Re: xml-security vs. native security

From: Anne & Lynn Wheeler (lynn_at_garlic.com)
Date: 03/29/05

• Next message: Michael Amling: "Re: Book list?"
• Previous message: John Schutkeker: "Re: Sorted dictionary attack"
• In reply to: Bruce Stephens: "Re: xml-security vs. native security"
• Next in thread: Anne & Lynn Wheeler: "Re: xml-security vs. native security"
• Reply: Anne & Lynn Wheeler: "Re: xml-security vs. native security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 29 Mar 2005 06:19:43 -0700

Bruce Stephens <bruce+usenet@cenderis.demon.co.uk> writes:
> And yes, the whole thing (most definitely including the very relevant
> X.509) always seems way too complex to me. (I still have no idea what
> nonRepudiation is supposed to mean in a certificate.)

well, in the mid-90s ... there was some push that if the consumer
digitally signed a financial transaction ... and if the relying party
(merchant) could find any certificate for the cosnumer's public key
that contained the nonRepudiation bit ... it would shift the burden of
proof from the merchant to the consumer in any dispute. It appeared to
be a ploy trying to get the merchants to underwrite the enormous cost
of a PKI deployment for consumer certificates (since shifting the
burden of proof in disputes represents a significant cost).

besides the whole issue of the verification of a digital signature
simply implies some form of "something you have" authentication (i.e.
the verification of a digital signature implies that the originator
has access and used the corresponding private key) ... and by itself
can't carry with it the meaning of a human signature (observed, read,
understood, agrees, approves, authorizes) .... there is the whole
issue the standard PKI related protocols have no provision for
prooving which certificate somebody originating a digital signed
message ... actually included in a transaction.

assuming it did come to have any meaning, one attack is for a merchant
to convince some certification authority to issue certificates with
the nonRepudiation bit turned on ... for all public keys that the
merchant happened to encounter. Since the attached certificate is
normally part of the signed message in standard existing PKI protocols
... there is no proof as to which certificate a consumer might have
actually appended to any digital signed message.

-- 
Anne & Lynn Wheeler | http://www.garlic.com/~lynn/

• Next message: Michael Amling: "Re: Book list?"
• Previous message: John Schutkeker: "Re: Sorted dictionary attack"
• In reply to: Bruce Stephens: "Re: xml-security vs. native security"
• Next in thread: Anne & Lynn Wheeler: "Re: xml-security vs. native security"
• Reply: Anne & Lynn Wheeler: "Re: xml-security vs. native security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: New Method for Authenticated Public Key Exchange without Digital Certificates ... It has put a 'certificate' on that card. ... visa doesn't stand behind the merchant or the consumer. ... (sci.crypt) Finding nonrepudiation-certificate? ... certificate which supports nonrepudiation in order to sign a xml-document. ... Is there any support for this in DotNet or do I have to use CryptoApi? ... (microsoft.public.dotnet.security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint