[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: encoding an X.509 certificate

To: "Ben Laurie" <ben@xxxxxxxxx>
Subject: Re: encoding an X.509 certificate
From: "Tom Scavo" <trscavo@xxxxxxxxx>
Date: Sat, 8 Nov 2008 14:49:47 -0500
Cc: "Anders Rundgren" <anders.rundgren@xxxxxxxxx>, pkix <ietf-pkix@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=k3BPn4L7jicL3iENIBgQTLesX/D4Lkb+nsxU6f1OJmw=; b=fiP+YDjYFZY7MSqQjZEQtHQqVOUJIYyjHIzXN9782aUMH1MLt43sXU8f/XgHHRRLOi bl96P8uM07nnL/9/wkiknJz1v+NLQQT2E376AnHY7RINrfmUIG4nrP44bEvz/UUjBH/9 VOS49w5mFHbUwbYqTQrTSbQkXKJlrblkhmM+w=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=dJblTiwQ25FMTAQIFreYgiXixGZDZZmea/ZnIHrSKPfdDUWeyE2djF+ROgcCmqHj9x VlxB+7tct2vVVjDni4faitKYArdduS0NBsTTKWtGWIZG9mr4Wa8likSm3b6J/q7OISHt DQFq9JIL1S2n24GImbcWRUgjDYAdb7Zb3GVws=
In-reply-to: <4913FA27.7010806@xxxxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <ea2af9bd0811050548v545182cew3827a95b007dc466@xxxxxxxxxxxxxx> <ea2af9bd0811060949t2462d9fdk93758a3e093502a1@xxxxxxxxxxxxxx> <> <ea2af9bd0811061125q362e20ccmedd1fd60d0c32bbb@xxxxxxxxxxxxxx> <49135547.70504@xxxxxxxxx> <ea2af9bd0811061338w774b66ccid4812394a8d6f962@xxxxxxxxxxxxxx> <4913FA27.7010806@xxxxxxxxx>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

Hi Ben,

Thanks for gently pushing back on my remarks.  I was trying to distill
the essence of the profile, but I'm not sure I've adequately done
that.  As I said earlier, I probably I have to provide more detail
before the issues clearly emerge.  Please bear with me as I try to do
that below.

On Fri, Nov 7, 2008 at 3:19 AM, Ben Laurie <ben@xxxxxxxxx> wrote:
> Tom Scavo wrote:
>>
>> The SAML profile that makes use of the XML structure posted earlier
>> does not require that the certificate in question be validated by the
>> receiving party.  The certificate is merely a container for a public
>> key, for which the client proves possession of the corresponding
>> private key, nothing more.

Sorry, the above is an overstatement on my part.  Although it happens
to be true, it doesn't really have anything to do with my original
question regarding certificate encodings.

>> If the receiving party is a SAML identity provider, the presented
>> certificate is bound to a SAML assertion (using the XML structure
>> posted earlier).  If the receiving party is a SAML service provider,
>> the presented certificate is compared to the certificate bound to the
>> SAML assertion.  So the actual encoding applied to the certificate is
>> not important, except of course the identity provider and the service
>> provider need to be on the same page, otherwise certificate comparison
>> at the service provider will fail.
>
> If that's true, then your first paragraph is incorrect - all of the
> certificate matters.

Well, it depends on the content of the assertion.  In the case of
<ds:X509Certificate>, yes, all of the certificate does matter, but
other kinds of X.509 data may be bound to the assertion, namely,
<ds:X509SKI>, <ds:X509SubjectName>, or <ds:X509IssuerSerial>.  As it
turns out, it's these other elements that require additional
processing of the certificate by both parties.

See this short write-up that discusses each element in some detail:

http://docs.google.com/Doc?id=ddj3qnj2_231hms5vtgq

If a <ds:X509Certificate> element is bound to the assertion, it's
all-or-nothing, yes.  On the other hand, if a <ds:X509SubjectName>
element is bound to the assertion, only the subject DN of the
certificate matters.  Indeed, in that case the identity provider and
the service provider may be holding different certificates.  Moreover,
in the case of <ds:X509SubjectName> we assume the service provider
trusts the issuer of the certificate in its possession.  If not, the
subject DN should not be used by the service provider to confirm the
subject.

> However, if all you really care about is the public
> key, why does the receiving party not just check that and ignore the
> certificate?

Again, I misspoke (or spoke out of context) earlier.  Now that I've
had a chance to explain myself, would you care to rephrase your
question?

Cheers,
Tom

Follow-Ups:
- Re: encoding an X.509 certificate
  - From: Anders Rundgren

References:
- encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Anders Rundgren
- Re: encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Ben Laurie
- Re: encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Ben Laurie

Prev by Date: RE: encoding an X.509 certificate
Next by Date: Re: encoding an X.509 certificate
Previous by thread: Re: encoding an X.509 certificate
Next by thread: Re: encoding an X.509 certificate
Index(es):
- Date
- Thread