IETF Logo Mail Archive

Re: Mallory-in-the-middle attacks (Re: SV: Diversity and offensive terminology in RFCs)

Nico Williams <nico@cryptonector.com> Fri, 21 September 2018 21:14 UTC

Return-Path: <nico@cryptonector.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E5BF12785F for <ietf@ietfa.amsl.com>; Fri, 21 Sep 2018 14:14:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cryptonector.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cO4beSIi-19W for <ietf@ietfa.amsl.com>; Fri, 21 Sep 2018 14:13:58 -0700 (PDT)
Received: from pdx1-sub0-mail-a15.g.dreamhost.com (smtp.dreamhost.com [64.90.62.162]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B64C1286E3 for <ietf@ietf.org>; Fri, 21 Sep 2018 14:13:58 -0700 (PDT)
Received: from pdx1-sub0-mail-a15.g.dreamhost.com (localhost [127.0.0.1]) by pdx1-sub0-mail-a15.g.dreamhost.com (Postfix) with ESMTP id 23C397FEF8; Fri, 21 Sep 2018 14:13:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h=date :from:to:subject:message-id:references:mime-version:content-type :in-reply-to:content-transfer-encoding; s=cryptonector.com; bh=F vtz56hi/uOLRYypbO+xrgzN494=; b=yPTib6vbP0zfyOlHRC8NHYn1Pcnu0Ffmc D6mRifpTgTksON8DPbHpLCq6ETJBB6lIhuKnE86xn0xiWMurbatxuwuBvHIWUWJw pELodCdYX9Z+NWsznDbIKvL+yr8d3uSnVajy9sMFD56pwHmUnpNwfLyo5YBcL3sD HYSWdMpOVY=
Received: from localhost (unknown [24.28.108.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by pdx1-sub0-mail-a15.g.dreamhost.com (Postfix) with ESMTPSA id BBC687FE7F; Fri, 21 Sep 2018 14:13:55 -0700 (PDT)
Date: Fri, 21 Sep 2018 16:13:53 -0500
X-DH-BACKEND: pdx1-sub0-mail-a15
X-DH-BACKEND: pdx1-sub0-mail-a15
From: Nico Williams <nico@cryptonector.com>
To: "ietf@ietf.org Discussion" <ietf@ietf.org>
Subject: Re: Mallory-in-the-middle attacks (Re: SV: Diversity and offensive terminology in RFCs)
Message-ID: <20180921211352.GD2164@localhost>
References: <cafa1282-ae6a-93de-ea4a-d100af28d8b8@digitaldissidents.org> <CAKHUCzxL8xgn2D2W9G=Qk=AXzyw4mmcqPii6GKBSiByRyxbq+Q@mail.gmail.com> <c755471a7f744fdd958759c6c5001147@exchange02.office.nic.se> <20180921191828.GB2164@localhost>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Disposition: inline
In-Reply-To: <20180921191828.GB2164@localhost>
User-Agent: Mutt/1.5.24 (2015-08-30)
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/LOih272zc4S-5j9c1FZVqaB7oiM>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Sep 2018 21:14:01 -0000

On Fri, Sep 21, 2018 at 02:18:29PM -0500, Nico Williams wrote:
> On Thu, Sep 20, 2018 at 12:09:06PM +0000, Anne-Marie Eklund-Löwinder wrote:
> > Some time ago we had a standardisation committee in Sweden, running a
> > project defining the terminology in Swedish for the information
> > security area. They came up with Janus-attack rather than man in the
> > middle-attack (the latter sounds weird in Swedish).
> 
> But it's always *Mallory* who gets in the middle, so I'd call it a
> Mallory-in-the-middle attack, which has the very nice property of
> abbreviating to MITM, thus minimizing the change to that term of art.

As it happens, one of the HRPC co-chairs is named Mallory (Knodel).
Just to clarify I was not referring to Mallory Knodel but to the
fictional character Mallory of Alice-and-Bob fame, you know, the
characters we use in expositions of cryptographic protocols and their
analyses, the full cast of which you can see in the following page:

        https://en.wikipedia.org/wiki/Alice_and_Bob

Any resemblance to real persons must have been an accident, and anyways,
not mine.  I hope we don't have to rename these fictional characters.

Nico
--

v2.23.0 | Report a Bug | By Email