[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: encoding an X.509 certificate

To: "Anders Rundgren" <anders.rundgren@xxxxxxxxx>
Subject: Re: encoding an X.509 certificate
From: "Tom Scavo" <trscavo@xxxxxxxxx>
Date: Sat, 8 Nov 2008 18:19:01 -0500
Cc: "Ben Laurie" <ben@xxxxxxxxx>, pkix <ietf-pkix@xxxxxxx>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=LOE9NdUQj8s6sQaoHA3LMGRjrFZuKycZwM6qf/ZbYfI=; b=M7P41OSWny92VFJmBu63nTz1s2/d5prQPH7WpZqQdAhQM3RQeosC2ZbyopodHzwXx5 7E8NB3JypPFM8mF8YdTE07VsHELvlnuZXTAxgFTVLP8M306OVdFWybmlsyU96DP14sET e5GsLI61SKWOHSqYdS+n448kRl9swZ1QF21qg=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=cfMgtOAZ80xqYW4Qgsb7j/oYbvWpQykk3Uoi/ecYs6Ufb542sDfXCd4PaW8koxjFk1 oPYUkTEICutokRvPRiWrsfp0RMho+3jIc6at/masdyoqNpmuF7Zhpry+/Ie5lJg2Btsb 907CB1PbmEp6Bogs6f2fsv4+X2IgEf7yIqBZ4=
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <ea2af9bd0811050548v545182cew3827a95b007dc466@xxxxxxxxxxxxxx> <ea2af9bd0811060949t2462d9fdk93758a3e093502a1@xxxxxxxxxxxxxx> <> <ea2af9bd0811061125q362e20ccmedd1fd60d0c32bbb@xxxxxxxxxxxxxx> <49135547.70504@xxxxxxxxx> <ea2af9bd0811061338w774b66ccid4812394a8d6f962@xxxxxxxxxxxxxx> <4913FA27.7010806@xxxxxxxxx> <ea2af9bd0811081149v5fdd25bara97f6d10b53c6708@xxxxxxxxxxxxxx> <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

On Sat, Nov 8, 2008 at 4:17 PM, Anders Rundgren
<anders.rundgren@xxxxxxxxx> wrote:
>
> I do not fully agree with the following document:
> http://docs.google.com/Doc?id=ddj3qnj2_231hms5vtgq

Can you say why?

> A certificate should [IMO] always be decodable, and verifiable against a trust anchor, otherwise it
> is not much of a certificate.

Decodable is one thing (the only characteristic I'm interested in, in
fact) but "verifiable against a trust anchor" is quite another.  I
like to think that the certificates in this profile are "meaningless":

http://www.ietf.org/internet-drafts/draft-moreau-pkix-aixcm-00.txt

In other words, SAML holder-of-key subject confirmation does not
require an X.509-based PKI.  The goal is to cryptographically
strengthen the SAML flow.  If this can be done without assuming an
X.509-based PKI, so much the better.

Practically speaking, a typical flow is based on TLS client
"authentication."  A client presents a certificate to the identity
provider via TLS and authenticates by unspecified means.  (If the
identity provider trusts the issuer of the certificate, TLS serves
both purposes of course.)  The certificate from the TLS exchange is
the certificate "possessed" by the identity provider.

If we could limit the choices at the identity provider to one
(<ds:X509Certificate>), this would be a done deal.  Unfortunately,
that's not possible, because if there *is* an X.509-based PKI in
place, there are real use cases for the other XML elements specified
in the XML Signature spec.

Tom

References:
- encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Anders Rundgren
- Re: encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Ben Laurie
- Re: encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Ben Laurie
- Re: encoding an X.509 certificate
  - From: Tom Scavo
- Re: encoding an X.509 certificate
  - From: Anders Rundgren

Prev by Date: Re: encoding an X.509 certificate
Previous by thread: Re: encoding an X.509 certificate
Next by thread: Re: encoding an X.509 certificate
Index(es):
- Date
- Thread