“Crashing is an appropriate response”

A bit of cryptography humor, from Peter Gutmann’s slideshow Everything you Never Wanted to Know about PKI but were Forced to Find Out …

(Warning: This won’t make any sense unless you know what things like “PKI”, “self-signed certificates” and “revocation” are)

CRL Problems (ctd)
Revoking self-signed certificates is hairy

Cert revokes itself
Applications may:
– Accept the CRL as valid and revoke the certificate
– Reject the CRL as invalid since it was signed with a revoked certificate
– Crash
Computer version of Epimenides paradox “All Cretans are liars”
– Crashing is an appropriate response

Previously: GeekGameBoard
Next Post: Web Frameworks vs. Hosted Environments

By: Jens Alfke
On: January 7, 2008
at: 8:34 pm
As: Uncategorized
See: 5 comments;
Add: your comment

5 Comments:

comments feed | trackback uri

On Mon, Jan 7 at 10pm,
fluffy said —

Ostensibly, any app which accepts a self-revocation from the self-signed cert would authorize the cert, then perform the action which is signed with said cert. Ideally such an app would be designed with ACID criteria in mind. So, hopefully, self-signed self-revocation would behave as one would intuitively expect (i.e. a suicide note).
On Mon, Jan 7 at 10pm,
Jens Alfke said —

But revocations are timestamped, so the cert is already invalid at the time the app is parsing the revocation. It’s exactly like the Liar Paradox.

There’s a later point in the same slideshow where he describes how revocation means certs can’t obey ACID properties. The whole thing is a great exercise in sustained sarcasm; by the end, X.509 is reduced to a smoking hole in the ground that he’s pouring salt into.
On Tue, Jan 8 at 7am,
fluffy said —

I guess that depends on how much you’re supposed to trust the timestamp, then, considering that even in a world of NTP time is still fairly relative (and lunchtime doubly-so).
On Thu, Jan 10 at 3pm,
Shamino said —

It would seem to me that, due to the impossibility of completely synchronizing clocks over the internet, that event-timestamps should only be trusted for the purpose of putting events from a single source in sequence. Comparing them against timestamps from other sources (including your own internal clock) is going to sometimes result in unexpected behavior.

And, IMO, predictable behavior is better than technical correctness.
On Thu, Jan 10 at 4pm,
Jens Alfke said —

Yes, clock synchronization is another known issue with certificate revocation. Fortunately the granularity needed is usually pretty low, like hours or days.

You guys are taking this more seriously than I meant! I was mostly just amused at coming across a real-world example of the “all Cretans are liars” paradox.
Name:
Email:
Website:
Name and email are required. Thanks!

[Or log in] [Or register]
Or use your OpenID:

HTML: You may use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>

Notify me of followup comments via e-mail

About

This is the blog of Jens Alfke.

Introverted, intuitive, thinking, perceiving. I live to make things: most often software, sometimes designs or mixes or stories or photos. (I wish I could make music.)

Father, husband. My home is a nest of family. Outside is overrun with flowers and vines and shade trees, inside with books and CDs and kids’ drawings and game pieces and game cartridges.

Worker, dreamer. I’m driven by visions of things that could be.

Contact

Send friendly correspondence to thought-palace at this domain.

“Crashing is an appropriate response”

5 Comments:

About

Contact

Recently

Unread Comments

Categories