IETF Logo Mail Archive

Re: operational protocols

Reginald Carey <rbcarey@jgvandyke.com> Tue, 08 April 1997 13:06 UTC

Received: by suntan.tandem.com (8.6.12/suntan5.970212) for ietf-pkix-relay id GAA00963; Tue, 8 Apr 1997 06:06:32 -0700
Received: from mail3.access.digex.net by suntan.tandem.com (8.6.12/suntan5.970212) for <ietf-pkix@tandem.com> id GAA00960; Tue, 8 Apr 1997 06:06:31 -0700
Received: from apollo (apollo.jgvandyke.com [158.189.10.100]) by mail3.access.digex.net (8.8.5/8.8.5) with SMTP id JAA09508; Tue, 8 Apr 1997 09:06:03 -0400 (EDT)
Received: from ajsn101.jgvandyke.com by apollo (5.x/SMI-SVR4) id AA25434; Tue, 8 Apr 1997 09:16:36 -0400
Received: from ajpc51.jgvandyke.com by ajsn101.jgvandyke.com (SMI-8.6/SMI-SVR4) id JAA17995; Tue, 8 Apr 1997 09:06:20 -0400
Received: from ajpc51 by ajpc51.jgvandyke.com (SMI-8.6/SMI-SVR4) id JAA11400; Tue, 8 Apr 1997 09:06:13 -0400
Sender: rbcarey@jgvandyke.com
Message-Id: <334A42C5.6551@jgvandyke.com>
Date: Tue, 08 Apr 1997 09:06:13 -0400
From: Reginald Carey <rbcarey@jgvandyke.com>
Organization: J. G. Van Dyke & Associates, Inc.
X-Mailer: Mozilla 3.01Gold (X11; I; SunOS 5.5.1 i86pc)
Mime-Version: 1.0
To: Stef Hoeben <Stefan.Hoeben@esat.kuleuven.ac.be>
Cc: ietf-pkix@tandem.com
Subject: Re: operational protocols
References: <Pine.ULT.3.95.970408115054.783C-100000@dante>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit

Stef Hoeben wrote:
> 
> Since you're all shooting at me, I better withdraw
> and shut up (though in some cases a CIL could be
> usefull, IMHO:)
> 
> The main reason for me was to ask the two questions
> in my first mail ... (which still no-one bothered to
> answer)
> 
> By the way, even if you also trust your Directory
> (though it would off course be nicer to only trust
> the CA), there is still the risk of spoofing (someone
> who intercepts the reponse the Directory sends to
> you). So (only) authentication (by the CA) of _all_
> answers the Directory gives are a solution to this
> spoofing, IMHO again.
> 

The best way for a DUA to ensure that it is not being
spoofed by a rogue DSA impersonator is to require
signed operations on both directory requests and responses.
In that way you can trust your directory.  It may not give
you what you asked for but then again, you'll know that what
was sent by the directory will be what you receive.  Also, 
having secure prior knowledge of your CA's certificate is 
the ONLY way to know that any signature is valid.  This can
be done via some read only storage device provided by the CA.

-- 
+----------------------------------------------------------------------+
| Reginald B. Carey                 | J.G. Van Dyke & Associates, Inc. |
| Senior Systems Engineer           | 141 National Business Pkwy, #210 |
| Voice (301) 939-2707              | Annapolis Junction, MD 20701     |
| Fax   (301) 953-2901              | Office (301) 953-3600            |
| mailto:rbcarey@jgvandyke.com      | http://www.jgvandyke.com         |
+----------------------------------------------------------------------+

v2.23.0 | Report a Bug | By Email