[secdir] Secdir review of draft-altmann-tls-channel-bindings-10

Magnus Nyström <magnusn@gmail.com> Wed, 05 May 2010 05:30 UTC

Return-Path: <magnusn@gmail.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id DE3E53A6AF4; Tue, 4 May 2010 22:30:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.302
X-Spam-Status: No, score=0.302 tagged_above=-999 required=5 tests=[BAYES_50=0.001, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id 6X3Q2Uxf3kLs; Tue, 4 May 2010 22:30:33 -0700 (PDT)
Received: from mail-gw0-f44.google.com (mail-gw0-f44.google.com []) by core3.amsl.com (Postfix) with ESMTP id 9C7CE28C11B; Tue, 4 May 2010 22:24:12 -0700 (PDT)
Received: by gwaa12 with SMTP id a12so2133676gwa.31 for <multiple recipients>; Tue, 04 May 2010 22:23:32 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:date:message-id :subject:from:to:content-type; bh=+zpIhC2ROpeVXQo0bmDVGX2a4nBJqPQHnvBZGRxrnYo=; b=LDCpOxJE5qWJRKSi9gU0uKK2Xr62NzgncQPCZNc+eAivKwDWg4d0nFKZxh8PozEDVg 0+cgLn3Hbl1CUSLMlT0fAAcrUp8SXteBJCUyLSK7YPgZsSBm7AEtZA3l8/BW9EBow6kW UlUkHmWa7vLg2s/uyEejJSj5ZydjyEseLoAoQ=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; b=Xu11s6Ciq6tgXFEwmOIPQyuDKDTf6lWoz/6htsKAghqeK5v+AiesLA6CqHCgPGzfcI a3ZeN1kDW0/ajoH8SkcnHxMf2owO5PFxDMmdfrGbPseBoBXVYo+je75B3EeAOQHPCFBU dHd7qGUDjrF10BReTpIVQ5ch8MxGejudD4rvU=
MIME-Version: 1.0
Received: by with SMTP id a22mr954013anq.0.1273037012395; Tue, 04 May 2010 22:23:32 -0700 (PDT)
Received: by with HTTP; Tue, 4 May 2010 22:23:32 -0700 (PDT)
Date: Tue, 04 May 2010 22:23:32 -0700
Message-ID: <i2k2f57b9e61005042223k47193623m863c28b9136cce96@mail.gmail.com>
From: Magnus Nyström <magnusn@gmail.com>
To: secdir@ietf.org, iesg@ietf.org, draft-altmann-tls-channel-bindings@tools.ietf.org
Content-Type: multipart/alternative; boundary="0016e6d26d55e8e5c20485d20612"
Subject: [secdir] Secdir review of draft-altmann-tls-channel-bindings-10
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 May 2010 05:30:37 -0000

I have reviewed this document as part of the security directorate's ongoing
effort to review all IETF documents being processed by the IESG.  These
comments were written primarily for the benefit of the security area
directors.  Document editors and WG chairs should treat these comments just
like any other last call comments.

This document defines channel binding types for Transport Layer Security
(TLS), in accordance with RFC 5056.

The review is a follow-up of the review I made back in October 2007. Since
then, the unfortunate situation with a delta between an early implementation
of the "tls-unique" channel binding and the description in the IANA
registration was discovered and this prompted several updates to the draft.

As far as I can tell, the current draft solves the issue by adopting the
early implementation. It also contains several prominent warnings to
implementers about the situation.

Two of my comments from my review of -07 still stands:

1. Section 2 should reference RFC 5056, not RFC 5246. This is a bug.
2. It would have been nice with an example of an authentication mechanism
using one of the channel bindings in this document, perhaps in the form of
an illustrative appendix.

-- Magnus