IETF Logo Mail Archive

Re: [websec] Comments on draft-ietf-websec-key-pinning-06

Tobias Gondrom <tobias.gondrom@gondrom.org> Fri, 28 June 2013 07:23 UTC

Return-Path: <tobias.gondrom@gondrom.org>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B88A821F9C19 for <websec@ietfa.amsl.com>; Fri, 28 Jun 2013 00:23:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -92.253
X-Spam-Level:
X-Spam-Status: No, score=-92.253 tagged_above=-999 required=5 tests=[FH_HELO_EQ_D_D_D_D=1.597, FH_HOST_EQ_D_D_D_D=0.765, FM_DDDD_TIMES_2=1.999, HELO_DYNAMIC_IPADDR=2.935, HELO_EQ_DE=0.35, HTML_MESSAGE=0.001, RDNS_DYNAMIC=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t1uGMh2ijq7p for <websec@ietfa.amsl.com>; Fri, 28 Jun 2013 00:23:18 -0700 (PDT)
Received: from lvps176-28-13-69.dedicated.hosteurope.de (lvps176-28-13-69.dedicated.hosteurope.de [176.28.13.69]) by ietfa.amsl.com (Postfix) with ESMTP id 05E4E21F9C24 for <websec@ietf.org>; Fri, 28 Jun 2013 00:23:12 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=gondrom.org; b=PWJes2ppy4DIaDa7jEiz4G6rOCjGJqrODfgqZnupj8agT8goikMucthVXsSLTuqfyFgBBbR8p8sBs1LTPoiQdfiSwSf8uWreXZ+MGr0ejyOAZfkvUGmh52QSVsD9MY42; h=Received:Received:Message-ID:Date:From:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:X-Enigmail-Version:Content-Type;
Received: (qmail 30489 invoked from network); 28 Jun 2013 09:23:10 +0200
Received: from unknown (HELO ?172.31.9.119?) (222.220.35.78) by lvps176-28-13-69.dedicated.hosteurope.de with ESMTPSA (DHE-RSA-AES256-SHA encrypted, authenticated); 28 Jun 2013 09:23:09 +0200
Message-ID: <51CD39D9.1040801@gondrom.org>
Date: Fri, 28 Jun 2013 15:23:05 +0800
From: Tobias Gondrom <tobias.gondrom@gondrom.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130510 Thunderbird/17.0.6
MIME-Version: 1.0
To: trevp@trevp.net
References: <8c03997da80b4e8da7100491011b8c12@BN1PR03MB039.namprd03.prod.outlook.com> <6F2FE5F2-D02C-4B09-A6CA-7C3B63722E34@checkpoint.com> <CAOuvq203V8LNjkimfd2m+aTX7-gKr=J62jmUqz-PDQEN6O9Lvg@mail.gmail.com> <CAOuvq20_KZPcBWyPgpGj=K5gy=1BGGRv11Zuxmcw_wBmzBhgUA@mail.gmail.com> <CAGZ8ZG1uHYxxh9q+z7767zW4=HWTa19EJGiu4oyERhTyM0KQBw@mail.gmail.com>
In-Reply-To: <CAGZ8ZG1uHYxxh9q+z7767zW4=HWTa19EJGiu4oyERhTyM0KQBw@mail.gmail.com>
X-Enigmail-Version: 1.5.1
Content-Type: multipart/alternative; boundary="------------080802030203090105040409"
Cc: dmatson@microsoft.com, websec@ietf.org
Subject: Re: [websec] Comments on draft-ietf-websec-key-pinning-06
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Jun 2013 07:23:27 -0000

<no hats>

On 26/06/13 08:13, Trevor Perrin wrote:
>
> On Mon, Jun 24, 2013 at 2:29 PM, Chris Palmer <palmer@google.com
> <mailto:palmer@google.com>> wrote:
>
>     If you haven't already, I'd urge everyone to take pcaps of a web
>     session to their bank or to their web mail provider or whatever. I
>     think you'll quickly see that even a large HPKP header, say 500 bytes,
>     is not going to be the thing that makes web traffic bloated.
>     (Sometimes, the certificate chains themselves outweigh the pins
>     --- and
>     that traffic occurs before the crucial point of widening the TCP
>     window! Whereas HTTP headers most likely occur afterward.)
>
>     Also, at one point somebody raised an idea of saying you could pin to
>     a set of keys --- say, Symantec or StartCom's issuing certs --- with a
>     single directive. Something like:
>
>         Public-Key-Pins: max-age=...; pin-set: symantec; includeSubDomains
>
>
> I like that!  It would be a lot easier to list your pin as
> "symantec,comodo,godaddy" than the equivalent set of keys,
> particularly since keys per CA change over time.
>
>
>  
>
>     There'd need to be some kind of registry for the names of sets, of
>     course, which is complicated. And how do UAs learn of updates to the
>     sets, and so on.
>
>
> It seems like a registry IANA could maintain.  Any CA in a major root
> store could register their name and a URL where they keep the list of
> keys necessary to pin them.  Browser vendors will download these key
> lists (over pinned HTTPS, of course) and push updates to browsers on
> some regular basis.  
>
> Seems pretty workable...

Actually it's a little it more complicated. This list seems pretty
dynamic and may also need authentication and authorization before you
add more keys to sets?
Both things that IANA would not be very good for...
Or am I missing something and this is easier?


>  
>
>     It's a nice idea that would improve on-the-wire size
>     in bytes, and also enable web application providers to pin more
>     easily. If there is demand, perhaps we could create such an extension
>     to HPKP/TACK/et c. But I don't think it should be a blocker for this
>     I-D.
>
>
> TACK wouldn't do this, we're focused on self-chosen signing keys.  But
> it would be a great v2 feature for HPKP, in my opinion...
>
>
> Trevor
>   
>
>
> _______________________________________________
> websec mailing list
> websec@ietf.org
> https://www.ietf.org/mailman/listinfo/websec

v2.30.2 | Report a Bug | By Email | System Status