[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: DISCUSS: MUST reject in OCSPv1

To: ietf-pkix@xxxxxxx
Subject: Re: DISCUSS: MUST reject in OCSPv1
From: "Florian Oelmaier" <oelmaier@xxxxxxxxxxx>
Date: 4 Dec 2003 14:19:23 -0000
Cc: David Engberg <dave@xxxxxxxxxxxxxx>
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-pkix@xxxxxxxxxxxx


> Florian -
> 
> Sorry, my misunderstanding.  I think that your strategy is also good if 
> both the client and server implement it, but it sounds like your clients 
> would have the same backward-compatibility problem if talking to someone 
> else's old servers.  I.e. an attacker could send a nonceless request to 
> an old existing server and record the nonceless response, and then 
> replay that to your client to make you think that that server is 
> securely signalling that it doesn't support nonces.

/agree. Thats completely correct. 

The difference is that our strategy does not require new clients as it does not require anything "new" on the client side. But you are right, if a client talks to an "old" server the attack described is as feasible as with Russ´ proposal. Only "new" servers can prevent this type of attack in both proposals. My bad, sorry.

-- 
Florian Oelmaier
SyTrust

Prev by Date: Re: RSA Algs: 01: draft-ietf-pkix-rsa-pkalgs-01.txt - ASN.1 typos
Next by Date: RE: RSA Algs: 01: draft-ietf-pkix-rsa-pkalgs-01.txt - ASN.1 typos
Previous by thread: Re: DISCUSS: MUST reject in OCSPv1
Next by thread: RE: DISCUSS: MUST reject in OCSPv1
Index(es):
- Date
- Thread