Re: [dane] tls oob vs tlsa 11x
Viktor Dukhovni <viktor1dane@dukhovni.org> Wed, 04 June 2014 14:15 UTC
Return-Path: <viktor1dane@dukhovni.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB1191A01F6 for <dane@ietfa.amsl.com>; Wed, 4 Jun 2014 07:15:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.9
X-Spam-Level:
X-Spam-Status: No, score=-101.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XPGGhISm9rUe for <dane@ietfa.amsl.com>; Wed, 4 Jun 2014 07:15:42 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 58C841A0246 for <dane@ietf.org>; Wed, 4 Jun 2014 07:15:40 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id B9CA22AAB4F; Wed, 4 Jun 2014 14:15:32 +0000 (UTC)
Date: Wed, 04 Jun 2014 14:15:32 +0000
From: Viktor Dukhovni <viktor1dane@dukhovni.org>
To: dane@ietf.org
Message-ID: <20140604141532.GP27883@mournblade.imrryr.org>
References: <m361kh3yj6.fsf@carbon.jhcloos.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <m361kh3yj6.fsf@carbon.jhcloos.org>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: http://mailarchive.ietf.org/arch/msg/dane/HeMZhArKdIFDncYAZxqZUkaRZfQ
Subject: Re: [dane] tls oob vs tlsa 11x
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dane@ietf.org
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Jun 2014 14:15:47 -0000
On Wed, Jun 04, 2014 at 03:48:36AM -0400, James Cloos wrote: > I just occurred to me that, given that oob is negotiated bewteen the > client and the server, that the oob concept is !pkix, and any > verification of the spki is conceptually identical, a tlsa 11x is just > as usable by an oob client as a 31x is. This is a slippery slope. In my original SMTP draft I had language suggesting aumatic mapping PKIX-TA(0)->DANE-TA(2) and PKIX-EE(1)->DANE-EE(3). This was abandoned in favour of 0/1 undefined (likely "unusable") for SMTP and only 2/3 supported. If the server operator wants PKIX checks, client-side overrides should probably not be an RFC-defined behaviour. Now it turns out that Postfix treats "0" as "unusable", but indeed automatically maps "1" to "3", because as you observe "why not?". However, I think such liberties should not be officially endorsed. > It does not matter than a typical full cert client would do a pkix > verification on top of the tlsa verification when the tlsa is 11x. > The oob client *and server* have agreed not to bother with pkix, > so any ee-spki association is sufficient to verify the offerred spki. It would be better for such servers to publish "311" and be done. > In other words, by agreeing to oob, the server gives the client consent > to ignore any pki details about the verification. > Only tlsa 0 and 2, which do not dirrectly reference the ee, are really > unusable in the oob case. > So the proper language probably is something like: > > End-Entity SPKI association > > via dane, ldap, firmare or any other pre-agreed method. If the WG collectively agree that non-PKIX clients are free to map PKIX-EE(1) to DANE-EE(3) and that server operators can expect this behaviour, then we still have time to ammend the SMTP draft, to say that PKIX-EE(1) may be published but SHALL be treated as though it were DANE-EE(3) by SMTP clients. My view at this juncture is that such mappings should not be expected, and are a matter of client implementation discretion. If a client views PKIX-EE(1)/SPKI(1) as though it were DANE-EE(3)/SPKI(1) then, that client obviously won't see any "oob" obstacles from any associated RRs (of course PKIX-EE(1)/Cert(0) is still a potential problem, barring new constraints the records servers should publish). -- Viktor.
- [dane] tls oob vs tlsa 11x James Cloos
- Re: [dane] tls oob vs tlsa 11x Viktor Dukhovni
- Re: [dane] tls oob vs tlsa 11x John Gilmore