Re: [TLS] shibboleth and the nonce

Michael StJohns <msj@nthpermutation.com> Thu, 24 July 2014 21:35 UTC

Return-Path: <msj@nthpermutation.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7CBD81B28D1 for <tls@ietfa.amsl.com>; Thu, 24 Jul 2014 14:35:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ImjHBdNVkehR for <tls@ietfa.amsl.com>; Thu, 24 Jul 2014 14:35:12 -0700 (PDT)
Received: from mail-we0-f174.google.com (mail-we0-f174.google.com [74.125.82.174]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 41A351B280C for <tls@ietf.org>; Thu, 24 Jul 2014 14:35:12 -0700 (PDT)
Received: by mail-we0-f174.google.com with SMTP id x48so3338033wes.19 for <tls@ietf.org>; Thu, 24 Jul 2014 14:35:10 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:references:in-reply-to:content-type :content-transfer-encoding; bh=mMMHkJc2dJlRAcZ7d0KgpFAvcYe3rfHw5JJrjGKpEbw=; b=EGpa8/i4KBKzHBi7NtGZmK2q8LMv0qaKEKBImBzrAVpy2IqEeuo6kjN9EYcBBuz9ZQ H1UBXZEefKm1NuyWgKKVczmK2BF9HGcz7pOhOIBafIFiVYaSEJ1raS/0WqRnu7hlQbZ/ jrKEA2oWkMDjUox7A2bxeWskPq1rsq5sOwftdyXDE56Nd6lS+rrL/d6RAL0rdiRF9ZlJ KLU46XLffIv82ULfvjcjeEjvcOzLQlsUVg8E4Mq8/kEI/Gp9s1pHKsluhKtgHFAs9W8U 9zOFPSiCnkVc8UOemeXXlERtmIxcjX1uEgY+JoT4JM05s6R7X9C5np6/pDvEB0n8iclt Vfxw==
X-Gm-Message-State: ALoCoQnXSmo+u1m3xPeZZIGkrWiXKE32v9p/sBUhjN6t6bZFOy4J71sDTiwlUx65fUmuorzzNHbk
X-Received: by 10.194.62.140 with SMTP id y12mr16352720wjr.27.1406237710909; Thu, 24 Jul 2014 14:35:10 -0700 (PDT)
Received: from [31.133.166.226] (dhcp-a6e2.meeting.ietf.org. [31.133.166.226]) by mx.google.com with ESMTPSA id m3sm55854wik.7.2014.07.24.14.35.09 for <tls@ietf.org> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 24 Jul 2014 14:35:10 -0700 (PDT)
Message-ID: <53D17BE5.8010905@nthpermutation.com>
Date: Thu, 24 Jul 2014 17:34:29 -0400
From: Michael StJohns <msj@nthpermutation.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: tls@ietf.org
References: <CABkgnnXJ4c6DqZPG+Y5m1BRX+hCjVSg4xi40po4AOuU1F4TFQA@mail.gmail.com> <CAMfhd9Uca1drheHFywqCE-ZE8tzRT3g03qBTZw7YpP8ECZeaiQ@mail.gmail.com> <53D176E0.7060002@amacapital.net>
In-Reply-To: <53D176E0.7060002@amacapital.net>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/BNjJCKxSXwch_DISvaDSAlhNeF4
Subject: Re: [TLS] shibboleth and the nonce
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Jul 2014 21:35:13 -0000

On 7/24/2014 5:13 PM, Andy Lutomirski wrote:
> I thought that the concern was that the "crypto module" (being the
> >thing that is validated) needs to ensure that nonces don't repeat

To be pedantic - it's important the the combination of key + nonce 
doesn't repeat.  If you change the key, you can reuse the nonce and vice 
versa.

Mike