Re: HTTP Signature CG report from Dmitri Zagidulin on 2024-02-07 (public-swicg@w3.org from February 2024)

From: Dmitri Zagidulin <dzagidulin@gmail.com>
Date: Wed, 7 Feb 2024 11:46:45 -0500
To: nightpool <eg1290@gmail.com>
Cc: Cristiano Longo <cristianolongo@opendatahacklab.org>, Social Web Incubator Community Group <public-swicg@w3.org>
Message-ID: <CANnQ-L7X93yiNR8fu3_0NnNPnhFLJp65eAy_OW9U45iQ=aJNNw@mail.gmail.com>

Ah wait, you meant the activity ID, not the signer ID. So, n/m, ignore my
previous statement :)

> There is no way to avoid this vulnerability without 1) making keys
server-private or 2) throwing out HTTP Signatures entirely and resolving
every incoming activity.

Strongly disagree. The 'no way to avoid' is only that way due to possible
mis-understanding on how client side sigs work on the side of current
server implementers.

On Wed, Feb 7, 2024 at 11:43 AM Dmitri Zagidulin <dzagidulin@gmail.com>
wrote:

> > If clients have custody of keys, then `foo@example.com` could wait for `
> bar@example.com` to make a post, and then sign an activity with the same
> ID (e.g. "example.com/posts/102930")
>
> Wait, that's not how client signing works tho. The whole point of client
> signing is that nobody else can sign with the same ID (cause they don't
> have your keys).
>
>
>

Received on Wednesday, 7 February 2024 16:47:09 UTC