Re: [saag] Channel binding is great but not a silver bullet

Nicolas Williams <Nicolas.Williams@sun.com> Mon, 02 March 2009 18:46 UTC

Date: Mon, 02 Mar 2009 12:22:32 -0600
From: Nicolas Williams <Nicolas.Williams@sun.com>
To: Jeffrey Hutzelman <jhutz@cmu.edu>
Message-ID: <20090302182232.GW9992@Sun.COM>
References: <2788466ED3E31C418E9ACC5C3166155768B2CE@mou1wnexmb09.vcorp.ad.vrsn.com> <20090226143809.GF7227@mit.edu> <1235663917.3293.16.camel@localhost> <20090226165448.GK9992@Sun.COM> <tslprh5rlvt.fsf_-_@mit.edu> <200903021609.n22G9hIg014931@grapenut.srv.cs.cmu.edu> <1232E3FA9408ED0962D481EF@atlantis.pc.cs.cmu.edu> <20090302172641.GP9992@Sun.COM> <49AC1E0C.8040407@deployingradius.com> <F6521F9BD19F57BC7A9D029E@minbar.fac.cs.cmu.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <F6521F9BD19F57BC7A9D029E@minbar.fac.cs.cmu.edu>
User-Agent: Mutt/1.5.7i
Cc: saag@ietf.org, Sam Hartman <hartmans-ietf@mit.edu>, der Mouse <mouse@Rodents-Montreal.ORG>
Subject: Re: [saag] Channel binding is great but not a silver bullet
Precedence: list

On Mon, Mar 02, 2009 at 01:09:06PM -0500, Jeffrey Hutzelman wrote:
> --On Monday, March 02, 2009 06:57:32 PM +0100 Alan DeKok 
> <aland@deployingradius.com> wrote:
> 
> >  Take Starbucks, for example.  They have WiFi.  What do the employees
> >know about it?  Pretty much nothing.  What do the people who installed
> >it know about it?  Pretty much nothing.  What does the network operator
> >*running* the network know about it?  Pretty much nothing.
> 
> Actually, I believe in the specific case of Starbucks, the network operator 
> running the network is T-Mobile, and so probably actually _does_ know 
> something about it.  At least, at the macro level.
> 
> But the point stands -- coffee houses are not network operators and they 
> are not federated identity service providers.  They are purveyors of 
> concentrated liquid evil, and the occasional cup of tea.

Coffee houses most definitely sell Internet access (or just give it
away).  And the point wasn't specific to coffe houses.  Any access point
could provide an enrolment bootstrapping service via federation if the
market wanted that sort of service...

... but the market won't demand that because people will generally be
happy to use existing relationships, such as phone service, for
enrolment.  And those that don't will settle for using the existing
weak-PKI and will test for MITMs by trying to use their accounts from
many different places in the network.

I used coffee houses as an example of how anonymity could still be had
while solving the enrolment process without a PKI.  I didn't mean to
propose that as the primary form of enrolment.  Quite the contrary; in
practice using SMS should do quite well.

Nico
--

Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
[saag] SHA-1 to SHA-n transition Stephen Kent
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Hannes Tschofenig
Re: [saag] SHA-1 to SHA-n transition Stephen Kent
Re: [saag] SHA-1 to SHA-n transition Chandersekaran, Coimbatore S
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Yoav Nir
Re: [saag] SHA-1 to SHA-n transition Pasi.Eronen
Re: [saag] SHA-1 to SHA-n transition David McGrew
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Santosh Chokhani
Re: [saag] SHA-1 to SHA-n transition der Mouse
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Paul Hoffman
Re: [saag] SHA-1 to SHA-n transition David Harrington
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Michael O'Neill
Re: [saag] SHA-1 to SHA-n transition Theodore Tso
[saag] Deployment Deadlock Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Bill Sommerfeld
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
[saag] Channel binding is great but not a silver … Sam Hartman
Re: [saag] Channel binding is great but not a sil… Nicolas Williams
Re: [saag] Channel binding is great but not a sil… Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] Channel binding is great but not a sil… Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] Channel binding is great but not a sil… Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] Channel binding is great but not a sil… Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] Channel binding is great but not a sil… Alan DeKok
Re: [saag] Channel binding is great but not a sil… Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] Channel binding is great but not a sil… Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] Channel binding is great but not a sil… Alan DeKok
[saag] Or grow a real PKI (Re: SHA-1 to SHA-n tra… Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Stephen Kent
Re: [saag] Channel binding is great but not a sil… Stephen Kent
Re: [saag] Channel binding is great but not a sil… Stephen Kent
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Stephen Kent
Re: [saag] Channel binding is great but not a sil… Nicolas Williams
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Nicolas Williams
Re: [saag] Deployment Deadlock Pasi.Eronen
Re: [saag] Deployment Deadlock Hallam-Baker, Phillip
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Nicolas Williams
Re: [saag] SHA-1 to SHA-n transition Nicolas Williams
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Hallam-Baker, Phillip
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Stephen Kent
Re: [saag] Or grow a real PKI (Re: SHA-1 to SHA-n… Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Eric Rescorla
Re: [saag] SHA-1 to SHA-n transition Peter Gutmann
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Jeffrey Hutzelman
Re: [saag] SHA-1 to SHA-n transition Theodore Tso
Re: [saag] SHA-1 to SHA-n transition Hallam-Baker, Phillip
Re: [saag] SHA-1 to SHA-n transition Bill Sommerfeld
[saag] Credential portability RE: SHA-1 to SHA-n … Hallam-Baker, Phillip