[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE(2): Last Call (CMP proof-of-possession)

To: " (David P. Kemp)" <dpkemp@xxxxxxxxxxxxxx>
Subject: RE(2): Last Call (CMP proof-of-possession)
From: <T.A.Parker@xxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 7 Oct 1997 10:22:50 +0100
Alternate-recipient: Allowed
Cc: ietf-pkix@xxxxxxxxxx
In-reply-to: <>
X400-content-type: P2-1984 (2)
X400-mts-identifier: [/PRMD=icl/ADMD=gold 400/C=GB/;win0199 0000008800013239]
X400-originator: T.A.Parker@win0199.wins.icl.co.uk
X400-received: by mta bath.mail.pipex.net in /PRMD=pipex/ADMD=pipex/C=gb/; Relayed; Tue, 7 Oct 1997 10:22:46 +0100
X400-received: by mta fel01m2 in /PRMD=pipex/ADMD=pipex/C=gb/; Relayed; Tue, 7 Oct 1997 10:21:33 +0100
X400-received: by mta bra01c1 in /PRMD=pipex/ADMD=pipex/C=gb/; Relayed; Tue, 7 Oct 1997 10:21:29 +0100
X400-received: by /PRMD=icl/ADMD=gold 400/C=GB/; converted (ia5-text); Relayed; Tue, 7 Oct 1997 10:22:50 +0100
X400-recipients: non-disclosure:;






David Kemp said:

>Now that we are in last call, I'd like a straw poll to measure the
>degree of consensus for REQUIRING Proof-of-Possession for PKIX-compliant
>CAs.  If there is general agreement, PoP can be returned to its
>original REQUIRED status without delaying the RFC.

I'd like to support him in his proposal to make POP mandatory. As I've 
already emailed, I believe that the CA should be considered to be 
actually making a binding between the owner and the private key. The
certificate should be saying: "this name owns the private key corresponding
to the public key in this certificate". Without POP, all the certificate 
says is: "This name wishes to be associated with the public key in the
certificate; the corresponding private key may however belong to someone 
else" - very useful :-(. 

I'm also concerned that individuals might be spoofed into
presenting the wrong public key value to the CA when requesting a
certificate, or the request may be tampered with en route, so that the
malicious private key owner who substituted his/her own public key can 
then masquerade as the individual. 

If you (a CA) are making a guaranteed binding between two values, both 
need to be authenticated for the guarantee to be worth anything.

Tom Parker
ICL
UK.

Follow-Ups:
- Re: Last Call (CMP proof-of-possession)
  - From: Russ Housley

References:
- Re: Last Call (CMP proof-of-possession)
  - From: David P. Kemp

Prev by Date: Component to use to build a certificate chain?
Next by Date: Re: Comments on [MANDATORY cert discovery capabiity]
Previous by thread: Re: Last Call (CMP proof-of-possession)
Next by thread: Re: Last Call (CMP proof-of-possession)
Index(es):
- Date
- Thread