IETF Logo Mail Archive

Re: [lamps] Robert Wilton's No Objection on draft-ietf-lamps-ocsp-nonce-04: (with COMMENT)

"Rob Wilton (rwilton)" <rwilton@cisco.com> Tue, 08 September 2020 09:45 UTC

Return-Path: <rwilton@cisco.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35C543A11CD; Tue, 8 Sep 2020 02:45:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.597
X-Spam-Level:
X-Spam-Status: No, score=-9.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=EtR6xp64; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=abhS9EDQ
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7mcIJjgKK6jF; Tue, 8 Sep 2020 02:45:53 -0700 (PDT)
Received: from alln-iport-5.cisco.com (alln-iport-5.cisco.com [173.37.142.92]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2EC063A0858; Tue, 8 Sep 2020 02:45:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14516; q=dns/txt; s=iport; t=1599558353; x=1600767953; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=HluzodtwcTRToM9QV6hxQ6hJnEPKhf5K7UX19tWPaNg=; b=EtR6xp64iwa22aME5/dIAXF1QMLWBbf4zW8++B8ZzxNdPmho/yTJQ3fK Vz0pZpYoxh34rd2EmstFvLg2cKmwSjzgP8ibhMAbrfqkhCS1b73Vkfo8I CCY13waKVB5hKbyPQewSpgLnyu/CLkgGg14AT/iaCwqqINB/7KAzKKUsV s=;
IronPort-PHdr: 9a23:FNYFhRIJPBA792sQn9mcpTVXNCE6p7X5OBIU4ZM7irVIN76u5InmIFeGvqU/lFbNWozf9/VChvbJtLrjQioL5pPS+HwBcZkZURgDhI1WmgE7G8eKBAX9K+KidC01GslOFToHt3G2OERYAoDyMlvVpHDh9TcWHRz7KQ1zK/jqHZTRlIK80OXhs5HWah9D0Ty6Z746JR6qrALX488Rh4YHSO4xxxLFr2EOdf5RwDZjJEmYmFD34cLj8Q==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0AVCADDUVdf/4sNJK1fHgEBCxIMggQLgSMvUQdwWS8sCoQug0YDjW6UA4RugS6BJQNVCwEBAQwBASUIAgQBAYRLAheBegIkNgcOAgMBAQsBAQUBAQECAQYEbYVcDIVyAQEBAQMSEQoTAQE3AQ8CAQgOAwQBASgDAgICMBQJCAIEDgUIGoMFgX5NAy4BAwunBwKBOYhhdoEygwEBAQWBMwGDThiCEAMGgTiCcYNohlEbgUE/gRFDgk0+hCUaKwmCYTOCLY99gmI8hmqcaQqCZYhojEqFIYMJjyOOKp0flQkCBAIEBQIOAQEFgVoBMyqBLXAVgyRQFwINjh8JGhSDOoUUhUJ0DSoCBgEJAQEDCXyNbAGBEAEB
X-IronPort-AV: E=Sophos;i="5.76,405,1592870400"; d="scan'208,217";a="550976427"
Received: from alln-core-6.cisco.com ([173.36.13.139]) by alln-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 08 Sep 2020 09:45:52 +0000
Received: from XCH-RCD-004.cisco.com (xch-rcd-004.cisco.com [173.37.102.14]) by alln-core-6.cisco.com (8.15.2/8.15.2) with ESMTPS id 0889jpIC025884 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 8 Sep 2020 09:45:51 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-RCD-004.cisco.com (173.37.102.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 8 Sep 2020 04:45:51 -0500
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 8 Sep 2020 04:45:50 -0500
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Tue, 8 Sep 2020 04:45:50 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JOhBKYp1VzE9MR9rzcDJFaZ+tFCzer1MVcO7OfCSzZrHjdWHZ4UXVDStngmwe5vHbkPI+zIGBL1VHbS3JeDPWSVausfJngp9KqeKjtThkZsaDighr4eLc5HB0GV921XjHy+qcK7A3YqqZTug+yWVpl5xVCknS8WYzTRI2Sow0Hj4xPctXa1lMzy6NWusN5qKUvtXU4QyAFGGU/EbhxMhOgNWRvzCLEUg+GRCZF5QYl9p71EltMbOjpf78Nk9DvLPZojlHPkmEs7yj7l8iktl4gzQRfZPOO4QJUK9itFTNlBnhlE1gaxvhNhZ2mwx5Ssu/zO0L2ZlJvYTchghF/A9Gw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HluzodtwcTRToM9QV6hxQ6hJnEPKhf5K7UX19tWPaNg=; b=GtguYyQSCG8GIhJWeYKeZUnaA/fCkL+KL0TCLVEXCx7O7KwpavUhNvqDqrwU2jGRATA3b/1fZSyJXnNQDjvr63FNY2wmQi1E/HoBn7VHL+/zQNgW+b8w5DeV+JrEHJQYVmes9HXc+Mb64uRg3sjo9imssWN/sNpZMkbkBQSSyyWUcY8lusYIfXaSlHsshL50ma26DGw06E+0cEY8ZyDhu5weiI3itIPxdOb8ab3CamdHEQJ6Rppd7RL7alUwaNXZaY8ATB9i8uGafiSBoxEv1bcMnlPcJuS/KFtZT2J8nJ35ne9WuK6qCHE2g6Hp9DQazIwmVryJgwg9QlcN53wBmw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HluzodtwcTRToM9QV6hxQ6hJnEPKhf5K7UX19tWPaNg=; b=abhS9EDQ7jRCgkBkgm6R7nJ1N4igsNzuJqjRWzUpOCP01wA2fWCuPhRUJcJ1p1oOoYaYbQ2O3xaLfjduutC5oPRKY6fa3a+N1DYuLlbOndbpPkX1p/89amqCE0HRbrcSmxxa3KBGYXYbxBNQGsmOXRZ5ouYSOTo/74JqttyrTfE=
Received: from MN2PR11MB4366.namprd11.prod.outlook.com (2603:10b6:208:190::17) by BL0PR11MB3059.namprd11.prod.outlook.com (2603:10b6:208:30::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3370.16; Tue, 8 Sep 2020 09:45:49 +0000
Received: from MN2PR11MB4366.namprd11.prod.outlook.com ([fe80::4d3f:f3e:add7:dfc1]) by MN2PR11MB4366.namprd11.prod.outlook.com ([fe80::4d3f:f3e:add7:dfc1%3]) with mapi id 15.20.3348.019; Tue, 8 Sep 2020 09:45:49 +0000
From: "Rob Wilton (rwilton)" <rwilton@cisco.com>
To: Mohit Sahni <msahni@paloaltonetworks.com>
CC: The IESG <iesg@ietf.org>, "draft-ietf-lamps-ocsp-nonce@ietf.org" <draft-ietf-lamps-ocsp-nonce@ietf.org>, "lamps-chairs@ietf.org" <lamps-chairs@ietf.org>, LAMPS WG <spasm@ietf.org>, Russ Housley <housley@vigilsec.com>
Thread-Topic: Robert Wilton's No Objection on draft-ietf-lamps-ocsp-nonce-04: (with COMMENT)
Thread-Index: AQHWhQrzUYwmEKLm20unZNpU1CsmEKldq2OAgADF+kA=
Date: Tue, 08 Sep 2020 09:45:49 +0000
Message-ID: <MN2PR11MB4366B4D31462CE76A6F2431FB5290@MN2PR11MB4366.namprd11.prod.outlook.com>
References: <159947849020.7325.18315367366814911179@ietfa.amsl.com> <CAMRcsGRF57=-FdfTet7dOtMOhMkP-AArUv=6OT0eWzFK91uunw@mail.gmail.com>
In-Reply-To: <CAMRcsGRF57=-FdfTet7dOtMOhMkP-AArUv=6OT0eWzFK91uunw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: paloaltonetworks.com; dkim=none (message not signed) header.d=none;paloaltonetworks.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [82.15.79.32]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8826786c-9fdc-4c68-5baf-08d853dbf7b3
x-ms-traffictypediagnostic: BL0PR11MB3059:
x-microsoft-antispam-prvs: <BL0PR11MB305947F2A5AA217AA2BACDECB5290@BL0PR11MB3059.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: qzq2qNSlVPxR589KKF1rwAXPlOM22He4FlRqZueyXa98pmhbOw1IdRNbx5JU8BHP1X1Hc9oc/dyf4iEpL/B8WPAdIPNLQMtWdAWLbt1XsZW03ojeyQsdyVw6qIAAr7X8UkYibQljvCfTw7ZvXQn9EbVYQtl11zL5K1SJu3qmsEP3dTJqvD/HzU2kvarXnKBmv+ChVBohi1i9RV1w4AzZWQ/p6J5RozvUAVvDKm+/y3e2e/EpEa65Vkl0STCSfMm5XxKVnvx2lopGWAcCnuUnYyG0MmHN5dUqMjQxBymA42cNbW35an/L56iBuy0pQ68tActbAmuIhTROz6GWO8RPu5SGWhLmhUvLgPX9bFpJGbEorh5qwl759hEWui+C9O4f9TMK7ixvXwD8gVe7a+ZL2A==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4366.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(346002)(376002)(39860400002)(366004)(136003)(396003)(6916009)(66476007)(64756008)(76116006)(66946007)(8936002)(66556008)(66446008)(966005)(83380400001)(166002)(33656002)(9326002)(5660300002)(71200400001)(52536014)(7696005)(316002)(6506007)(53546011)(26005)(186003)(2906002)(9686003)(55016002)(8676002)(86362001)(478600001)(4326008)(54906003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_MN2PR11MB4366B4D31462CE76A6F2431FB5290MN2PR11MB4366namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MN2PR11MB4366.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8826786c-9fdc-4c68-5baf-08d853dbf7b3
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Sep 2020 09:45:49.1175 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jqRBfqibC1dHPRGHn8w8UdKLzieRiow9bqFFjNpkeDuruf7aDxJPxW/pebKScNgu9HMwqLSqQE9hZJPPLnFhlg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR11MB3059
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.14, xch-rcd-004.cisco.com
X-Outbound-Node: alln-core-6.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/2Th0eZ57vhIVO4NQ1ruKCxpRXUQ>
Subject: Re: [lamps] Robert Wilton's No Objection on draft-ietf-lamps-ocsp-nonce-04: (with COMMENT)
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Sep 2020 09:45:55 -0000

Hi Mohit,

I’m not sure that this really matters, but I was hoping for a calculation that shows that a smaller nonce has too much risk or being guessed, or some guidance or documentation that indicates that nonces should generally be X bits long.  But perhaps there is just common wisdom over what size is advisable.

E.g., this stackoverflow answer (which is 10 years old and may not be right) suggests that an 8 octet (64 bit) nonce is generally sufficient, but now we are going with 32 octets here.  I guess that I am wondering whether the extra octets give practical additional security over a shorter nonce … https://security.stackexchange.com/questions/1952/how-long-should-a-random-nonce-be

A separate issue that we may want to consider relates to use of the word/term “nonce”.  In British English this term is slang for a paedophile, https://dictionary.cambridge.org/dictionary/english/nonce

I’m not saying that we should necessarily change this, but we might want to consider whether there is an alternative equivalent term that could be used instead.

Regards,
Rob


From: Mohit Sahni <msahni@paloaltonetworks.com>
Sent: 07 September 2020 22:06
To: Rob Wilton (rwilton) <rwilton@cisco.com>
Cc: The IESG <iesg@ietf.org>; draft-ietf-lamps-ocsp-nonce@ietf.org; lamps-chairs@ietf.org; LAMPS WG <spasm@ietf.org>; Russ Housley <housley@vigilsec.com>
Subject: Re: Robert Wilton's No Objection on draft-ietf-lamps-ocsp-nonce-04: (with COMMENT)

Hi Rob,
Thanks for reviewing the draft. The Nonce in an OCSP request is not used to derive any further keys or hashes (although it becomes part of the signed response), rather just copied back in the response to indicate that server has generated a fresh response. The recommended value of random 32 octets was chosen to make sure Nonce is not small enough to be predicted by anyone (to protect the clients) and not large enough to be misused to exploit an OCSP responder.

Based on Barry's feedback, I will modify the draft to specify that the Clients that follow this document MUST only use a nonce of length 32 octets, I hope that will make it cleaner to implement the specification.

Regards,
Mohit

On Mon, Sep 7, 2020 at 4:34 AM Robert Wilton via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>> wrote

----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Hi,

This document is simple and easy to read and understand, to thank your for that.

As someone with little security knowledge, I was left wondering how the
determination of what length nonce is required is made?  E.g., is there some
calculation that is performed that concludes that 16 bytes is okay, but 32 is
better and any longer is pointless?  Or is that described in another document
that could be referenced (perhaps this is covered by the last parts of rfc4086)?

Hence, my comment on this document is whether it would be helpful to have any
background text that explains why the particular length(s) of nonce has been
chosen.

Regards,
Rob

v2.23.0 | Report a Bug | By Email