IETF Logo Mail Archive

Re: [HOKEY] ERX issues

Charles Clancy <clancy@cs.umd.edu> Tue, 18 March 2008 11:37 UTC

Return-Path: <hokey-bounces@ietf.org>
X-Original-To: ietfarch-hokey-archive@core3.amsl.com
Delivered-To: ietfarch-hokey-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 32BBD28C599; Tue, 18 Mar 2008 04:37:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -100.037
X-Spam-Level:
X-Spam-Status: No, score=-100.037 tagged_above=-999 required=5 tests=[AWL=-0.200, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, J_CHICKENPOX_21=0.6, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y1DdDfbt49zo; Tue, 18 Mar 2008 04:37:46 -0700 (PDT)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BC8BD28C4AB; Tue, 18 Mar 2008 04:37:44 -0700 (PDT)
X-Original-To: hokey@core3.amsl.com
Delivered-To: hokey@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B7EED28C599 for <hokey@core3.amsl.com>; Tue, 18 Mar 2008 04:37:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9QlyY3k-Wi7A for <hokey@core3.amsl.com>; Tue, 18 Mar 2008 04:37:34 -0700 (PDT)
Received: from bacon.cs.umd.edu (server-nat-2.cs.umd.edu [128.8.127.145]) by core3.amsl.com (Postfix) with ESMTP id 9B3A53A6EF5 for <hokey@ietf.org>; Tue, 18 Mar 2008 04:37:25 -0700 (PDT)
Received: from [127.0.0.1] (pool-71-179-91-146.bltmmd.fios.verizon.net [71.179.91.146]) (authenticated bits=0) by bacon.cs.umd.edu (8.13.1/8.12.5) with ESMTP id m2IBZ3p8025568 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Tue, 18 Mar 2008 07:35:04 -0400
Message-ID: <47DFA8E9.1030306@cs.umd.edu>
Date: Tue, 18 Mar 2008 07:35:05 -0400
From: Charles Clancy <clancy@cs.umd.edu>
User-Agent: Thunderbird 2.0.0.12 (Windows/20080213)
MIME-Version: 1.0
To: Lakshminath Dondeti <ldondeti@qualcomm.com>
References: <47DF077C.300@cs.umd.edu> <47DF2CB6.6060300@qualcomm.com>
In-Reply-To: <47DF2CB6.6060300@qualcomm.com>
X-CSD-MailScanner-Information: Please email staff@cs.umd.edu for more information
X-CSD-MailScanner: Found to be clean
X-CSD-MailScanner-SpamCheck: not spam, SpamAssassin (not cached, score=-4.399, required 5, autolearn=not spam, ALL_TRUSTED -1.80, BAYES_00 -2.60)
X-CSD-MailScanner-From: clancy@cs.umd.edu
Cc: Tim Polk <tim.polk@nist.gov>, hokey@ietf.org
Subject: Re: [HOKEY] ERX issues
X-BeenThere: hokey@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: HOKEY WG Mailing List <hokey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/hokey>
List-Post: <mailto:hokey@ietf.org>
List-Help: <mailto:hokey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hokey>, <mailto:hokey-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: hokey-bounces@ietf.org
Errors-To: hokey-bounces@ietf.org

Versions of the text should probably be in both the key management 
document and also ERX.  The key management document should discuss fraud 
issues of delivering a DSRK to a domain without authorization, and 
indicate that performing a full EAP authentication or ERX bootstrap 
would address this issue.  I think there should still be some reference 
to this within the ERX document as well.

Tim, would you support adding such text to the document?

I'll work on proposed text...

--
t. charles clancy, ph.d.                 eng.umd.edu/~tcc
electrical & computer engineering, university of maryland


Lakshminath Dondeti wrote:
> On 3/17/2008 5:06 PM, Charles Clancy wrote:
>> During IESG evaluation, and at the last WG meeting, the following 
>> points were raised.  I've opened issues to track their progress:
>>
>> ERX: authorization attack
>> http://www.ltsnet.net:8080/hokey/issue43
>>
>> ERX document needs text defining behavior when re-authing across AAA 
>> DNS domains, and relate that to key management domains and 
>> administrative domains.  As-is, a re-auth across DNS domains without 
>> performing an ERP bootstrap results in authorization in a new domain 
>> with no accounting record of an initial authentication.  This could 
>> lead to fraudulent charges across AAA domains.
> 
> Any proposed text?  If the domain name changes, there would be a new 
> domain specific key.  Why wouldn't we write in the AAA document that 
> upon ERP bootstrapping, there should be accounting start or equivalent? 
>  In fact, that is what I thought should happen with no changes to ERX.
> 
> Next, procedurally, I haven't seen any AD picking this up as a DISCUSS, 
> so I guess we are doing due diligence as part of the WG process and 
> presumably Tim would support such a change.  Could we make sure that 
> this is ok with him?
> 
>>
>>
>> ERX: lower layer support
>> http://www.ltsnet.net:8080/hokey/issue44
>>
>>  From Jari's DISCUSS.  ERX needs "truth in advertising" with respect 
>> to how existing authenticators may deal with a new EAP code.  See:
>> https://datatracker.ietf.org/idtracker/draft-ietf-hokey-erx/comment/78738/ 
>>
>>
> 
> I like Glen's take on this.  Ideally, this should require no text 
> changes.  Jari thinks otherwise.
> 
> regards,
> Lakshminath
_______________________________________________
HOKEY mailing list
HOKEY@ietf.org
https://www.ietf.org/mailman/listinfo/hokey

v2.23.0 | Report a Bug | By Email