IETF Logo Mail Archive

Re: [core] Review draft-amsuess-core-cachable-oscore-00

Jim Schaad <ietf@augustcellars.com> Wed, 05 August 2020 19:35 UTC

Return-Path: <ietf@augustcellars.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F5033A0EC7; Wed, 5 Aug 2020 12:35:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id etnxjyFonq3I; Wed, 5 Aug 2020 12:35:42 -0700 (PDT)
Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55A303A0EC4; Wed, 5 Aug 2020 12:35:42 -0700 (PDT)
Received: from Jude (73.180.8.170) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Wed, 5 Aug 2020 12:35:17 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: 'Christian Amsüss' <christian@amsuess.com>
CC: draft-amsuess-core-cachable-oscore@ietf.org, 'Core WG mailing list' <core@ietf.org>
References: <009a01d65c90$98bc6da0$ca3548e0$@augustcellars.com> <20200805190308.GB3470838@hephaistos.amsuess.com>
In-Reply-To: <20200805190308.GB3470838@hephaistos.amsuess.com>
Date: Wed, 05 Aug 2020 12:35:15 -0700
Message-ID: <061e01d66b5f$8d5c9b50$a815d1f0$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 16.0
Content-Language: en-us
Thread-Index: AQHQ6d+KdSoz73fcUxnp1ylL1lt8vQHYHF/CqSYmGKA=
X-Originating-IP: [73.180.8.170]
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/L9l3QJuVdunGbNF-T5amML_1jtA>
Subject: Re: [core] Review draft-amsuess-core-cachable-oscore-00
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Aug 2020 19:35:44 -0000


-----Original Message-----
From: Christian Amsüss <christian@amsuess.com> 
Sent: Wednesday, August 5, 2020 12:03 PM
To: Jim Schaad <ietf@augustcellars.com>
Cc: draft-amsuess-core-cachable-oscore@ietf.org; 'Core WG mailing list'
<core@ietf.org>
Subject: Re: [core] Review draft-amsuess-core-cachable-oscore-00

Hello Jim,

thanks for your review!

On Fri, Jul 17, 2020 at 04:18:33PM -0700, Jim Schaad wrote:
> I will admit that I found what was proposed here to be very 
> interesting.  I am unsure of how well it would work and think that we 
> may want to workshop it at some point just to figure that out.

Are you thinking in the direction of "let's think through concrete
exchanges", or "let's try this out with a prototype implementation"?

[JLS] I was thinking of the first one  I don't know that the second one is
possible until we have a better idea.

> *  Reading this document made me really long for an OSCORE padding 
> document where the message can be predictably padded out to fixed 
> length so that it would make one of the issues raised in this document
moot.

Good point -- it'd be generally useful but particularly so here.

Would be typical Appendix material.

> * One wonders about the goodness of returning both a "This is what the 
> deterministic request says and here is the encoded request but you 
> cannot decrypt it".  It does mean that you need to have a degree of 
> trust for the server not lying to you but would potentially allow for 
> an even shorter request.

That shouldn't be the case. Any consensus request the client receives must
be readable for the client, otherwise as you say it makes little sense.

Any hint to such behavior would be an error in the document -- but I take
that point as a cause to point out the importantce of reading it to the
client in the Consensus Request definition.

> * It might be worthwhile to signal that you are going to ask a lot and 
> use an application/multiple-coap content to return both the answer and 
> the deterministic request.  This means that it would not be cached 
> until the next ask but that is going to be true anyway if the server 
> is providing this request.

I think that this becomes largely moot with the addition I announced at the
meeting (where the client would send a hash of the plaintext in an outer
option). In such a setup, the client already gives the server a hint as to
the desire for a consensus request and response. (When the client uses a
deterministic request, it can start the process as well).

[JLS] The ever popular - I changed things so this is moot ploy. [1]  Need to
see it written down but I think it is equivalent.

On the long run, I expect that indication will rather be needed in the other
direction: A client may not know for which requests it is part of a swarm
and which are more individual. In that direction, it may work to have a
target attribute in the link that asks a client to generate a deterministic
request if its security policies allow that.

[JLS]  I am not sure why it would matter in some respects.  If the response
is going to be more individual then either you are going to get a unique
deterministic request or not use it at all.

Jim


KR
c

[1] See "The Pink Panther"
--
To use raw power is to make yourself infinitely vulnerable to greater
powers.
  -- Bene Gesserit axiom

v2.23.0 | Report a Bug | By Email