[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Antw: use openssl or moznss for more than TLS?

To: devzero2000 <pinto.elia@gmail.com>, Michael Ströder <michael@stroeder.com>
Subject: Re: Antw: use openssl or moznss for more than TLS?
From: Howard Chu <hyc@symas.com>
Date: Sat, 26 Oct 2013 11:45:54 -0700
Cc: Steve Eckmann <steve.eckmann@issinc.com>, "openldap-technical@openldap.org" <openldap-technical@openldap.org>
In-reply-to: <CAH5b-BVpUcyohASnBxR-71av31-htWc1y1=M1WU0Sbt93X6cJg@mail.gmail.com>
References: <1cc760ef909d438ab78baff3ff7547b1@CO1PR04MB442.namprd04.prod.outlook.com> <526A3373020000A100012E38@gwsmtp1.uni-regensburg.de> <81cce762fcab41598cc1c8afcf239d60@CO1PR04MB442.namprd04.prod.outlook.com> <526AB189.8060008@stroeder.com> <CAH5b-BVpUcyohASnBxR-71av31-htWc1y1=M1WU0Sbt93X6cJg@mail.gmail.com>
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:27.0) Gecko/20100101 Firefox/27.0 SeaMonkey/2.24a1

devzero2000 wrote:

On Fri, Oct 25, 2013 at 7:59 PM, Michael Ströder <michael@stroeder.com> wrote:

Steve Eckmann wrote:

We are using {SSHA} (SHA-1) in OpenLDAP now. The customer wants SHA-512.
And they require a FIPS-validated implementation, which I think narrows our
options to using either OpenSSL or NSS in FIPS mode. I cannot see a better
way to meet the customer's two requirements than gutting pw-sha2 and using
that as a thin wrapper for the raw crypto functions in either openssl or
nss.


You probably should first ask on the openssl-users mailing list under which
conditions you get some "FIPS-validated" code regarding the whole OpenLDAP
"application". Likely it's not feasible.

I'm pretty sure that your customer FIPS requirement is plain nonsense and you
might work around this by some other strange policy text. ;-}

I am not sure "nonsense" if some distro are doing something in this
area. Right or,
perhaps, sometime wrong (o perhaps sometime break).
http://fedoraproject.org/wiki/FedoraCryptoConsolidation

FIPS spec is clearly nonsense, from a technical perspective. E.g. it requiredsupport of Dual_EC_DRBG random number generator which was proven to beinferior and almost certainly has an NSA backdoor.

The Fedora crypto consolidation rationale is completely bogus; in unifying thecrypto database across the entire machine it fails to recognize that differentservices (and different clients) will have completely different securitypolicies and requirements. Of course this is common knowledge for actualsecurity practitioners - servers generally should only recognize and trustclient certificates issued by a single CA, while clients generally need to beable to trust many different CAs for a wide range of services. HTTP servershave much different certificate requirements from LDAP/FTP/SMTP servers;almost nobody uses client certificates with HTTP but they are commonplace formany other authenticated services.

Of course, the Fedora crypto scene is dictated more by political concerns thantechnical. https://bugzilla.redhat.com/show_bug.cgi?id=319901


--
  -- Howard Chu
  CTO, Symas Corp.           http://www.symas.com
  Director, Highland Sun     http://highlandsun.com/hyc/
  Chief Architect, OpenLDAP  http://www.openldap.org/project/

Follow-Ups:
- Re: Antw: use openssl or moznss for more than TLS?
  - From: "Brett @Google" <brett.maxfield@gmail.com>

References:
- use openssl or moznss for more than TLS?
  - From: Steve Eckmann <steve.eckmann@issinc.com>
- Antw: use openssl or moznss for more than TLS?
  - From: "Ulrich Windl" <Ulrich.Windl@rz.uni-regensburg.de>
- RE: Antw: use openssl or moznss for more than TLS?
  - From: Steve Eckmann <steve.eckmann@issinc.com>
- Re: Antw: use openssl or moznss for more than TLS?
  - From: Michael Ströder <michael@stroeder.com>
- Re: Antw: use openssl or moznss for more than TLS?
  - From: devzero2000 <pinto.elia@gmail.com>

Prev by Date: RE: Migrating to N-Way Master
Next by Date: Re: RE24 testing call (OpenLDAP 2.4.37)
Index(es):
- Chronological
- Thread