[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SOI: identity protection and DOS

To: Michael Thomas <mat@cisco.com>
Subject: Re: SOI: identity protection and DOS
From: Ari Huttunen <Ari.Huttunen@f-secure.com>
Date: Tue, 20 Nov 2001 07:35:07 +0200
CC: Joern Sierwald <joern@f-secure.com>, ipsec@lists.tislabs.com
Organization: F-Secure Corporation
References: <200111191328.IAA26753@ietf.org> <15353.12478.158520.373309@thomasm-u1.cisco.com> <5.1.0.14.0.20011119202340.031d9d30@dfintra.f-secure.com> <15353.27940.213620.608331@thomasm-u1.cisco.com>
Sender: owner-ipsec@lists.tislabs.com

This WG cannot dictate what information is put to certificates, and
the politicians being what they are, one should assume the worst.
Note that a nation-wide certificate system has a big network-effect
(economically speaking). If a nation gives each citizen an RSA chip,
this *will* be used by corporations to identify customers. Why? It's
the cheapest method for them.

That is somewhat irrelevant to identity protection as seen by SOI, but
is a good thing to bear in mind. Such a chip will also be an excellent
method for intelligence communities to track suspects.

Technically, I think the requirement should be that both of the identities
MUST be protected against passive attackers. The question is if there should
be any requirement as to active attackers. If such a requirement exists,
my view is that the INITIATOR'S identity should be protected against
active attackers. It is the initiator, the ordinary citizen, that is
the target of a Three Letter Organization tracking.

Ari

Michael Thomas wrote:
> 
> Since certificates are essentially public
> information, anybody who puts private information
> on one deserves what they get. After all, what if
> an unscrupulous site demands that cert and then
> publishes its contents to spammers-r-us.com?
> 
>               Mike
> 
> Joern Sierwald writes:
>  > At 13:42 19.11.2001 -0500, you wrote:
>  >  > >>>>> "Michael" == Michael Thomas <mat@cisco.com> writes:
>  >  >
>  >  >  Michael> ...2) SOI SHOULD provide a means to protect identities. SOI
>  >  >  Michael> MUST make protection optional if it reduces the overall
>  >  >  Michael> number of messages to establish a SA. A SOI peer MUST NOT
>  >  >  Michael> protect identities by default.
>  >  >
>  >  >  Michael> I expect that the last statement is controversial so let me
>  >  >  Michael> explain: IMO, identity protection is overblown. If by simple
>  >  >  Michael> traffic analysis I see a static IP address for a server
>  >  >  Michael> which I can reverse map, and even a dynamic address which I
>  >  >  Michael> can reverse map to a particular POP, a determined attacker
>  >  >  Michael> is probably going to have a pretty good idea ...
>  >  >
>  >  >That may be a valid analysis.  (I'm not going to take a position on
>  >  >that here.)
>  >  >
>  >  >However, it does not justify the text you proposed.  What it would
>  >  >justify is:
>  >  >
>  >  >2) SOI SHOULD provide a means to protect
>  >  >    identities. SOI MUST make protection optional
>  >  >    if it reduces the overall number of messages
>  >  >    to establish a SA. A SOI peer MAY protect
>  >  >    identities by default.
>  >  >
>  >  >That would fit the notion that identity protection is not all that
>  >  >useful.
>  >  >
>  >  >The text you proposed would be appropriate if identity protection is
>  >  >actually a bad idea.  For example, if it can only be done at
>  >  >significant expense in time (messages, computation) or memory.  Is
>  >  >that the case?  You did not say so.
>  >  >
>  >  >If identity protection does not come at a significant cost, there is
>  >  >no technical reason to prohibit it being the default for some
>  >  >implementations.
>  >  >
>  >  >         paul
>  >
>  > VPN are mostly used in two ways: (1) Gateway to Gateway encryption,
>  > to link LANs, or (2) Laptop/home user to Gateway, to let remote users
>  > into the company LAN.
>  >
>  > For (2), the laptop may be lost, so a safe authentication method is needed.
>  > You can use one-time-password or code-generating tokens, but the
>  > natural solution for IKE is an RSA smartcard.
>  >
>  > Now, these are usually fit with keys and certificates before the
>  > VPN vendor or sales guy can state his opinion. As a result, the
>  > DN of the cert can contain all kind of stuff. Like email address.
>  > Birthday. Home address. social security number.
>  > I know of one country (Finland) where you can get your
>  > personal ID card with an RSA chip in it (at the local police station),
>  > and yes, you can use that for a VPN.
>  >
>  > Having _that_ DN in cleartext over the net is NOT a good idea.
>  >
>  > Very much in favour of identity protection,
>  >
>  > Jörn Sierwald
>  > F-Secure Corp
>  >

-- 
"They that can give up essential liberty to obtain a little 
temporary safety deserve neither liberty nor safety." - Benjamin Franklin

Ari Huttunen                   phone: +358 9 2520 0700
Software Architect             fax  : +358 9 2520 5001

F-Secure Corporation       http://www.F-Secure.com 

F(ully)-Secure products: Securing the Mobile Enterprise

Follow-Ups:

Re: SOI: identity protection and DOS

From: Michael Thomas <mat@cisco.com>

References:

I-D ACTION:draft-ietf-ipsec-son-of-ike-protocol-reqts-00.txt

From: Internet-Drafts@ietf.org

SOI: identity protection and DOS

From: Michael Thomas <mat@cisco.com>

Re: SOI: identity protection and DOS

From: Joern Sierwald <joern@f-secure.com>

Re: SOI: identity protection and DOS

From: Michael Thomas <mat@cisco.com>

Prev by Date: Re: ipsec in tunnel mode and dynamic routing
Next by Date: Re: IKEv2 (son-of-ike) draft
Prev by thread: Re: SOI: identity protection and DOS
Next by thread: Re: SOI: identity protection and DOS
Index(es):
- Main
- Thread