Re: [Uta] Opportunistic encryption and authentication agility

Trevor Perrin <trevp@trevp.net> Tue, 25 March 2014 23:36 UTC

MIME-Version: 1.0
In-Reply-To: <CACsn0cnwtxTpYyNK71wi99Vq=8wJQDY8c1ye_19H+py-wD-a1g@mail.gmail.com>
References: <CAGZ8ZG0rBxiE2dGZXhpvhKiyJOu=6Bn8sQ2seJ9_KvgPjmaaRg@mail.gmail.com> <532CFAB0.4070301@network-heretics.com> <10492.1395613933@sandelman.ca> <533042FF.7060603@network-heretics.com> <53305B5D.8030708@fifthhorseman.net> <53305EFD.9030003@network-heretics.com> <53306294.4070205@fifthhorseman.net> <CAGZ8ZG2GYTYfrSDGxEMS3eRsg2g_LaWP_pyHt9vmz4NV2cGAEw@mail.gmail.com> <CAA4WUYhffWpsxU1FrmQ1np1EObaC5EgMC-R7QDj8C0ODTRLPdQ@mail.gmail.com> <CAGZ8ZG0nyfNvpkL2e39Or0W8WVeDXjdcCzPQE-DNjaY2t+j-sw@mail.gmail.com> <CACsn0cnwtxTpYyNK71wi99Vq=8wJQDY8c1ye_19H+py-wD-a1g@mail.gmail.com>
Date: Tue, 25 Mar 2014 16:36:03 -0700
Message-ID: <CAGZ8ZG0+-6CeX4fcukqSL0N1_CF4pzd=99MpC0wOssrfmDspRg@mail.gmail.com>
From: Trevor Perrin <trevp@trevp.net>
To: Watson Ladd <watsonbladd@gmail.com>
Content-Type: text/plain; charset="ISO-8859-1"
Archived-At: http://mailarchive.ietf.org/arch/msg/uta/LuNguwcBaMs7moG5d3ms-vW6xdw
Cc: "uta@ietf.org" <uta@ietf.org>
Subject: Re: [Uta] Opportunistic encryption and authentication agility
Precedence: list

On Tue, Mar 25, 2014 at 4:11 PM, Watson Ladd <watsonbladd@gmail.com> wrote:
> On Tue, Mar 25, 2014 at 4:47 PM, Trevor Perrin <trevp@trevp.net> wrote:
>>
>> Maybe adding other auth methods to HTTP-over-TLS
>> would be best done silently, with no UI unless a security failure
>> occurs?
>
> Sadly this doesn't work. If I can imitate the website because of a
> WebPKI failure, I can pretend to not support whatever additional auth
> is done.

Not necessarily.

Consider pinning - the browser could remember some security policy for
a site, and apply it to future HTTP-over-TLS connections.

Or consider a plugin that performs online lookups to (Convergence /
Perspectives / DNSSEC etc) for HTTP-over-TLS sites, and raises an
error if the site's keys are suspicious, or the lookup server can't be
reached.

These are things that could be built on top of "opportunistic
encryption" for HTTP, so my point is that OE could be about more than
just passive eavesdropping.

Trevor

Re: [Uta] Opportunistic encryption and authentica… Daniel Kahn Gillmor
[Uta] Opportunistic encryption and authentication… Trevor Perrin
Re: [Uta] Opportunistic encryption and authentica… Aaron Zauner
Re: [Uta] Opportunistic encryption and authentica… Keith Moore
Re: [Uta] Opportunistic encryption and authentica… Trevor Perrin
Re: [Uta] Opportunistic encryption and authentica… Michael Richardson
Re: [Uta] Opportunistic encryption and authentica… Eliot Lear
Re: [Uta] Opportunistic encryption and authentica… Michael Richardson
Re: [Uta] Opportunistic encryption and authentica… Eliot Lear
Re: [Uta] Opportunistic encryption and authentica… Michael Richardson
Re: [Uta] Opportunistic encryption and authentica… Keith Moore
Re: [Uta] Opportunistic encryption and authentica… Michael Richardson
Re: [Uta] Opportunistic encryption and authentica… Eliot Lear
Re: [Uta] Opportunistic encryption and authentica… Keith Moore
Re: [Uta] Opportunistic encryption and authentica… Keith Moore
Re: [Uta] Opportunistic encryption and authentica… Daniel Kahn Gillmor
Re: [Uta] Opportunistic encryption and authentica… Trevor Perrin
Re: [Uta] Opportunistic encryption and authentica… Keith Moore
Re: [Uta] Opportunistic encryption and authentica… William Chan (陈智昌)
Re: [Uta] Opportunistic encryption and authentica… Trevor Perrin
Re: [Uta] Opportunistic encryption and authentica… Watson Ladd
Re: [Uta] Opportunistic encryption and authentica… Trevor Perrin
Re: [Uta] Opportunistic encryption and authentica… Keith Moore