[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [TLS] Comments on TLS identity protection

To: <martin.rex@xxxxxxx>, Eric Rescorla <ekr@xxxxxxxxxxxxxxxxxxxx>
Subject: RE: [TLS] Comments on TLS identity protection
From: Peter Williams <home_pw@xxxxxxx>
Date: Wed, 20 Dec 2006 01:07:59 -0800
Cc: tls@xxxxxxxx
List-archive: <http://www1.ietf.org/pipermail/tls>
List-help: <mailto:tls-request@lists.ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.lists.ietf.org>
List-post: <mailto:tls@lists.ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@lists.ietf.org?subject=unsubscribe>

Microsoft has a long history of exploiting this feature, in various ways. Actually goes
back to their own PCT proposal, when they were differentiating its features from
SSLv2.

Fascinating to see this all being "reinvented/reargued" 10 years after it was
all debated the first time around. Though, there is a big difference between the
then (web culture) and now (internet culture). Very different tone.

> From: martin.rex@xxxxxxx
> Subject: Re: [TLS] Comments on TLS identity protection
> To: ekr@xxxxxxxxxxxxxxxxxxxx
> Date: Tue, 19 Dec 2006 22:00:29 +0100
> CC: tls@xxxxxxxx
>
> Eric Rescorla wrote:
> >
> > The good news is that TLS has a very simple mechanism for achieving
> > this: do an ordinary TLS handshake without client authentication
> > and then do an immediate re-handshake with client auth. As the
> > authors observe, this is slower (two sets of crypto computations
> > and 4 RTTs) than a specialized identity protection mode. However,
> > it is available now and as far as I can tell is rarely done.
> > I don't find the argument that there is a large demand for this
> > feature if it were only 50% faster particularly persuasive.
> > Rather, this seems like a premature optimization.
>
> It is not as rare as you might think. It is actually the
> default in Microsoft's IIS with some configurations that
> IIS only requests SSL client authentication after
> having seen the request (URL). It might be a side-effect
> of NOT requiring SSL client authentication on the root/home
> page of the webserver and only for certain areas/paths.
>
>
> -Martin
>
> _______________________________________________
> TLS mailing list
> TLS@xxxxxxxxxxxxxx
> https://www1.ietf.org/mailman/listinfo/tls

Get free, personalized online radio with MSN Radio powered by Pandora. Try it!

_______________________________________________
TLS mailing list
TLS@xxxxxxxxxxxxxx
https://www1.ietf.org/mailman/listinfo/tls

Prev by Date: RE: [TLS] Please discuss: draft-housley-evidence-extns-00
Next by Date: Re: [TLS] Comments on TLS identity protection
Previous by thread: RE: [TLS] Comments on TLS identity protection
Next by thread: [TLS] Please discuss: draft-housley-evidence-extns-00
Index(es):
- Date
- Thread