[Dance] Re: [TLS] Re: Last Call: <draft-ietf-dance-client-auth-09.txt> (TLS Client Authentication via DANE TLSA records) to Proposed Standard
Shumon Huque <shuque@gmail.com> Mon, 26 January 2026 18:36 UTC
Return-Path: <shuque@gmail.com>
X-Original-To: dance@mail2.ietf.org
Delivered-To: dance@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 3FE52AD4B464 for <dance@mail2.ietf.org>; Mon, 26 Jan 2026 10:36:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CPRdpvZm99io for <dance@mail2.ietf.org>; Mon, 26 Jan 2026 10:36:16 -0800 (PST)
Received: from mail-oa1-x34.google.com (mail-oa1-x34.google.com [IPv6:2001:4860:4864:20::34]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 9EE84AD4B32A for <dance@ietf.org>; Mon, 26 Jan 2026 10:36:11 -0800 (PST)
Received: by mail-oa1-x34.google.com with SMTP id 586e51a60fabf-40438e0cba6so2929033fac.1 for <dance@ietf.org>; Mon, 26 Jan 2026 10:36:11 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1769452565; cv=none; d=google.com; s=arc-20240605; b=Pi7uWYrcSflXUNKSetKfy2fDI/Ca280xZUyZ7rQL07XOUVQWBAknq7B/BbcFkJKDmt SVSHrR8zv1fly+YKSdxF45hj3jFwmSuX7kTMsGBeg/R71U9hTcQL2JtdH1Bz2JrFEbro 6M5jYw6wVPEGrIbZNa2XThrolEN5NKRZHjXfdbC7c29fuggTeXfjoOu1ebEPoDxFn56F WalXCpFGtNUDtdGpR5WaTxGHxS1wqIHdrJcPQOkpcKcEoLTnKmjbUsduofr3vn/zid1s 2n1SPpCDyn6ZwE8ZJW41Qlk+Vgb8PURBuqVqVCAaxDf66VsG2JKmuL5AUkBT19vrErxn 410g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:dkim-signature; bh=wKW2fYnUjdEwnxnxs3pPfp82/7z6nnIlJyiMb4NT6Cw=; fh=hDau46bznR3zo47Aejdnt20+b2NPDaeL2gWBI7maCbA=; b=OxPKWPhkLa8nLmUHSSsdGo3akqX3UM5nmPUcNFCw3H2T14gEQSiIlAAMioqbveymDa PnFn2q+prACPObmJmM2TZpGxYlgR5yFdDNXBe/Enxw1JLj9YFm4eL26J7xNuEMS7nxpr gSkCc8KPhlRWoy3SZojhNBbkH5/aTFVzXbwpZAhWtnnPDohcdI5Nb3rCiIwFrHFmPjg1 wl7cqpXPzbA2uiXdsrFck+naACd4jZZpJn7XLpkEnQBntz4e7Khb+TpGSR4Be8N89UGo 6BVmOhKwfM9pgC1lgjeFEp0UIEzBV2sJistBnqfgk6uPqbM28rJD5GseSfA6xGEwGQHM wSpg==; darn=ietf.org
ARC-Authentication-Results: i=1; mx.google.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1769452565; x=1770057365; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=wKW2fYnUjdEwnxnxs3pPfp82/7z6nnIlJyiMb4NT6Cw=; b=i3EW1zOr6brhB0TSufOVydGAZ6E2BVEiy7hb9/fyakErPzm7Z6IYOWvrXuRe3TMhIz a9t4g5POy81UIZw1meIEy35sC48rSbvo1dONywQ+GFbHkPdk5I9QwtyYwBiY9J3X/CqO krBbSZkVv0g5kTlzr5nF3OM0kXSy1fhsWC8qfy90xmjUxL5599sSoLh05NJ8VUJgeLuk 1zE+Fuho9EX+UQds9PJbBlcDhG/mMzqWzFnWz+rdXlgE7yErudTs/MTPKWjAjoFqk12g sVzkAdEDBJX1BCHOjqudCmlVaFHRoxkXKi9UWglCu5x19gfYFAd0yvQ9w7upQO42MNku 79sw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1769452565; x=1770057365; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=wKW2fYnUjdEwnxnxs3pPfp82/7z6nnIlJyiMb4NT6Cw=; b=BEH/Y1wEfQG2zUfSUvu0TVFyfjA84uCGQyh4jbOPLSzoKtKVKonjvgJ0ujxK+pu5aj fljpCvDq6UQvJxvIHjRy91BqNXI4bVkntSBvL3Z3L3AjAoUEHxB7DQnTHrsT/1FByALm wPcohJJT248e4Dc+degjNtblP2cQyVfL2ccHZjRGKK+0myVxVnxOkCbvtFoclPBu3WWw v7CQpesVDTKxZ2S2MiFGl3yvAG/LzAfNHDfjuuFg5FwXr+pDFXF1mPTi0eITV0RETSwe V0bEQZnkFtvlpfKo3DG/lNE0jlm0dqSOKDU/6x5EQeHUd+t4vlg6wCN0iiFXQm2oOio7 kEgQ==
X-Forwarded-Encrypted: i=1; AJvYcCWbFZ4T+P1IJq/kr6DptmORkEtzmxLQt01E2p2BWt/h8a0gP8MvxLspTwIdswB7xgdoBk8Gkg==@ietf.org
X-Gm-Message-State: AOJu0YwtnhT81JjGYaljl5ooU+3FGcNjM5px1auMQws9zL2CgVFDfeZ4 3LoaPu5XMXfq+1YB51YbVFg+7itZOlJbRUKq4P3sqL1x2N0NJA/F5NcWtmtFQ5hv6ytjxCMU0p0 JRE30KixY4Ci5i2NBz3pnKgHiUN/Xhyo=
X-Gm-Gg: AZuq6aJ4flzHRzFfs/ZVai2ll1gBb2oXAlc1zqjuGlJ9AeXJFvpbuvVgurSqFMDEhlT OjYGo/26GUKis+VMR67Tuy2xEGJTF0HFytcfIYcQupKirJQnHhn0zmZP2NrLxOz/qSQO5L6ickh q+dfIIPAAitxwFmFLcOX23S4jXXV7tmJoq6XIoz9hX9kVtkI4FW8z/HID0brY43YDLtZ3aG8yRT rx7tQYN/VSUuaFLrm7aCsHZ2HusKrdoN2uvYfAtqI+vB8dvkXTBgCdPsDzy/sqhWPTZ55RwC34o Ix912g==
X-Received: by 2002:a05:6870:718f:b0:3ec:a4ed:cf57 with SMTP id 586e51a60fabf-408f7f793bdmr2352134fac.15.1769452562926; Mon, 26 Jan 2026 10:36:02 -0800 (PST)
MIME-Version: 1.0
References: <176529902699.1146491.1360588667931244217@dt-datatracker-5bd94c585b-wk4l4> <CABcZeBOCNZf-mYJ2DM1YTnUAYpvtyc5Ba2qQ6aOmsYhS1y5fvA@mail.gmail.com> <CAHPuVdV4TvP4kHsEC=7K5QNFZUktYCRU44LqJr33fzB5Md+Q1Q@mail.gmail.com> <25ef2c47-1612-468e-8caf-5ed1fb5f1aed@tu-dresden.de>
In-Reply-To: <25ef2c47-1612-468e-8caf-5ed1fb5f1aed@tu-dresden.de>
From: Shumon Huque <shuque@gmail.com>
Date: Mon, 26 Jan 2026 13:35:51 -0500
X-Gm-Features: AZwV_QhfjScyUoy3Eoi5in4_SOJCvm0YEgzQW3COk-V8Z42LFcMjzrZqCl_5auc
Message-ID: <CAHPuVdUq5p18ahaC_BWwfgozD9OW36MvBJog2S4=2fka67OuNw@mail.gmail.com>
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
Content-Type: multipart/alternative; boundary="00000000000075cf5206494ec75e"
Message-ID-Hash: AYGRVMDHRMQXJ5MYW4ZAM6MWHQXPJR5Z
X-Message-ID-Hash: AYGRVMDHRMQXJ5MYW4ZAM6MWHQXPJR5Z
X-MailFrom: shuque@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Eric Rescorla <ekr@rtfm.com>, last-call@ietf.org, dance-chairs@ietf.org, dance@ietf.org, draft-ietf-dance-client-auth@ietf.org, mcr+ietf@sandelman.ca, paul.wouters@aiven.io, TLS WG <tls@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Dance] Re: [TLS] Re: Last Call: <draft-ietf-dance-client-auth-09.txt> (TLS Client Authentication via DANE TLSA records) to Proposed Standard
List-Id: DANE Authentication for Network Clients Everywhere <dance.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dance/DSFbUXzrw8LbPABClFtLnxmnLZs>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dance>
List-Help: <mailto:dance-request@ietf.org?subject=help>
List-Owner: <mailto:dance-owner@ietf.org>
List-Post: <mailto:dance@ietf.org>
List-Subscribe: <mailto:dance-join@ietf.org>
List-Unsubscribe: <mailto:dance-leave@ietf.org>
On Mon, Jan 26, 2026 at 12:13 PM Muhammad Usama Sardar < muhammad_usama.sardar@tu-dresden.de> wrote: > On 26.01.26 16:38, Shumon Huque wrote: > > > # Cross-Protocol Attacks > > > Arguably, this attack already exists if the server uses the same > > identity for both protocols, but it seems possible that there might be > > a setting in which this was inferred solely from something like the > > client IP address. In any case, it seems like it would be better for > > the service identifier to be included in the transcript. > > Isn't the service identity already included in the transcript by > virtue of it being specified in the dane-client-id extension? We > could also probably shore up the language to mandate the use > of the extension (non-empty), instead of allowing it to be omitted > if the certificate only has one dns SAN identifier. > > Did you try reaching out to the researchers who have done some related > formal analysis, as I proposed before [0]? They might have some intuition > and/or an opinion to share, even if they might not have time to check it. > > -Usama > > [0] > https://mailarchive.ietf.org/arch/msg/dance/GIPVxwb4SnnN4I4K-xY0QLK0EzQ/ > Sorry, I seemed to have missed your earlier message. I'll follow up about the formal analysis topic, after we've finished the current back and forth about the remaining points of design contention. Shumon.
- [Dance] Last Call: <draft-ietf-dance-client-auth-… The IESG
- [Dance] Re: Last Call: <draft-ietf-dance-client-a… Eric Rescorla
- [Dance] Re: Last Call: <draft-ietf-dance-client-a… Muhammad Usama Sardar
- [Dance] Re: Last Call: <draft-ietf-dance-client-a… Shumon Huque
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Salz, Rich
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Shumon Huque
- [Dance] Re: Last Call: <draft-ietf-dance-client-a… Eric Rescorla
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Eric Rescorla
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Muhammad Usama Sardar
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Paul Wouters
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Salz, Rich
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Eric Rescorla
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Paul Wouters
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Eric Rescorla
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Muhammad Usama Sardar
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Muhammad Usama Sardar
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Shumon Huque
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Eric Rescorla
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Muhammad Usama Sardar
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Eric Rescorla
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Paul Wouters
- [Dance] Re: [Last-Call] Re: [TLS] Re: Last Call: … Salz, Rich
- [Dance] Re: [TLS] Re: Last Call: <draft-ietf-danc… Paul Wouters