Re: [saag] NSA bug in Windows 10
"Santosh Chokhani" <santosh.chokhani@gmail.com> Thu, 16 January 2020 17:41 UTC
Return-Path: <santosh.chokhani@gmail.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 99E1C120071 for <saag@ietfa.amsl.com>; Thu, 16 Jan 2020 09:41:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K914MFQBc2H8 for <saag@ietfa.amsl.com>; Thu, 16 Jan 2020 09:41:39 -0800 (PST)
Received: from mail-qt1-x82f.google.com (mail-qt1-x82f.google.com [IPv6:2607:f8b0:4864:20::82f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E051612004A for <saag@ietf.org>; Thu, 16 Jan 2020 09:41:38 -0800 (PST)
Received: by mail-qt1-x82f.google.com with SMTP id e12so19553082qto.2 for <saag@ietf.org>; Thu, 16 Jan 2020 09:41:38 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:references:in-reply-to:subject:date:message-id:mime-version :content-transfer-encoding:thread-index:content-language; bh=webX0vdTLNdp7nHBX0Bwgvf2QETcRPXuTWQkh9FPNM4=; b=jDaJLaSVBp663fdMVmP0D7T2a5YOBuVHW4MXlg/Va/IdWRBWcejKjMjLUT2bsXX2Wb C9EmVyIimky9w1fvfgnW/zk35OQf7jZvyIMy/4BqwTbhjqkLpVbFKQPCVLlAc2GGzZf4 VTFfl2CckTkN91XbznBf1t6u1R69vJH1tYQrZJtD0IU80bDCh36OCTmS53iMu1gFx1A4 EolanXGkFRXq4RFypvLwGOq1SzM79ZdVVWkggCbai9lExuRBIYyw91gq/nSJnqKQdOun jVIO+oNILYuOwnwNbjQ7H3LIEsLcqUU9Ez4n9MRaoIJbwLM0PQhiIWNLyOEem+ORC7op W3/A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:references:in-reply-to:subject:date :message-id:mime-version:content-transfer-encoding:thread-index :content-language; bh=webX0vdTLNdp7nHBX0Bwgvf2QETcRPXuTWQkh9FPNM4=; b=K9R8EA9gjbtGlizRmthfoJhSDrRQxfSlCi6eP1mtlrkV4sGVA2D7hCKN/SHgBSgUCZ n+PPIXPR9h/Grnyw1F8WlDcYNL1EZNyr+ZDTV+j4o5hLYjFkxo2wGAM58dnsg28Qu5/s O6W562O2dTxEQOmFqv5kFy3ezBT3f7EEDoAArSUPMpUg3ZBl6Xy3yiLWHf1xzI7nX1Kk TmkWj8gpai8UFXGCisJwjddfHckXpxSVEiW0odAI7HKvPasJmDVNuIVHdopOxDHmVVUK Dn7qFz8F7u+vcmSJ8rPRw5gXWB5pMCNIrzpqyDcYE6PAMFtHW+NRfC/jhZUzn3Qpyw6g 3BRg==
X-Gm-Message-State: APjAAAU0UHaYLeKZjF15E2oJ57ah/77uqMO6MSj/bvRRMtznK21TWM54 2RJkwki/ySTsIw4Q/JjDGoOt2U/x
X-Google-Smtp-Source: APXvYqzUGpA6tfsQJgvDQh4/Fjlt0BSPTLHUe4VNAmAwHeyS7YNF+gsT/ooA2yI1k0yeT7XapOt3uQ==
X-Received: by 2002:ac8:685:: with SMTP id f5mr3456498qth.199.1579196497015; Thu, 16 Jan 2020 09:41:37 -0800 (PST)
Received: from SantoshBrain (pool-173-73-187-14.washdc.fios.verizon.net. [173.73.187.14]) by smtp.gmail.com with ESMTPSA id 124sm10357491qko.11.2020.01.16.09.41.35 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 16 Jan 2020 09:41:36 -0800 (PST)
From: Santosh Chokhani <santosh.chokhani@gmail.com>
To: 'Dan Brown' <danibrown@blackberry.com>, 'Peter Gutmann' <pgut001@cs.auckland.ac.nz>, 'Phillip Hallam-Baker' <phill@hallambaker.com>, 'IETF SAAG' <saag@ietf.org>
References: <CAMm+LwjbST2imHARvngfpBsp1vvABukrC+qXmktgxvAWhDnSxA@mail.gmail.com> <1579100916686.94828@cs.auckland.ac.nz> <5fd6bac7558d45fcac94119e746d7d0e@blackberry.com>
In-Reply-To: <5fd6bac7558d45fcac94119e746d7d0e@blackberry.com>
Date: Thu, 16 Jan 2020 12:41:36 -0500
Message-ID: <064801d5cc94$3403ad60$9c0b0820$@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 15.0
Thread-Index: AQKl11GAQLD3rY2S+c7LAPGMdstm3gLEHkejAbgA8LOmKZbvIA==
Content-Language: en-us
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/EmMcw2GNe_0XckTJh4UIpPXTA8k>
Subject: Re: [saag] NSA bug in Windows 10
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Jan 2020 17:41:44 -0000
There is a paper I wrote circa 1995-96 on parameter substitution related attack and developed a state machine for parameter inheritance for signature verification in certificate chain and CRLs. -----Original Message----- From: saag [mailto:saag-bounces@ietf.org] On Behalf Of Dan Brown Sent: Thursday, January 16, 2020 11:41 AM To: Peter Gutmann <pgut001@cs.auckland.ac.nz>; Phillip Hallam-Baker <phill@hallambaker.com>; IETF SAAG <saag@ietf.org> Subject: Re: [saag] NSA bug in Windows 10 Based on what I hear others say online, I presume this bug resulted a relying party using details of a received root certificate instead of a details in the true trusted root certificate. https://www.rfc-editor.org/rfc/rfc3280#section-6.1.1 item (d), (4) talks about parameters in the trust anchor certificate, and the next paragraph talks about a "delivered ... trustworthy out-of-band". If my presumption above is correct, then it seems that this part of RFC3280 was not followed in this bug, since the parameters were taken from an untrustworthy in-band delivery. That said, I wonder if RFC3280 adequately emphasized this point? Could it have used a MUST? Best regards, Dan ---------------------------------------------------------------------- This transmission (including any attachments) may contain confidential information, privileged material (including material protected by the solicitor-client or other applicable privileges), or constitute non-public information. Any use of this information by anyone other than the intended recipient is prohibited. If you have received this transmission in error, please immediately reply to the sender and delete this information from your system. Use, dissemination, distribution, or reproduction of this transmission by unintended recipients is not authorized and may be unlawful.
- [saag] NSA bug in Windows 10 Phillip Hallam-Baker
- Re: [saag] NSA bug in Windows 10 Peter Gutmann
- Re: [saag] NSA bug in Windows 10 Dan Brown
- Re: [saag] NSA bug in Windows 10 Santosh Chokhani
- Re: [saag] NSA bug in Windows 10 Benjamin Kaduk
- Re: [saag] NSA bug in Windows 10 Peter Gutmann
- Re: [saag] NSA bug in Windows 10 Daniel Van Geest
- Re: [saag] NSA bug in Windows 10 Phillip Hallam-Baker
- Re: [saag] NSA bug in Windows 10 Viktor Dukhovni
- Re: [saag] NSA bug in Windows 10 Dan Brown
- Re: [saag] NSA bug in Windows 10 Peter Gutmann
- Re: [saag] NSA bug in Windows 10 Benjamin Kaduk
- Re: [saag] NSA bug in Windows 10 Michael Richardson