Re: [kitten] RFC5801bis: relaxing GS2 requirements
Nico Williams <nico@cryptonector.com> Thu, 06 March 2014 06:10 UTC
Return-Path: <nico@cryptonector.com>
X-Original-To: kitten@ietfa.amsl.com
Delivered-To: kitten@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 178671A00CB for <kitten@ietfa.amsl.com>; Wed, 5 Mar 2014 22:10:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.044
X-Spam-Level:
X-Spam-Status: No, score=-1.044 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, IP_NOT_FRIENDLY=0.334] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id arT-1hpebsK8 for <kitten@ietfa.amsl.com>; Wed, 5 Mar 2014 22:10:18 -0800 (PST)
Received: from homiemail-a88.g.dreamhost.com (agjbgdcfdbid.dreamhost.com [69.163.253.183]) by ietfa.amsl.com (Postfix) with ESMTP id EC14B1A00B9 for <kitten@ietf.org>; Wed, 5 Mar 2014 22:10:17 -0800 (PST)
Received: from homiemail-a88.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a88.g.dreamhost.com (Postfix) with ESMTP id 2B219264060 for <kitten@ietf.org>; Wed, 5 Mar 2014 22:10:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h= mime-version:in-reply-to:references:date:message-id:subject:from :to:cc:content-type; s=cryptonector.com; bh=F4K8tedOJU/S9B4JiX5X Xj5v5vY=; b=BDTz8kC7y+cfx+fB6YNo7dkGetV6HhdwsqTw1WBUJLLq9zL/Iyn2 Bdh0VlogIAqBb1yB/zJCR4X29G/E9gdZDqrf362Gs0di7Q7tRmmSfFOY+69jdA/L /YuJjgDKPYgseq0hY8z0V2HnpVSZPVbtOFu2l3mT46cTH23nS9JWF1E=
Received: from mail-wg0-f41.google.com (mail-wg0-f41.google.com [74.125.82.41]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: nico@cryptonector.com) by homiemail-a88.g.dreamhost.com (Postfix) with ESMTPSA id D1415264059 for <kitten@ietf.org>; Wed, 5 Mar 2014 22:10:13 -0800 (PST)
Received: by mail-wg0-f41.google.com with SMTP id n12so2539619wgh.0 for <kitten@ietf.org>; Wed, 05 Mar 2014 22:10:12 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=MHTRaYYcId+/joE8MzAyGrLsh0/eMgYVFl4U7GuFkQQ=; b=QJH3M7vaVBsHJtr9BVSv88vhFOqUEU2bJ2x6d/+bcTr6q9VnsZT5x9ZJGHDgvA1/AQ C+9wrSVICjrlx6OfVEJjqb0tLA9I36jVenBae5ewcjEtbBkKS+pA+ZxsXI3xKdIAGdP3 SYaHbpD2gIWxGVsipE34YpPY1MOAP7bT1mDi1bLKS8CUrjvQd5p4WoTBvsb7h3K41QPw akTt7Zo3eASliWPnC24frWPnkRlY5lNUwgUYWmEcDM+aWRCYf/z30U0XfauMdkwrBv4S DawI4YQL55rERHDGzE03o79Gq0IsYSnFrrS0oSOXXnDKo2BKLTTiLgYu+2NLtwgKRuHE B3fA==
MIME-Version: 1.0
X-Received: by 10.194.85.168 with SMTP id i8mr6744074wjz.81.1394086212521; Wed, 05 Mar 2014 22:10:12 -0800 (PST)
Received: by 10.216.199.6 with HTTP; Wed, 5 Mar 2014 22:10:12 -0800 (PST)
In-Reply-To: <87ob1n5t7f.fsf@latte.josefsson.org>
References: <87ob1n5t7f.fsf@latte.josefsson.org>
Date: Thu, 06 Mar 2014 00:10:12 -0600
Message-ID: <CAK3OfOgyJOK-V_GoKWy=rq23PJ42wKRsjt95Pmj=UbSaavQy-w@mail.gmail.com>
From: Nico Williams <nico@cryptonector.com>
To: Simon Josefsson <simon@josefsson.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/kitten/TGSY932FW5pWjahQD-WqgRa-tB4
Cc: "kitten@ietf.org" <kitten@ietf.org>
Subject: Re: [kitten] RFC5801bis: relaxing GS2 requirements
X-BeenThere: kitten@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Common Authentication Technologies - Next Generation <kitten.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/kitten>, <mailto:kitten-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/kitten/>
List-Post: <mailto:kitten@ietf.org>
List-Help: <mailto:kitten-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/kitten>, <mailto:kitten-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Mar 2014 06:10:20 -0000
On Mon, Mar 3, 2014 at 7:04 AM, Simon Josefsson <simon@josefsson.org> wrote: > I've prepared a new version of RFC 5801 to get the GS2bis ball rolling. Thank you, and thanks for posting the diff URL, it made it very easy to review your changes. I'm very much in favor of this revision. I have only agreement and nits to contribute (spelling and number agreement corrections). > The problem is that RFC 6595 (SAML), RFC 6616 (OpenID) and the OAuth > SASL mechanism does not really meet the GS2 requirements: in particular, > they don't offer channel bindings or mutual authentication. Or more > generically stated, the problem was that we hoped that all future > authentication mechanisms would provide channel binding and mutual > authentication, and as a result GS2 was too narrowly defined. Yes, we had so hoped. As a result we made GS2's scope too narrow indeed. > [...] But the problem is > really with GS2, so the fix should go into GS2. Agreed. > As you can see, I've only added one section describing the problem and > some new MUST wording. Clearly, this is not sufficient, and other > sections must be modified, in particular the security considerations. Indeed. For example, we must say that a client that could pick a -PLUS offered by a server SHOULD take it, no? And/or we should explain that it should only take a non-PLUS GS2 mechanism (or non-GS2 mechanism with similar properties) when TLS (or similar) was used to authenticate the server to the client's satisfaction. I don't think there's much we can do to characterize the security of using a mechanism with channel binding and mutual authentication versus TLS and a mechanism that does not provide mutual auth and/or channel binding. To do more than hand-wave we'd have to get into the specifics of the mechanism and the TLS server authentication functionality and PKI and so on. All we should say is that if the client doesn't use a -PLUS mechanism with channel binding then it must have used TLS with a ciphersuite that authenticates the server to the client, and that it must do so to the client's satisfaction, whatever that might mean. > Before doing that, I think it would be good to get the WG to think about > this issue and see that the overall idea is acceptable. I can't say > that I like the text, but I think it is a compromise that will result in > better hormonization of GSS-API and SASL, and I have struggled to come > up with anything better. I'm in favor of this change. Nico --
- [kitten] RFC5801bis: relaxing GS2 requirements Simon Josefsson
- Re: [kitten] RFC5801bis: relaxing GS2 requirements Nico Williams
- Re: [kitten] RFC5801bis: relaxing GS2 requirements Nico Williams