Re: [stir] Canonicalization vs. Comparison
Hadriel Kaplan <hadriel.kaplan@oracle.com> Mon, 03 March 2014 19:09 UTC
Return-Path: <hadriel.kaplan@oracle.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 408781A01C1 for <stir@ietfa.amsl.com>; Mon, 3 Mar 2014 11:09:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.748
X-Spam-Level:
X-Spam-Status: No, score=-4.748 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.547, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PPALsOgvxbYZ for <stir@ietfa.amsl.com>; Mon, 3 Mar 2014 11:08:58 -0800 (PST)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) by ietfa.amsl.com (Postfix) with ESMTP id 6B9491A02C7 for <stir@ietf.org>; Mon, 3 Mar 2014 11:08:58 -0800 (PST)
Received: from acsinet21.oracle.com (acsinet21.oracle.com [141.146.126.237]) by userp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with ESMTP id s23J8nUE008962 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 3 Mar 2014 19:08:51 GMT
Received: from aserz7021.oracle.com (aserz7021.oracle.com [141.146.126.230]) by acsinet21.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id s23J8kkD024716 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 3 Mar 2014 19:08:47 GMT
Received: from abhmp0002.oracle.com (abhmp0002.oracle.com [141.146.116.8]) by aserz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id s23J8k69024710; Mon, 3 Mar 2014 19:08:46 GMT
Received: from [10.207.198.25] (/31.55.56.195) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 03 Mar 2014 11:08:46 -0800
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 7.1 \(1827\))
From: Hadriel Kaplan <hadriel.kaplan@oracle.com>
In-Reply-To: <00C069FD01E0324C9FFCADF539701DB3BBF3AF02@sc9-ex2k10mb1.corp.yaanatech.com>
Date: Mon, 03 Mar 2014 14:08:43 -0500
Content-Transfer-Encoding: quoted-printable
Message-Id: <CA69600C-422B-484F-9229-AC6068BE165A@oracle.com>
References: <CAL02cgQtoHm2w3EWOr_66TANOk3pRoaUDmYA5GdUk6=2-jV5OA@mail.gmail.com> <ED9758F5-947F-4CA3-8C42-382D7E31CC8B@brianrosen.net> <E42CCDDA6722744CB241677169E83656025CDFF2@MISOUT7MSGUSR9I.ITServices.sbc.com> <00C069FD01E0324C9FFCADF539701DB3BBF3AF02@sc9-ex2k10mb1.corp.yaanatech.com>
To: Michael Hammer <michael.hammer@yaanatech.com>
X-Mailer: Apple Mail (2.1827)
X-Source-IP: acsinet21.oracle.com [141.146.126.237]
Archived-At: http://mailarchive.ietf.org/arch/msg/stir/-5qKij6lsBp1Zi8xJhWt4yef60w
Cc: "rlb@ipv.sx" <rlb@ipv.sx>, "stir@ietf.org" <stir@ietf.org>, "md3135@att.com" <md3135@att.com>, "br@brianrosen.net" <br@brianrosen.net>
Subject: Re: [stir] Canonicalization vs. Comparison
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Mar 2014 19:09:00 -0000
On Mar 3, 2014, at 9:50 AM, Michael Hammer <michael.hammer@yaanatech.com> wrote: > Richard, > > The inclusion of the golden object in the message is a waste, since the > receiver must re-generate it anyway. > The receiver cannot rely on just the golden object, since that could be > spoofed. > It can rely only on the one it generates itself, and can pretty much ignore > the one in the message. > So, this really devolves to just one case. Actually there were three benefits to it, identified in draft-kaplan-stir-ikes-out-00: 1) It lets the verifier perform a very quick fail check using just strcmp(). In other words, if the golden object it generates from the To/From don't string-match the one in the Identity-X header, then it can go ahead and fail the verification immediately without bothering to get the cert, do the crypto, etc. IF the strings match, then it has to keep doing the rest of the work to verify it. 2) It helps debug problems for the folks running the systems. 3) It provides a way to do a "if-then-else" conditional, in case there are multiple potential golden objects. I raised that at the mic today, but kinda forgot when exactly that might happen; I just re-read the IKES draft and it points out that in call-forwarding scenarios the verifier may well have multiple To/From canonical numbers to choose from. > Also, there is a danger that someone takes a short cut and does not validate > the included golden object. Yup. The implementor has to follow the MUSTs. Not much we can do about them not doing so. :( -hadriel
- [stir] Canonicalization vs. Comparison Richard Barnes
- Re: [stir] Canonicalization vs. Comparison Brian Rosen
- Re: [stir] Canonicalization vs. Comparison DOLLY, MARTIN C
- Re: [stir] Canonicalization vs. Comparison Michael Hammer
- Re: [stir] Canonicalization vs. Comparison Hadriel Kaplan
- Re: [stir] Canonicalization vs. Comparison Hadriel Kaplan
- Re: [stir] Canonicalization vs. Comparison Richard Shockey
- [stir] Certificates for STIR Mishra, Sanjay
- Re: [stir] Canonicalization vs. Comparison Anton Baskov