[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What am I waiting on for gs2?

To: Sam Hartman <hartmans-ietf@xxxxxxx>
Subject: Re: What am I waiting on for gs2?
From: Nicolas Williams <Nicolas.Williams@xxxxxxx>
Date: Thu, 20 Dec 2007 09:59:35 -0600
Cc: Simon Josefsson <simon@xxxxxxxxxxxxx>, ietf-sasl@xxxxxxx
In-reply-to: <tsld4t1iero.fsf@xxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
Mail-followup-to: Sam Hartman <hartmans-ietf@xxxxxxx>, Simon Josefsson <simon@xxxxxxxxxxxxx>, ietf-sasl@xxxxxxx
References: <tslir3njs54.fsf@xxxxxxx> <87tzn6lcw9.fsf@xxxxxxxxxxxxxxxxxxx> <tslprxufnqk.fsf@xxxxxxx> <tslk5o04vw3.fsf@xxxxxxx> <87bq8ltq45.fsf@xxxxxxxxxxxxxxxxxxx> <tsld4t1iero.fsf@xxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Mutt/1.5.7i

On Thu, Dec 20, 2007 at 10:09:47AM -0500, Sam Hartman wrote:
> 
> >>>>> "Simon" == Simon Josefsson <simon@xxxxxxxxxxxxx> writes:
> 
>     >> The channel binding spec requires applications know about
>     >> channel binding failure.  You added text passing this
>     >> requirement along, but I don't see how your protocol allows the
>     >> client to detect channel binding failure.
>     >> 
>     >> We have c->m->s where m is a passive man in the middle that
>     >> joins the TLS stream.  So, the channel bindings are different.
>     >> C sends the gss_wrap to s using the same qop for channel
>     >> binding and non-channel binding.  How does s indicate to c that
>     >> the channel binding from s's standpoint is not the same as what
>     >> it received from c?
>     >> 
>     >> I think you need a bit (possibly as a flag bit xored in with
>     >> the qop) to indicate this.
> 
>     Simon> FYI, I had interpreted the requirement in RFC 5056:
> 
>     Simon>    o Authentication frameworks and mechanisms that support
>     Simon> channel binding MUST communicate channel binding failure to
>     Simon> applications.
> 
>     Simon> to mean that implementations must let the local
>     Simon> applications know about the situation.  That allows them to
>     Simon> abort the connection depending on local policy.  I didn't
>     Simon> read that to mean that protocols are required to notify the
>     Simon> other side of the situation.  The latter requirement is
>     Simon> stronger than the former.  I must admit that I don't see
>     Simon> why the stronger requirement is a useful one.
> 
> Hmm.  You may be right that I was reading more into RFC 5056 than is
> actually there.  In GS2 I'd prefer that we do indicate channel binding
> failure back because we don't generally want people to abort at least
> if they are willing to use a security layer instead.
> 
> However if the WG doesn't have consensus behind this change then it
> should be backed out.

I'd rather see that bit in the client/server's second wrap token, yes.

Follow-Ups:
- Re: What am I waiting on for gs2?
  - From: Nicolas Williams

References:
- What am I waiting on for gs2?
  - From: Sam Hartman
- Re: What am I waiting on for gs2?
  - From: Simon Josefsson
- Re: What am I waiting on for gs2?
  - From: Sam Hartman
- Re: What am I waiting on for gs2?
  - From: Sam Hartman
- Re: What am I waiting on for gs2?
  - From: Simon Josefsson
- Re: What am I waiting on for gs2?
  - From: Sam Hartman

Prev by Date: Re: What am I waiting on for gs2?
Next by Date: Re: SASL mechanisms via GSS-API and round trips
Previous by thread: Re: What am I waiting on for gs2?
Next by thread: Re: What am I waiting on for gs2?
Index(es):
- Date
- Thread