IETF Logo Mail Archive

Re: [VoT] Vectors of Trust I-D feedback

"Salvatore D'Agostino" <sal@idmachines.com> Tue, 04 August 2015 01:24 UTC

Return-Path: <sal@idmachines.com>
X-Original-To: vot@ietfa.amsl.com
Delivered-To: vot@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B1881A701E for <vot@ietfa.amsl.com>; Mon, 3 Aug 2015 18:24:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.12
X-Spam-Level:
X-Spam-Status: No, score=-1.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_NEUTRAL=0.779] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pG_VBhfef6x9 for <vot@ietfa.amsl.com>; Mon, 3 Aug 2015 18:24:36 -0700 (PDT)
Received: from atl4mhob01.myregisteredsite.com (atl4mhob01.myregisteredsite.com [209.17.115.39]) by ietfa.amsl.com (Postfix) with ESMTP id EFE9A1A879B for <vot@ietf.org>; Mon, 3 Aug 2015 18:24:35 -0700 (PDT)
Received: from mailpod1.hostingplatform.com (atl4obmail04pod1.mgt.hosting.qts.netsol.com [10.30.71.116]) by atl4mhob01.myregisteredsite.com (8.14.4/8.14.4) with ESMTP id t741OX1a020701 for <vot@ietf.org>; Mon, 3 Aug 2015 21:24:33 -0400
Received: (qmail 27202 invoked by uid 0); 4 Aug 2015 01:24:33 -0000
X-TCPREMOTEIP: 71.255.164.247
X-Authenticated-UID: sal@idmachines.com
Received: from unknown (HELO salPC) (sal@idmachines.com@71.255.164.247) by 0 with ESMTPA; 4 Aug 2015 01:24:32 -0000
From: Salvatore D'Agostino <sal@idmachines.com>
To: 'Nat Sakimura' <sakimura@gmail.com>, 'Joanne Knight' <Joanne.Knight@dia.govt.nz>
References: <569AD906E45DB44A8AFF11D61F5DA791014ADE44CF@WLGPRDMBX02.dia.govt.nz> <39A67012-222A-4C23-B92A-B7AB55744B2D@hoerbe.at> <55BA14B2.3070105@mit.edu> <C9563753-E9E2-4990-9B7C-3AFEE232BD01@hoerbe.at> <CABzCy2AUA4ycTcj0-kgu_YaceduJRJYjruXs=X2zE1nowryGEQ@mail.gmail.com> <55BFEBC2.7070209@bluepopcorn.net> <569AD906E45DB44A8AFF11D61F5DA791014ADEF3DC@WLGPRDMBX02.dia.govt.nz> <CABzCy2ANqsU6kXXMGascqhWZuxmwrknxBZ-Z1i317OABR3qUkA@mail.gmail.com>
In-Reply-To: <CABzCy2ANqsU6kXXMGascqhWZuxmwrknxBZ-Z1i317OABR3qUkA@mail.gmail.com>
Date: Mon, 03 Aug 2015 21:24:29 -0400
Message-ID: <026601d0ce54$5001bbd0$f0053370$@com>
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AdDOUuUYIuxBbguvS/yvPNzT0q92hwAAWRVg
Content-Language: en-us
MIME-Version: 1.0
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_025F_01D0CE32.C8394EF0"
Archived-At: <http://mailarchive.ietf.org/arch/msg/vot/c1AHVPZC7qlMuH2vSp5Yzl570rA>
Cc: 'Jim Fenton' <fenton@bluepopcorn.net>, 'Rainer Hoerbe' <rainer@hoerbe.at>, 'Justin Richer' <jricher@mit.edu>, vot@ietf.org
Subject: Re: [VoT] Vectors of Trust I-D feedback
X-BeenThere: vot@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Vectors of Trust discussion list <vot.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/vot>, <mailto:vot-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/vot/>
List-Post: <mailto:vot@ietf.org>
List-Help: <mailto:vot-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/vot>, <mailto:vot-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Aug 2015 01:24:39 -0000

+1

 

From: vot [mailto:vot-bounces@ietf.org] On Behalf Of Nat Sakimura
Sent: Monday, August 03, 2015 9:14 PM
To: Joanne Knight
Cc: Jim Fenton; Rainer Hoerbe; Justin Richer; vot@ietf.org
Subject: Re: [VoT] Vectors of Trust I-D feedback

 

Hi. 

 

I think X.1254 | ISO/IEC 29115 is actually quite good if you read deeply into it especially from private sector point of view. It has departed from the government centric approach as it should be as an industry standard, and the applicability was widened considerably. 

 

What's really good about it is its departure from the notion that identity is {name, dob, address + some other attributes}. It is policy based so that the policy in the framework should decide what needs to be verified to achieve "identity proofing." In the private sector usage, it may just be a validity of payment instrument and contact method. 

 

29115 is not being reviewed at this time. There is an SP but it is just an SP (study period) and not review. Review is supposed to start in December 2016. 

 

Sort of assertion presentation has been in SP800-63 for sometime. 

In the most recent one [SP800-63], it is clause 9. 

 

 

[SP800-63]  http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63-2.pdf, 

 

 

 

2015-08-04 9:05 GMT+09:00 Joanne Knight <Joanne.Knight@dia.govt.nz>:

ISO/IEC 29115 has been nothing but a headache for me for a number of years.

 

If we want to be evolutionary I would not constrain myself to trying to be consistent with it – especially since it is currently being reviewed. I have also suggested that it look this way ;-) rather than the other way around.

 

I am still out to lunch on Assertion Presentation. Just because it exists in my framework and has (thanks to Justin) got a label, I have not had time to think through exactly what it is and means. It may be that it is a series of aspects that must be added to the other Vectors. They may not be measurable, in which case they become guidance.

 

As it was Nat who lit the spark that there is this other ‘thing’ in the mix, I am hoping for a flu free ISO meeting to have an academic brainstorm. Jim, I seem to have missed your review of I-D, so would appreciate if you can send me your thoughts on Assertion Presentation.

 

Cheers

 

Joanne

 

From: Jim Fenton [mailto:fenton@bluepopcorn.net] 
Sent: Tuesday, 4 August 2015 10:32 a.m.
To: Nat Sakimura; Rainer Hoerbe
Cc: vot@ietf.org; Justin Richer
Subject: Re: [VoT] Vectors of Trust I-D feedback

 

To be entirely consistent with ISO/IEC 29115, we would need to rename Identity Proofing as Enrolment, and Credential Usage as Authentication.

But ISO/IEC 29115 refers to these as phases: they occur at different times (or, in the case of Credential Management, over a long period of time) and have different threat models. But I would like to ask under which circumstances a Relying Party would act differently to an indication of less secure Credential Management vs. less secure Authentication. There are credential management practices that would make a credential unsuitable for highly secure authentication, but why not just represent that as less secure authentication? VoT should be only as complex as required; it should not represent aspects of the process that the relying party does not need.

Also, Enrolment includes aspects of the credentialing process that go far beyond identity proofing and the binding of those attributes in a credential. It's the reliability of that attribute assertion that's orthogonal to authentication strength, and not all of the other aspects of enrolment.

Finally, I'll repeat my comment that's buried in my review of the I-D the other day that Assertion Presentation should be visible to the RP already. For example, if the assertion is encrypted in transit, the RP will know that without being told. There may be need for the RP to specify how it wants assertions to be presented to it, but that seems like more of a general option to me and not part of the Vector.

-Jim

On 8/2/15 2:59 AM, Nat Sakimura wrote:

I agree that we should split out the credential management and the credential usage.  

Each should have different "grades". 

 

Right now, -00 has: 

 


3.1. Identity Proofing 
3.2. Credential Management
3.3. Assertion Presentation 

 

Instead, it could be

 

3.1 Identity Proofing

3.2 Credential Management

3.3 Credential Usage

3.4 Assertion Presentation

 

Then, 3.1 - 3.3 aligns with X.1254 and ISO/IEC 29115, which is good. 

Note: they are missing 3.4. 

 

We also need to define vtm. 

I imagine that vtm uri would point to the policy documents of the trust framework, 

but that is not explicitly there. 

 

Best, 

 

Nat

 

 

 





 

-- 

Nat Sakimura (=nat)

Chairman, OpenID Foundation
http://nat.sakimura.org/
@_nat_en

v2.23.0 | Report a Bug | By Email