IETF Logo Mail Archive

Re: [Trans] Providing the history of STHs a log has issued (in 6962-bis)

Brian Smith <brian@briansmith.org> Sat, 20 May 2017 22:48 UTC

Return-Path: <brian@briansmith.org>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE0E11200F1 for <trans@ietfa.amsl.com>; Sat, 20 May 2017 15:48:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.6
X-Spam-Level:
X-Spam-Status: No, score=-2.6 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=briansmith-org.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BPXMBHcUkWUk for <trans@ietfa.amsl.com>; Sat, 20 May 2017 15:48:44 -0700 (PDT)
Received: from mail-io0-x234.google.com (mail-io0-x234.google.com [IPv6:2607:f8b0:4001:c06::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 80E0312717E for <trans@ietf.org>; Sat, 20 May 2017 15:48:44 -0700 (PDT)
Received: by mail-io0-x234.google.com with SMTP id o12so64400727iod.3 for <trans@ietf.org>; Sat, 20 May 2017 15:48:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=briansmith-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=MnBH6xbR8fxWDN0eUCBi3EtUdFncnDGLrB8CkFqAcSk=; b=gya9hLMCgMfFiZu4BeiSQ6A3l4wxQTn1h74Lf6pDcCq6unATwJ+c5BzdlTFOt3iSrc Do5yen5RJ2cyP5waxBAcLDyPqcLG1sqLHF/hLOkIOYwdc8Qdlj5rcgjRJHA8BX2pwHMJ 6jLeja8rICa2/hYXsdeUwiDCLenZABkCFJUG+hjz/QVynsbWvewdZ8feXOe9LEVyW4Xr ClC92k1t4sgVs5EEy2cK6V+FpxkViLOwX3KiSd5YqgjdFfXLNKl0AEEcpcU1fgsTiT0V /d5nug4yXFDtfMk2xjpbUxRdi/6umo9zrfi8DgVEzhMcZUrpcW2O9n4i4fZ2WwNoEW6m ve6w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=MnBH6xbR8fxWDN0eUCBi3EtUdFncnDGLrB8CkFqAcSk=; b=SvUAbXueJnEeHQo44Vvsy+4JGFruW9hgpJVyecFeVEzEWgcvDBr6xqCMmlkPgfcKO4 CcCKghkSPMTFWIE/JkbCqFEa9DTANKriZ6qks0jpwgaGfY54wAwIDBtxtGQ1m+NqPWdz PkT8c1TwSbOM5KYK6kt2P1Y6FLHcUpvFdKhOSw/QwahJi3Wg/LC+R0+X7cURlBivvHJQ Ojv4BWmFCC/ud7LkCQmw6yYAYI09XoR51W0zQhL2nlXpZ1qoFz3pxr/sXgBhRSvmLoSo +3uswbJwXRH/Sqa8LJGh4eo40s2jSDqFrKFEE2ROFwMW7w+iyDtLPjP6GoDOJKxKGdcQ P0sQ==
X-Gm-Message-State: AODbwcCaEVxc2rQpkSSF+E/n3JscIe1zYQWTB1R6NxCOy6ZV0nWhsgoU h0/+crczHkGYic1PGW5D1VLqTpiOSb1r
X-Received: by 10.107.5.143 with SMTP id 137mr18342440iof.152.1495320523906; Sat, 20 May 2017 15:48:43 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.36.47.146 with HTTP; Sat, 20 May 2017 15:48:43 -0700 (PDT)
In-Reply-To: <20170520015556.GU13247@hezmatt.org>
References: <CAFDDyk93AcRsCTmt+EPO6VFn-Y4D8g1ETTdGuJrtVk3rH7Xnxg@mail.gmail.com> <20170504123447.41d957a88bd65417e714be78@andrewayer.name> <CAFDDyk-DyBObm2W96R1dZPET-CWwTnitmonkHV2oT+_GH4Gyew@mail.gmail.com> <20170505100910.f3da472d9ad71d1d540b8b62@andrewayer.name> <87lgq7j6a3.fsf@nordberg.se> <CALzYgEeXq0iwJTOfcRUQPR49=Xaqvd21nR=Tk5C884xyGehRuQ@mail.gmail.com> <20170516221717.c05a62d681ecd64322bdc682@andrewayer.name> <CALzYgEdgDSOTTL3BdBFCZCLmH6Z=c==m53d3KO-oKu2RFt4cqQ@mail.gmail.com> <CACM=_OdZy2wyNZo4GMtOSdmanzBhyw=SKr=DOOSS9h05V80arw@mail.gmail.com> <CAOjisRzMAVn757v0O07bYg1JT+oext_MkcGUS8ZSe=PmmZ7R=w@mail.gmail.com> <20170520015556.GU13247@hezmatt.org>
From: Brian Smith <brian@briansmith.org>
Date: Sat, 20 May 2017 12:48:43 -1000
Message-ID: <CAFewVt5Jayb4h-gFwaXtAHj=tc5LPExpE8-pR4To68OCJUwfcg@mail.gmail.com>
To: Matt Palmer <mpalmer@hezmatt.org>
Cc: "trans@ietf.org" <trans@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/trans/yEqQjM8ut0FobsNz9Wz1wkXhl-c>
Subject: Re: [Trans] Providing the history of STHs a log has issued (in 6962-bis)
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 20 May 2017 22:48:46 -0000

On Fri, May 19, 2017 at 3:55 PM, Matt Palmer <mpalmer@hezmatt.org> wrote:
> If you're already requiring auditors to remember what they've seen before,
> why not just get them to remember the STHs they've seen, rather than having
> to remember that they've seen an additive sequence of previous STHs and
> verified that nothing's magically appeared?

In CT, CAs issue certificates that certify a binding of a name to a
public key. From the CT logs' perspective, the CAs are untrusted and
so we don't rely on them to provide a log of certificates they've
issued. Instead, we have CT logs maintain such logs.

Similarly, a CT log issues STHs that certify the state of the log.
>From the auditors' perspective, the CT log is untrusted. Thus, the
auditors' shouldn't rely on the CT logs to log all their STHs.
Instead, the auditors should maintain such logs. In other words, the
CT auditors should operate CT logs that operate on "certificates" that
are actually STHs.

Cheers,
Brian
-- 
https://briansmith.org/

v2.23.0 | Report a Bug | By Email