IETF Logo Mail Archive

Re: [certid] Bad certificate handling

Matt McCutchen <matt@mattmccutchen.net> Sun, 26 September 2010 15:27 UTC

Return-Path: <matt@mattmccutchen.net>
X-Original-To: certid@core3.amsl.com
Delivered-To: certid@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 25F743A695A for <certid@core3.amsl.com>; Sun, 26 Sep 2010 08:27:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wN5-Q9IyASwm for <certid@core3.amsl.com>; Sun, 26 Sep 2010 08:27:36 -0700 (PDT)
Received: from homiemail-a37.g.dreamhost.com (caiajhbdcbhh.dreamhost.com [208.97.132.177]) by core3.amsl.com (Postfix) with ESMTP id EEDC73A69AE for <certid@ietf.org>; Sun, 26 Sep 2010 08:27:35 -0700 (PDT)
Received: from homiemail-a37.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a37.g.dreamhost.com (Postfix) with ESMTP id 72C891D0063; Sun, 26 Sep 2010 08:28:12 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; c=nofws; d=mattmccutchen.net; h=subject:from :to:cc:in-reply-to:references:content-type:date:message-id :mime-version:content-transfer-encoding; q=dns; s= mattmccutchen.net; b=pdwde32gmxVQhvn87qOHZBgW2yVR5IfUfLqM58AwofH wBV4VVIiFBMDmP5vUISnoCaA2ogdfXMsJ+qOF9XqGU7KiJ6bk0xyTOBruXDStP6R brrYAROcrUhphoC5++w+c/Vp75YaA9ryzqqEphSkcP11zfK47Hj7iODTMHMoxrOY =
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=mattmccutchen.net; h= subject:from:to:cc:in-reply-to:references:content-type:date :message-id:mime-version:content-transfer-encoding; s= mattmccutchen.net; bh=j9Fq1IMsWzRKDB5RE0ey40l9fIY=; b=M73E+hMcvQ xDkzE0BfIf44pI2W3JmFHlYQg39ZYT3aFzQ2bGL9wFlEM+YzLX1cALziPbGa90PD VGc0P8XDxBLHajttWBaSOhuBaczlgePrusqoLpueEEJtVS8hdBaT6QSWuegIXsy2 ZAprTyyMC2VgHvZuQ9/Cj+ixNi1wBJ6xI=
Received: from [206.196.160.254] (wireless-206-196-160-254.umd.edu [206.196.160.254]) (Authenticated sender: matt@mattmccutchen.net) by homiemail-a37.g.dreamhost.com (Postfix) with ESMTPA id 100361D0060; Sun, 26 Sep 2010 08:28:11 -0700 (PDT)
From: Matt McCutchen <matt@mattmccutchen.net>
To: =JeffH <Jeff.Hodges@KingsMountain.com>
In-Reply-To: <4C9D2DC6.3000202@KingsMountain.com>
References: <4C9D2DC6.3000202@KingsMountain.com>
Content-Type: text/plain; charset="UTF-8"
Date: Sun, 26 Sep 2010 11:28:10 -0400
Message-ID: <1285514890.2673.14.camel@mattlaptop2.local>
Mime-Version: 1.0
X-Mailer: Evolution 2.30.4
Content-Transfer-Encoding: 7bit
Cc: IETF cert-based identity <certid@ietf.org>
Subject: Re: [certid] Bad certificate handling
X-BeenThere: certid@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Representation and verification of identity in certificates <certid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/certid>, <mailto:certid-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/certid>
List-Post: <mailto:certid@ietf.org>
List-Help: <mailto:certid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/certid>, <mailto:certid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Sep 2010 15:27:37 -0000

On Fri, 2010-09-24 at 16:01 -0700, =JeffH wrote:
> > > Given all this, I suggest we change the last part of the last sentence of
>  > > the "Security Note" quoted above to something like..
>  > >
>  > >         ..., by forcing the user to view the entire certification path
>  > >         and only then allowing the user to choose whether to accept the
>  > >         certificate on a temporary or permanent basis. See [WSC-UI] for
>  > >         further guidance.
>  > >
>  > > ..and leave it at that in -tls-server-id-check. We should also consider
>  > > making [WSC-UI] a normative reference now that it is at Recommendation
>  > > maturity level.
>  >
>  > OK.  I suggest s/to choose whether //; the point is that the user
>  > accepts the certificate.
> 
> I tend to think we ought to at least mention the notion that the cert can be 
> accepted either temporarily or permanently.

And that remains after my proposed edit.  If you want to emphasize that
it's the user's choice, try this:

"...and only then allowing the user to accept the certificate on a
temporary or permanent basis, at his/her option."

The problem with the current text is that its negation could be that
someone else does the choosing, when it should be that the certificate
is not accepted.

-- 
Matt

v2.8.7 | Report a Bug | By Email