On 2012-02-23, Alan J Rosenthal <
fl...@dgp.toronto.edu> wrote:
> Gallian <
gal...@linuxmail.org> writes:
>>Colleague: "SSL is not authentication. [...]
>
> My initial inclination was to agree, but actually the term "authentication"
> carries no constraints as to the thoroughness of the evaluation. If someone
> asks me "are you Gallian" and I answer "yes", then they have authenticated
> me as you, they just haven't done a very good job (since I am not you).
Well, then there is the question of what is *actually* being
authenticated vs. what people *think* is being authenticated. If I ask
you "are you Gallian" and you answer "yes", you have *identified*
yourself but nobody has authenticated anything yet. If I ask someone
else "is he actually Gallian?" and *he* says yes, now we have (poor)
authentication.
E.g. with SSL the basic authentication with a self-signed cert or one
signed by an unknown CA is "I hold the private key corresponding to the
public one presented here" -- which assertion is authenticated by the
fact that SSL works. And should the presented key change in the future
or SSL simply stop working, it ought to raise suspicion that something
has happened (or alternately that something that was formerly happening
has stopped...).
If the folks presenting the cert shelled out for a third party to sign
their CSR, then you now have authentication that "the key corresponding
to the one I am presenting you was verified to exist by a third party
signing a document generated by it, whose keys you can also verify".
But lay folk assume that the color of the SSL indicator in an address
bar actually means *anything* with respect to the *identity* or
*trustworthiness* of the organization they're dealing with, and that of
course is where it all falls apart -- you only have to be good enough to
fool (or subvert) the least-trustworthy CA in a victim's browser, and
you can "be" anyone or anything you want as far as most browser software
is concerned (Google keywords: "compelled certificate creation attack",
Microsoft Security Bulletin MS01-017.)
It's worth noting that the whole point of CAs originally *was* (supposed
to be) to actually *verify the identity* of those applying for
certificates, but these days it seems they will give out pretty much
anything to anyone unless you pay extra (and the more extra you pay, the
more verified you get -- a state of affairs in which the major browser
makers appear to be complicit). -- Joe
--
Joe Thompson | Sysadmin - Scientificist
E-mail addresses in headers are valid. |
http://www.orion-com.com/
"There is no way my emacs is ever getting a credit card!" -- Matthew Vernon