Bruce Morton

New gTLDs

Tuesday, May 15th, 2012 | Bruce Morton

Over the next year or so, some new generic Top-Level Domain (gTLD) names will be released. Just to catch everybody up, we currently have about two dozen generic TLDs that you can use to register a domain name. TLDs such as .com, .net and .org. There are also country specific TLDs (ccTLD) such as .ca, .us, and .uk.

ICANN is coordinating the approval of the New Generic Top-Level Domains. The new gTLDs won’t be in use until 2013. The new gTLDs will be registered by companies, governments, and other organizations to help support their goals and causes. For instance, Amsterdam has requested a new gTLD of .amsterdam. This would allow government and businesses in Amsterdam to register their own domains ending in .amsterdam. How about cityhall.amsterdam, thebestcoffeeshop.amsterdam or woodenshoes.amsterdam? There are many other gTLD requests, see New generic Top-Level Domains for more.

Read the rest of this entry »

Tags: , ,
Posted in Certificate Management, SSL Deployment | Add Comment | No Comments »

Jon Callas

If You Don’t Like Your CA’s Practices, Find One More Sympatico

Tuesday, April 24th, 2012 | Jon Callas

The following Mozilla bug came my way via the Cryptography mailing list.

The gist of it is that a Norton (né VeriSign) customer asked for a certificate with two-year certificate, and got one with six-year validity. I don’t precisely understand why the customer is complaining to Mozilla, but they didn’t get satisfaction with Norton, who wouldn’t do what they want.

I can understand the irritation. Norton has just assumed that the customer will continue buying for six years and has left what happens if they don’t as an eventuality. I’d hate it too if any supplier of mine just assumed that I’d keep buying. It’s an affront on the customer service side.

Read the rest of this entry »

Tags: , , , , ,
Posted in Certificate Management, EV SSL, SSL Deployment, Secure Browsing | Add Comment | No Comments »

Dave Rockvam

Security Focus: It’s What’s Behind the Seal That Matters

Tuesday, April 24th, 2012 | Dave Rockvam

In my last post, I briefly discussed a survey Entrust commissioned to understand the effect trust seals have on online transaction behavior. Coincidentally, I discovered an article in IEEE Security & Privacy magazine about a similar survey the magazine conducted.

Security-related items were one of eight different factors the survey identified that affected the participants’ buying choices. Trust logos and certifications, as they referred to them, were not an important determining factor. The most familiar trust seal was recognized by only 17 percent of those surveyed. This trust seal was recognized only due to a previous online experience and not due to familiarity with the brand. More compelling is the fact that not one participant knew why this seal meant a site was secure.

Read the rest of this entry »

Tags: , ,
Posted in Certificate Management, Document Signing, Secure Browsing | Add Comment | No Comments »

Jon Callas

Disappointment Over Speeding up SSL

Monday, April 23rd, 2012 | Jon Callas

A year and a half ago, Google started an experiment to speed up SSL by 30% by using an improvement called False Start. Our own Bruce Morton wrote about it not once but twice, and most of the world has been hopeful about the experiment. What’s not to like about a 30% speed improvement?

Sadly, Adam Langley has said that he is declaring the experiment a failure. The problem is that it doesn’t work well on some sites, not without a fix to the SSL code on these sites. The problematic sites seems to be all protective gateways that proxy a connection from front-edge servers to ones in the back of a network. He hypothesizes that these sites are reading and writing on separate threads and that this is causing problems with False Start. They tried explicitly noting who had problems and just not doing it there, but that hasn’t panned out.

Langley believes that the fix is easy on the server end, and that the people who aren’t fixing it aren’t being obstinate, they just likely don’t have someone who is expert in their SSL code any more. They’re now limiting its use solely to sites that have implemented the Next Protocol Negotiation extension.

This is a real pity. We need more sites using SSL, and it’s always better to get SSL faster, as that means more people will use SSL.

Tags: , ,
Posted in EV SSL, Secure Browsing | Add Comment | No Comments »

Tim Moses

Digital Certificate Revocation – What the Future Holds

Thursday, April 19th, 2012 | Tim Moses

When you tell people that revocation doesn’t work, they tend to look at you incredulously: “You’ve got all these solutions: full CRLs, CRL distribution points, delta-CRLs, indirect CRLs, OCSP, stapled OCSP. Surely one of those will work.”

That’s the problem, right there. There are so many protocol and configuration choices that no two products or services have chosen compatible options. Result? Revocation doesn’t work for the Web. If browser suppliers discover a mis-issued certificate, instead of asking the CA to revoke it, they issue a software update that blacklists the certificate. While it’s widely acknowledged that this is not a sustainable solution, there is no agreement yet on what IS a sustainable solution.

The industry intends to move to “hard fail.” That means that CAs can offer their customers the option that browsers will fail to display their site if the browser cannot obtain confirmation that the certificate remains valid. Maybe, in some distant future, browsers will always behave that way, whether the customer chooses or not.

Read the rest of this entry »

Posted in Certificate Management | Add Comment | No Comments »

Dave Rockvam

Survey: Site Seals v. Reliable Security – Which is Most Important?

Tuesday, April 10th, 2012 | Dave Rockvam

There is a lot of hype right now about a major player in the SSL security space “rebranding” itself as the go-to SSL provider. But hype and big brand names alone shouldn’t influence security buying decisions. While this sounds logical, too many companies and organizations pay a premium for an over-marketed SSL trust seal. Entrust recently commissioned a survey on consumer attitudes regarding the security of online banking and shopping transactions. The results were intriguing.

The survey, conducted by Riskey Business Solutions, finds 61 percent of respondents believe Internet security is “extremely important” when engaging in online transactions. The study also reveals respondents place the least amount of trust on the website’s site seal. Instead, they project a higher degree of trust on the brand reputation of the website owner.

This suggests the security of a transaction or purchase rests upon the website brand, as opposed to the actual SSL provider. According to the survey, online-banking customers rely on the reputation of the website owners, while online shoppers have more trust in the protection from their credit card companies. In fact, trust seals ranked last in significance.

Read the rest of this entry »

Posted in Uncategorized | Add Comment | No Comments »

Jon Callas

Sophos Breach Tied to Partner Portal

Friday, April 6th, 2012 | Jon Callas

Security Week reports in, “Sophos Kills Partner Portal After Suffering Breach” that the security firm Sophos has disabled its partner portal after discovering a breach.

They aren’t saying much yet — kudos to them for their disclosure and response — but they think that the breach came from an older part of their portal, and not their new one hosted by SFDC. They expect the portal to come back after this week’s holidays.

I recommend two-factor authentication as a big help. I know a company that has a wide range of options including soft tokens that can run on smartphones. They got a perfect score from SC Magazine, are a price leader, and also won their award for Best Multifactor Authentication.

(Full disclosure — I work for them.)

Tags:
Posted in Uncategorized | Add Comment | No Comments »

Dave Rockvam

Dutch Government: PKI alternatives, replacements not on horizon

Thursday, March 29th, 2012 | Dave Rockvam

In July 2011, Dutch certification authority (CA) DigiNotar experienced a security incident that affected the national security infrastructure of both governmental and non-governmental bodies in the Netherlands. The government commissioned a report looking into the incident and the broader CA/SSL market. One of the conclusions of the Dutch government’s report is that alternatives to PKI are not mature and replacements are nowhere in sight. At Entrust, we definitely agree. We feel strongly that PKI, SSL and the use of the digital certificates are still the most effective methods to implement strong authentication to secure information, applications and devices.

It is, however, now up to the CA community to raise the bar on security and trust to help maintain the integrity and viability of the Internet. As a member of the CA/Browser Forum, Entrust works diligently with fellow CAs, browser developers and stakeholders to make sure the proper steps are taken, on a global scale, to help secure the Internet for the greater good.

Unfortunately, the report is only in Dutch, but Google does a pretty good job translating.

Posted in General, SSL Deployment, Secure Browsing | Add Comment | No Comments »

Jon Callas

Google Rethinks Revocation

Wednesday, March 7th, 2012 | Jon Callas

Google has decided in Chrome that they’re going to take a different approach to certificate revocation.

Chrome developer Adam Langley describes the decision in detail in his blog, Imperial Violet. Unlike a number of CAs, we think this is a pretty good idea, even if incompletely executed so far.

Revocation is a difficult task. It is difficult because it requires coordination between the CAs and the browsers to protect the end user, and that the event is definitionally unusual. An end user sees an actual revoked certificate only once in millions or billions of web fetches. The checks are time-consuming as well. Langley says that the median time of a successful check is about a third of a second and the mean is over a second. Read the rest of this entry »

Tags: , , , , ,
Posted in Certificate Management | Add Comment | No Comments »

Jon Callas

RSA Key Generation Flaw Does Not Affect Entrust Certificates

Thursday, February 16th, 2012 | Jon Callas

The New York Times published an article by John Markoff a couple days ago, “Flaw Found in an Online Encryption Method.” Sadly, the article is behind the Times paywall. Irritatingly, it’s a very good article except for the headline, which is wrong. The flaw isn’t found in the encryption, but in some key generation.

A better (and freely available) article is Dan Goodin’s article in Ars Technica, “Crypto shocker: four of every 1,000 public keys provide no security” or Elinor Mill’s article, “Researchers find flaw in key generation with popular cryptography” in CNet.

Let me get right to the bottom line. This does not affect any Entrust certificates. We checked all of our issued certificates and if you are one of our customers, you’re safe. Take a deep breath now, and relax.

(We also are grateful to and profusely thank the authors of gmp and gmpy without whom we could not have done our own analysis so quickly.)

The full paper of this is available here, and quite readable.

Here is how it works. RSA keys are made from two prime numbers that are multiplied together. The security of the RSA algorithm relies on the fact that it’s hard to factor the big number into the two little ones.

However, it is relatively easy to check for the greatest common divisor of two numbers — it’s a lot easier than factoring the numbers. Since both of those numbers are the result of two numbers multiplied together, a common factor unrolls them all.

The authors of the paper: Arjen Lenstra, James Hughes, Maxime Augier, Joppe W. Bos, Thorsten Kleinjung, and Christophe Wachter, surveyed about seven million certificates and found about 27,000 that they could find a common divisor for some of them.

That means that the code somewhere that generates the RSA keys for something isn’t very random. But where and why?

This is not the only work in this area that has been done. At the PETS conference in 2004, Ben Laurie and Matthias Bauer did the same analysis of PGP keys and found no duplicate factors in them.

This morning, Nadia Heninger published her analysis on the Freedom to Tinker blog, “New research: There’s no need to panic over factorable keys–just mind your Ps and Qs.”

Henniger says that she, along with Zakir Durumeric, Eric Wustrow, Alex Halderman, also analyzed many certificates and found similar results. However, they manually examined the flawed keys and found that they were generated by embedded devices such as “firewalls, routers, VPN devices, remote server administration devices, printers, projectors, and VOIP phones,” not by web servers or other like systems.

Heninger’s post has wonderful detail — I’m not going to do anything more than post a link to her article again. Read it. Her team is contacting the people who have vulnerable devices so they can fix the problem on their device.

I think that this check should become a standard part of all key certification, comparing against the known bad keys.

In the mean time, we can stand down for most of what we do on the Internet. This is a serious problem that needs to be fixed where it exists, but it’s not the end of the world.

Tags: , , ,
Posted in EV SSL, SSL Deployment | Add Comment | 1 Comment »

« Older Entries