ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment)

2014-08-17 23:21:36
from [Benjamin Kaduk] [Permanent Link] 
On Sun, 17 Aug 2014, Dave Crocker wrote:


On 8/16/2014 8:17 PM, Benjamin Kaduk wrote:

On Sat, 16 Aug 2014, Phillip Hallam-Baker wrote:

DANE isn't opportunistic security. It is authenticated security
policy and keys. Thats the opposite of opportunistic.

There is a protocol design pattern that involves optimistically
checking for and using DANE records where they exist,




This is an example of confusion about the meaning of the term design
pattern.  It is, equally, an example of the draft's limitation in
carefully documenting the concepts it is attempt to teach.


I hope you will forgive my confusion, but I'm not sure what confusion my
statement is supposed to be an example of.  My best hypothesis so far is
that this is supposed to refer to your question about whether the term
"design pattern" concerns basic functional differences or specific
functional differences, but I'm not entirely sure.


There is nothing in the document that clarifies the point.


I do not dispute that the draft could make this point in a much clearer
fashion; I have not gone over it with a fine-enough-toothed comb to make
the claim that it contains "nothing" to clarify the point, though.


By my reading of the current draft, it discusses the distinction between
authenticated and unauthenticated encryption.  However it does not
indicate that there is an important difference between one kind of
authenticated versus another kind of authenticated.

In other words, does the term design pattern concern basic functional
differences (eg, authenticated vs. not authenticated) or does it concern
specific functional differences (CA-based authenticated vs. DANE-based
authenticated)?

My own view is that the utility of the term offered in the current draft
concerns only very basis differences, and such details as which kind of
exsternal authentication 'anchor' is used is of less import.


I would say that the term "design pattern" can apply to either basic or
specific differences, depending on the context in which it is being
applied.  In this specific case, I would like it to actually apply to both
(in that I see the optimistic security family of protocols including both
general recommendations ("use encryption") and specific ones ("if you can
use DANE as a trust anchor, attempt to do so, but fall back if there is no
record").

-Ben
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Protocol Design Pattern (was Re: [saag] Last Call: <draft-dukhovni-opportunistic-security-01.txt>), Nico Williams
Next by Date:  Re: [rmcat] Last Call: <draft-ietf-rmcat-cc-requirements-05.txt> (Congestion Control Requirements For RMCAT) to Informational RFC, Colin Perkins
Previous by Thread:  Re: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Dave Crocker
Next by Thread:  Re: [saag] DANE should be more prominent (Re: Review of: Opportunistic Security -03 preview for comment), Viktor Dukhovni
Indexes:  [Date] [Thread] [Top] [All Lists]