Mozilla BrowserID: Decentralized, Federated Login

An anonymous reader writes "Mozilla Labs has just launched the prototype of its BrowserID project and the accompanying Verified Email Protocol standard. Basically, BrowserID is a browser-based federated login provider like Facebook Connect, but without the privacy leaks. Fundamentally, BrowserID is public key encryption. You register an email address with your browser, which is then confirmed with a standard 'click here to confirm' email. A public/private key pair is then generated; your browser keeps the private key, and your email provider keeps the public key. Now, when you visit Facebook (or any site that supports BrowserID), your browser gives Facebook your email address and an identity token signed with your private key. Facebook queries your email provider for your public key, decrypts your identity token, and logs you in — voila, secure, private, browser-based logins. Oh, and the prototype is written in HTML and JavaScript — so it works across every modern browser, too."

Re:Yeah but...

[zero0ne]

Nor does logging into your online bank account with a normal username / password. This looks to just be a wrapper for a more secure, trusted identity.

Re:Yeah but...

[andymadigan]

You can still have pseudonymity, just sign up for an e-mail address and don't use your real name.

I'd just like to say

[milimetric]

yeeeeeeeeeeeeeeeeeeeeeeeeeeessssssss!

finally. thank the deities.

Re:I'd just like to say

[sirlark]

Agreed, it would be a wonderful thing to have, but it still has issues as far as I can see.

TFS says 'but without the privacy leaks', but really you can still be tracked/followed/denied/fucked with from a single point/service, namely your email provider.

Also, there's the age old problem of common password for everything, if one is compromised, they all are. Granted in this case, it's a private key and not password, which is slightly harder to acquire though social engineering, mainly because most people aren't even aware of what private keys are, and those that are usually know enough not to give them up. But still, you shouldn't use one key for everything either... or so I've been told ;)

Re:I'd just like to say

[capo_dei_capi]

Also, there's the age old problem of common password for everything, if one is compromised, they all are. Granted in this case, it's a private key and not password, which is slightly harder to acquire though social engineering, mainly because most people aren't even aware of what private keys are, and those that are usually know enough not to give them up. But still, you shouldn't use one key for everything either... or so I've been told ;)

At least that single key pair is fairly easy to replace, if you notice that it has been compromised. But yeah, I agree, the one account for everything approach, which this basically is an instance of, is definitely less secure than having different accounts and login credentials for all the services you use.

Re:I'd just like to say

[smallfries]

The issues that you point out already exist with current email-to-reset approaches. What they are suggesting is not a perfect solution to authentication, but after glancing through their spec it seems to be at least as reliable as what we use currently. At the moment your email provider could screw with any account that relies on password confirmation / reset request emails. With this system the provider would only hold your public key, so while it would still be able to track / deny-service it would not have as much power as with the current system.

Overall it seems like a nice compromise between the ideal and a system that has a hope of wide-spread adoption. Although as it seems to require implementation by the mail provider anyway they could have gone for an IBE signature system.

Re:I'd just like to say

[thegreatemu]

what keeps this approach from generating a separate key for every site?

Re:I'd just like to say

[Unequivocal]

No, you actually can't be tracked via this system from your email service provider. That was the point of this.

The system works like this: your browser gets a signed crypto certificate from your email provider (or some other proxy who can confirm you own the email address you claim to own - Mozilla is running their own email verifier already - called "auth party" or AP). Your browser resigns that cert locally and hands that over to the login website ("relying party" or RP). The RP then only has to check the public key on the cert back to the AP. So all the AP knows is that RP checked the public key - they don't know for which user the key was checked.

Now your browser can track/follow/deny/fuck you, but that's not changed. What has changed is that the email provider doesn't get to follow your login behavior as they do today with OpenID and OAUTH..

This is a major improvement in tracking prevention, especially for the limiting your privacy spillage to AP's..

Re:I'd just like to say

[AdamWill]

"TFS says 'but without the privacy leaks', but really you can still be tracked/followed/denied/fucked with from a single point/service, namely your email provider."

Well, with current systems you already can: they all rely on the old 'send a verification email' technique, and whoever provides your email account can obviously read your email. So this system doesn't make things any worse than current systems from a privacy perspective, while adding quite a lot of convenience. The idea that you're already trusting your email provider anyway, so let's make them the key authority, is a pretty smart thing about this system.

And of course, you can always manage your own email address, and then you're the authority that can track you. =)

Browser keeps the private key?

Ah, so when i have to reinstall my OS due to HDD death or OS death and for whatever reason, can't save my profile app data files (depending on where it stores the key)... then what?

Will i just be able to do a "Forgot my password" type action to regenerate a private key?

Re:Browser keeps the private key?

[tero]

It's still one of those minor issues that is not "entirely ready" yet.

https://github.com/mozilla/browserid/issues/17

Re:Browser keeps the private key?

[axx]

Even better! Thanks to our convenient, safe and secure process, the private key will be calculated from your public key and sent back to you via email for you to store on your new computer!

Re:Browser keeps the private key?

[todrules]

And how does this work across multiple devices? I have my work laptop, home laptop, and home workstation. From the summary, I don't see how this can work.

Re:Browser keeps the private key?

[handslikesnakes]

The same as when you use a different browser, or start using BrowserID for the first time:

You log into your email provider, which asks your browser to generate a key. Your email provider signs the key, and your browsers stores it.

There's no single keyair that you're totally dependent on.

Re:Browser keeps the private key?

[whiteboy86]

and those blackhats can conveniently grab the user's private key via trojan or a hacked browser now

Re:Browser keeps the private key?

[BrokenHalo]

I was wondering the same thing. Guess I'll just have to RTFM. [sigh] ;-)

Re:Browser keeps the private key?

[tero]

Yes, it supports multiple keys on multiple devices.

Re:Browser keeps the private key?

[RobbieThe1st]

You mean like now?

Re:Browser keeps the private key?

[improfane]

Maybe this is what you would use Mozilla Sync for? (At the risk of keeping your internet life at a single provider.)

Of course you backup your Mozilla profile*, don't you?

* That directory that keeps all your bookmarks, history and saved passwords.

Re:Browser keeps the private key?

[sgt+scrub]

No doubt! Letting your browser save passwords is stupid. Letting your browser store keys is insane! I like single sign on tech for internal low security stuff as much as the next guy, but global? sigh.

Re:Browser keeps the private key?

[spydum]

I don't think the browser would ever need to transmit the private key in this scenario. However, yes: if the user or browser was some how tricked into uploading it -- you are compromised. This is still better than passwords, which are easy to attack with dictionaries and rainbow tables.

Re:Browser keeps the private key?

[PhilHibbs]

Also, what do I do when I want to use an internet cafe to log into a BrowserID site?

Re:Browser keeps the private key?

[Synerg1y]

If you don't store your passwords, what changed?

If you do, you just gained a layer of security, browser stored passwords are a security joke, they decrypt in under a minute.

Re:Browser keeps the private key?

[AdamWill]

https://wiki.mozilla.org/Labs/Identity/VerifiedEmailProtocol#Synchronization_of_keys

yup. You can have multiple keys for one email address, or you can sync one key across multiple browser profiles.

Re:Browser keeps the private key?

[godefroi]

I've heard people talk about this "internet cafe" thing, mostly in exactly these sorts of hypothetical questions, but I've never actually seen one. The closest I've come is the row of computers at the library, and, well, if you're doing anything involving authentication on a computer at the library, you're doing it very, very wrong.

Re:Browser keeps the private key?

[PhilHibbs]

At the moment, I can log in to a single web site at the library and know that if the library machine has evil spyware on it then only that account will be compromised. It seems to me that with this scheme, I have to put all my the login credentials into the library browser in order to do anything.

Back up your profile

[tepples]

As I understand it, the browser keeps your private key in your profile, just as it keeps your bookmarks and cookies in your profile. And as the protocol spec states: "It does not forbid synchronization" of the private key across devices. So back up your profile.

Re:Yeah but...

Trusting yet another 3rd party service with authentication data. What could possibly go wrong?

Re:Bad idea idiots

[BHearsum]

Not sure if you're trolling or not (you probably are), but in 2nd and 3rd world countries Internet Cafes and cellphones are the primary means of Internet access...

Spam?

The biggest problem with the current "e-mail address as username" is spam. So how does this prevent the site in question from selling my e-mail address to spammers?

Re:Spam?

[prionic6]

I may have some data about your theory. For quite some time now (a few years), I have a catch-all on my domain, so I can basically use any address I want. When some site wants my email, I give it firstname.@mydomain.de. Now, from time to time, I look through my spam folder to do a bit of research. Turns out, most of the spam goes to an adress I have used in the far past on usenet or variations of it. Second in rank is a random string as username (comes naturally with a catch-all) and right after that is my vanilla firstname@mydomain.de, that I give to friends and also have used on sites before I started this scheme. In the current month, there are about five to ten spam messages (out of a few thousand) that can be tracked to the place where I entered them, and these places are two semi obscure forums and stuffit.com.

Re:Spam?

[thePowerOfGrayskull]

Just to ensure there are no illusions that should read, "I am part of the product google sells to its advertisers."

From,

A fellow product.

Re:Spam?

[izomiac]

Aside from that, e-mail is a poor identifier. It's a pain to type out, and frequently changes. My mother, as an example of a lay person, used to change her e-mail address everytime she switched ISPs, which was about every year so she could get a new promotional rate.

OTOH, spam is easy to deal with. Someone could setup a subdomain forwarding service that lets you give out a unique e-mail address to each website (e.g. amazon.com@yoursubdomain.host.net) and sends your key for any address @yoursubdomain.host.net. From there, unknown addresses get sent to a spam folder, and known addresses can be blocked on a per-address basis. Or even immediately after giving out the address, if you'd rather not receive any e-mail after the initial verification.

Actually, I basically already do this. I've got a greasemonkey script that autofills 'e-mail' form fields with the most significant part of the domain (e.g. amazon.com or bbc.co.uk) @mysubdomain.cjb.net. CJB lets me do a blanket forward and specific forwards for individual aliases and has been reliable for many years (aside from some sign-up scripts choking on 'greylisting'). Password fields cause a javascript prompt that takes my master password as a key to encipher the significant part of the domain using AES via the Stanford Javascript Crypto Library.

i'm no security expert

isn't the browser basically the most targeted piece of software on a computer? if the private key is stored in the browser, doesn't that mean that potentially one successful exploit in the browser would let a hacker log into any website as you?

Re:i'm no security expert

[ArsenneLupin]

How is that different from now, where you can have the browser autocomplete the password for most login forms anyways? If the browser is hacked, the autologin password db is exposed too.

Re:i'm no security expert

[marcosdumay]

The browser is still less targeted than the login pages of the services one uses online.

Re:i'm no security expert

[Lennie]

If you know your private key is stolen you just generate a new one and the problem is solved (unless they get access to your email account as well ofcourse).

Re:i'm no security expert

[AdamWill]

you might assume that, but it isn't. The current implementation does not ask you to put a passphrase on the key by default, nor apparently even make this possible. To me that's the biggest flaw with it. I raised a bug on this: https://github.com/mozilla/browserid/issues/61 .

Re:i'm no security expert

[tftp]

How is that different from now, where you can have the browser autocomplete the password for most login forms anyways?

To begin with, my browser saves my password for Slashdot, but not for my bank. I make that decision.

Secondly, when I connect to something from a remote, possibly untrusted location (like the work computer) I can choose to not store anything at all, and perhaps even run in the "private browsing" mode.

This system would insist on having a private key, one way or another, for a login into a protected site. That private key is a file; once you store it onto the disk you never know that it had been successfully deleted - especially on a computer that is not entirely under your control. Today it's guaranteed that all private keys end up "in the cloud" - on Google, for example - because it is so easy, and in fact you need access to those keys all the time.

If someone wants a single sign-on then they are welcome to this system. It is not any worse than any other form of a single sign-on.

However I don't feel a need for such a system. I either remember my passwords, or I have them written down, or they could be encrypted on a separate device. I don't want any key material to land onto the HDD.

The problem with server side security can be easily fixed by not storing plaintext passwords, for example. Or you can store whatever you want, but do it on a separate box that has no TCP/IP and can't be hacked. There are many possibilities, and they all permit you to have a separate identity for each Web site you visit - and you are in control of what identities, if any, you want to share among what kind of sites.

Re:Yeah but...

[rbrausse]

according to this wiki entry it is possible to create multiple key pairs for one address, so public keys are not compulsorily unique identifiers.

Re:Really?

[robmv]

The same way nearly all signup forms request your email in order to be able to recover your account if you forget your password. Oh I forgot people create fake emails if they do not trust the site

Re:Really?

[Richard_at_work]

Not just that, but now you have to remember to back up your browsers private key, and have them synced across different browser installs...

Skeptical but encouraged

[anarcat]

So wait - why doesn't this use the existing PGP web of trust and software?

And how does it mitigate the MITM/Phishing attacks that plagued OpenID?

I'm skeptical, but encouraged to see some efforts here...

Re:Skeptical but encouraged

[washort]

So wait - why doesn't this use the existing PGP web of trust and software?

Mainly because PGP is only usable by people who are already security wizards.

Re:Skeptical but encouraged

[icebraining]

And how does it mitigate the MITM/Phishing attacks that plagued OpenID?

Phishing only works because the user has to input the password on the provider's website (which is phished). With PKI, the private key is never sent - you just prove you have it by encrypting something with it - so phishing is useless.

E-mail providers that don't opt in

[tepples]

So where does this leave Internet users whose e-mail providers decline to implement Verified Email Protocol?

Re:E-mail providers that don't opt in

[tero]

That's where the secondaries come in. The RP's are asked to implicitly to trust the authentication coming from these "trusted sources".

Mozilla is proposing making their own browserid.org as one such secondary.

Re:E-mail providers that don't opt in

[Joce640k]

The kind of users who use this will be the kind of users who use hotmail/gmail/yahoo/etc.

Re:E-mail providers that don't opt in

[Lennie]

I think that is what the BrowserID project is for, see the video.

They mail you a link just like all these sites currently do, you just need to do it ones to verify your email address instead of for each and every site.

Let me get this straight

[Errol+backfiring]

My browser will automatically provide my e-mail address? The very thing I do NOT want to provide when signing in with the majority of sites?

Also, as a web developer, I think it is a real bad design error to use an e-mail address as a login. What happens if you change your provider? Do you log in with your new (thus unknown) e-mail address? Or do you want to send the lost password to the no longer existing one?

Re:Let me get this straight

Answer: Buy your own domain... You'll never have to change your e-mail address again.

Re:Let me get this straight

[marcosdumay]

The first issue is fixed simply by the browser asking your permission before it sends your data. The UI can be made in a way that is harder to give permission (at the first login) than just clicking 'Yes'.

The second issue is real, but is also moot. Everybody uses email for authentication. A few people that can think offer the option of changing your email, others don't. Those same groups would do correclty/incorrectly any authentication method you can think of.

Re:Let me get this straight

[Lennie]

Not automatically obviously. It still needs user-interaction.

How do all these other sites currently handle accounts ?

They use email-addresses and a verification-email and have a profile-page where you can change the email-address.

This is not that different.

Re:Let me get this straight

[Bengie]

"Also, as a web developer, I think it is a real bad design error to use an e-mail address as a login"

Playing the critic. How does one remember their login for every website?

Whenever my browser forgets/clears my user/pass cache, I have to request my username to be sent to me and my password reset.

On almost a daily basis, I'll reply to someone on a forum, it'll request I register, I attempt to register and it'll say that email is in use. I don't remember signing up, so I just do a password reset.

It's so annoying to have to request my username and reset my password 2-3 times a day for different sites. The only sites I don't have problems with are the ones that use my GoogleID.

Re:Let me get this straight

[johndfalk]

My browser will automatically provide my e-mail address? The very thing I do NOT want to provide when signing in with the majority of sites?

Also, as a web developer, I think it is a real bad design error to use an e-mail address as a login. What happens if you change your provider? Do you log in with your new (thus unknown) e-mail address? Or do you want to send the lost password to the no longer existing one?

As a user I think that not allowing use of my email address as a login name pisses me off to no end. Why should I have to remember a separate login name for each and every service? The service already has my email address because it is ALWAYS required so why not just use that. In addition, if you are still using an email address from your ISP then you already have some major issues. See http://mail.google.com/ for the correct alternative to ISP provided email.

Re:Let me get this straight

[Piranhaa]

... And if you lose your domain?

Re:Let me get this straight

[bill_mcgonigle]

.... And if you lose your domain?

Then it wasn't worth $7 for you to keep it. The GP's suggestion takes care of three nines of the problem, which is a great start.

Re:Let me get this straight

[JMJimmy]

or you faced bankruptcy and no longer had a credit card
or didn't have auto-renew enabled
or you just plain forgot to renew it
or it was taken away by the US government just because
or you grew out of your "anarchy-rules.com" or "whorepresents.com" domain name and wanted something more current
or your email was with a company that rebranded
or...

Re:Let me get this straight

[icebraining]

or you faced bankruptcy and no longer had a credit card

Use a debit account or a pre-paid card.

or didn't have auto-renew enabled
or you just plain forgot to renew it

Set a damn reminder.

or it was taken away by the US government just because

Less than 0.07% of all registered domain. And you don't have to get a domain controlled by the US - get a Swiss domain or so.

or you grew out of your "anarchy-rules.com" or "whorepresents.com" domain name and wanted something more current

Register another, redirect the old to it.

or your email was with a company that rebranded

You can change your email provider without affecting your domain...

Re:Let me get this straight

[JMJimmy]

or you faced bankruptcy and no longer had a credit card

Use a debit account or a pre-paid card.

Assuming the company you have your domain with accepts this type of payment and it's available as an option in your geographical region.

or didn't have auto-renew enabled
or you just plain forgot to renew it

Set a damn reminder.

Yes because people always get everything done that they intend to

or it was taken away by the US government just because

Less than 0.07% of all registered domain. And you don't have to get a domain controlled by the US - get a Swiss domain or so.

or ~92000 domains and that's just by the US, other governments are also involved in the practice.

or you grew out of your "anarchy-rules.com" or "whorepresents.com" domain name and wanted something more current

Register another, redirect the old to it.

So you're now maintaining multiple domains every year to be able to login to your sites?

or your email was with a company that rebranded

You can change your email provider without affecting your domain...

As in if I used an @foo.com address and foo.com decides they're going to rebrand as @bar.com and migrate everyone's address and shutdown all foo.com services.

It's fraught with problems and demands understanding of the implications by the user which you cannot reasonably expect.

Re:Let me get this straight

[FatLittleMonkey]

I think it is a real bad design error to use an e-mail address as a login. What happens if you change your provider? Do you log in with your new (thus unknown) e-mail address? Or do you want to send the lost password to the no longer existing one?

It's not using an e-mail address as a login. It's using a private-key signed challenge packet as a login. The e-mail address is provided to give the website the location of a reasonably secure version of your public key, so they can validate the challenge packet.

If you change e-mail hosts, you simply give the new host your original public key. (Which will probably be an automagic one click option by the time this system goes public, given that stupid-ease-of-use is its purpose.) Now when you sign in, your browser sends the signed challenge packet, and the new location of your old public key.

(And since there will be people who want a more pseudonymous identity, and since the system is open source, there will invariably be a bunch of geeks setting up a bunch of servers to host public keys for people like you, and/or server-ware you can host yourself. Then your broswer gives that pseudo-email location instead of a real e-mail address.)

Re:Let me get this straight

[thegarbz]

Hmm the way I see it every one of your excuses comes down to:

a) I was too slack
b) I didn't care
c) It wasn't worth it to me

Like seriously you think something as important as re-registering a domain falls under the "I didn't get it done because I didn't set a reminder", just like buying milk? My domain doesn't auto-renew. I don't have a reminder. Yet I do get an email about a month in advance which prompts me to go to my provider and check the status.

Don't have time, can't pay it? Your excuses are meaningless in the modern world. If you're incapable of making a micro payment online to a provider who accepts various methods of payments then you're simply slack and not trying, in which case it's you're fault.

Re:Let me get this straight

[JMJimmy]

I'm listing things that can and do happen. There are a LOT of people in this world who are successful but struggle with basic things like this. My sister and brother in law are perfect examples - highly successful ivy league professors near the top of their field but every 6 months my parents head down and make sure they take care of things like paying taxes, renewing licences, and a million other small things that just never occur to them or they don't have time to deal with or plain forget. Anyone who has issues with executive functions (ADHD as an example).

And domain seizures/rebranding are 3rd party issues outside of personal control. And there have been plenty of documented "errors" in domain seizures so it is a possibility for anyone who owns a domain (remote as it may be).

The point is that these are possibilities and if/when they occur it's a major problem in the concept of browser ID

Re:Let me get this straight

[icebraining]

So your problem with BrowserID is that it has problem? Please, tell us your infallible authentication system. User+pass certainly aren't.

Re:Let me get this straight

[JMJimmy]

No such thing as an infallible system. I do know that the less the user is involved the more likely problems will arise. If I did anything to the user+pass system it would be to combine it with the human authentication system so that it's personalized to the user while still requiring human thought.

Re:Let me get this straight

[thegarbz]

The point is that these are possibilities and if/when they occur it's a major problem in the concept of browser ID

No what you're describing is a set of issues that effect such a small minority of the people that we shouldn't even care to address them. When you cater for every fool who doesn't realise that taxes need to be paid every year then you will ultimately find a "deal breaker" in every system.

Can't remember to renew your domain? Well you'll learn when you can't log into websites anymore now won't you. If you don't maybe you shouldn't be using computers. Domain seizures? But sorry the number of domains that have been seized represent a rounding error in the counting of domains in existence. If you worry about things like that I wonder what you would think about the possibility of getting hit by an asteroid, or maybe you should buy a lottery ticket ... or as someone has suggested register a non-US domain. There's more non-US TLDs to choose from than recognised countries in the world and petty few have problems with government seizures.

You're trying to find a solution to every problem regardless of how remote. If any project ever is to succeed at some point you just need to cut the bottom percentage of fools rather than fool proofing.

Oh and by your own admission your brother / sister inlaw have worked around their own issues, so why can't others.

Re:Really?

If only I hadn't used used "password123" when I signed up for Hotmail, Gawker, Neverwinter Nights, etc.

This system adds nothing to the security of identity as it does nothing the change typical user behavior.

Re:Bad idea idiots

[sleiper]

Well then you don't use this system in an internet cafe. I dont use my fingerprint scanner outside my house, i just have to remember a password, urgh

That was a bumpy ride..

Seems Mozilla is back on the straight and narrow and innovating ideas again. They lost their way for a long time, and allowed Google in. Glad to see they are back in the game and giving Chrome competition. After all, Mozilla are the only ones out there who actually genuinely care about web and want it to thrive into something even more beautiful. Microsoft and Google both have their own personal agendas.

Re:That was a bumpy ride..

[Lennie]

Yes and no. This project has been in the works for over 2 years at Mozilla in different forms, among being based around OpenID and other systems.

The Verified Email Protocol specification has been in the works for a while now too.

The biggest problem was, I think, that they still needed to solve that not all email-providers would (immediately) implement this, so that is what the BrowserID project is for.

Re:That was a bumpy ride..

[hedwards]

To be honest, I'd be more happy if they'd finish implementing their ideas. It's been how long now and Jetpack still isn't ready for prime time?

Re:Bad idea idiots

[thaylin]

Dont know, if you want to use your cell phone you may be able to syc your keys to that browser, however if you are really going to an internet cafe, maybe you should remember your password.... So you hate this extra security, because your choice in browsing is innately insecure... No ones problem but your own.

so if someone steals your laptop

[decora]

they get access to all your shiznit.

Re:so if someone steals your laptop

[Atzanteol]

I assume you would have the ability to issue a revocation certificate.

Re:so if someone steals your laptop

[Trentula]

You mean to tell me you don't use full disk encryption?

And what if you want to be anonymous?

[Grand+Facade]

OOoops! too late your browser has already given you up...

And what if you need to have multiple identities?

Re:And what if you want to be anonymous?

[jank1887]

or what if multiple people use the same web browser? think: family room PC where mom/dad/teenager go and open up a web browser then log into their own facebook account. no, they don't have separate windows profiles and don't bother with addons that let you have multiple firefox profiles, etc, within one windows profile. (how would THAT affect this anyway...)

Re:And what if you want to be anonymous?

[handslikesnakes]

No, your browser only tells sites your email address when you tell it to. If you have multiple identities, you select which email address you want to present to the site.

Re:And what if you want to be anonymous?

[PhilHibbs]

Well, you'd have to use multiple profiles. This would require the browser writers to make profile switching much easier than it currently is. The browser would basically take over the "login" function, it decrypts your private key when you launch the browser and throws the key away when you close it or log out of your profile. A good browser would have an option to share bookmarks across profiles, for families that want to bookmark things for each other.

Re:And what if you want to be anonymous?

[Atzanteol]

The browser doesn't just automatically log you in. You need to select which email address you want to use. Watch the 'fing video before complaining.

Re:And what if you want to be anonymous?

[Bengie]

don't use a public computer to log into websites

Re:And what if you want to be anonymous?

[JMJimmy]

a family computer is hardly public and even at that random friends/etc come over and use your computer, do you really want to be hanging over their shoulder watching their every move just in case?

It's a feature for convenience that's going to cause a lot of security issues. The people on this site are an intelligent bunch on the whole, but there are a lot of "computer stupid" people out there who wouldn't think twice about putting this information on a public computer just because it's the procedure they've learned to do.

Re:And what if you want to be anonymous?

[gbjbaanb]

or you could watch TFV (the video) to find out how this is addressed.

Re:And what if you want to be anonymous?

[Bengie]

A public computer is a computer that is not personal. A family computer is not personal. You should treat the family computer like any other public kiosk.

Otherwise, create several accounts, then when someone wants to load up a browser from a guest account, right-click and runas their user.

Re:And what if you want to be anonymous?

[JMJimmy]

So I'm sitting there with my personal laptop beside me with a walkthrough as I get some collectibles in a game, family member comes along and says can I borrow your computer for a sec, I want to check my email.

You're suggesting I say no, or create and maintain profiles for each family member that might use the system, or run on a guest account which I have to maintain? It's way too complicated and unrealistic for a feature that's supposed to be a convenience feature.

Re:Yeah but...

[Joce640k]

This does nothing to protect my anonymity.

I didn't know Facebook allowed anonymous logins.

I'm confused about this.

I remember seeing another Mozilla video about good password habits. One of the pieces of advice given was to pick a "base" password and add a couple different letters depending on what site you were signing up for (somehow incorporating the website name), this way your passwords would be different across all the sites you visit, and one being compromised wouldn't necessarily mean that your entire online identity would be gone.

However, this BrowserID seems to function (from strictly a user standpoint) as a password manager would. You have one global password that logs you into each and every site. So aren't we back to square one? Isn't that a Bad Thing? Or is there something I'm missing?

And will this make attacking the browser even more lucrative? Things are already pretty bad.

Re:I'm confused about this.

[Lennie]

I think the private key in the browser is used to generate a key per site, which can be used to verify you own the public key which is related to your email-address.

But I could be wrong. :-)

Re:I'm confused about this.

[AdamWill]

The 'one global password' is an RSA key pair, which is a substantial improvement on a user-generated (and hence usually weak) password.

Re:a good start, perhaps...

[Joce640k]

If you've got malware then you're screwed anyway....

Re:Really?

[obarthelemy]

I create fake emails even when I trust the site !

not yet ready for Slashdot(ting)

[ei4anb]

I tried the demo at http://myfavoritebeer.org/ and the result was:
"Error encountered while attempting to confirm your address. please try again. (error message: unknown)"

Re:Really?

[ArsenneLupin]

So this system just gives your verified email address to whatever site wants to have it?

One verified address. So just set up the system so that the browser can manage more than one such id. For most sites, you'd then use the id tied to a throwaway hotmail address. Or to a specialized server that only generates email lookalikes which you cannot actually deliver to.

Re:How much you betting...

[mlts]

What I'd like to have is something simpler, and this was suggested by another /. person:

Go to a site. Type in your username. It will have a string of random character (or perhaps a timestamp + some random characters) that is copy/pastable. Copy this text. Sign it with your PGP/gpg private key. Paste the result back, and log in.

The advantage of this is that PGP/gpg is pretty much platform agnostic, the keys can be stored in secure locations such as smart cards, or TPMs, PGP has proven itself and stood the test of time, and one's private key remains theirs, generated by the mechanism they so chose. For example, if I wanted a key that was generated on a smart card and would never leave that physical enclosure, I can do so. I even can have an offline computer to do the signature validations, although it is a PITA to type that in though.

This should be done over SSL, as an attacker could grab the session once authenticated, but as for passwords stored, there isn't much an attacker can do with a bunch of public keys unless they happen to have a spare TWIRL or quantum factorization machine in their basement.

As for ISPs, the older mom and pop ISPs, I'd mostly trust. However, some other ISPs like some in the UK can't even be trusted to not actively MITM your Web connections, much less actually be worthy of housing secure credentials.

Re:Yeah but...

[Lennie]

But it doesn't.

It is just a way to verify the the email-address you already own, but without waiting for the email to arrive (or having it getting stuck in spamfilters) and clicking a link.

Now you click a link only ones to connect your browser to your email address (and obviously you only share the email-address information to site the sites you want).

This allows for a lot more interresting UI changes to make it easier for users to do so:
https://wiki.mozilla.org/images/4/4c/IdentityInTheBrowser.png

Also it prevents Facebook from tracking you all over the web, like they currently do with the Facebook Connect-button (!)

Re:Bad idea idiots

[handslikesnakes]

It can be the same as with username/password authentication: when you log into your email provider, you see a box that says "store this login info", and you don't check it.

Re:Really?

[handslikesnakes]

To whatever site you decide to give it to. User intervention (at least one click in the browser chrome) is required.

(This is obvious, why do people assume that new systems do the dumbest thing possible and not even bother to check?)

Re:Really?

[Lennie]

Yes, Mozilla created a seperate specification that others can implement.

BrowserID is the Mozilla project and Verified Email Protocol is the specification they created.

It should be really easy for a large mail provider like GMail to provide this and it needs to have is to store a public key and have it available to anyone who would want to check it.

Re:Really?

[handslikesnakes]

Just to be clear, your email provider asks your browser to generate a new public/private keypair. The email provider only ever sees your public key.

Re:a good start, perhaps...

[Lennie]

"is there a passphrase you'll use to open it each time you launch the browser?"

That depends on the browser implementation, but I'm sure many will do so.

A new form of "Single Sign-On" ?

Damn government

[PopeRatzo]

a browser-based federated login provider

Got damn Feds is getting involved in everything these days.

Hell, pretty soon they're gonna be all up in my Social Security and Medicare. That's why I'm a-voting for that pretty Mi-chele Bachmann. And let me tell you, I'd like to show her what a real man is. You know she ain't getting it from that big homo she's married to. And by homo, I mean gay as pink ink. Dude has to tie weights to his shoes so they don't float right out of the closet. He's queerer than a box of monkeys on DMT. Gay cubed.

Re:Damn government

[Conspiracy_Of_Doves]

It was funny except for the last bit.

No way would someone like that know what "cubed" means.

Re:Damn government

[Renevith]

I'm not sure she wants a real man. Can you say "marriage of convenience?"

Re:Congratulations, Mozilla

[handslikesnakes]

The tech isn't novel, but it's not crippled by client cert's terrible UI.

Re:Congratulations, Mozilla

[Lennie]

Yes, they tried to levarage OpenID a few years ago, it didn't work out.

So now they created this.

And good thing is, a lot of proven technology already (client cert).

Re:Misses one major problem.....

[Lennie]

Encrypt all the passwords and keys before storing them on disk and have the user provide a passprase before using the browser.

I expect that is how it will work.

Re:a good start, perhaps...

[handslikesnakes]

What exactly are you going to man-in-the-middle? The only things being sent are public keys and signed assertions.

Re:Microsoft CardSpace

[Lennie]

Which is depends on a whole lot of big protocols which are much more complicated than need be.

Have a look at the specification:
https://wiki.mozilla.org/Labs/Identity/VerifiedEmailProtocol
https://wiki.mozilla.org/Identity/Verified_Email_Protocol/Latest

Re:Really?

[sgt+scrub]

(This is obvious, why do people assume that new systems do the dumbest thing possible and not even bother to check?)

Because setting up that click event to be the close box on a pop up is beyond simple.

Re:Password still required Re:Bad idea idiots

[RobbieThe1st]

Erm... Is this an advertisement/spam or a legit post? I can't quite tell...
On the one hand, it's well written, unlike most ads. On the other, it has the same one-link-to-paragraph-of-information I've seen several times before.
If it had been written by AC, I'd have considered it spam, but...

Re:Really?

[thePowerOfGrayskull]

To whatever site you decide to give it to. User intervention (at least one click in the browser chrome) is required.

(This is obvious, why do people assume that new systems do the dumbest thing possible and not even bother to check?)

Because on slashdot, naming the most obvious flaws in a new idea is what passes for insightful. I'm starting to think the between-the
-lines subtext is, "I did not think of this cool idea and am slightly envious, therefore it must be fatally flawed." because surely the people who come up with new ideas are incapable of thinking of these obvious and sometimes crippling flaws on their own.

Re:Yeah but...

[JMJimmy]

Except who uses the same email for all logins? I have one for professional use, one for personal use, one for sites I don't know if I can trust, and at least 2 alternates for different ids. I'm not going to setup 6 profiles and open close the browser depending on which one I need. Worse yet it means others using my computer can authenticate themselves as me.

It's just a bad idea all round.

Re:Yeah but...

[cayenne8]

Hmm...but what if you are you email provider?

:)

I wonder how hard this is to set up if you run your own email servers. I like postfix on linux...would it be something in coordination with that, or just another stand alone app that I'd run on a server I have from my domain?

Re:Yeah but...

[Lennie]

You don't need to open/close the browser.

There will be a UI for that, where you choose what identity you want to use for the site you are looking at.

Re:Yeah but...

[cayenne8]

You can still have pseudonymity, just sign up for an e-mail address and don't use your real name.

Or...set up a real anonymous email account with a nym server...?

Set up this account that bounces through a few remailers....will be a real email account, but virtually untraceable.

Re:Yeah but...

[Lennie]

You need:

* the normal stuff to handle email:
- like a domain
- like an incoming/outgoing mail server, probably spamfiltering
- probably a IMAP/POP-server
- or maybe a webserver for webmail
- and the a webmail program

If you want to implement the Verified Email Protocol, this adds:

You need a webserver for your domain which has a http://example.com/.well-known/host-meta file which points to an URL where the public-key-information can be queried.

That is all this adds.

If you want to set this up for users, you probably would want an extra settings page in the webmail-app for setting up the public key.

Re:Yeah but...

[JMJimmy]

Not from what I saw in the UI, it's a click and done interface not click, choose, and done. Still doesn't address others being able to authenticate themselves as me.

Okay...

[anom]

But what exactly does this get me over SSL Client Certificates?

Frankly, I don't entirely understand why the world hasn't started using SSL Client Certificates, and I wonder what will make people use this scheme, when client certificates have lain unused for so long.

Re:Okay...

[AnyoneEB]

But what exactly does this get me over SSL Client Certificates?

Less importantly, e-mail verification: the third party is providing a federated e-mail verification service, which Mozilla hopes is a service which will be done by the e-mail provider but is also providing themselves (as well as allowing any other third-party to offer).

More importantly, by taking the [very common] assumption that control of the e-mail address for an account is equivalent to control of an account, this appears to essentially give the decision of which public keys are tied to an account to whoever controls the e-mail address. That means that having multiple devices with different keys is easy, and, more importantly, losing all of your private keys is not a problem as the public keys can be changed as long as you can still log into your e-mail. Of course, the downside to this is that, as far as I can tell, your e-mail provider can now log into any of your accounts without resetting the password. In fact, I am not seeing why this would not give Mozilla (or any other trusted third-party) the ability to log into any account supporting this. (Of course, to be fair, an OpenID provider has the same power and this has the additional advantage that the provider does not need to be told which websites the user is logging into.)

Using SSL Client Certificates, either each host you use would have to have the same certificate or each service you use would have to know about every public key you use. Or, I guess, you could give the service a public key used to sign the keys you do use, but then you would still have the problem of needing to use e-mail verification to recover if you lost your keys.

Re:Okay...

[Burz]

Frankly, I don't entirely understand why the world hasn't started using SSL Client Certificates,

Because software designers don't have the gumption to make keys and certificates first-class tangible objects within OS and app software, thus leaving them in a sort of no-man's land that even most technicians are ignorant of except the ones that become crypto geeks.

What could possibly go wrong?

[Arrogant-Bastard]

I mean, really...with a few hundred million compromised systems, and something on the order of a billion compromised email accounts...what could happen?

The Mozilla people should have had some very serious conversations with people working in the spam/phish/botnet space before going down this road. It doesn't matter how clever or robust this scheme is, in the contemporary environment it's absolutely worthless.

In fact: it's worse, because it provides a new attack vector to people who have already demonstrated that they're very adept.

Re:Congratulations, Mozilla

[mdmkolbe]

Why didn't it work out? (I don't know much about OpenID.)

Re:Yeah but...

[nabsltd]

You need a webserver for your domain which has a http://example.com/.well-known/host-meta file which points to an URL where the public-key-information can be queried.

So, if you have only an e-mail domain (e.g., a domain purchased solely to allow you to have your own GMail domain), then you can't use this service.

There are also a lot of people who have e-mail through an ISP which either won't do this at all, or would screw it up in some way that your login wouldn't work (Verizon, Comcast, etc.). I don't even know if Google would support this, as all HTTP requests to gmail.com seem to redirect to google.com/mail.

Who generates the keypair?

[sconeu]

It had damn well better be done locally, or you have no guarantee that your private key is actually private. Are they going to write the keygen code in Javascript?

Can I Make This Work in REVERSE

[Jeremiah+Cornelius]

Where Facebook rejects ALL traffic associated with a browser I am using?

Re:Yeah but...

[icebraining]

The image linked by Lennie shows multiple profiles that you can choose from on the fly. The last image has "Anonymous", "You" and "Create", which implies that you can have how many profiles you want.

Re:Yeah but...

[icebraining]

Secondary Authorities
As noted above, it is unrealistic to expect every mail host on the internet to adopt this protocol. A secondary authority is a trusted intermediary who verifies an email address on behalf of a relying party. Secondary authorities could be operated by entities that make strong guarantees about user privacy and authentication accuracy, and are perceived by users and developers to be both technically competent and commercially disinterested.

A secondary authority could verify an identity in whatever way it sees fit, but in one scenario, the user would simply provide their email address to the authority in a web page. The authority would then engage in a multi-stage authentication process, where it stores a cookie in the user's browser, sends a message to the provided email address, and, when the user clicks a link in the provided email message, establishes that this browser is being used by a user who controls that email address.

Re:Really?

[icebraining]

It doesn't improve security on the client's side, but it does on the server; if Sony had implemented this (or OpenID, or any of those) they wouldn't have a database full of clear-text passwords delivered on a silver plate to any attacker.

Re:Yeah but...

[cayenne8]

So, if you have only an e-mail domain (e.g., a domain purchased solely to allow you to have your own GMail domain), then you can't use this service.

I've never heard of an email only domain..?

I think a domain is a domain is a domain. Just associating basically a name with an IP address....who is imposing this 'limit' on you for a domain you purchased? I've never seen this at place you buy domains at like GoDaddy...etc. You purchase the name, it is yours to do, or not do as you wish...?

Hmm

[Bengie]

I just saw this at the bottom of my /. page

Get more comments "119 of 118 loaded"

Race condition or faulty logic? I would prefer a race condition as it makes me feel like I just won the lottery.

identity providers

[Tom]

Sounds interesting, but right now the role of identity provider seems to be limited to (to quote the page itself) "dudes like Yahoo!, Google, Twitter, Facebook, and even github".

Well, thank you, but I run my own server and I own my own domain and I want to provide my own identity.

So, call me again when there's a Debian package for that. Until that happens, I'm not interested.

Re:Really?

[AdamWill]

The spec actually explicitly envisages this:

https://wiki.mozilla.org/Labs/Identity/VerifiedEmailProtocol#Scope_of_the_system

"With some additional work, to create pseudonymous identities that allow a user to provide a different address per relying site"

Re:Yeah but...

[nabsltd]

I've never heard of an email only domain..?

I suspect that there are a lot of people who purchase domains to have a fixed e-mail address but don't set up a web server at that domain, especially now that you can use sites like Facebook to post the kinds of things that most people would put on their personal website.

Re:Bad idea idiots

[DNS-and-BIND]

Sorry to be the one to break the news to you, but the second world ceased to exist when the Soviet Bloc disintegrated in 1991. That was twenty years ago. Please stop misusing this obsolete term.

Gmail's "user+@gmail.com" facility

[sonamchauhan]

Or get Google to maintain Gmail.com for you!

Gmail has a "user+@gmail.com" facility which you can use to simulate individual addresses per correspondent.

Lets say your email address is 'Example@gmail.com'. Simply give out 'Example+BankOfAmerica_2011@gmail.com' when registering on Bank Of America's website. The '+BankOfAmerica_2011' bit is completely made up by you. Now any emails sent to you by BOA show up in your Gmail inbox, where you can sort by recipient. The only issue is remembering the email address you had cooked up in the first place, when logging into their website. :) But naming conventions and browser autocomplete help.

Of course, anyone with knowledge of Gmail's convention can figure out your 'real' email address by stripping out the bit after the plus sign. So these addresses are not really untrackable.

dashed hopes

[reiisi]

Misread it.

Thought they were talking about de-centralized identity.

Basically about as polar opposite as possible.

I need a new browser, I guess.

I see problems...

[ResidentSourcerer]

1. If I use multiple computers, how do I log in? E.g. I'm at a friends house, and log in in their web browser. THAT computer doesn't have my private key. Or if I regularly use public computers at a school.

2. If my computer is hacked, what happens to my key collection?

3. If my drive crashes, how do I recover my key collection?

4. If I regularly use linux, mac and windows real and virtual machines, how do I keep my keys sync'ed when Mozilla can't even do this with my bookmarks.

Re:Password still required Re:Bad idea idiots

[BrokenHalo]

Actually, no. Sorry if that came across as an ad, I just provided that link because I have had lots of good deals from that particular outfit. And as I said, they are hardly unique; given that you pay for postage by weight, you would generally buy such a product from someone who doesn't need to use international postage, so my link was obviously useful only for Australian readers.

Re:Password still required Re:Bad idea idiots

[RobbieThe1st]

Fair enough, thanks.

Why is googlecode used?

[tengwar]

I use NoScript. The demo site requires code from googlecode.com to be permitted. While the Javascript provided by Google may be innocuous, I would personally not make this assumption. I don't think that it would be possible for it to get the private key, but I would suspect that it would do datamining which would reveal the email addresses in use.