Re: [TLS] the use cases for GSS-based TLS and the plea for integrating

To: Kyle Hamilton <aerowolf at gmail.com>
Subject: Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
From: pgut001 at cs.auckland.ac.nz
Date: Sat, 28 Jul 2007 03:34:36 +1200
Cc: tls at lists.ietf.org
In-reply-to: <67C405F1-EAEA-46DF-A6F5-2F2397A32D43@gmail.com>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <200707171840.l6HIeg9M018099@fs4113.wdf.sap.corp> <48A6320349FD1EDBE937A357@dhcp-26f9.ietf69.org><C4E819FF73EA6ED22A3906CD@446E7922C82D299DB29D899F> <46A8FD4F.7050203@it.su.se> <FA998122A677CF4390C1E291BFCF598907DF564E@EXCH.missi.ncsc.mil> <20070728020702.2x3rc53g7bksocc0@webmail.cs.auckland.ac.nz> <67C405F1-EAEA-46DF-A6F5-2F2397A32D43@gmail.com>
User-agent: Internet Messaging Program (IMP) H3 (4.0.1)

Kyle Hamilton <aerowolf at gmail.com> writes:

Why wouldn't the SSH paradigm work here?


You mean "connect to anything listening on port 22, then hand over your
password in the clear (inside the SSH tunnel)"?  How does it differ from the
current phishing-enabling TLS usage of "connect to anything listening on port
443, then hand over your password in the clear (inside the TLS tunnel)"?

(You're assuming that people check SSH key fingerprints.  Please cite a real-
world usability study supporting this assumption.  NB: That's a booby-trapped
question :-).

Peter.


_______________________________________________
TLS mailing list
TLS at lists.ietf.org
https://www1.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Martin Rex

References:
- Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Martin Rex
- Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Chris Newman
- RE: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Chris Newman
- Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Leif Johansson
- RE: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Kemp, David P.
- RE: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: pgut001
- Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
  - From: Kyle Hamilton

Prev by Date: Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
Next by Date: Re: [TLS] the use cases for GSS-based TLS and the plea for
Previous by thread: Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
Next by thread: Re: [TLS] the use cases for GSS-based TLS and the plea for integrating
Index(es):
- Date
- Thread

Re: [TLS] the use cases for GSS-based TLS and the plea for integrating

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.