sks-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] "quality" of keyservers offering hkps

From: Kristian Fiskerstrand
Subject: Re: [Sks-devel] "quality" of keyservers offering hkps
Date: Thu, 14 Aug 2014 19:21:39 +0200
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.0 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 08/14/2014 04:36 PM, Pete Stephenson wrote:
> On 8/14/2014 4:06 PM, Kristian Fiskerstrand wrote:
>> On 08/14/2014 04:04 PM, Pete Stephenson wrote:
>>> My (albeit limited) understanding is that SKS is an append-only
>>>  system, and that it is not possible to remove key packets that
>>> are already on the servers.
>> 
>>> Wouldn't a bad guy: a. Need the private key to edit self-signed
>>>  elements, like revocation signatures?
>> 
>> No, you can drop the full signature or just use a copy of the key
>> from before reovcation was appended.
>> 
>>> b. Be unable to remove the revocation signature, as SKS servers
>>> are append-only?
>> 
>> Not in a MITM scenario where you don't really talk with SKS in
>> the first place, hence a very good reason for HKPS in the first
>> place.
> 
> [re-sending to list, as I inadvertently sent this response directly
> to Kristian]
> 
> Ok. Just for clarity, these attacks are only possible in a MITM 
> scenario, correct?
> 
> Am I correct in my understanding that the bad guy could only do
> the packet stripping if they were MITMing the client and presented
> the user with the desired key sans the revocation signature?
> 
> That is, the bad guy can't upload the key sans revocation signature
> to the actual pool, since the pool is append-only and so the
> revocation signature would not be removed from the pool.
> 

Affirmative. Or DoSing the client so that no request for update of the
key containing the revocation certificate is in place. Or the user's
operational security parameters are insufficient at updating certs
regularly.

- -- 
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
Fabricando fit faber
Practice makes perfect
-----BEGIN PGP SIGNATURE-----

iQIcBAEBCgAGBQJT7PAcAAoJEPw7F94F4Tag+EoP/jz5V0gBQ6njInm7k7mvL8CJ
2veLIqoApZoq5bihoMRcsx/4zDjogRUVHf+MUhEHpmCN4QEmFcUurLxh3VTK1yYQ
eJmsL56K1+6q83AxX4lfjX2hVpvfv1VdrF35dUwEBZF3vK3k8UTPtYD2XG94Qpow
w93y9OBNtN9jgROuGBrWJki/Wi4dwfpVAxpPKclARZC/c4y8FZw9txiGAV4xwt18
Ckf3iEL7aKdbcWfe8HU2c1Ur9l1tMTNiSC7ZPmHHCTfjur2oM+tsx1WpYuLT38Ax
CI7w4Qt1Vp6wSjEQB6Q+uE70fVCT08rAEE1M7S2cIjsW+eoJzrOliG1i+JI9rsLt
yMzJVhjBDxJJCfU63aWa03IbaULQPc6zGG/haYUPzqmgTG+IBkEu8i5UffAIL3JI
sFXE4rMBGin7EIra7fdjgsrbt8suVqlOtm4SNRhvk8Yo9JlgogB/hLG+u//jZNZW
szFt9k/yrU/XfKP/tqSMHQmzNjCzZVzezkYZK6rz8rez1a22hKKudtmbQXylGkgM
/MbO+8UVUCnMA4petIlDVIPJ0viveIpduro5IVqCwCyFuOijN7gHyebqy/LjfuCl
G6SDcbjKBnBqqLpww4uyGTz8i2t+UakIy7vgEQRr1O8p1FJLNZ3zUBI4vA3HBd2q
EG66xQexKq6YjGZZUJdh
=lj88
-----END PGP SIGNATURE-----
reply via email to
[Prev in Thread] Current Thread [Next in Thread]