IETF Logo Mail Archive

Re: [regext] draft-ietf-regexy-login-security

"Hollenbeck, Scott" <shollenbeck@verisign.com> Wed, 13 November 2019 20:13 UTC

Return-Path: <shollenbeck@verisign.com>
X-Original-To: regext@ietfa.amsl.com
Delivered-To: regext@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4917D1200B3 for <regext@ietfa.amsl.com>; Wed, 13 Nov 2019 12:13:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WPppQxpcGgxk for <regext@ietfa.amsl.com>; Wed, 13 Nov 2019 12:13:31 -0800 (PST)
Received: from mail3.verisign.com (mail3.verisign.com [72.13.63.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7B81212003E for <regext@ietf.org>; Wed, 13 Nov 2019 12:13:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=1729; q=dns/txt; s=VRSN; t=1573676011; h=from:to:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version:subject; bh=WQBdmPmFaAj/6CgJJfDivf4S4mHQINS07ia2o5mtyGQ=; b=AM4BlYKbtQSabkJPlZY26GJX+YsUTkfiJQroc16/wjYE/Atz0PYnOzhN jy2l5rks9Wdo8N0W+b2cU5UReXWaIpXQcxH2FYttnSYWi3ikoIPxFPXQ0 xzse30ezTAJhN2RsZK/3mNN/EnIDxEWm/LSP6dbgOrkrD9UMTUxkGa04d T/2qKAaSbmsM4e8PNBkqVBOUT+dlKfjPAsggT71xmNIFRMIRD5od3K1BG yq9DchQ/WuvtU0TcvxuIyFB5z2GsNIcoRoD5DPRaQ/HpZWVue9vSQriND j2DDDMUxKjgCgfELTYmx9cnbkjh6BpQHYt78+OhgPQp28Wt38VLMHByLs A==;
IronPort-SDR: dfqPVqELicEaezj/6cCvDZ4ngKmd6k9SaA2amjiCYiHMpzms/eblaiiYe0vbaPDpDNwHp7xDtk z3J/aGS1a2kCyhTF2aDg/2PTgqOsYvRwyHvWxfgvS/AFH0DySo3Fh2fGQmcAgjbNsstSKLtCgM EkC+T/cL3DGG9kYQx7x3uzH4Gsl9YMF+fZIzwp8dEYK0j0ECI/bweoGMbOTKetuARkb09sjNHr WJhicLcuK8rALb+WqQalZwA5ENpNYrT29v15xOM8Czud37yYWvzOEifi4nLRUORH6JTLtcZr2a GE8=
X-IronPort-AV: E=Sophos;i="5.68,301,1569283200"; d="scan'208";a="55806"
IronPort-PHdr: 9a23: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
X-IPAS-Result: A2GBAADBY8xd/zGZrQplGgEBAQEBAQEBAQMBAQEBEQEBAQICAQEBAYF+AoFtgk4KlTybKQkBAQEBAQEBAQEHAS8BAYRAAoJFOQUNAgMLAQEBBAEBAQEBBQMBAQEChXQIMII7IoNJAQEBAQM6SwQCAQgRBAEBARYBAQYQMh0IAgQBEgi3CoInhU6Ed4E2AYwrgUE+hCM+hDFcAgWFHwSMfqEXAweCKJBGhHkjmX6OR5l8AgQCBAUCFYFqgXpwgzxQERSCN50pdI8jAQ0VgQ2BDwEB
Received: from BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1779.2; Wed, 13 Nov 2019 15:13:20 -0500
Received: from BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde]) by BRN1WNEX02.vcorp.ad.vrsn.com ([fe80::7c0a:1cc:5def:9dde%4]) with mapi id 15.01.1779.002; Wed, 13 Nov 2019 15:13:20 -0500
From: "Hollenbeck, Scott" <shollenbeck@verisign.com>
To: "pm@dotandco.com" <pm@dotandco.com>, "regext@ietf.org" <regext@ietf.org>
Thread-Topic: [EXTERNAL] Re: [regext] draft-ietf-regexy-login-security
Thread-Index: AQHVmlxLVsVEJWnr9k+vS6U3bx4ngKeJhb5Q
Date: Wed, 13 Nov 2019 20:13:20 +0000
Message-ID: <28ca30c867da482088214cb27268e50e@verisign.com>
References: <406eac6f-f908-4944-8f43-16df858b182f@www.fastmail.com> <78c95628e8f84901b7230f6674ee3120@verisign.com> <94e5e1f6-bd74-43ac-bef7-4d95ab91439e@www.fastmail.com>
In-Reply-To: <94e5e1f6-bd74-43ac-bef7-4d95ab91439e@www.fastmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.170.148.18]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/regext/8G5E-fgsP17SZPxuKaIXOKjHok8>
Subject: Re: [regext] draft-ietf-regexy-login-security
X-BeenThere: regext@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Registration Protocols Extensions <regext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/regext>, <mailto:regext-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/regext/>
List-Post: <mailto:regext@ietf.org>
List-Help: <mailto:regext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/regext>, <mailto:regext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Nov 2019 20:13:33 -0000

> -----Original Message-----
> From: regext <regext-bounces@ietf.org> On Behalf Of Patrick Mevzek
> Sent: Wednesday, November 13, 2019 2:55 PM
> To: regext@ietf.org
> Subject: [EXTERNAL] Re: [regext] draft-ietf-regexy-login-security
> 
> 
> 
> On Wed, Nov 13, 2019, at 08:37, Hollenbeck, Scott wrote:
> > TLS protection is specified to avoid sending passwords in plaintext form.
> 
> Yes but this solves only the security in transit part, not security at rest.
> 
> These EPP frames are stored on both side of the connection, logged, added
> to backups, etc.
> This is needed for various troubleshooting needs, as well as disputes and so
> on.
> 
> Without any specific code filtering out the passwords out of the frame
> before storage (which comes from its own edge cases because then it means
> you are troubleshooting things based on data as stored not really as
> exchanged, even if the difference in theory is well contained to specific
> parts), you then have the password in clear in many places.
> And not all registrars
> maintain open persistent connections or some registries shut down active
> connections like each hour no matter what, which means a registrar may
> send dozens or hundreds or more login request per day.

I don't think that local storage of sensitive information, such as passwords, is a *protocol* issue per se. It does make sense to note that it's a bad idea to do that in the Security Considerations sections of RFCs where passwords are exchanged as part of a protocol interaction, but it's not an interoperability issue.  An even better idea is to recommend "better" practices in those Security Considerations sections.

Scott

v2.23.0 | Report a Bug | By Email