[Servercert-wg] Compromised/Weak Keys Ballot Proposal

Wayne Thayer wthayer at gmail.com
Fri Feb 23 16:20:57 UTC 2024


Martijn,

I would summarize the reasoning for removing the Debian requirements as
follows:
- CAs would prefer the greater clarity that would be provided by the weak
keys ballot that failed last year.
- However, some CAs were of the opinion that the prior ballot imposed more
explicit requirements for Debian weak key checking rather than just
clarifying existing requirements. The "new" requirements were viewed as
burdensome.
- The Debian vulnerability is more than 15 years old. If an Applicant
submits a Debian weak key at this point, they almost certainly have bigger
security issues.
- So the cost of these requirements outweighs the benefits at this point in
time.

I included a few links to the discussion during the prior balot's voting
period, and there was also discussion at the last SCWG teleconference that
should be captured in the minutes.

Thanks,

Wayne

On Fri, Feb 23, 2024 at 2:19 AM Martijn Katerbarg <
martijn.katerbarg at sectigo.com> wrote:

> Wayne,
>
> Apologies if I’ve missed something in discussions, but why exactly are we
> removing the Debian Weak Keys language, and even explicitly mentioned that
> CAs do not need to check for them (anymore)?
>
>
> Regards,
>
> Martijn
>
>
>
> *From: *Servercert-wg <servercert-wg-bounces at cabforum.org> on behalf of
> Wayne Thayer via Servercert-wg <servercert-wg at cabforum.org>
> *Date: *Thursday, 22 February 2024 at 20:01
> *To: *CA/B Forum Server Certificate WG Public Discussion List <
> servercert-wg at cabforum.org>
> *Subject: *Re: [Servercert-wg] Compromised/Weak Keys Ballot Proposal
>
> CAUTION: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
>
> I am seeking a second endorser for this proposal. Below is a draft of the
> ballot language.
>
>
>
> Thanks,
>
>
>
> Wayne
>
> ================================
>
> **Ballot SC-XX: Compromised / Weak Keys**
>
> This ballot updates BR section 6.1.1.3 to address two issues:
>
> First, the requirements placed on CAs to reject a certificate request if
> they have been “made aware” that the key pair is compromised is vague and
> open-ended in regard to how CAs may be “made aware”. This ballot specifies
> that CAs be “made aware” via their problem reporting mechanism.
>
> Second, this ballot reintroduces the language from [failed] ballot SC-59:
> Weak Key Guidance. However, based on feedback received during the
> discussion and voting period for that ballot, Debian weak key checks are
> now explicitly out of scope.
>
> This ballot is proposed by Wayne Thayer (Fastly) and endorsed by Brittany
> Randall (GoDaddy) and <someone else( )>. You can view and comment on the
> github pull request representing this ballot here:
> https://github.com/wthayer/servercert/pull/1/files
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fwthayer%2Fservercert%2Fpull%2F1%2Ffiles&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850059096%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=gFjQNLM5vvNOPn6e%2F5Rqroqyrd5wWvOa1OMhr0ZKygA%3D&reserved=0>
>
> The preceding discussions can be seen here:
>
> * This ballot:
> https://lists.cabforum.org/pipermail/servercert-wg/2024-February/004195.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2024-February%2F004195.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850068855%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=wWbBUYFJgmWv6%2BDGJozU3t%2BuAmZcz0B3JWQ8SLPGP1k%3D&reserved=0>
> * The prior weak keys ballot:
> https://lists.cabforum.org/pipermail/servercert-wg/2023-July/003820.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2023-July%2F003820.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850076172%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=4EXcyRFbmLWIzmvtH7jMejnsdSKivK4DCAKt3CnQY7c%3D&reserved=0>
> and
> https://lists.cabforum.org/pipermail/servercert-wg/2023-July/003857.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2023-July%2F003857.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850081831%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=1Nb2h4lpYGRnBeo5rsepAzxv67MgomR3jzrLQi2673I%3D&reserved=0>
> * The “made aware” language in 6.1.1.3
> <https://nam04.safelinks.protection.outlook.com/?url=http%3A%2F%2F6.1.1.3%2F&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850089378%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=jfVRbttj6iNh4BZulivr9LMIvY10tKy2YUYtnFjcCtw%3D&reserved=0>:
>  https://lists.cabforum.org/pipermail/servercert-wg/2023-July/003902.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2023-July%2F003902.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850096339%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=WnyrTX2%2BPcieAuFKKoSPMalLE1fgPkaQ3U51wuY%2BjZM%3D&reserved=0>
>
>
> --- Motion Begins ---
>
> This ballot modifies the "Baseline Requirements for the Issuance and
> Management of Publicly-Trusted Certificates" ("Baseline Requirements")
> based on Version 2.X.X
>
> MODIFY the Baseline Requirements as specified in the following redline:
> <Immutable redline link>
>
> --- Motion Ends ---
>
> Discussion (at least 7 days):
>
> - Start: TBD UTC
> - End: TBD UTC
>
> Vote for approval (7 days):
>
> - Start: TBD UTC
> - End: TBD UTC
>
>
>
> On Mon, Feb 12, 2024 at 6:12 PM Wayne Thayer via Servercert-wg <
> servercert-wg at cabforum.org> wrote:
>
> Thank you fo the feedback Aaron. I agree with both points you made in the
> PR and have updated it to reflect your suggestions.
>
>
>
> - Wayne
>
>
>
> On Mon, Feb 12, 2024 at 12:27 PM Aaron Gable <aaron at letsencrypt.org>
> wrote:
>
> Thank you Wayne! I think this gets close to the sweet spot for me,
> personally. I've left two small comments on the ballot, but on the whole I
> think I like this approach.
>
>
>
> Thanks again,
>
> Aaron
>
>
>
> On Mon, Feb 12, 2024 at 8:18 AM Wayne Thayer via Servercert-wg <
> servercert-wg at cabforum.org> wrote:
>
> Following up from the last SCWG teleconference, I've reviewed the feedback
> from the discussion [1] and voting [2] periods for ballot SC-59 Weak Key
> Guidance, along with the prior discussions on the "made aware" language in
> section 6.1.1.3 [3] and I would like to propose the following Baseline
> Requirements improvements:
>
>
>
> * Scope the 6.1.1.3 "made aware" language to "made aware via the CA's
> documented problem reporting mechanism". This addresses the concern that I
> raised by limiting how a CA can be "made aware". [4]
>
>
>
> * Remove the Debian requirements from the prior weak keys ballot and
> replace them with language that excludes Debian weak keys. Otherwise use
> the language from the prior ballot, with the exception of a new effective
> date. This consolidates feedback that CAs do desire the clarity that would
> have been provided by the prior ballot, but many believe that the burden
> for rejecting Debian weak keys exceeds the value of doing so at this point
> in time.
>
>
>
> Here's the result: https://github.com/wthayer/servercert/pull/1/files
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fwthayer%2Fservercert%2Fpull%2F1%2Ffiles&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850102578%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=gxT%2FpOd6NJBNCH5UopU0yyKfX6bNHNLMMX3YGcsOGPY%3D&reserved=0>
>
>
>
> Note that, while there has been discussion about completely removing weak
> key checking requirements, there does not appear to be a consensus to do so.
>
>
>
> I would appreciate everyone's feedback on the proposal, and I am also
> seeking endorsers.
>
>
>
> Thanks,
>
>
>
> Wayne
>
>
>
> [1]
> https://lists.cabforum.org/pipermail/servercert-wg/2023-July/003820.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2023-July%2F003820.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850107915%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=znHnPD9SJAQKLGmANLp6kuERTkrJdMmb0i7XsjubpuE%3D&reserved=0>
>
> [2]
> https://lists.cabforum.org/pipermail/servercert-wg/2023-July/003857.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2023-July%2F003857.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850113533%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=A9Ip4BJqUNHDbelNbm9tIZbXNYCeaNzCnCnE%2FiYnRxI%3D&reserved=0>
>
> [3]
> https://lists.cabforum.org/pipermail/servercert-wg/2023-July/003902.html
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fpipermail%2Fservercert-wg%2F2023-July%2F003902.html&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850119049%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=Cph0IpNtSXxVk2caApbs3paMmXnhwsyiKYW0SWigoRg%3D&reserved=0>
>
> [4] https://github.com/cabforum/servercert/issues/442
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fcabforum%2Fservercert%2Fissues%2F442&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850124534%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=cWhv5uYYPPEVorewZpVaTZ3CQFZf%2Fil%2FSBF0uOw4nvo%3D&reserved=0>
>
>
>
> _______________________________________________
> Servercert-wg mailing list
> Servercert-wg at cabforum.org
> https://lists.cabforum.org/mailman/listinfo/servercert-wg
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fmailman%2Flistinfo%2Fservercert-wg&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850129661%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=9BZGhc%2FZeH%2BRyM7p8zLxgm1qeD73kMeq6SWJ0GmUe0Q%3D&reserved=0>
>
> _______________________________________________
> Servercert-wg mailing list
> Servercert-wg at cabforum.org
> https://lists.cabforum.org/mailman/listinfo/servercert-wg
> <https://nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Flists.cabforum.org%2Fmailman%2Flistinfo%2Fservercert-wg&data=05%7C02%7Cmartijn.katerbarg%40sectigo.com%7Ce1972d46f9014e77784508dc33d8a94a%7C0e9c48946caa465d96604b6968b49fb7%7C0%7C0%7C638442252850135187%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=o%2Fj6VHqmrJcwJ2F3TUe%2B9XLrr0y1uFFBVyj1huoNmkQ%3D&reserved=0>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/servercert-wg/attachments/20240223/9b409057/attachment-0001.html>


More information about the Servercert-wg mailing list