[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Comments on TLS identity protection

To: "EKR" <ekr@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [TLS] Comments on TLS identity protection
From: badra@xxxxxxxx
Date: Wed, 20 Dec 2006 00:12:13 +0100 (CET)
Cc: tls@xxxxxxxx
Importance: Normal
In-reply-to: <86ejqvpl6s.fsf@xxxxxxxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>
References: <20061219204505.5F2EE5C01E@xxxxxxxxxxxxxxxxxxxxxxxxxx><61434.86.72.162.216.1166567558.squirrel@xxxxxxxxxxxx> <86ejqvpl6s.fsf@xxxxxxxxxxxxxxxxxxxxxxxxxx>
User-agent: SquirrelMail/1.4.2

Hi Eric,


> Yes, but I don't think this really explains why the certificate
> needs to be kept secret or why the double handshake technique isn't
> good enough.

IMHO, WiMAX and Wireless Networks operators that use TLS based-certificate
have interests in providing alike GSM and UMTS modele for identity hiding.

I CCed Joe Salowey who could have more arguments regarding the certificate
hiding in WLAN and WiMAX using TLS.


> The attacker performs a MITM attack with a valid certificate.
> The TLS implementation completes the handshake and then prompts
> the application to verify the certificate's identity against
> the intended identity. This fails, but by this time the client
> has already provided his certificate.


Thank you. It is clear for me now. However, sentences will be added to the
Security Considerations, in order for the client to check its
understanding of the server hostname against the server's identity as
presented in the server Certificate message.

Best regards,
Badra


_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

References:
- [TLS] Comments on TLS identity protection
  - From: Eric Rescorla
- Re: [TLS] Comments on TLS identity protection
  - From: badra
- Re: [TLS] Comments on TLS identity protection
  - From: Eric Rescorla

Prev by Date: Re: [TLS] Comments on TLS identity protection
Previous by thread: Re: [TLS] Comments on TLS identity protection
Next by thread: [TLS] Please discuss: draft-housley-evidence-extns-00
Index(es):
- Date
- Thread