Re: draft-ietf-secsh-gsskeyex-06.txt security considerations

[Nicolas Williams <Nicolas.Williams%sun.com@localhost>]

On Wed, Jul 16, 2003 at 10:02:19AM +0200, Jeffrey Hutzelman wrote:
> On Mon, 14 Jul 2003, Nicolas Williams wrote:
> 
> > On Mon, Jul 14, 2003 at 11:52:52AM -0400, Joel N. Weber II wrote:
> 
> > > And it seems somewhat asymetrical that security considerations talks
> > > about the required properties of a GSSAPI mechanism used for key
> > > exchange, but says nothing about user authentication.
> 
> I believe the document specifies the minimum properties required for
> GSS-API contexts in both keyex and userauth.  As Nico points out, there
> are fewer requirements in the userauth case, because there are no
> non-context tokens exchanged.
> 
> > Perhaps the fact that and reasons why GSS-API replay and out-of-sequence
> > detection are not needed at all here and why GSS-API mutual
> > authentication and per-message integrity services are not needed in the
> > userauth case ought to be stated.
> 
> The document has just gone into last call.  I anticipate that there will
> be one more cycle to address comments raised during last call and improve
> the security considerations section; if so, I'll try to address this issue
> more clearly.  But IMNSHO it's not worth a cycle for this alone.

Agreed.  Not having such text is not a failure to describe a real
security issue (or interop, for that matter).

Cheers,

Nico
--