Re: [OAUTH-WG] draft-ietf-oauth-spop-10
Bill Mills <wmills_92105@yahoo.com> Wed, 18 February 2015 16:18 UTC
Return-Path: <wmills_92105@yahoo.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2EC51A8931 for <oauth@ietfa.amsl.com>; Wed, 18 Feb 2015 08:18:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.509
X-Spam-Level:
X-Spam-Status: No, score=-1.509 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, FREEMAIL_REPLYTO_END_DIGIT=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1nAK9SQayJ3j for <oauth@ietfa.amsl.com>; Wed, 18 Feb 2015 08:18:13 -0800 (PST)
Received: from nm41.bullet.mail.bf1.yahoo.com (nm41.bullet.mail.bf1.yahoo.com [216.109.114.57]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D83971A1AE8 for <oauth@ietf.org>; Wed, 18 Feb 2015 08:18:12 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1424276291; bh=XbTmUnfOrb8b5yyQobVXuHUcZMvk862de47nqsLgOBU=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:From:Subject; b=JMYPRvmh8F1QjaaUo6C5DwOa6loR5OM+Vx+wpJwMG/o/iKRa6629S4FIGClyZqi+sFioAeERCXA34WZMpcdFaMDK9uxVCpsHZjJNAYTSQk0KWqUJf3VGXUAIofp4Pdq90bxnjN97CfkrZ0Qrj97rPVdbmseurgerMeRn3rmfDdor6jDh02TFMKZ454qY68USmCK9s3YFiCVGR0w/TNe3Vf2GfKRtRo8Xcp3wKBNXtSMEaKKZyUshdUAmB9ntZqiBa5l5EIFMpHPjBrQiOhkxFqto9zcAJ49Nc4MW73Mwc555eflG1R3qqGf5GxdDVXyr64slpUtMkgudwVKA7aE6Nw==
Received: from [66.196.81.171] by nm41.bullet.mail.bf1.yahoo.com with NNFMP; 18 Feb 2015 16:18:11 -0000
Received: from [98.139.212.213] by tm17.bullet.mail.bf1.yahoo.com with NNFMP; 18 Feb 2015 16:18:11 -0000
Received: from [127.0.0.1] by omp1022.mail.bf1.yahoo.com with NNFMP; 18 Feb 2015 16:18:01 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 569112.98066.bm@omp1022.mail.bf1.yahoo.com
X-YMail-OSG: 1s4EHvQVM1nwCmAvDxqB.sari9Vm92L6j6HFDEMEHQpH09CExLpvqE_51RcFrnt TJrMENVkXTQ8d6RRcoEiJe0Im2ludDVnkk0wdJVDyhfwnY2XAvp1GzlIEZ5pcfjAinuRSPVyLNKt QBF06f3wXWZKySZRbF5mXEMJZOA.zFJJuqJ9vnKGZGhF1WTZST5lLCNYuhlxqHpIT3l7zGtxWb5K sDh4_TvyTtKvtb7A_wq.WO68P3yRvFok5iCfAgB.IVXoc8jZ7dJtkSbRiIK7WR114JzlTOa5fTU0 304Hvn4OSwpcylt0wBrm3H3ujz7kd_ZuTtFjeuRoS3N_aQyTwGGQ.8EeoXTq6ahkXL8zIG8G5L1h KLDLvQzZ1iAqdNqwPS50nZRN6kTXQ24wuG8fnt0xkE_tOUOk2A2.AiJ7cQ7yERYkExG4MadMt55v eAsD2RguhAjXMsLq3HU2tNzC6IzNZ2u4S7CDjUS4wLjVEpyL5aYmaiGngUtamCkKF1VTLha.iwsA 8ouahKl.77snBkiH2o6g28azVd.NbazSLWKRSS7DBTw--
Received: by 66.196.81.106; Wed, 18 Feb 2015 16:18:01 +0000
Date: Wed, 18 Feb 2015 16:18:00 +0000
From: Bill Mills <wmills_92105@yahoo.com>
To: Nat Sakimura <n-sakimura@nri.co.jp>, Hannes Tschofenig <hannes.tschofenig@gmx.net>
Message-ID: <2147194906.1078114.1424276280519.JavaMail.yahoo@mail.yahoo.com>
In-Reply-To: <20150218182653.b84a14b8c26c3a506579692e@nri.co.jp>
References: <20150218182653.b84a14b8c26c3a506579692e@nri.co.jp>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_1078113_537707165.1424276280509"
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/R1A1nWoidOO12QCVkncrboetMtY>
Cc: "oauth@ietf.org" <oauth@ietf.org>, "naa@google.com" <naa@google.com>
Subject: Re: [OAUTH-WG] draft-ietf-oauth-spop-10
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Bill Mills <wmills_92105@yahoo.com>
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Feb 2015 16:18:15 -0000
I was OK with SHOULD because there's no firm measure of "enough entropy". Whether it's SHOULD or MUST is moot without some way to quantify it.
On Wednesday, February 18, 2015 1:27 AM, Nat Sakimura <n-sakimura@nri.co.jp> wrote:
Hi Hannes,
The reason I have put SHOULD there instead of MUST is
that there may be a valid reason not to in a controlled
environment, and it does not interfere the interoperability.
The deployment may opt to use other control than entropy,
and SHOULD allows it while MUST does not.
Having said that, if the WG is OK with a MUST there,
I am fine with incorporating the proposed change.
Cheers,
Nat
On Wed, 18 Feb 2015 09:43:30 +0100
Hannes Tschofenig <hannes.tschofenig@gmx.net> wrote:
> Hi Nat,
>
> thanks for the quick response.
>
> I was hoping to see a statement like "The code verifier MUST have
> enough entropy to make it impractical to guess the value." in the
> text rather than the SHOULD. Given all the other statements in the
> draft I am not sure what the should actually means. Under what
> conditions would an implementer not provide enough entropy to make
> guessing impractical?
>
> Ciao
> Hannes
>
> On 02/18/2015 05:13 AM, Nat Sakimura wrote:
> > Hi Hannes,
> >
> > I hereby confirm that I have submit the draft in full conformance
> > with the provisions of BCP 78 and BCP 79.
> >
> > Re: Security Consideration (7.1) and section 4.1
> >
> > The first part of the 7.1 is a non-normative prose explaining that
> > the implementers got to make sure that the code verifier is hard to
> > guessed or modeled. In a way, this is laying out the basic security
> > property requirment on the code verifier.
> >
> > Then, it goes onto the implementation guideance that one need to
> > use a cryptographic random number generator instead of relying on a
> > rand() in some language that are not cryptographically random to
> > generate 32-octet sequence. The same text is in 4.1 as well.
> >
> > We did not copy "code verifier SHOULD have enough entropy to make
> > it impractical to guess the value" here because that looked
> > needlessly repeating, but if you want, I have no objection in
> > adding it to 7.1.
> >
> > Alternatively, in 7.1, after explaining the rationale, we can just
> > point to 4.1 for the control and implementation guidance.
> >
> > Re: 32-octet
> >
> > We chose it because we are using SHA256 in generating the code
> > challange. Having more entropy does not help us here, while having
> > less octets increases the risk.
> >
> > Best,
> >
> > Nat
> >
> >
> >
> > On Tue, 17 Feb 2015 17:56:33 +0100
> > Hannes Tschofenig <hannes.tschofenig@gmx.net> wrote:
> >
> >> Hi Nat, John, Naveen,
> >>
> >> thanks a lot for your work on the document.
> >>
> >> I still need responses to this mail to complete the shepherd
> >> writeup:
> >> http://www.ietf.org/mail-archive/web/oauth/current/msg14100.html
> >>
> >> I definitely need the IPR confirmation.
> >>
> >> It would also be helpful to have someone who implemented the
> >> specification as it currently is. I asked Brian and Thorsten for
> >> clarification regarding their statements that they implemented
> >> earlier versions of the spec.
> >>
> >> As a final remark I still believe that the text regarding the
> >> randomness is still a bit inconsistent. Here are two examples:
> >>
> >> 1) In the Security Consideration you write that "The security model
> >> relies on the fact that the code verifier is not learned or
> >> guessed by the attacker. It is vitally important to adhere to
> >> this principle. "
> >>
> >> 2) In Section 4.1 you, however, write: "NOTE: code verifier SHOULD
> >> have enough entropy to make it impractical to guess the value. It
> >> is RECOMMENDED that the output of a suitable random number
> >> generator be used to create a 32-octet sequence."
> >>
> >> There is clearly a long way from a SHOULD have enough entropy to
> >> the text in the security consideration section where you ask for
> >> 32 bytes entropy.
> >>
> >> It is also not clear why you ask for 32 bytes of entropy in
> >> particular.
> >>
> >> Ciao
> >> Hannes
> >>
> >
> >
>
--
Nat Sakimura (n-sakimura@nri.co.jp)
Nomura Research Institute, Ltd.
本メールに含まれる情報は機密情報であり、宛先に記載されている方のみに送信
することを意図しております。意図された受取人以外の方によるこれらの情報の
開示、複製、再配布や転送など一切の利用が禁止されています。誤って本メール
を受信された場合は、申し訳ございませんが、送信者までお知らせいただき、受
信されたメールを削除していただきますようお願い致します。 PLEASE READ:
The information contained in this e-mail is confidential and intended
for the named recipient(s) only. If you are not an intended recipient
of this e-mail, you are hereby notified that any review, dissemination,
distribution or duplication of this message is strictly prohibited. If
you have received this message in error, please notify the sender
immediately and delete your copy from your system.
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth
- [OAUTH-WG] draft-ietf-oauth-spop-10 Hannes Tschofenig
- [OAUTH-WG] draft-ietf-oauth-spop-10 Hannes Tschofenig
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Nat Sakimura
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 John Bradley
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 John Bradley
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Hannes Tschofenig
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Hannes Tschofenig
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Nat Sakimura
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Hannes Tschofenig
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Nat Sakimura
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 torsten
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Brian Campbell
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 John Bradley
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Bill Mills
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Brian Campbell
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Hannes Tschofenig
- Re: [OAUTH-WG] draft-ietf-oauth-spop-10 Naveen Agarwal