Re: [jose] Field Matrix
Richard Barnes <rlb@ipv.sx> Thu, 20 June 2013 22:00 UTC
Return-Path: <rlb@ipv.sx>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9505A21F9EBC for <jose@ietfa.amsl.com>; Thu, 20 Jun 2013 15:00:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.361
X-Spam-Level: *
X-Spam-Status: No, score=1.361 tagged_above=-999 required=5 tests=[AWL=0.004, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_PBL=0.905, RCVD_IN_SORBS_DUL=0.877, RDNS_NONE=0.1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L+tqRILqBraY for <jose@ietfa.amsl.com>; Thu, 20 Jun 2013 15:00:40 -0700 (PDT)
Received: from mail-ob0-x230.google.com (mail-ob0-x230.google.com [IPv6:2607:f8b0:4003:c01::230]) by ietfa.amsl.com (Postfix) with ESMTP id 6AE6021F9E9E for <jose@ietf.org>; Thu, 20 Jun 2013 15:00:40 -0700 (PDT)
Received: by mail-ob0-f176.google.com with SMTP id v19so7734303obq.35 for <jose@ietf.org>; Thu, 20 Jun 2013 15:00:39 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-originating-ip:in-reply-to:references:date :message-id:subject:from:to:cc:content-type:x-gm-message-state; bh=rojKG7yfpA4t06wZiTguh4lJtOW0mTIveAWn2FTzaxo=; b=dgy/uKqDNCtbKY0SGJ4WMhS2NxXfTri/+tKOVU+EUOGuqctlyH4JYezAV/zAU4cj8I 1TAJnbfUihqpj37lx8xQ7z5RQQ69Sco82QwwEopxdx4DFF2d330y9aTCuXbkxT7MxaWT BjxwSzz0/lL0aQcavvpBOkqeusyDPagHGts/6eruVch7rdImWiUyE8U6sywPkTDS9MfN /BZ2zD6NaGHuYfd/MB0yKvj+BhmeQCA7N3uhFIpqGdD0M9LshfvmCjUa5XPqunFVrM0X D04UJtslx0vxwOueOGpf1IhsW1pQD3Ej1cQck9UfoIIoTpuk5V+cCoY1zOo76m1SV+pa 14jQ==
MIME-Version: 1.0
X-Received: by 10.182.61.105 with SMTP id o9mr2347823obr.54.1371765639896; Thu, 20 Jun 2013 15:00:39 -0700 (PDT)
Received: by 10.60.26.135 with HTTP; Thu, 20 Jun 2013 15:00:39 -0700 (PDT)
X-Originating-IP: [108.18.40.68]
In-Reply-To: <4E1F6AAD24975D4BA5B16804296739436787AC69@TK5EX14MBXC283.redmond.corp.microsoft.com>
References: <053f01ce6de7$8ed108e0$ac731aa0$@augustcellars.com> <CAL02cgTVfWU_Ly1txm_k6s+omX8ZzUHTbp58HK03_EZ0qg_7cA@mail.gmail.com> <4E1F6AAD24975D4BA5B16804296739436787AC69@TK5EX14MBXC283.redmond.corp.microsoft.com>
Date: Thu, 20 Jun 2013 18:00:39 -0400
Message-ID: <CAL02cgTu=LMdH5VEdCsUAs0Ro3qeu_4MZ6viY5QF7axpQmYkZQ@mail.gmail.com>
From: Richard Barnes <rlb@ipv.sx>
To: Mike Jones <Michael.Jones@microsoft.com>
Content-Type: multipart/alternative; boundary="e89a8fb1ea30ae745b04df9d13f3"
X-Gm-Message-State: ALoCoQkghD9k+mQNNGM0W61b0gFScGMYiWNoi1ord4hJ/uKOk6C0ymPP7+tSJWEXZms9Co6WS0Vy
Cc: Jim Schaad <ietf@augustcellars.com>, "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] Field Matrix
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jun 2013 22:00:45 -0000
There was no such decision. Quoting directly from the minutes: """ ** Crit Text Two questions were raised for dealing with the cirt field. Does the crit field need to be signed and do the members listed in the crit field need to be signed. There was no consensus in the group at this time as we adjourned for the day """ In order for the attack you describe to be an actual security risk, it would need to be the case that the parameters in "crit" were security-critical, as opposed to things that would simply cause incorrect processing. One can certainly imagine parameters that would fall in the latter bin; my current favorite example is a "part" parameter that would allow fragmentation / reassembly. Because such parameters exist, it's possible to use "crit" safely without integrity protection. Can we at least agree that integrity protecting "zip" is unnecessary? The only thing that stripping / changing "zip" causes is a processing failure, not a security compromise. --Richard On Thu, Jun 20, 2013 at 5:01 PM, Mike Jones <Michael.Jones@microsoft.com>wrote: > There was a working group decision at the Denver meeting that “crit” > must be integrity protected. The reason for this is straightforward.**** > > ** ** > > If not integrity protected, an attacker could strip the “crit” field, > defeating the semantic requirement that implementations must reject the > input if a “crit” value is used that is not understood. Thus, the spec > requires that this field be integrity protected whenever used.**** > > ** ** > > -- Mike*** > * > > ** ** > > *From:* jose-bounces@ietf.org [mailto:jose-bounces@ietf.org] *On Behalf > Of *Richard Barnes > *Sent:* Thursday, June 20, 2013 1:52 PM > *To:* Jim Schaad > *Cc:* jose@ietf.org > *Subject:* Re: [jose] Field Matrix**** > > ** ** > > You can eliminate the "protection required" field, because there aren't > any of those. **** > > ** ** > > Or there shouldn't be: The only security case we have is algorithm > dependent ("alg" must be protected if "alg" == "PS256", "PS512"). The only > fields for which the specs currently require integrity protection are "zip" > and "crit". Neither of these have the property that changing them would > cause a security violation, except in some application-dependent sense. So > the choice of integrity protection should be left to applications, not > fixed in the spec.**** > > ** ** > > --Richard**** > > ** ** > > On Thu, Jun 20, 2013 at 2:54 PM, Jim Schaad <ietf@augustcellars.com> > wrote:**** > > <no hat>**** > > **** > > Having just started looking at a design implementation, I am now more than > ever interested in seeing this matrix of fields. At the present time I > think the following columns are probably of interest:**** > > **** > > Name, must understand, use required, common vs specific, protection > required**** > > **** > > I was just looking at the alg and enc fields for JWE and realized that one > was specific – so it should be one location – and one was common – so it > should be in a different location. And then I needed to start thinking > about where it goes in terms of compacted vs one recipient vs two > recipients.**** > > **** > > Do you have an idea of when this matrix might show up?**** > > **** > > Jim**** > > **** > > ** ** >
- [jose] Field Matrix Jim Schaad
- Re: [jose] Field Matrix Richard Barnes
- Re: [jose] Field Matrix Mike Jones
- Re: [jose] Field Matrix Richard Barnes
- Re: [jose] Field Matrix Peck, Michael A
- Re: [jose] Field Matrix Richard Barnes