Re: [TLS] Implementation survey: Client Certificate URL extension

To: martin.rex at sap.com
Subject: Re: [TLS] Implementation survey: Client Certificate URL extension
From: pgut001 at cs.auckland.ac.nz (Peter Gutmann)
Date: Fri, 04 Apr 2008 18:42:31 +1300
Cc: tls at ietf.org
Delivered-to: ietfarch-tls-web-archive at core3.amsl.com
Delivered-to: tls at core3.amsl.com
In-reply-to: <200804031610.m33GAJ6V004192 at fs4113.wdf.sap.corp>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Sender: tls-bounces at ietf.org

Martin Rex <Martin.Rex at sap.com> writes:

>Although this Papers describes a serious design flaw in the rfc3280
>suggestion to put URLs of intermediate CAs into X.509v3 cert extensions and
>have peers use them in order to be able to build a certification path, the
>very same problem will apply to every concept that a communication peer can
>be coerced to access one or more arbitrary URLs prior to authentication, and
>the Client Certificate URL extension appears to suffer the same
>vulnerabilities and security problems.

This has been known for a long time, and is even worse in protocols like OCSP
where you can use this facility to scan and penetrate corporate networks, use
machines as attack amplifiers, and so on.  The PKIX response in the past has
been "not our problem".

I don't know if the TLS WG wants to make it their problem or not.  It's always
seemed a very obvious flaw, my code deliberately doesn't support any of these
"turn a host into an attacker-controlled proxy" extensions.

Peter.
_______________________________________________
TLS mailing list
TLS at ietf.org
https://www.ietf.org/mailman/listinfo/tls

References:
- Re: [TLS] Implementation survey: Client Certificate URL extension
  - From: Martin Rex

Prev by Date: [TLS] Stateless Session Resumption support in Firefox 3
Next by Date: Re: [TLS] Implementation survey: Client Certificate URL extension
Previous by thread: Re: [TLS] Implementation survey: Client Certificate URL extension
Next by thread: Re: [TLS] Implementation survey: Client Certificate URL extension
Index(es):
- Date
- Thread

Re: [TLS] Implementation survey: Client Certificate URL extension

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.