IETF Logo Mail Archive

Re: [vwrap] authentication : remove reference to MD5

Meadhbh Hamrick <ohmeadhbh@gmail.com> Tue, 06 April 2010 18:34 UTC

Return-Path: <ohmeadhbh@gmail.com>
X-Original-To: vwrap@core3.amsl.com
Delivered-To: vwrap@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1D1703A6A05 for <vwrap@core3.amsl.com>; Tue, 6 Apr 2010 11:34:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.455
X-Spam-Level:
X-Spam-Status: No, score=-2.455 tagged_above=-999 required=5 tests=[AWL=0.144, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zbgjqr5qKKEy for <vwrap@core3.amsl.com>; Tue, 6 Apr 2010 11:34:53 -0700 (PDT)
Received: from mail-qy0-f181.google.com (mail-qy0-f181.google.com [209.85.221.181]) by core3.amsl.com (Postfix) with ESMTP id 748BE3A6A0C for <vwrap@ietf.org>; Tue, 6 Apr 2010 11:30:22 -0700 (PDT)
Received: by mail-qy0-f181.google.com with SMTP id 11so188685qyk.13 for <vwrap@ietf.org>; Tue, 06 Apr 2010 11:30:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :from:date:received:message-id:subject:to:cc:content-type; bh=NRRr5EcnW1LdNrz2/GadWb0Wf5WGU6MoprIA90vCBZc=; b=OPBPgMuOBH9AMZ9ydmk6Ce+DP+IU+KbqogedjRK1raIdEeyUNhErxko5W+VrOt5Wal iD4Es5cSo632h9+1IZEqCmaK4/8zXM84dNJo8xV5GBJtWDp7FTqLId1uteD6e8EoxpCu jHgzQ6u5EY6KCu6pY6sIu/uNNlVnEkgWNKt4o=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=SumLDlBk7n3URj7r0kTzykb20tVfJTZHA17ZODAF+tn8X+anfTpu0T3Aq2c6tF55ev A9V+U63DGWJVun8TYOpVV4/sq82q+4Vx7mGhpvJMbwKaIedDa5vbH2bux4NnHqqPsaTk XL6qjTSNjOLlkP9DraMg/2gMv0hte1yVfCfSs=
MIME-Version: 1.0
Received: by 10.229.247.72 with HTTP; Tue, 6 Apr 2010 11:22:58 -0700 (PDT)
In-Reply-To: <4BBB7705.4060206@stpeter.im>
References: <v2zb325928b1004060719nadbc4f76h1be1c4463578fc4a@mail.gmail.com> <4BBB7705.4060206@stpeter.im>
From: Meadhbh Hamrick <ohmeadhbh@gmail.com>
Date: Tue, 6 Apr 2010 11:22:58 -0700
Received: by 10.229.111.81 with SMTP id r17mr12638538qcp.32.1270578198299; Tue, 06 Apr 2010 11:23:18 -0700 (PDT)
Message-ID: <u2vb325928b1004061122u36b2d85cs2a243f2de9231505@mail.gmail.com>
To: Peter Saint-Andre <stpeter@stpeter.im>
Content-Type: text/plain; charset=ISO-8859-1
Cc: vwrap@ietf.org
Subject: Re: [vwrap] authentication : remove reference to MD5
X-BeenThere: vwrap@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Virtual World Region Agent Protocol - IETF working group <vwrap.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/vwrap>, <mailto:vwrap-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/vwrap>
List-Post: <mailto:vwrap@ietf.org>
List-Help: <mailto:vwrap-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/vwrap>, <mailto:vwrap-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Apr 2010 18:34:54 -0000

we need clarification about how much of the second life legacy
protocol will be used in VWRAP.

for instance. second life stores the MD5 hash of user passwords in the
user database and uses it to authenticate users when logging in.

but MD5 has some significant problems which were exacerbated several
years ago when there was a security breach of linden's servers.

so if we simply said "we're going to ditch MD5 in favor of SHA256"
there would be a problem with reverse compatibility of the
authentication data. this is because you can't generate the pre-image
from an MD5 MIC and then use it to generate a SHA256 MIC. (or you
can't do that in a way that insures that your MD5 pre image is the
same as the password.)

so in other words, there is an action we could take in this group that
COULD make it very difficult for linden and presumably existing
OpenSim instances to use the authentication protocol.

so the question is, to which degree do we add an engineering burden to
existing implementations that would like to adopt this group's output?
the question of the two string identifier is a good one. linden could
probably make systems that adhere to all sorts of different changes.
but to what degree to we make it easy for existing implementers vs.
the desires of people who have yet to build and implementation?

-cheers
-meadhbh


--
meadhbh hamrick * it's pronounced "maeve"
@OhMeadhbh * http://meadhbh.org/ * OhMeadhbh@gmail.com



On Tue, Apr 6, 2010 at 11:01 AM, Peter Saint-Andre <stpeter@stpeter.im> wrote:
> On 4/6/10 8:19 AM, Meadhbh Hamrick wrote:
>> okay.
>>
>> if we're going to remove VWRAP from all current implementations,
>
> What does that mean? I thought we were trying to build VWRAP into
> implementations, not rip it out. :)
>
>> i
>> vote we remove MD5 from the auth spec and replace it with a MIC with
>> better security properties, like SHA224 or SHA256.
>
> +1 to more secure authentication.
>
> My quick reading of the authentication draft led me to think that it
> needed a thorough review, but unfortunately I haven't had time to do
> that yet.
>
> Peter
>
> --
> Peter Saint-Andre
> https://stpeter.im/
>
>
>
>
> _______________________________________________
> vwrap mailing list
> vwrap@ietf.org
> https://www.ietf.org/mailman/listinfo/vwrap
>
>

v2.8.7 | Report a Bug | By Email