IETF Logo Mail Archive

Re: Update of GS2

Nicolas Williams <Nicolas.Williams@sun.com> Thu, 29 June 2006 16:59 UTC

Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k5TGxpIN096105; Thu, 29 Jun 2006 09:59:51 -0700 (MST) (envelope-from owner-ietf-sasl@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id k5TGxp3T096104; Thu, 29 Jun 2006 09:59:51 -0700 (MST) (envelope-from owner-ietf-sasl@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-sasl@mail.imc.org using -f
Received: from brmea-mail-3.sun.com (brmea-mail-3.Sun.COM [192.18.98.34]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k5TGxgMU096073 for <ietf-sasl@imc.org>; Thu, 29 Jun 2006 09:59:43 -0700 (MST) (envelope-from nw141292@binky.Central.Sun.COM)
Received: from centralmail4brm.central.Sun.COM ([129.147.62.198]) by brmea-mail-3.sun.com (8.13.6+Sun/8.12.9) with ESMTP id k5TGxg01000756 for <ietf-sasl@imc.org>; Thu, 29 Jun 2006 10:59:42 -0600 (MDT)
Received: from binky.Central.Sun.COM (binky.Central.Sun.COM [129.153.128.104]) by centralmail4brm.central.Sun.COM (8.13.6+Sun/8.13.6/ENSMAIL,v2.2) with ESMTP id k5TGxf1p010608 for <ietf-sasl@imc.org>; Thu, 29 Jun 2006 10:59:42 -0600 (MDT)
Received: from binky.Central.Sun.COM (localhost [127.0.0.1]) by binky.Central.Sun.COM (8.13.6+Sun/8.13.6) with ESMTP id k5TGxfLd011106; Thu, 29 Jun 2006 11:59:41 -0500 (CDT)
Received: (from nw141292@localhost) by binky.Central.Sun.COM (8.13.6+Sun/8.13.6/Submit) id k5TGxfpe011105; Thu, 29 Jun 2006 11:59:41 -0500 (CDT)
Date: Thu, 29 Jun 2006 11:59:41 -0500
From: Nicolas Williams <Nicolas.Williams@sun.com>
To: Simon Josefsson <jas@extundo.com>
Cc: ietf-sasl@imc.org
Subject: Re: Update of GS2
Message-ID: <20060629165941.GV5688@binky.Central.Sun.COM>
Mail-Followup-To: Simon Josefsson <jas@extundo.com>, ietf-sasl@imc.org
References: <87fyhoqmkc.fsf@latte.josefsson.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <87fyhoqmkc.fsf@latte.josefsson.org>
User-Agent: Mutt/1.5.11
Sender: owner-ietf-sasl@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-ID: <ietf-sasl.imc.org>
List-Unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>

On Thu, Jun 29, 2006 at 12:32:35PM +0200, Simon Josefsson wrote:
> 5.  Channel Bindings
> 
>    [[This section is tentative further discussion on the topic.  This
>    was written to provide an example of how the details of how one
>    approach to this concept could look like.  There are other approaches
>    that may be preferable.]]
> 
>    The GS2 mechanism provide its own token field for channel bindings,
>    in addition to the "chan_binding" parameter in the GSS-API context
>    functions.  The reason for this is that the GS2 mechanism wish to
>    provide an option to proceed even if the channel bindings does not
>    match.  The GSS-API framework specifies that authentication cannot
>    proceed if channel bindings does not match.  The GSS-API framework
>    also does not specify the kind of privacy layer the channel binding
>    should be transferred under, thus making it possible for attackers to
>    modify it to always make channel binding negotiation succeed.

Strike the last sentence.  It's not useful -- we only need integrity
protection for channel binding data, and GSS-API mechanisms that support
channel binding do provide that.

>    The client can select, using the "Native Channel Bindings" bit,
>    whether it wishes to use the "chan_bindings" parameter in the GSS-API
>    layer or not.  If it wishes to use this, it is not possible to
>    continue after a failed channel binding negotiation.

I don't understand why we should use the GSS-API channel binding
facility at all given that we need to build a SASL-specific channel
binding facility to support the semantics we want.

I think this text would be simplified if it required that
GSS_C_NO_CHANNEL_BINDINGS be used for channel bindings in the GSS_Init/
Accept_sec_context() calls.

>    For TLS, the channel binding data is specified in the next section.
>    For other security layers, channel binding data will have to
>    specified elsewhere, and this specification will have to be updated
>    with explicit considerations.
> 
>    [[All channel bindings should go into a separate document.]]

I've resubmitted draft-ietf-nfsv4-channel-bindings-04.txt, it doesn't
have quite the txt below, but we can modify it.

> 5.1.  Name Of Tls Channel For Use As Channel Binding

...

Nico
--

v2.23.0 | Report a Bug | By Email