Re: [therightkey] algorithm blacklisting

Jacob Appelbaum <jacob@appelbaum.net> Fri, 03 January 2014 17:46 UTC

Return-Path: <jacob@appelbaum.net>
X-Original-To: therightkey@ietfa.amsl.com
Delivered-To: therightkey@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 409501ADFFD for <therightkey@ietfa.amsl.com>; Fri, 3 Jan 2014 09:46:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.601
X-Spam-Level:
X-Spam-Status: No, score=-0.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FSL_HELO_BARE_IP_2=1.999, RCVD_IN_DNSWL_LOW=-0.7] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X2CsFgLI-m9E for <therightkey@ietfa.amsl.com>; Fri, 3 Jan 2014 09:46:26 -0800 (PST)
Received: from mail-lb0-f172.google.com (mail-lb0-f172.google.com [209.85.217.172]) by ietfa.amsl.com (Postfix) with ESMTP id A19E31ADBD2 for <therightkey@ietf.org>; Fri, 3 Jan 2014 09:46:25 -0800 (PST)
Received: by mail-lb0-f172.google.com with SMTP id x18so8318072lbi.17 for <therightkey@ietf.org>; Fri, 03 Jan 2014 09:46:17 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:mime-version:to:subject :references:in-reply-to:openpgp:content-type :content-transfer-encoding; bh=S9WKINkCRHGmsZVS148UMVqlZVVTD9YVTo+xQBnDsuc=; b=E9m1PROuI5U2E6H71HRXLlfXCmbNS1wR+S7TV08sQs9hZxpMdLGIWXC+1asOTHJjOd I28xP5bNduap8oLiw2vJyOhOgLe2B0buz5kWYYZl85hRV1FHlMn/A/X27Uh+qPgZ24xZ Rvn61pjcqse4E1YQSTuif6PNSeUBXrDKcyzicYhAHjlD8yHB+WwtKEyE4pi3Lj97sYIb jL2a/t7vxt7YK1N/IDVLrMxiB8ZEb+x46L6iGgukk+nzzELXCz+d2ittG4iJ7I65EF2O 0pTkfYlno0CXm04Dp3pO4csibDYy9z7AaMeQlAsKYWBoz5LH6R1ELqkHV6wSG+Qorgjl J86g==
X-Gm-Message-State: ALoCoQn32Nla62wh0f+LL2rRpcPf4/RJjyDq7w5qrAQzreOMARpj7Q0an8F0b3AcGLU/EfRPM7oL
X-Received: by 10.112.137.229 with SMTP id ql5mr416484lbb.76.1388771177263; Fri, 03 Jan 2014 09:46:17 -0800 (PST)
Received: from 127.0.0.1 (tor-exit3-readme.dfri.se. [171.25.193.235]) by mx.google.com with ESMTPSA id c8sm47493457lag.3.2014.01.03.09.46.15 for <therightkey@ietf.org> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 03 Jan 2014 09:46:16 -0800 (PST)
Message-ID: <52C6F679.3030509@appelbaum.net>
Date: Fri, 03 Jan 2014 17:42:17 +0000
From: Jacob Appelbaum <jacob@appelbaum.net>
MIME-Version: 1.0
To: therightkey@ietf.org
References: <22429D73-4EFC-4091-8F5B-BAD38968EA54@taoeffect.com> <CAMm+LwiMXdEnHqD0y_S-fP6081Tk=A=7-9LsJQhRuawmmmfdTg@mail.gmail.com> <FEFA307D-97E0-4C58-AB43-5B9AB8E8FC70@taoeffect.com> <CAMm+Lwjwww28tV_qvqQVH3xo1xqvjb6z++258+LOqgxWn-Oh9w@mail.gmail.com> <52B88104.9040607@appelbaum.net> <52C2D54F.8000209@comodo.com> <52C45CDC.5020608@appelbaum.net> <96EF8E55-5860-4534-B370-83395C3985D4@vpnc.org> <52C5B67D.4050301@appelbaum.net> <A8E9A208-35FA-495F-8130-C08545011B59@vpnc.org> <52C6A819.4040509@mnt.se>
In-Reply-To: <52C6A819.4040509@mnt.se>
OpenPGP: id=4193A197
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Subject: Re: [therightkey] algorithm blacklisting
X-BeenThere: therightkey@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <therightkey.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/therightkey>, <mailto:therightkey-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/therightkey/>
List-Post: <mailto:therightkey@ietf.org>
List-Help: <mailto:therightkey-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/therightkey>, <mailto:therightkey-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Jan 2014 17:46:27 -0000

Leif Johansson:
> On 2014-01-02 23:50, Paul Hoffman wrote:
>> On Jan 2, 2014, at 10:57 AM, Jacob Appelbaum <jacob@appelbaum.net>
>> wrote:
>> 
>>> I control the private key for the rouge CA that we created.
>> True. However, that rogue CA is not trusted in any root pile,
>> right? You holding a private key for a trusted CA was,
>> appropriately a big deal. You holding a private key for an
>> untrusted CA is uninteresting.
>> 
> 
> My understanding of what Jakob wrote is that he holds the key for a 
> subordinate CA. Unless the CA that "signed" that subordinate has
> been removed from trust lists then that subordinate would still be
> useful, yes.

Yes, that is correct. And only people like Firefox actually ship it and
explicitly distrust it, I believe. Perhaps others have followed since
our original research. There are a few reasons a browser or program may
not trust it - generally speaking, the expiry date is what we added to
ensure that it wouldn't be abused. That is easy to solve though - just
attack NTP first! :-)

All the best,
Jacob