IETF Logo Mail Archive

Re: [pkix] fyi: Sovereign Keys: an EFF proposal for more secure TLS

Stephen Kent <kent@bbn.com> Mon, 19 December 2011 14:46 UTC

Return-Path: <kent@bbn.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8906D21F891D for <pkix@ietfa.amsl.com>; Mon, 19 Dec 2011 06:46:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -105.938
X-Spam-Level:
X-Spam-Status: No, score=-105.938 tagged_above=-999 required=5 tests=[AWL=0.661, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Qio1rS0wSlvT for <pkix@ietfa.amsl.com>; Mon, 19 Dec 2011 06:46:17 -0800 (PST)
Received: from smtp.bbn.com (smtp.bbn.com [128.33.1.81]) by ietfa.amsl.com (Postfix) with ESMTP id DF33021F8513 for <pkix@ietf.org>; Mon, 19 Dec 2011 06:46:16 -0800 (PST)
Received: from dommiel.bbn.com ([192.1.122.15]:49607 helo=[192.168.144.140]) by smtp.bbn.com with esmtp (Exim 4.74 (FreeBSD)) (envelope-from <kent@bbn.com>) id 1RceTn-0001YQ-Oq; Mon, 19 Dec 2011 09:46:15 -0500
Mime-Version: 1.0
Message-Id: <p06240805cb14fc44280d@[192.168.144.140]>
In-Reply-To: <201112190951.03196.rob.stradling@comodo.com>
References: <201112151802.pBFI2xie023478@fs4113.wdf.sap.corp> <201112160906.54538.rob.stradling@comodo.com> <p06240804cb13ff7339bd@[10.243.32.112]> <201112190951.03196.rob.stradling@comodo.com>
Date: Mon, 19 Dec 2011 09:38:31 -0500
To: Rob Stradling <rob.stradling@comodo.com>
From: Stephen Kent <kent@bbn.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: pkix@ietf.org, ben@links.org
Subject: Re: [pkix] fyi: Sovereign Keys: an EFF proposal for more secure TLS
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Dec 2011 14:46:17 -0000

At 9:51 AM +0000 12/19/11, Rob Stradling wrote:
>On Sunday 18 Dec 2011 20:40:06 Stephen Kent wrote:
>>  At 9:06 AM +0000 12/16/11, Rob Stradling wrote:
>>  >O...
>>  >
>>  >Martin, are you saying that it is never sensible to apply the robustness
>>  >principle when decoding ASN.1 data?
>>  >
>>  >http://en.wikipedia.org/wiki/Robustness_principle
>>
>>  NO is a good answer here, and in most security contexts.
>>
>>  ASN.1 decoding should, under the best circumstances, identify the
>>  error so that an RP can try to "persuade" the issuer of broken certs,
>>  CRLs, etc. to fix them. The decoded ought not core dump. But it also
>>  should reject invalid syntax. Failign to do so merely encourages the
>>  issuance of broken certs etc., and eventually imposes a burden on all
>>  RPs to accommodate errors by some issuers.
>>
>>  Steve
>
>I was actually thinking of PKCS#10 CSRs when I asked that question.  When we
>launched our CA ~10 years ago, my ASN.1 CSR decoder only accepted CSRs that
>were encoded 100% correctly.  Over time, I've had to relax the rules several
>times to accommodate various varieties of broken encoding.  I've never been
>able to suggest a business case for turning away customers just because their
>CSR generation software contains bugs!
>
>CAs are the "terminal endpoint" for CSRs, so hopefully Martin will 
>forgive me. 
>;-)
>
>Rob Stradling
>Senior Research & Development Scientist
>COMODO - Creating Trust Online

I understand the commercial rationale for such behavior, but I think
we agree that it results in precisely the problem I noted.

Steve

v2.46.0 | Report a Bug | By Email | System Status