IETF Logo Mail Archive

Re: [saag] SHA-1 to SHA-n transition

"Hallam-Baker, Phillip" <pbaker@verisign.com> Fri, 27 February 2009 13:35 UTC

Return-Path: <pbaker@verisign.com>
X-Original-To: saag@core3.amsl.com
Delivered-To: saag@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C8F623A6888 for <saag@core3.amsl.com>; Fri, 27 Feb 2009 05:35:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.082
X-Spam-Level:
X-Spam-Status: No, score=-6.082 tagged_above=-999 required=5 tests=[AWL=0.516, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SvQM6h51923f for <saag@core3.amsl.com>; Fri, 27 Feb 2009 05:35:03 -0800 (PST)
Received: from colibri.verisign.com (colibri.verisign.com [65.205.251.74]) by core3.amsl.com (Postfix) with ESMTP id E69183A67A4 for <saag@ietf.org>; Fri, 27 Feb 2009 05:35:03 -0800 (PST)
Received: from MOU1WNEXCN02.vcorp.ad.vrsn.com (mailer2.verisign.com [65.205.251.35]) by colibri.verisign.com (8.13.6/8.13.4) with ESMTP id n1RDAxuX025662; Fri, 27 Feb 2009 05:10:59 -0800
Received: from MOU1WNEXMB09.vcorp.ad.vrsn.com ([10.25.15.197]) by MOU1WNEXCN02.vcorp.ad.vrsn.com with Microsoft SMTPSVC(6.0.3790.3959); Fri, 27 Feb 2009 05:35:24 -0800
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C998E0.3DB591BA"
Date: Fri, 27 Feb 2009 05:35:23 -0800
Message-ID: <2788466ED3E31C418E9ACC5C3166155768B2DD@mou1wnexmb09.vcorp.ad.vrsn.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [saag] SHA-1 to SHA-n transition
Thread-Index: AcmYkI/V0sVKQzO8QkanRpDA7kgsqQATrDAG
References: <2788466ED3E31C418E9ACC5C3166155768B2CB@mou1wnexmb09.vcorp.ad.vrsn.com><0c2301c9979f$8a1cd770$0600a8c0@china.huawei.com><2788466ED3E31C418E9ACC5C3166155768B2CE@mou1wnexmb09.vcorp.ad.vrsn.com><20090226143809.GF7227@mit.edu><1235663917.3293.16.camel@localhost><20090226165448.GK9992@Sun.COM><20090227022359.8D45150822@romeo.rtfm.com> <20090227035553.GT9992@Sun.COM>
From: "Hallam-Baker, Phillip" <pbaker@verisign.com>
To: Nicolas Williams <Nicolas.Williams@sun.com>, Eric Rescorla <ekr@networkresonance.com>
X-OriginalArrivalTime: 27 Feb 2009 13:35:24.0801 (UTC) FILETIME=[3EA72F10:01C998E0]
Cc: der Mouse <mouse@Rodents-Montreal.ORG>, saag@ietf.org
Subject: Re: [saag] SHA-1 to SHA-n transition
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Feb 2009 13:35:04 -0000

We have a PKI. We have had a PKI for fifteen years. Its just a PKI that requires people to pay for service. 

If the only PKI that counts is a completely free at point of delivery PKI then I guess that we don't have a DNS system either since the NSF decided to start charging.


What you mean is that a completely free to use PKI would be nice.

We actually have one of those, SSH works quite nicely for what it does. Just not for assuring potential customers that a credit card transaction is safe for them.

Problem is that there are some tasks that really don't work as community efforts. Auditing and preparing taxes for example. If folk work out how to make those work on an open source type model we could maybe try a CA.


What we need to do here is to fix the PKI that we have already deployed and is serving a million Web merchants. Or rather, take out an insurance policy in case we need to fix it at short notice.


-----Original Message-----
From: saag-bounces@ietf.org on behalf of Nicolas Williams
Sent: Thu 2/26/2009 10:55 PM
To: Eric Rescorla
Cc: der Mouse; saag@ietf.org
Subject: Re: [saag] SHA-1 to SHA-n transition
 
On Thu, Feb 26, 2009 at 06:23:59PM -0800, Eric Rescorla wrote:
> I think you're rather overselling here: this only works well for
> account-based systems. There are plenty of cases where I need to
> connect to someone where I only know their name but I don't yet have
> an account (e.g., https://www.amazon.com). The mechanism that you
> provide doesn't work at all in this case. Rather, you need some
> third-party verifiable mechanism. I suppose one could argue that certs
> aren't a good such mechanism, but they're the one that TLS supports
> and I suspect any replacement would smell a lot like certs.

This is quite true.  I did not address enrolment, nor cases where there
is simply no relationship to be had.  A PKI would sure be nice; I just
don't believe we'll have something very close to one.

Regardless of what we do we're likely to just muddle through in the end.
_______________________________________________
saag mailing list
saag@ietf.org
https://www.ietf.org/mailman/listinfo/saag

v2.23.0 | Report a Bug | By Email