[27352] in Kerberos
Re: One Time Identification, a request for comments/testing.
daemon@ATHENA.MIT.EDU (Nicolas Williams)
Fri Feb 2 13:42:03 2007
Date: Fri, 2 Feb 2007 12:41:00 -0600
From: Nicolas Williams <Nicolas.Williams@sun.com>
To: John Rudd <jrudd@ucsc.edu>
Message-ID: <20070202184100.GC28618@binky.Central.Sun.COM>
Mail-Followup-To: John Rudd <jrudd@ucsc.edu>,
Jeffrey Hutzelman <jhutz@cmu.edu>, dev@directory.apache.org,
krbdev@mit.edu, g.w@hurderos.org, kerberos@mit.edu
Mime-Version: 1.0
Content-Disposition: inline
In-Reply-To: <45C37FFC.9000407@ucsc.edu>
Cc: dev@directory.apache.org, kerberos@mit.edu, g.w@hurderos.org,
krbdev@mit.edu, Jeffrey Hutzelman <jhutz@cmu.edu>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Fri, Feb 02, 2007 at 10:16:28AM -0800, John Rudd wrote:
> It seems to me that if you're talking about a simple dumb USB thumb
> drive/data stick, that you're not going to be able to do anything to
> prevent an adversary from copying that data to a local host, and then
> brute-forcing the data over time. So, essentially, the only advantage
> over "just putting a non-protected keytab on a USB drive" and any other
> dumb-data-stick process is some amount of time it takes to overcome
> whatever encryption you've done on the keytab.
The advantage of softtokens over hardtokens is that they are
software-based, and when you don't have a smartcard around they can be
useful in debugging, testing, or even as a cheap alternative to
smartcards. And yes, softtokens are susceptible to offline dictionary
and brute-force attacks by any attacker that can get their hands on
them. But have you ever used passphrase-protected ssh private key
files? I bet you have. It's darn useful because there's no need to buy
a new piece of hardware -- you just have to be more careful than you
might have to be with a smartcard.
There's not much new here. This thread is starting to repeat itself.
The only new questions here are:
- should MIT krb5 have softtoken support?
(And note that if it has PKCS#11 support for PKINIT and/or PA-ENC-
TIMESTAMP long-term symmetric keys then it will have softtoken
support wherever PKCS#11 softtoken providers are available.)
- should there be a standard for softtoken formats?
Since there are at least two PKCS#11 softtoken providers this is an
interesting question. Where should such thing be standardized, if at
all? Perhaps informally would be best.
> I think a more interesting approach would be a non- "dumb data stick"
> approach. It might start to sound like a variation of a smartcard, but
> why not think about a new USB device that's perhaps about the size of a
> USB data stick. It might present itself to the host computer as 2 devices:
This stuff exists. Google it. And it is just a smartcard. Using
bimetrics instead of PINs is interesting and a subject for another
thread, probably on a different forum.
Nico
--
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos