-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 08/14/2014 04:36 PM, Pete Stephenson wrote: > On 8/14/2014 4:06 PM, Kristian Fiskerstrand wrote: >> On 08/14/2014 04:04 PM, Pete Stephenson wrote: >>> My (albeit limited) understanding is that SKS is an append-only >>> system, and that it is not possible to remove key packets that >>> are already on the servers. >> >>> Wouldn't a bad guy: a. Need the private key to edit self-signed >>> elements, like revocation signatures? >> >> No, you can drop the full signature or just use a copy of the key >> from before reovcation was appended. >> >>> b. Be unable to remove the revocation signature, as SKS servers >>> are append-only? >> >> Not in a MITM scenario where you don't really talk with SKS in >> the first place, hence a very good reason for HKPS in the first >> place. > > [re-sending to list, as I inadvertently sent this response directly > to Kristian] > > Ok. Just for clarity, these attacks are only possible in a MITM > scenario, correct? > > Am I correct in my understanding that the bad guy could only do > the packet stripping if they were MITMing the client and presented > the user with the desired key sans the revocation signature? > > That is, the bad guy can't upload the key sans revocation signature > to the actual pool, since the pool is append-only and so the > revocation signature would not be removed from the pool. >
Affirmative. Or DoSing the client so that no request for update of the key containing the revocation certificate is in place. Or the user's operational security parameters are insufficient at updating certs regularly. - -- - ---------------------------- Kristian Fiskerstrand Blog: http://blog.sumptuouscapital.com Twitter: @krifisk - ---------------------------- Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3 - ---------------------------- Fabricando fit faber Practice makes perfect -----BEGIN PGP SIGNATURE----- iQIcBAEBCgAGBQJT7PAcAAoJEPw7F94F4Tag+EoP/jz5V0gBQ6njInm7k7mvL8CJ 2veLIqoApZoq5bihoMRcsx/4zDjogRUVHf+MUhEHpmCN4QEmFcUurLxh3VTK1yYQ eJmsL56K1+6q83AxX4lfjX2hVpvfv1VdrF35dUwEBZF3vK3k8UTPtYD2XG94Qpow w93y9OBNtN9jgROuGBrWJki/Wi4dwfpVAxpPKclARZC/c4y8FZw9txiGAV4xwt18 Ckf3iEL7aKdbcWfe8HU2c1Ur9l1tMTNiSC7ZPmHHCTfjur2oM+tsx1WpYuLT38Ax CI7w4Qt1Vp6wSjEQB6Q+uE70fVCT08rAEE1M7S2cIjsW+eoJzrOliG1i+JI9rsLt yMzJVhjBDxJJCfU63aWa03IbaULQPc6zGG/haYUPzqmgTG+IBkEu8i5UffAIL3JI sFXE4rMBGin7EIra7fdjgsrbt8suVqlOtm4SNRhvk8Yo9JlgogB/hLG+u//jZNZW szFt9k/yrU/XfKP/tqSMHQmzNjCzZVzezkYZK6rz8rez1a22hKKudtmbQXylGkgM /MbO+8UVUCnMA4petIlDVIPJ0viveIpduro5IVqCwCyFuOijN7gHyebqy/LjfuCl G6SDcbjKBnBqqLpww4uyGTz8i2t+UakIy7vgEQRr1O8p1FJLNZ3zUBI4vA3HBd2q EG66xQexKq6YjGZZUJdh =lj88 -----END PGP SIGNATURE----- _______________________________________________ Sks-devel mailing list [email protected] https://lists.nongnu.org/mailman/listinfo/sks-devel
