Re: [Trans] Write-up of the "Strict CT" variant
Ryan Sleevi <ryan-ietf@sleevi.com> Wed, 07 June 2017 15:31 UTC
Return-Path: <ryan-ietf@sleevi.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3EE04129B8B for <trans@ietfa.amsl.com>; Wed, 7 Jun 2017 08:31:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.298
X-Spam-Level:
X-Spam-Status: No, score=-4.298 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, RCVD_IN_SORBS_SPAM=0.5, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sleevi.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gUlHSDO1pyVo for <trans@ietfa.amsl.com>; Wed, 7 Jun 2017 08:31:12 -0700 (PDT)
Received: from homiemail-a88.g.dreamhost.com (sub4.mail.dreamhost.com [69.163.253.135]) (using TLSv1.1 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 752CE129521 for <trans@ietf.org>; Wed, 7 Jun 2017 08:31:12 -0700 (PDT)
Received: from homiemail-a88.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a88.g.dreamhost.com (Postfix) with ESMTP id CC125A007F02 for <trans@ietf.org>; Wed, 7 Jun 2017 08:31:11 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=sleevi.com; h=mime-version :in-reply-to:references:from:date:message-id:subject:to:cc :content-type; s=sleevi.com; bh=ccP2bYIDurRWu7gfm/iFkOHvm1w=; b= sKWM7l23fOB5SP1GhfmFbbUvolwjx5kXdVzoWH70dUcaB/HSzgaX3HAqdGv2ONoM 6f7NrSuo/pVmaFy9C4fooFYejI4SzWBKCoattBtsOIl9tUBkfsc7okF7VxIXKWvz e8KPV7u5R2BDw/Edc1XXWYGhqmPzolzEnvoj/Td3V/s=
Received: from mail-wm0-f53.google.com (mail-wm0-f53.google.com [74.125.82.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) (Authenticated sender: ryan@sleevi.com) by homiemail-a88.g.dreamhost.com (Postfix) with ESMTPSA id 9F4E8A007F01 for <trans@ietf.org>; Wed, 7 Jun 2017 08:31:11 -0700 (PDT)
Received: by mail-wm0-f53.google.com with SMTP id x70so60452906wme.0 for <trans@ietf.org>; Wed, 07 Jun 2017 08:31:11 -0700 (PDT)
X-Gm-Message-State: AODbwcBiI+MeX8mJNAuSS4lx6Lc/XHJlMm192Jix6oTpbDRw4+/vjZr6 CqJFjOVgf8J1U0/86OeUMtztYDgHfA==
X-Received: by 10.28.220.212 with SMTP id t203mr214631wmg.6.1496849470172; Wed, 07 Jun 2017 08:31:10 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.128.200 with HTTP; Wed, 7 Jun 2017 08:31:09 -0700 (PDT)
In-Reply-To: <3EA1C32B-B6A6-44BA-8E10-7053684B1732@kth.se>
References: <CALzYgEeUCmj4BgY7uKdMnsvTcbvfAunquuqHxD7FxuzZxY1=Fg@mail.gmail.com> <0dd84938-9625-c6c8-5f31-d5d0d0683c5c@eff.org> <D1C7ADE2-DA28-4F29-A0AB-482435CD2B15@kth.se> <CAErg=HGxU7dnd1kifeCph8jTR6eLJn2GZ9=KehiyLpLgwTne=g@mail.gmail.com> <3EE25497-89C9-47D3-B65C-836087F66344@kth.se> <CAErg=HGHRWSytrbU_pu0qj_q3w-FJLjnEYC7vefr0-AOHcVhpA@mail.gmail.com> <3EA1C32B-B6A6-44BA-8E10-7053684B1732@kth.se>
From: Ryan Sleevi <ryan-ietf@sleevi.com>
Date: Wed, 07 Jun 2017 11:31:09 -0400
X-Gmail-Original-Message-ID: <CAErg=HE7i2TtxK9oG0453LL1P1A7k8B=SpkjVGydJZ76=V7+HQ@mail.gmail.com>
Message-ID: <CAErg=HE7i2TtxK9oG0453LL1P1A7k8B=SpkjVGydJZ76=V7+HQ@mail.gmail.com>
To: Magnus Ahltorp <map@kth.se>
Cc: Ryan Sleevi <ryan-ietf@sleevi.com>, Eran Messeri <eranm@google.com>, "trans@ietf.org" <trans@ietf.org>, Jacob Hoffman-Andrews <jsha@eff.org>
Content-Type: multipart/alternative; boundary="001a114b2d6ef3ec490551606c9b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/7nJI9J47MzQrM87A1uDeqdxWbXo>
Subject: Re: [Trans] Write-up of the "Strict CT" variant
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Jun 2017 15:31:14 -0000
On Wed, Jun 7, 2017 at 10:36 AM, Magnus Ahltorp <map@kth.se> wrote: > > But, in the same sentence, Jacob wrote: "IIUC, logs are allowed to produce > infinite SCTs for the same cert once they've logged it", which is what I > based my answer on. If the log disregards all rules and doesn't care about > being discovered as a bad log, surely it wouldn't care about whether it was > allowed to produce many SCTs for the same cert or not. Which means that > restricting that wouldn't solve that problem. > I think there may be some disconnect here still, unfortunately. For example, in your response, you note "and doesn't care about being discovered about a bad log". The concerns raised - with respect to the production of SCTs and the deferring of inclusion proof fetching on the basis of that timestamp - were to highlight that it creates a scenario in which a bad log would not be discovered using the scheme, as proposed. This is why it was highlighted that 'someone' would have to examine the SCTs produced - including those _before_ the 'must include inclusion proof' time - so make sure that those SCTs were, in fact, logged. Which brings us back to the original problem, of clients checking inclusion proofs of SCTs asynchronously/out-of-band (and/or gossiping them), which suggests that a solution of stapled inclusion proofs (with a 'grace period') doesn't solve the client-checking problem, and the (original) discussion of stapled inclusion proofs (with no grace period) is operationally unviable, because it means a certificate cannot be deployed until the inclusion. These were all motivating design factors in both the original and subsequent designs of 6962 and 6962-bis, but were perhaps not articulated clearly as such.
- [Trans] Write-up of the "Strict CT" variant Eran Messeri
- Re: [Trans] Write-up of the "Strict CT" variant Ryan Sleevi
- Re: [Trans] Write-up of the "Strict CT" variant Ryan Sleevi
- Re: [Trans] Write-up of the "Strict CT" variant Eran Messeri
- Re: [Trans] Write-up of the "Strict CT" variant Eran Messeri
- Re: [Trans] Write-up of the "Strict CT" variant Ryan Sleevi
- Re: [Trans] Write-up of the "Strict CT" variant Andrew Ayer
- Re: [Trans] Write-up of the "Strict CT" variant Andrew Ayer
- Re: [Trans] Write-up of the "Strict CT" variant Magnus Ahltorp
- Re: [Trans] Write-up of the "Strict CT" variant Tom Ritter
- Re: [Trans] Write-up of the "Strict CT" variant Filippo Valsorda
- Re: [Trans] Write-up of the "Strict CT" variant Jacob Hoffman-Andrews
- Re: [Trans] Write-up of the "Strict CT" variant Magnus Ahltorp
- Re: [Trans] Write-up of the "Strict CT" variant Ryan Sleevi
- Re: [Trans] Write-up of the "Strict CT" variant Magnus Ahltorp
- Re: [Trans] Write-up of the "Strict CT" variant Ryan Sleevi
- Re: [Trans] Write-up of the "Strict CT" variant Magnus Ahltorp
- Re: [Trans] Write-up of the "Strict CT" variant Ryan Sleevi
- Re: [Trans] Write-up of the "Strict CT" variant Phillip Hallam-Baker
- Re: [Trans] Write-up of the "Strict CT" variant Watson Ladd