IETF Logo Mail Archive

Re: [OAUTH-WG] OAuth token entropy

John Bradley <ve7jtb@ve7jtb.com> Fri, 02 November 2012 21:40 UTC

Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D4B8A11E80F2 for <oauth@ietfa.amsl.com>; Fri, 2 Nov 2012 14:40:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.598
X-Spam-Level:
X-Spam-Status: No, score=-3.598 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vbzty2ZW+koK for <oauth@ietfa.amsl.com>; Fri, 2 Nov 2012 14:40:22 -0700 (PDT)
Received: from mail-qa0-f51.google.com (mail-qa0-f51.google.com [209.85.216.51]) by ietfa.amsl.com (Postfix) with ESMTP id E22DB11E80E3 for <oauth@ietf.org>; Fri, 2 Nov 2012 14:40:21 -0700 (PDT)
Received: by mail-qa0-f51.google.com with SMTP id j40so1154990qab.10 for <oauth@ietf.org>; Fri, 02 Nov 2012 14:40:21 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to:x-mailer:x-gm-message-state; bh=vOlVR+QugZgTvue68AhqvHdSaFEgx6emmgoMkTnNjlU=; b=HtJoxc27zJvQclf/0Ofgcb/Zl1I56g3a/PbXsfUItuaZzpxucak057WKNMEnI35/yY Eejrr4vsZH2F+Avb1J6EIskNI/tTxCBOcXVY9EDCoxRwg4z2vwt8NQtp0JEiEkC0KxJs 9w2sL+rl9oZ8uGE63fT/9yvM+qvOzu7a4upzdIhoi5cW/vq0mnbQ0AyRiaXmFLD7CMZY h/nmPWrlWsyHFcIDOFYMl5byHGUIjXjfqVX3HPIN+KIkalxl0LzwcO4VOmWil2H3ExHE DuxBFxTCkMJxxwQMgOV8AgMS0NYv8TTzW62ng8sBygYWOyzl++eyBEdPFX8REYrFPsYU eAWg==
Received: by 10.49.1.43 with SMTP id 11mr4842155qej.41.1351892421149; Fri, 02 Nov 2012 14:40:21 -0700 (PDT)
Received: from [192.168.1.35] (190-20-34-233.baf.movistar.cl. [190.20.34.233]) by mx.google.com with ESMTPS id y17sm5418087qaa.6.2012.11.02.14.40.18 (version=TLSv1/SSLv3 cipher=OTHER); Fri, 02 Nov 2012 14:40:20 -0700 (PDT)
Content-Type: multipart/alternative; boundary="Apple-Mail=_09EEEFF0-06B9-4672-AE45-DD48150AEFBC"
Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\))
From: John Bradley <ve7jtb@ve7jtb.com>
In-Reply-To: <1351882733.77358.YahooMailClassic@web121004.mail.ne1.yahoo.com>
Date: Fri, 02 Nov 2012 18:40:08 -0300
Message-Id: <E0A32403-9094-49F4-BEEA-29A361C998C5@ve7jtb.com>
References: <1351882733.77358.YahooMailClassic@web121004.mail.ne1.yahoo.com>
To: oleg@gryb.info
X-Mailer: Apple Mail (2.1499)
X-Gm-Message-State: ALoCoQmMX+0A09pU//dmNVuRury8j7ynb0qL8bZtsMd3t4t9kI0Tb7nLrXPrVjL1Q6zq3mX7gZBL
Cc: oauth <oauth@ietf.org>
Subject: Re: [OAUTH-WG] OAuth token entropy
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Nov 2012 21:40:23 -0000

The change we did to the last ish draft of OAuth to have the client send its client ID to the token endpoint even if it is not using a password reduces the need for additional entropy.

Originally for public clients using code, an attacker had the address space of all the inflight codes for all clients.   We reduced that to only being able to attack one client_id at a time.

For confidential clients it should not be possible to brute force the token endpoint.  

Trying to explain all the issues is hard so those are not bad defaults,  128 bits is a 20 character character password using the printable ascii character set for out of band code delivery.

John B.
On 2012-11-02, at 3:58 PM, Oleg Gryb <oleg_gryb@yahoo.com> wrote:

> 
> Thanks, Brian. "Must" for 128 bits makes perfect sense. 160 bits looks good as a recommended entropy as well.
> 
> WG,
> 
> Please update the doc. It's important to provide clear guidelines for OAuth implementers, which are many nowadays. 
> 
> --- On Fri, 11/2/12, Brian Campbell <bcampbell@pingidentity.com> wrote:
> 
> From: Brian Campbell <bcampbell@pingidentity.com>
> Subject: Re: [OAUTH-WG] OAuth token entropy
> To: "Oleg Gryb" <oleg@gryb.info>
> Cc: "Torsten Lodderstedt" <torsten@lodderstedt.net>, "oauth" <oauth@ietf.org>
> Date: Friday, November 2, 2012, 2:19 PM
> 
> I believe the original text (which was borrowed from elsewhere) had a must followed by a should rather than two shoulds like that. The text seems to have drifted a bit in various places but the threat model text should probably be aligned with what's in core OAuth at http://tools.ietf.org/html/rfc6749#section-10.10
> 
> 
> On Fri, Nov 2, 2012 at 10:16 AM, Oleg Gryb <oleg_gryb@yahoo.com> wrote:
> Can somebody please provide clarification for this:
> 
> 
> 
> 
> http://tools.ietf.org/html/draft-ietf-oauth-v2-threatmodel-05#section-5.1.4.2.2
> 
> 
> 
> 5.1.4.2.2.  High entropy of secrets
> 
> ...
>    The probability of any two Authorization Code
>    values being identical should be less than or equal to 2^(-128) and
>    should be less than or equal to 2^(-160).
> 
> 
> Is there any reason why we have two inclusive conditions in this statement or is it a typo and you meant something else?
>  
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
> 
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email