IETF Logo Mail Archive

Re: [pkix] Proposed resolution to non-issued certificates - 2560bis

"Piyush Jain" <piyush@ditenity.com> Sat, 03 November 2012 15:40 UTC

Return-Path: <piyush@ditenity.com>
X-Original-To: pkix@ietfa.amsl.com
Delivered-To: pkix@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3C85921F9C5E for <pkix@ietfa.amsl.com>; Sat, 3 Nov 2012 08:40:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xA030KrpY+J5 for <pkix@ietfa.amsl.com>; Sat, 3 Nov 2012 08:39:59 -0700 (PDT)
Received: from mail-ie0-f172.google.com (mail-ie0-f172.google.com [209.85.223.172]) by ietfa.amsl.com (Postfix) with ESMTP id 9374721F9C55 for <pkix@ietf.org>; Sat, 3 Nov 2012 08:39:59 -0700 (PDT)
Received: by mail-ie0-f172.google.com with SMTP id 9so7092710iec.31 for <pkix@ietf.org>; Sat, 03 Nov 2012 08:39:58 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=from:to:cc:references:in-reply-to:subject:date:message-id :mime-version:content-type:content-transfer-encoding:x-mailer :thread-index:content-language:x-gm-message-state; bh=gCSWGCPMIIF96c40auYYeorytH1iLYeiMkhx47CDPnQ=; b=bRjjhubPrdad91bAplk7LVX/963Emtgc96964wiux6ZlY07P2fPGfX5WTzMQLTBehk FT7OSQdTWXo61UUzsrLVgVApxT0acurOdcgLwvIi+pESCHby6PPf1t3dTV3as92Wv6ww G49Nxg+V75jIuGP5xPf99vLxcq3JHaZsjMZLnEg5inOnrcgH7SIGrlKSzrGJN5M6k+Jy viECBca/sodirGD9vNJAN3Mlou2O7CVgXhMrBgzophCqVdCHdLRF3np75M8dUhq/qCqS YMYY8uySyIBrH/QxoQZSeDJIkfqobeIbMy8viAoHFv+1YGqLiPbWo6PL83tQ2ze50WrO uO9g==
Received: by 10.50.104.232 with SMTP id gh8mr5156540igb.45.1351957198666; Sat, 03 Nov 2012 08:39:58 -0700 (PDT)
Received: from hp13 (75-25-128-241.lightspeed.sjcpca.sbcglobal.net. [75.25.128.241]) by mx.google.com with ESMTPS id az4sm1747969igb.2.2012.11.03.08.39.55 (version=TLSv1/SSLv3 cipher=OTHER); Sat, 03 Nov 2012 08:39:57 -0700 (PDT)
From: Piyush Jain <piyush@ditenity.com>
To: mrex@sap.com
References: <048601cdb933$bf3848e0$3da8daa0$@ditenity.com> <20121102220547.982971A323@ld9781.wdf.sap.corp>
In-Reply-To: <20121102220547.982971A323@ld9781.wdf.sap.corp>
Date: Sat, 03 Nov 2012 08:39:51 -0700
Message-ID: <04dc01cdb9d9$78973670$69c5a350$@ditenity.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-index: AQGnFFErjxmtMNrrdR7ida+MLlMsFpgkbrwg
Content-Language: en-us
X-Gm-Message-State: ALoCoQkqmL54GRDz/vnUNt2ff5D5XPIhzUItdU5YUpTxFmyyz7yt2tWIVmO3rCtDA0TGoG0NNIYM
Cc: 'Peter Rybar' <peterryb@gmail.com>, pkix@ietf.org, 'Stefan Santesson' <stefan@aaa-sec.com>
Subject: Re: [pkix] Proposed resolution to non-issued certificates - 2560bis
X-BeenThere: pkix@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PKIX Working Group <pkix.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pkix>, <mailto:pkix-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pkix>
List-Post: <mailto:pkix@ietf.org>
List-Help: <mailto:pkix-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pkix>, <mailto:pkix-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 03 Nov 2012 15:40:00 -0000

> But the date when either the cert holder reported/requested or the CA
> decided or acknowledged that the cert is to be revoked is somewhat
> irrelevant for the code that is processing these data structures.
> The only point in times interesting to them is (a) when was it first
> posted/published or (b) at which time invalidity should be assumed to have
> started.

I think these statements about relevance are based on a narrow viewpoint.
One example is an application which needs to trigger an audit for all
transactions that happened between invalidity time and revocation time.
Both dates are required in this case. Just because you have not found a use
case does not make this information irrelevant. 

> What it neither says, and certainly not suggest is that an OCSP responder
> who is well aware that a certificate was never issued, should also respond
> "good".

But it clearly says that responder should return revoked for certificates
that have been revoked. 

> It actually fairly basic common sense that the description of positive
confirmations of cert issuance is complemented about negative
> confirmations  (=revoked status, due to a lack of alternative negative
confirmations) about not-issued certs.

Again, the common sense you talk about is based on set of limited use cases
- public CAs with browser clients.
You can find lot of corner cases that people like to address using OCSP. And
that is why there are response extensions. 
Here is another example - Checking the bank balance of the certificate
holder before allowing a financial transaction to go through. The negative
proof in this case does not warrant a revoked response. Instead the
information should be communicated using response extension. And if you are
wondering, this is not a fictitious use case. I know of at least one OCSP
responder that is designed for such use cases, what the vendor calls
'state-full validations'. 

What defies common sense is encouraging users to question the signature on
EE certificates and trusting the signature on responder certificates, even
though both are signed by the same authority.
And just to get the terminology right, these are not non-issued
certificates, these are certificates issued without the CA's knowledge, i.e.
fraudulently issued certificates. So even if the responder decides to return
revoked for such certificates, CA compromise is the right reason code.

v2.23.0 | Report a Bug | By Email