[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Poll: use of TLS channel bindings in SCRAM

To: Simon Josefsson <simon@xxxxxxxxxxxxx>
Subject: Re: Poll: use of TLS channel bindings in SCRAM
From: Nicolas Williams <Nicolas.Williams@xxxxxxx>
Date: Wed, 3 Jun 2009 13:39:14 -0500
Cc: Alexey Melnikov <alexey.melnikov@xxxxxxxxx>, SASL WG <ietf-sasl@xxxxxxx>
In-reply-to: <20090603132837.GA26728@xxxxxxx>
List-archive: <http://www.imc.org/ietf-sasl/mail-archive/>
List-id: <ietf-sasl.imc.org>
List-unsubscribe: <mailto:ietf-sasl-request@imc.org?body=unsubscribe>
References: <4A1F06CF.80505@xxxxxxxxx> <87k540napw.fsf@xxxxxxxxxxxxxxxxxxx> <20090529051317.GD29258@xxxxxxx> <878wkfu5ih.fsf@xxxxxxxxxxxxxxxxxxx> <20090603050732.GA22446@xxxxxxx> <8763fdnari.fsf@xxxxxxxxxxxxxxxxxxx> <20090603132837.GA26728@xxxxxxx>
Sender: owner-ietf-sasl@xxxxxxxxxxxx
User-agent: Mutt/1.5.7i

Huh, I think we can do something far simpler still: just add enough ABNF
to define non-critical GS2 header extensions.  (That's what I get for
posting late at night instead of sleeping on the idea.)

;; Non-critical GS2 extension headers; servers MUST ignore if they don't
;; understand them
gs2-ext-attr     = "gs2-" 1*ALPHA
gs2-ext-attr-val = gs2-ext-attr "=" value
gs2-ext-attrs    = gs2-ext-attr-val *("," gs2-ext-attr-val)

;; GS2 header
gs2-cbind-flag   = "n" / "y" / "p"
gs2-header       = gs2-cbind-flag [ authzid ] "," [ gs2-ext-attrs "," ]
                                                  ^^^^^^^^^^^^^^^^^^^^^

Or something like that.  (One might prefer something slightly different
that makes it easier to find the end of the GS2 header.)

So today SCRAM/GS2 would be essentially unmodified from what we had
going into this poll.  Later, when we add CB type negotiation we can add
an attribute for listing the CB types that the client saw in the 'y' and
'p' cases, and an attribute for specifying the CB type chosen by the
client in the 'p' case.

(And if we really wanted to we could add critical GS2 header extensions,
which, if present, cause the server to reply with an error if the server
doesn't understand the extension, else with a normal GSS context token
prefixed with a small header to distinguish from such errors.  Then even
Kurt's multi-level negotiation scheme could be added.)

Nico
--

Follow-Ups:
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Simon Josefsson

References:
- Poll: use of TLS channel bindings in SCRAM
  - From: Alexey Melnikov
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Simon Josefsson
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Nicolas Williams
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Simon Josefsson
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Nicolas Williams
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Simon Josefsson
- Re: Poll: use of TLS channel bindings in SCRAM
  - From: Nicolas Williams

Prev by Date: Re: Poll: use of TLS channel bindings in SCRAM
Next by Date: Re: Poll: use of TLS channel bindings in SCRAM
Previous by thread: Re: Poll: use of TLS channel bindings in SCRAM
Next by thread: Re: Poll: use of TLS channel bindings in SCRAM
Index(es):
- Date
- Thread