1995-10-09 - Re: Certificate proposal

Header Data

From: Hal <hfinney@shell.portal.com>
To: cypherpunks@toad.com
Message Hash: dbe708ced2a197f34d233482623c4573fb30252951eb595aa40196d0234124d8
Message ID: <199510092054.NAA12060@jobe.shell.portal.com>
Reply To: <ac9ea8f3010210049f44@[205.199.118.202]>
UTC Datetime: 1995-10-09 20:55:12 UTC
Raw Date: Mon, 9 Oct 95 13:55:12 PDT

Raw message

From: Hal <hfinney@shell.portal.com>
Date: Mon, 9 Oct 95 13:55:12 PDT
To: cypherpunks@toad.com
Subject: Re: Certificate proposal
In-Reply-To: <ac9ea8f3010210049f44@[205.199.118.202]>
Message-ID: <199510092054.NAA12060@jobe.shell.portal.com>
MIME-Version: 1.0
Content-Type: text/plain


m5@dev.tivoli.com (Mike McNally) writes:

>You have several alternative means of verifying the key:

>1) You can meet Bob at a local Pizza Hut and verify the key in person.

>2) You can go through a variety of channels to a variety of other
>trusted entities and verify with them that they're using the same key
>for Bob.

>3) You can set up some sorts of communications tests to "probe" for a
>MITM situation, perhaps by passing through "seeded" information (data
>taggants?).

I will agree that there are alternatives to certificates.  I alluded to
this in the part of my message which you elided below, about defeating
MITM attacks via various techniques.  However, it may not be as easy to
automate these tests as to automate a certificate check, and in
particular the more automated the tests become the more plausible it
would be that the MITM could recognize and defeat a standard test.

> > I don't want to overstate the risk of this attack.  It would not be an
> > easy one to mount ... The risks of MITM attacks on public key
> > systems was recognized not long after those systems were proposed.  The
> > problems with fake keys have been discussed for over a decade.
> >
> > Why is this all suddenly irrelevant?  

>I don't think it is irrelevant, I just think it's orthogonal to the
>issue of whether a certificate for a key<-->entity relationship is
>considered to be the key or an adjunct to the key.  I could be wrong,
>of course.

The POV I am really arguing against is the one that defines identity to
be a key, that states that in communicating with a key you are by
definition communicating with the person you have in mind.  The man in
the middle attack does not exist because from your point of view the
entity at the other end of the communication channel is just the MITM
plus the person you think you are talking to.  This idea has been
expressed many times by other people in this discussion, and it is this
which I think is fundamentally flawed and even dangerous because it
encourages the use of untested keys.  In fact it seems to define away
the question of whether a key is real or fake.

Hal

Thread

• Return to October 1995

• Return to “aba@dcs.exeter.ac.uk”
• Return to “Adam Shostack <adam@homeport.org>”
• Return to “Bob Smart <smart@mel.dit.csiro.au>”
• Return to “Eli Brandt <eli@UX3.SP.CS.CMU.EDU>”
• Return to “Hal <hfinney@shell.portal.com>”
• Return to “m5@dev.tivoli.com (Mike McNally)”
• Return to “Mats Bergstrom <asgaard@sos.sll.se>”
• Return to “sameer <sameer@c2.org>”
• Return to “Scott Brickner <sjb@universe.digex.net>”
• Return to “sjb@universe.digex.net (Scott Brickner)”

• Return to “tcmay@got.net (Timothy C. May)”

• 1995-10-09 (Mon, 9 Oct 95 10:28:50 PDT) - Re: Certificate proposal - tcmay@got.net (Timothy C. May)
  • 1995-10-09 (Mon, 9 Oct 95 12:04:29 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
    • 1995-10-09 (Mon, 9 Oct 95 12:31:33 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
      • 1995-10-09 (Mon, 9 Oct 95 13:40:11 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
        • 1995-10-09 (Mon, 9 Oct 95 16:03:45 PDT) - Re: Certificate proposal - Scott Brickner <sjb@universe.digex.net>
        • 1995-10-09 (Mon, 9 Oct 95 16:07:03 PDT) - Re: Certificate proposal - Eli Brandt <eli@UX3.SP.CS.CMU.EDU>
        • 1995-10-09 (Mon, 9 Oct 95 16:25:16 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
      • 1995-10-09 (Mon, 9 Oct 95 14:15:11 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
        • 1995-10-09 (Mon, 9 Oct 95 15:42:04 PDT) - Re: Certificate proposal - aba@dcs.exeter.ac.uk
          • 1995-10-09 (Mon, 9 Oct 95 16:17:41 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
            • 1995-10-10 (Mon, 9 Oct 95 17:01:03 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
            • 1995-10-10 (Mon, 9 Oct 95 17:02:51 PDT) - Re: Certificate proposal - Bob Smart <smart@mel.dit.csiro.au>
              • 1995-10-10 (Tue, 10 Oct 95 07:20:09 PDT) - Re: Certificate proposal - Adam Shostack <adam@homeport.org>
              • 1995-10-10 (Tue, 10 Oct 95 07:52:27 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
              • 1995-10-10 (Tue, 10 Oct 95 09:22:07 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
        • 1995-10-09 (Mon, 9 Oct 95 16:11:29 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
          • 1995-10-09 (Mon, 9 Oct 95 16:52:11 PDT) - Re: Certificate proposal - Scott Brickner <sjb@universe.digex.net>
          • 1995-10-10 (Tue, 10 Oct 95 05:44:46 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
            • 1995-10-10 (Tue, 10 Oct 95 08:33:35 PDT) - Re: Certificate proposal - sjb@universe.digex.net (Scott Brickner)
  • 1995-10-09 (Mon, 9 Oct 95 12:35:35 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
  • 1995-10-09 (Mon, 9 Oct 95 13:55:12 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>
    • 1995-10-09 (Mon, 9 Oct 95 14:40:16 PDT) - Re: Certificate proposal - sameer <sameer@c2.org>
  • 1995-10-09 (Mon, 9 Oct 95 14:47:55 PDT) - Re: Certificate proposal - m5@dev.tivoli.com (Mike McNally)
    • 1995-10-11 (Tue, 10 Oct 95 17:53:10 PDT) - Re: Certificate proposal - Mats Bergstrom <asgaard@sos.sll.se>
  • 1995-10-09 (Mon, 9 Oct 95 16:54:56 PDT) - Re: Certificate proposal - Hal <hfinney@shell.portal.com>