[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [TLS] Next steps for Client Certificate URL

To: Nelson B Bolyard <nelson@xxxxxxxxxxx>
Subject: Re: [TLS] Next steps for Client Certificate URL
From: Nikos Mavrogiannopoulos <nmav@xxxxxxxxxx>
Date: Sat, 29 Mar 2008 12:15:20 +0200
Cc: tls@xxxxxxxx
Delivered-to: tls@xxxxxxxxxxxxxx
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding:sender; bh=DSxanoabmQBwMJszadkeE9JrXuIQyZiX+QwtHAivwNc=; b=YHSijb3E8RbDRpDZAeXrI5e9Uv53XJIh9q2QUlfO3tTaCpR+7tWgxXr7TqtMX+coxmO8NwrTXNUn9EJGRzoeXOIe46rMaZMs5jrDW2xHvh2h0VYOmjiCMo+AtuvULeI1IvHVbjVrto/RobmtxyvyIja09JaEC7dQO92PBPOiuys=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=message-id:date:from:user-agent:mime-version:to:cc:subject:references:in-reply-to:content-type:content-transfer-encoding:sender; b=Sf1itFITgDuWmWRdG+3i1s9mro9IFg8lqB0FOvZ18sCBmpDAx2dPKlarLyywkP8neQYybtj//IKNnBMC4iQ4WOYPTJt2na0QBBXwzX/w8pjU49umBoJysPIi7j+pP51U2SiAwlMFm2w1fPPThYAJ4maGTxaWBR2EW+d2haLzzwM=
In-reply-to: <47ED54D2.5040000@xxxxxxxxxxx>
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
References: <1696498986EFEC4D9153717DA325CB7238EA05@xxxxxxxxxxxxxxxxxxxxxx> <47ED54D2.5040000@xxxxxxxxxxx>
Sender: tls-bounces@xxxxxxxx
User-agent: Thunderbird 2.0.0.6 (X11/20071022)

Nelson B Bolyard wrote:
> Pasi.Eronen@xxxxxxxxx wrote, On 2008-03-28 07:13:
> 
>> Given this, would everyone be OK with updating the existing
>> client_certificate_url extension so that including the hash is
>> mandatory (client MUST send, server MUST NOT accept without hash)?
>> This behavior would be independent of the negotiated TLS version.
> 
> I'm trying to understand the attack against which this hash is going
> to protect, that is not already adequately protected without it.
> Can someone outline that attack here?

Usually even if you do not have an attack at hand, it might be good to 
prove that a modification to a security protocol makes it no less 
secure. By adding the hash (and considering it ideal) it is not hard to 
prove that the modified scheme is as strong as by sending the 
certificate itself.

regards,
Nikos
_______________________________________________
TLS mailing list
TLS@xxxxxxxx
https://www.ietf.org/mailman/listinfo/tls

Follow-Ups:
- Re: [TLS] Next steps for Client Certificate URL
  - From: Nelson B Bolyard

References:
- [TLS] Next steps for Client Certificate URL
  - From: Pasi.Eronen
- Re: [TLS] Next steps for Client Certificate URL
  - From: Nelson B Bolyard

Prev by Date: Re: [TLS] Security today
Next by Date: Re: [TLS] Security today
Previous by thread: Re: [TLS] Next steps for Client Certificate URL
Next by thread: Re: [TLS] Next steps for Client Certificate URL
Index(es):
- Date
- Thread