Re: [Atlas] Request signing
Hannes Tschofenig <Hannes.Tschofenig@arm.com> Mon, 22 January 2018 21:38 UTC
Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: atlas@ietfa.amsl.com
Delivered-To: atlas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CD8E912D84B for <atlas@ietfa.amsl.com>; Mon, 22 Jan 2018 13:38:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.919
X-Spam-Level:
X-Spam-Status: No, score=-1.919 tagged_above=-999 required=5 tests=[AC_DIV_BONANZA=0.001, BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GP0elv_802zX for <atlas@ietfa.amsl.com>; Mon, 22 Jan 2018 13:38:37 -0800 (PST)
Received: from EUR02-HE1-obe.outbound.protection.outlook.com (mail-eopbgr10084.outbound.protection.outlook.com [40.107.1.84]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AD58212D831 for <atlas@ietf.org>; Mon, 22 Jan 2018 13:38:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=hi3y97nzC66GTatAGjsfx/814Z+h3A2GlGuoJLtaWGk=; b=pgNTFN3XsDppnk2Povpc8V2sZM9h5kTIsn22B15dW7tmhjKqMDdXWGxMNpbMfkb1lDSBcHqeYMrS3qdr1BZViWjoVH13woflh27PoAhO8yqkfqPCrNR2NyzZfq01B3qp9BpHIXIeyohOAW7xcvg9Usbz+TdnXUVZRgD0wtEEjpI=
Received: from AM4PR0801MB2706.eurprd08.prod.outlook.com (10.167.90.148) by AM4PR0801MB2708.eurprd08.prod.outlook.com (10.167.90.150) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.428.17; Mon, 22 Jan 2018 21:38:25 +0000
Received: from AM4PR0801MB2706.eurprd08.prod.outlook.com ([fe80::b863:80d:692b:e64b]) by AM4PR0801MB2706.eurprd08.prod.outlook.com ([fe80::b863:80d:692b:e64b%14]) with mapi id 15.20.0428.019; Mon, 22 Jan 2018 21:38:25 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Russ Housley <housley@vigilsec.com>, Phil Hunt <phil.hunt@oracle.com>
CC: "atlas@ietf.org" <atlas@ietf.org>
Thread-Topic: [Atlas] Request signing
Thread-Index: AQHTk7myzjAtI7EJ0Eqj9VW8E5LjkaOAZiqAgAABU4A=
Date: Mon, 22 Jan 2018 21:38:25 +0000
Message-ID: <AM4PR0801MB2706004C55DF8C12BC2E4A0EFAEC0@AM4PR0801MB2706.eurprd08.prod.outlook.com>
References: <13811A5D-991C-4BE4-9218-4B68D78C0141@oracle.com> <E02DE08B-5435-4C28-BADE-DC73AA0B5E7C@vigilsec.com>
In-Reply-To: <E02DE08B-5435-4C28-BADE-DC73AA0B5E7C@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [217.140.111.135]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM4PR0801MB2708; 7:J64EoluxNJehjKAjUBRUluqOzD6oVtbC6+Uce13MNdfW5kjG/PRx3CWlEBKMsrw3zrz+iaX77n++LME5yOZ/IdB1927i9Jf7Tc6yZ4yS9vNkQo042bk+iUgmIt3eEm996QKnJEaD2KDeOzJKUV6YPM+AmSXLx7iyMLzRQc2xvboL5NMi0BjAEC7vn2VC9thLaYZN1KIBDn4NjOPO13C8sQYY9vRCK9MpB7EVBDlZGASrglOl9flMiYADzhJyVu5y
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 9bd69841-789d-4e50-66b5-08d561e07823
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(3008032)(48565401081)(2017052603307)(7153060)(7193020); SRVR:AM4PR0801MB2708;
x-ms-traffictypediagnostic: AM4PR0801MB2708:
x-microsoft-antispam-prvs: <AM4PR0801MB2708653AC082025ABECE6679FAEC0@AM4PR0801MB2708.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(192374486261705)(21748063052155)(146099531331640);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040501)(2401047)(8121501046)(5005006)(3002001)(10201501046)(93006095)(93001095)(3231023)(2400081)(944501161)(6055026)(6041288)(20161123560045)(20161123562045)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(6072148)(201708071742011); SRVR:AM4PR0801MB2708; BCL:0; PCL:0; RULEID:(100000803101)(100110400095); SRVR:AM4PR0801MB2708;
x-forefront-prvs: 0560A2214D
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(366004)(376002)(39860400002)(346002)(39380400002)(189003)(199004)(40434004)(59450400001)(478600001)(76176011)(26005)(7736002)(105586002)(72206003)(106356001)(55016002)(14454004)(6306002)(9686003)(53546011)(54896002)(236005)(229853002)(6436002)(53936002)(102836004)(99286004)(2900100001)(7696005)(74316002)(6506007)(606006)(5250100002)(3660700001)(97736004)(33656002)(2906002)(3280700002)(86362001)(68736007)(8936002)(110136005)(8676002)(81156014)(81166006)(3846002)(790700001)(6116002)(66066001)(316002)(5660300001)(5890100001)(4326008)(6246003)(1680700002)(2950100002)(25786009); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR0801MB2708; H:AM4PR0801MB2706.eurprd08.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 9bGyoqcl9NOglt+/hirTlYs1irdkOW2ihbbY7vWmhWIk2GAbwEF0EEU6a05c7LzEyqJQJ8jgPh7UVlj+5sJZvA==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_AM4PR0801MB2706004C55DF8C12BC2E4A0EFAEC0AM4PR0801MB2706_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9bd69841-789d-4e50-66b5-08d561e07823
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Jan 2018 21:38:25.8478 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR0801MB2708
Archived-At: <https://mailarchive.ietf.org/arch/msg/atlas/7Jy0ENVPU8K__NoE9P0mMr9N7P4>
Subject: Re: [Atlas] Request signing
X-BeenThere: atlas@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Application Transport LAyer Security <atlas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/atlas>, <mailto:atlas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/atlas/>
List-Post: <mailto:atlas@ietf.org>
List-Help: <mailto:atlas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/atlas>, <mailto:atlas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Jan 2018 21:38:40 -0000
Hi Russ, Hi Phil, You raise good points. I can only talk about the use cases we have investigated, which are related to Internet of Things deployments. As an example, consider a Bluetooth Smart device that talks to a cloud based service via a smart phone or tablet. The data needs to be secured from the Bluetooth Smart device to the cloud-based service. Now imagine that the Bluetooth Smart device does not talk IP or HTTP (an assumption that is not unrealistic). The phone / tablet will, however, use HTTPS. The data, which is encoded using JSON or CBOR, needs to be protected using an AEAD cipher. Whether it is better to re-use the TLS record protocol or whether COSE/JOSE should be re-used for application data protection is something this group needs to find out. In my example, the challenges you outline below do not surface. I do, however, agree that there has been a long history of failed attempts of “signing” application protocols in face of intermediaries like proxies, and session border controllers. Ciao Hannes From: Atlas [mailto:atlas-bounces@ietf.org] On Behalf Of Russ Housley Sent: 22 January 2018 15:20 To: Phil Hunt Cc: atlas@ietf.org Subject: Re: [Atlas] Request signing This was the primary goal of SHTTP. See RFC 2660. Of course, SHTTP never saw wide-spread deployment. Russ On Jan 22, 2018, at 2:41 PM, Phil Hunt <phil.hunt@oracle.com<mailto:phil.hunt@oracle.com>> wrote: A problem that keeps coming up in HTTP is the ability to sign requests/responses. Some see this as additional security, but others see this as beneficial for after-the-fact verification (e.g auditing). If ATLAS proposes to encapsulate HTTP to prevent interference by intermediaries than it likely would also solve problems that HTTP request signing proposals have not been able to overcome — the possibility that intermediaries may alter HTTP requests for good (or bad) reasons. Has this been discussed? Thanks, Phil Oracle Corporation, Identity Cloud Services Architect @independentid www.independentid.com<http://www.independentid.com/> phil.hunt@oracle.com<mailto:phil.hunt@oracle.com> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [Atlas] Request signing Phil Hunt
- Re: [Atlas] Request signing Russ Housley
- Re: [Atlas] Request signing Hannes Tschofenig
- Re: [Atlas] Request signing Mark Baugher
- Re: [Atlas] Request signing Phil Hunt