments on draft-housley-tls-authz-extns-07
Index(es):
- Date
- Thread

Re: [TLS] Re: Comments on draft-housley-tls-authz-extns-07

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.