Re: [jose] #24: Move JWS headers into signature block
Mike Jones <Michael.Jones@microsoft.com> Sat, 29 June 2013 10:58 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4817421F9F6B for <jose@ietfa.amsl.com>; Sat, 29 Jun 2013 03:58:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hnxnPVNqsuJb for <jose@ietfa.amsl.com>; Sat, 29 Jun 2013 03:58:05 -0700 (PDT)
Received: from na01-bl2-obe.outbound.protection.outlook.com (mail-bl2lp0205.outbound.protection.outlook.com [207.46.163.205]) by ietfa.amsl.com (Postfix) with ESMTP id C9C4621F9F63 for <jose@ietf.org>; Sat, 29 Jun 2013 03:58:04 -0700 (PDT)
Received: from BN1AFFO11FD017.protection.gbl (10.58.52.203) by BN1AFFO11HUB006.protection.gbl (10.58.52.116) with Microsoft SMTP Server (TLS) id 15.0.717.3; Sat, 29 Jun 2013 10:42:54 +0000
Received: from TK5EX14MLTC104.redmond.corp.microsoft.com (131.107.125.37) by BN1AFFO11FD017.mail.protection.outlook.com (10.58.52.77) with Microsoft SMTP Server (TLS) id 15.0.717.3 via Frontend Transport; Sat, 29 Jun 2013 10:42:54 +0000
Received: from TK5EX14MBXC283.redmond.corp.microsoft.com ([169.254.2.25]) by TK5EX14MLTC104.redmond.corp.microsoft.com ([157.54.79.159]) with mapi id 14.03.0136.001; Sat, 29 Jun 2013 10:42:53 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "jose@ietf.org" <jose@ietf.org>
Thread-Topic: [jose] #24: Move JWS headers into signature block
Thread-Index: AQHOZuGREcSF6P64R0Gww4KERWq9uplGA9aAgAaUYvA=
Date: Sat, 29 Jun 2013 10:42:52 +0000
Message-ID: <4E1F6AAD24975D4BA5B1680429673943678A937E@TK5EX14MBXC283.redmond.corp.microsoft.com>
References: <049.3a20609eab4b4c08a7e01f21f6d6565d@trac.tools.ietf.org> <064.9c6aec3e9813fc2933f6082d75e8e239@trac.tools.ietf.org>
In-Reply-To: <064.9c6aec3e9813fc2933f6082d75e8e239@trac.tools.ietf.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.37]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Forefront-Antispam-Report: CIP:131.107.125.37; CTRY:US; IPV:CAL; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(377454003)(199002)(189002)(13464003)(20776003)(65816001)(69226001)(50466002)(79102001)(80022001)(16406001)(55846006)(83072001)(66066001)(54356001)(46102001)(47976001)(47776003)(51856001)(47736001)(74706001)(63696002)(31966008)(53806001)(4396001)(50986001)(49866001)(74876001)(33656001)(74502001)(76482001)(74662001)(81542001)(47446002)(74366001)(77982001)(59766001)(6806003)(81342001)(54316002)(56776001)(23676002)(76786001)(76796001)(77096001)(56816003); DIR:OUT; SFP:; SCL:1; SRVR:BN1AFFO11HUB006; H:TK5EX14MLTC104.redmond.corp.microsoft.com; CLIP:131.107.125.37; RD:InfoDomainNonexistent; A:1; MX:1; LANG:en;
X-OriginatorOrg: microsoft.onmicrosoft.com
X-O365ENT-EOP-Header: Message processed by - O365_ENT: Allow from ranges (Engineering ONLY)
X-Forefront-PRVS: 0892FA9A88
Subject: Re: [jose] #24: Move JWS headers into signature block
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 29 Jun 2013 10:58:10 -0000
Perhaps I'm in an odd frame of mind tonight, because I wouldn't normally even consider re-raising a closed issue, but Ben Laurie's advice "why not just protect everything" kept running my mind and I realized that the current JWS JSON Serialization doesn't allow us to do that in the general case. Specifically, we don't allow a per-signature "protected" headers field, which would be necessary to protect the cryptographic parameters if different signatures use different algorithms.
So I'd at least like others' thoughts on whether we want to "fill in the matrix" for the JWS JSON Serialization and allow header parameters to be specified both in protected and unprotected forms, both on a shared and per-signature basis. We currently support 3 of these 4 header parameter locations.
Note that we would not do this for JWE, since (as extensively discussed) per-recipient protected content is problematic.
For the signature input, if both shared and per-signature protected headers were present, we'd need to concatenate the two base64url encoded representations together with a separator character between (I'm thinking comma (',') because it is distinct from period ('.'), which is also used as a separator in the signature input).
I'm fine with this issue remaining closed, but I wanted to at least run this possibility by the working group for their input, since it hadn't been discussed previously.
Cheers,
-- Mike
-----Original Message-----
From: jose issue tracker [mailto:trac+jose@trac.tools.ietf.org]
Sent: Monday, June 24, 2013 10:57 PM
To: draft-ietf-jose-json-web-signature@tools.ietf.org; Mike Jones; ietf@augustcellars.com
Cc: jose@ietf.org
Subject: Re: [jose] #24: Move JWS headers into signature block
#24: Move JWS headers into signature block
Changes (by ietf@augustcellars.com):
* status: new => closed
* resolution: => wontfix
Comment:
Closing per the discussion on the teleconference.
We currently do not have a strong use case for per user items. It will
be possible in future versions to add a protected field to the per signer item and include both in the integrity protection in the event that a use case appears.
There was no strong recommendation from the CFRG list if a hash substitution attack is either probable or possible.
--
-------------------------+----------------------------------------------
-------------------------+---
Reporter: rlb@ipv.sx | Owner: draft-ietf-jose-json-web-
Type: defect | signature@tools.ietf.org
Priority: major | Status: closed
Component: json-web- | Milestone:
signature | Version:
Severity: - | Resolution: wontfix
Keywords: |
-------------------------+----------------------------------------------
-------------------------+---
Ticket URL: <http://trac.tools.ietf.org/wg/jose/trac/ticket/24#comment:2>
jose <http://tools.ietf.org/jose/>
- [jose] #24: Move JWS headers into signature block jose issue tracker
- Re: [jose] #24: Move JWS headers into signature b… jose issue tracker
- Re: [jose] #24: Move JWS headers into signature b… jose issue tracker
- Re: [jose] #24: Move JWS headers into signature b… Richard Barnes
- Re: [jose] #24: Move JWS headers into signature b… Mike Jones
- Re: [jose] #24: Move JWS headers into signature b… Mike Jones
- Re: [jose] #24: Move JWS headers into signature b… Daniel Holth
- Re: [jose] #24: Move JWS headers into signature b… Richard Barnes
- Re: [jose] #24: Move JWS headers into signature b… Richard Barnes
- Re: [jose] #24: Move JWS headers into signature b… Mike Jones
- Re: [jose] #24: Move JWS headers into signature b… Brian Campbell