IETF Logo Mail Archive

Re: [dmarc-ietf] third party authorization, not, was non-mailing list

"Douglas E. Foster" <fosterd@bayviewphysicians.com> Sun, 30 August 2020 12:08 UTC

Return-Path: <btv1==5112662d989==fosterd@bayviewphysicians.com>
X-Original-To: dmarc@ietfa.amsl.com
Delivered-To: dmarc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7B8AC3A0121 for <dmarc@ietfa.amsl.com>; Sun, 30 Aug 2020 05:08:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.979
X-Spam-Level:
X-Spam-Status: No, score=-1.979 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTML_TAG_BALANCE_BODY=0.1, T_SPF_HELO_TEMPERROR=0.01, T_SPF_TEMPERROR=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=bayviewphysicians.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0HPQAQKe1H3Z for <dmarc@ietfa.amsl.com>; Sun, 30 Aug 2020 05:08:15 -0700 (PDT)
Received: from mail.bayviewphysicians.com (mail.bayviewphysicians.com [216.54.111.133]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C06E63A0112 for <dmarc@ietf.org>; Sun, 30 Aug 2020 05:07:59 -0700 (PDT)
X-ASG-Debug-ID: 1598789262-11fa31165b35040001-K2EkT1
Received: from webmail.bayviewphysicians.com (webmail.bayviewphysicians.com [192.168.1.49]) by mail.bayviewphysicians.com with ESMTP id gx3b5s0KQEsL5Bvk (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NO) for <dmarc@ietf.org>; Sun, 30 Aug 2020 08:07:42 -0400 (EDT)
X-Barracuda-Envelope-From: fosterd@bayviewphysicians.com
X-Barracuda-RBL-Trusted-Forwarder: 192.168.1.49
X-SmarterMail-Authenticated-As: fosterd@bayviewphysicians.com
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bayviewphysicians.com; s=s1025; h=from:message-id:subject:to; bh=iDQwHmbM0Mfmk6jUz8goQnbKHoq8sbgh29n7HmUZ1UQ=; b=cRZRJD5Fp34aMQ5ok+76DmyAJa9FIzABspIaEWZ1HT4xtso2hfU/qv7Z+QnZXsBpY OTAXFmIf8Ss6zRTZDJ/xmA92EnjGK6CxtvUQVGFWyLy7IXwVIhs16trip9oFKoSLo LU2yMV+83HVE0teyWJz4dvEVV1fsKnGEfeKYL0mO4=
Received: by webmail.bayviewphysicians.com via HTTP; Sun, 30 Aug 2020 08:07:35 -0400
To: "dmarc@ietf.org" <dmarc@ietf.org>
Date: Sun, 30 Aug 2020 08:07:33 -0400
X-ASG-Orig-Subj: Re: [dmarc-ietf] third party authorization, not, was non-mailing list
Message-ID: <7e71edd41d84410380879149d0962096@com>
MIME-Version: 1.0
Content-Type: multipart/multipart; boundary="b7ef20b993504d778fb0e9ba1a292850"
Importance: normal
From: "Douglas E. Foster" <fosterd@bayviewphysicians.com>
X-Exim-Id: 7e71edd41d84410380879149d0962096
X-Barracuda-Connect: webmail.bayviewphysicians.com[192.168.1.49]
X-Barracuda-Start-Time: 1598789262
X-Barracuda-Encrypted: ECDHE-RSA-AES256-SHA384
X-Barracuda-URL: https://mail.bayviewphysicians.com:443/cgi-mod/mark.cgi
X-Virus-Scanned: by bsmtpd at bayviewphysicians.com
X-Barracuda-Scan-Msg-Size: 5528
X-Barracuda-BRTS-Status: 1
X-Barracuda-Spam-Score: 0.81
X-Barracuda-Spam-Status: No, SCORE=0.81 using global scores of TAG_LEVEL=1000.0 QUARANTINE_LEVEL=1000.0 KILL_LEVEL=9.0 tests=HTML_MESSAGE, HTML_TAG_BALANCE_BODY
X-Barracuda-Spam-Report: Code version 3.2, rules version 3.2.3.84270 Rule breakdown below pts rule name description ---- ---------------------- -------------------------------------------------- 0.81 HTML_TAG_BALANCE_BODY BODY: HTML has unbalanced "body" tags 0.00 HTML_MESSAGE BODY: HTML included in message
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmarc/8m6eR9Wji3ogTUxjhLUf4k1xWnA>
Subject: Re: [dmarc-ietf] third party authorization, not, was non-mailing list
X-BeenThere: dmarc@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Domain-based Message Authentication, Reporting, and Compliance \(DMARC\)" <dmarc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmarc>, <mailto:dmarc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmarc/>
List-Post: <mailto:dmarc@ietf.org>
List-Help: <mailto:dmarc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmarc>, <mailto:dmarc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 30 Aug 2020 12:08:35 -0000

Since we are designing a system that allows a mediator to alter Subject and Body, it should be no surprise that the conditional signature has the potential for re-use.   A well behaved mediator must be assumed before any such trust delegation is granted.I see no way to ensure that the conditional signature is single-use. As long as all of the signature's hashed cntent can be replicated onto another message, the signature can be reused.The more important question is whether conditional signature could be subject to third-party attacks.  Does the limited and predictable content of a conditional signature intcrease the risk that a bad guy could use guess-and-test to construct a valid  signature block for someone else?  DKIM uses the body content in two different hash calculations.  This severely limits the ability of an attacker to find and exploit a hash collision.   The conditional  signatures seem unlikely to have that strength.Sent from my Verizon, Samsung Galaxy smartphone<div>
</div><div>
</div><!-- originalMessage --><div>-------- Original message --------</div><div>From: Jim Fenton <fenton@bluepopcorn.net> </div><div>Date: 8/29/20  7:11 PM  (GMT-05:00) </div><div>To: fosterd@bayviewphysicians.com, dmarc@ietf.org </div><div>Subject: Re: [dmarc-ietf] third party authorization, not, was non-mailing list </div><div>
</div>On 8/29/20 12:42 PM, Douglas E. Foster wrote:
> To elaborate on my question and Michael Hammer's answer:
>
> To be unique, a signature needs a unique dataset from which the hash
> is computed.   The weak signature will not be unique because it will
> be computed on non-random content such as From, To, and Date.

Unique != random. A time stamp (with enough precision) might be unique,
even though it is not random. For that matter, DKIM signatures don't
include any random values either.

But what I was getting at is that the "weak" signature might not have to
be any different from any other DKIM signature (except possibly to
specify the authorized mediator). It's just that a verifier might fully
verify the mediator's signature, and verify the original signature but
not check to see if the body hash matches.

The one problem is that some mediators add things like [dmarc-ietf] to
the subject line, and that's usually signed.

-Jim

v2.23.0 | Report a Bug | By Email