[POSH] Comments/questions on draft-miller-posh-00
Michael Procter <michael@voip.co.uk> Fri, 26 July 2013 09:54 UTC
Return-Path: <michael@voip.co.uk>
X-Original-To: posh@ietfa.amsl.com
Delivered-To: posh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F50F21F8BCE for <posh@ietfa.amsl.com>; Fri, 26 Jul 2013 02:54:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.737
X-Spam-Level:
X-Spam-Status: No, score=-4.737 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_MED=-4, SARE_LWSHORTT=1.24]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xFV0XLb9rObh for <posh@ietfa.amsl.com>; Fri, 26 Jul 2013 02:54:33 -0700 (PDT)
Received: from na3sys009aog122.obsmtp.com (na3sys009aog122.obsmtp.com [74.125.149.147]) by ietfa.amsl.com (Postfix) with SMTP id 1D39C21F9005 for <posh@ietf.org>; Fri, 26 Jul 2013 02:54:31 -0700 (PDT)
Received: from mail-wi0-f179.google.com ([209.85.212.179]) (using TLSv1) by na3sys009aob122.postini.com ([74.125.148.12]) with SMTP ID DSNKUfJHVnHA6lQFKpH06AyNtwlnmykukj7F@postini.com; Fri, 26 Jul 2013 02:54:32 PDT
Received: by mail-wi0-f179.google.com with SMTP id hj3so629960wib.6 for <posh@ietf.org>; Fri, 26 Jul 2013 02:54:29 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:date:message-id:subject:from:to:content-type :x-gm-message-state; bh=X+v+ijBHChbPjcPEVSNgfm1lfZDD4lH2B2EqLgShFRA=; b=JsEiYkEvZiSfRMhQup3HGmeulFtfcqKMnTb3ZQOQtjgGux1S5gwyNqDnud78UxY/1o FDGi9WqT1WVUyWsEJnwuhImgAWB/5K6Wy1bqs6OqhQqH9PUhFMw67MnMLy1BeWmlkhEF qXvpwg1Pj1WnWpcirfUpWnRv5UJz3/6t+28wMMorUYyDuD+PfHq3zdWWXjSHj90hXneY +MLl1bsXooob6tmXwEpXNxT8kujDzOatjpSvJ/aKHCoFtn0czZFxcbZyWcoVKlgM1PzD g7vKxAQyxaKYgjGXsUYUyVvnVT7oZuQim5oHcKoaxrx8f1E7WsLs4NqvBUAfBj6DHcKy UjLg==
X-Received: by 10.194.240.201 with SMTP id wc9mr34147416wjc.1.1374832469447; Fri, 26 Jul 2013 02:54:29 -0700 (PDT)
MIME-Version: 1.0
X-Received: by 10.194.240.201 with SMTP id wc9mr34147412wjc.1.1374832469348; Fri, 26 Jul 2013 02:54:29 -0700 (PDT)
Received: by 10.194.164.234 with HTTP; Fri, 26 Jul 2013 02:54:29 -0700 (PDT)
Date: Fri, 26 Jul 2013 10:54:29 +0100
Message-ID: <CAPms+wRR_ZtLq94mRCDVXEW9WyZeDmYx+1hU+zCXV1fT0GSZ+g@mail.gmail.com>
From: Michael Procter <michael@voip.co.uk>
To: posh@ietf.org
Content-Type: text/plain; charset="ISO-8859-1"
X-Gm-Message-State: ALoCoQkz0XksVp/0anUN7yvGRrM1VcJwol+nvQ3DJyHEN+C9nKD7QGUiJP9toOYAx2dpP4NnGWu9MGwQpdUtbgNu2LDTQLj1V2aQ9cCgnvumG4xw1evV8Sul5XNWchRaMh0CQvazbo65
Subject: [POSH] Comments/questions on draft-miller-posh-00
X-BeenThere: posh@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Discussion about PKIX Over Secure HTTP <posh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/posh>, <mailto:posh-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/posh>
List-Post: <mailto:posh@ietf.org>
List-Help: <mailto:posh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/posh>, <mailto:posh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Jul 2013 09:54:39 -0000
I read draft-miller-posh-00 with interest, and have a couple of questions about the expected usage. In section 5, you discuss the relative timing of POSH operations and the application TLS handshake, requiring the POSH operations to be complete before the application handshake completes. At the end of the paragraph, you mention that all the POSH operations may in fact be completed before the application handshake begins. That sounds reasonable, provided you know in advance that the POSH part is required. Is that inferred from DNS if the target hostname is not in the original service domain or some other heuristic? It seems fair to me to only require the POSH part if the certificate presented is invalid for reasons such as subjectAltName mismatch, which precludes starting the POSH operations before the application handshake. Similarly, I can't see anything obviously wrong with letting the application handshake complete, then performing the POSH operations before deciding the application connection is not suitable and should be terminated before being used. Is the MUST in this section mandating the order of operations necessary for some other reason? In section 6, you state that ideally, caching of the certificate obtained via POSH should be based on the expiration time of the certificate. I think this might be a little too trusting, as it ties delegation validity to certificate expiry. If I trust hosting.example.net to host my service today, that doesn't mean I will continue to trust them until their certificate expires. HTTP cache-control headers might be a useful way of indicating a short term trust though. Regards, Michael
- [POSH] Comments/questions on draft-miller-posh-00 Michael Procter
- Re: [POSH] Comments/questions on draft-miller-pos… Peter Saint-Andre
- Re: [POSH] Comments/questions on draft-miller-pos… Philipp Hancke
- Re: [POSH] Comments/questions on draft-miller-pos… Michael Procter
- Re: [POSH] Comments/questions on draft-miller-pos… Michael Procter
- Re: [POSH] Comments/questions on draft-miller-pos… Michael Procter
- Re: [POSH] Comments/questions on draft-miller-pos… Philipp Hancke
- Re: [POSH] Comments/questions on draft-miller-pos… Matt Miller (mamille2)
- Re: [POSH] [xmpp] Comments/questions on draft-mil… Dave Cridland
- Re: [POSH] [xmpp] Comments/questions on draft-mil… Peter Saint-Andre
- Re: [POSH] [xmpp] Comments/questions on draft-mil… Philipp Hancke