IETF Logo Mail Archive

Re: [saag] Channel binding is great but not a silver bullet

Stephen Kent <kent@bbn.com> Tue, 03 March 2009 00:24 UTC

Return-Path: <kent@bbn.com>
X-Original-To: saag@core3.amsl.com
Delivered-To: saag@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 38D3628C2A4 for <saag@core3.amsl.com>; Mon, 2 Mar 2009 16:24:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.236
X-Spam-Level:
X-Spam-Status: No, score=-2.236 tagged_above=-999 required=5 tests=[AWL=0.363, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a7n8TH9zRvKv for <saag@core3.amsl.com>; Mon, 2 Mar 2009 16:24:14 -0800 (PST)
Received: from mx11.bbn.com (mx11.bbn.com [128.33.0.80]) by core3.amsl.com (Postfix) with ESMTP id C5AEF28C20E for <saag@ietf.org>; Mon, 2 Mar 2009 16:23:09 -0800 (PST)
Received: from dommiel.bbn.com ([192.1.122.15] helo=[10.71.0.151]) by mx11.bbn.com with esmtp (Exim 4.60) (envelope-from <kent@bbn.com>) id 1LeIQ3-0000er-En; Mon, 02 Mar 2009 19:23:35 -0500
Mime-Version: 1.0
Message-Id: <p06240802c5d2057e7a6e@[128.89.89.88]>
In-Reply-To: <1232E3FA9408ED0962D481EF@atlantis.pc.cs.cmu.edu>
References: <2788466ED3E31C418E9ACC5C3166155768B2CB@mou1wnexmb09.vcorp.ad.vrsn.com> <0c2301c9979f$8a1cd770$0600a8c0@china.huawei.com> <2788466ED3E31C418E9ACC5C3166155768B2CE@mou1wnexmb09.vcorp.ad.vrsn.com> <20090226143809.GF7227@mit.edu> <1235663917.3293.16.camel@localhost> <20090226165448.GK9992@Sun.COM> <tslprh5rlvt.fsf_-_@mit.edu> <200903021609.n22G9hIg014931@grapenut.srv.cs.cmu.edu> <1232E3FA9408ED0962D481EF@atlantis.pc.cs.cmu.edu>
Date: Mon, 02 Mar 2009 19:23:30 -0500
To: Jeffrey Hutzelman <jhutz@cmu.edu>
From: Stephen Kent <kent@bbn.com>
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Cc: Sam Hartman <hartmans-ietf@mit.edu>, der Mouse <mouse@Rodents-Montreal.ORG>, Nicolas Williams <Nicolas.Williams@sun.com>, saag@ietf.org
Subject: Re: [saag] Channel binding is great but not a silver bullet
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Mar 2009 00:24:15 -0000

At 12:08 PM -0500 3/2/09, Jeffrey Hutzelman wrote:
>--On Monday, March 02, 2009 10:00:36 AM -0600 Nicolas Williams 
><Nicolas.Williams@sun.com> wrote:
>
>>Yes, but if we solve the mutual authentication case then for the cases
>>where we don't need mutual authentication we can probably live with a
>>weak PKI.
>
>No, that is not true.  These days, people routinely establish new, 
>real business relationships online.  Companies like Amazon and 
>PayPal depend on this model, and so do smaller merchants who 
>probably number in the millions.  In many cases, consumers engage in 
>a single transaction with such a merchant and there is _never_ any 
>enrollment.
>
>Mutual authentication plus channel binding is a great model for some 
>things, but expecting to use off-line enrollment for everything 
>forever is a non-starter.
>
>-- Jeff

Jeff,

i think it is important to note the role of credit card companies in 
making these business relationships viable.  I am willing to do 
business with an unknown, online, merchant based in large part on my 
ability to decline payment if the merchant misbehaves.

Steve

v2.23.0 | Report a Bug | By Email