IETF Logo Mail Archive

Re: SOI: identity protection and DOS

Ari Huttunen <Ari.Huttunen@f-secure.com> Tue, 20 November 2001 06:20 UTC

Received: from lists.tislabs.com (portal.gw.tislabs.com [192.94.214.101]) by above.proper.com (8.11.6/8.11.3) with ESMTP id fAK6KI810310; Mon, 19 Nov 2001 22:20:18 -0800 (PST)
Received: by lists.tislabs.com (8.9.1/8.9.1) id AAA11546 Tue, 20 Nov 2001 00:25:51 -0500 (EST)
Message-ID: <3BF9EB8B.D96E361@F-Secure.com>
Date: Tue, 20 Nov 2001 07:35:07 +0200
From: Ari Huttunen <Ari.Huttunen@f-secure.com>
Organization: F-Secure Corporation
X-Mailer: Mozilla 4.78 [en] (Windows NT 5.0; U)
X-Accept-Language: en
MIME-Version: 1.0
To: Michael Thomas <mat@cisco.com>
CC: Joern Sierwald <joern@f-secure.com>, ipsec@lists.tislabs.com
Subject: Re: SOI: identity protection and DOS
References: <200111191328.IAA26753@ietf.org> <15353.12478.158520.373309@thomasm-u1.cisco.com> <5.1.0.14.0.20011119202340.031d9d30@dfintra.f-secure.com> <15353.27940.213620.608331@thomasm-u1.cisco.com>
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-OriginalArrivalTime: 20 Nov 2001 05:35:07.0233 (UTC) FILETIME=[1CE34510:01C17185]
Sender: owner-ipsec@lists.tislabs.com
Precedence: bulk

This WG cannot dictate what information is put to certificates, and
the politicians being what they are, one should assume the worst.
Note that a nation-wide certificate system has a big network-effect
(economically speaking). If a nation gives each citizen an RSA chip,
this *will* be used by corporations to identify customers. Why? It's
the cheapest method for them.

That is somewhat irrelevant to identity protection as seen by SOI, but
is a good thing to bear in mind. Such a chip will also be an excellent
method for intelligence communities to track suspects.

Technically, I think the requirement should be that both of the identities
MUST be protected against passive attackers. The question is if there should
be any requirement as to active attackers. If such a requirement exists,
my view is that the INITIATOR'S identity should be protected against
active attackers. It is the initiator, the ordinary citizen, that is
the target of a Three Letter Organization tracking.

Ari

Michael Thomas wrote:
> 
> Since certificates are essentially public
> information, anybody who puts private information
> on one deserves what they get. After all, what if
> an unscrupulous site demands that cert and then
> publishes its contents to spammers-r-us.com?
> 
>               Mike
> 
> Joern Sierwald writes:
>  > At 13:42 19.11.2001 -0500, you wrote:
>  >  > >>>>> "Michael" == Michael Thomas <mat@cisco.com> writes:
>  >  >
>  >  >  Michael> ...2) SOI SHOULD provide a means to protect identities. SOI
>  >  >  Michael> MUST make protection optional if it reduces the overall
>  >  >  Michael> number of messages to establish a SA. A SOI peer MUST NOT
>  >  >  Michael> protect identities by default.
>  >  >
>  >  >  Michael> I expect that the last statement is controversial so let me
>  >  >  Michael> explain: IMO, identity protection is overblown. If by simple
>  >  >  Michael> traffic analysis I see a static IP address for a server
>  >  >  Michael> which I can reverse map, and even a dynamic address which I
>  >  >  Michael> can reverse map to a particular POP, a determined attacker
>  >  >  Michael> is probably going to have a pretty good idea ...
>  >  >
>  >  >That may be a valid analysis.  (I'm not going to take a position on
>  >  >that here.)
>  >  >
>  >  >However, it does not justify the text you proposed.  What it would
>  >  >justify is:
>  >  >
>  >  >2) SOI SHOULD provide a means to protect
>  >  >    identities. SOI MUST make protection optional
>  >  >    if it reduces the overall number of messages
>  >  >    to establish a SA. A SOI peer MAY protect
>  >  >    identities by default.
>  >  >
>  >  >That would fit the notion that identity protection is not all that
>  >  >useful.
>  >  >
>  >  >The text you proposed would be appropriate if identity protection is
>  >  >actually a bad idea.  For example, if it can only be done at
>  >  >significant expense in time (messages, computation) or memory.  Is
>  >  >that the case?  You did not say so.
>  >  >
>  >  >If identity protection does not come at a significant cost, there is
>  >  >no technical reason to prohibit it being the default for some
>  >  >implementations.
>  >  >
>  >  >         paul
>  >
>  > VPN are mostly used in two ways: (1) Gateway to Gateway encryption,
>  > to link LANs, or (2) Laptop/home user to Gateway, to let remote users
>  > into the company LAN.
>  >
>  > For (2), the laptop may be lost, so a safe authentication method is needed.
>  > You can use one-time-password or code-generating tokens, but the
>  > natural solution for IKE is an RSA smartcard.
>  >
>  > Now, these are usually fit with keys and certificates before the
>  > VPN vendor or sales guy can state his opinion. As a result, the
>  > DN of the cert can contain all kind of stuff. Like email address.
>  > Birthday. Home address. social security number.
>  > I know of one country (Finland) where you can get your
>  > personal ID card with an RSA chip in it (at the local police station),
>  > and yes, you can use that for a VPN.
>  >
>  > Having _that_ DN in cleartext over the net is NOT a good idea.
>  >
>  > Very much in favour of identity protection,
>  >
>  > Jörn Sierwald
>  > F-Secure Corp
>  >

-- 
"They that can give up essential liberty to obtain a little 
temporary safety deserve neither liberty nor safety." - Benjamin Franklin

Ari Huttunen                   phone: +358 9 2520 0700
Software Architect             fax  : +358 9 2520 5001

F-Secure Corporation       http://www.F-Secure.com 

F(ully)-Secure products: Securing the Mobile Enterprise

v2.35.0 | Report a Bug | By Email | System Status