Re: [dane] DANE-SRV, SNI functional equivalent and XMPP
Viktor Dukhovni <ietf-dane@dukhovni.org> Tue, 19 May 2015 23:24 UTC
Return-Path: <ietf-dane@dukhovni.org>
X-Original-To: dane@ietfa.amsl.com
Delivered-To: dane@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BC7F61ACDA4 for <dane@ietfa.amsl.com>; Tue, 19 May 2015 16:24:17 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.5
X-Spam-Level:
X-Spam-Status: No, score=-0.5 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4Vr__I95Xxzo for <dane@ietfa.amsl.com>; Tue, 19 May 2015 16:24:15 -0700 (PDT)
Received: from mournblade.imrryr.org (mournblade.imrryr.org [38.117.134.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DDEB1ACDA3 for <dane@ietf.org>; Tue, 19 May 2015 16:24:15 -0700 (PDT)
Received: by mournblade.imrryr.org (Postfix, from userid 1034) id 975BB283015; Tue, 19 May 2015 23:24:14 +0000 (UTC)
Date: Tue, 19 May 2015 23:24:14 +0000
From: Viktor Dukhovni <ietf-dane@dukhovni.org>
To: dane@ietf.org
Message-ID: <20150519232414.GQ17272@mournblade.imrryr.org>
References: <5558C801.7030304@zash.se> <555A61CA.2020108@andyet.net> <555B224D.20709@zash.se> <555B4CB3.3020203@andyet.net> <555B51AB.9070303@andyet.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <555B51AB.9070303@andyet.net>
User-Agent: Mutt/1.5.23 (2014-03-12)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dane/ui3da5vo745cMDn4Q7lSLg1lw9Y>
Subject: Re: [dane] DANE-SRV, SNI functional equivalent and XMPP
X-BeenThere: dane@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: dane@ietf.org
List-Id: DNS-based Authentication of Named Entities <dane.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dane>, <mailto:dane-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dane/>
List-Post: <mailto:dane@ietf.org>
List-Help: <mailto:dane-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dane>, <mailto:dane-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 May 2015 23:24:17 -0000
On Tue, May 19, 2015 at 08:07:23AM -0700, Peter Saint-Andre - &yet wrote: > > SRV is insecure: The reference identifiers SHALL include the service > > domain and MUST NOT include the SRV target server host name (e.g., > > include "im.example.com" but not "xmpp23.hosting.example.net"). > > The service domain is the preferred name for TLS SNI or its > > equivalent. > > > > SRV is secure: The reference identifiers SHALL include both the > > service domain and the SRV target server host name (e.g., include > > both "im.example.com" and "xmpp23.hosting.example.net"). The > > target server host name is the preferred name for TLS SNI or its > > equivalent. > > > >I think we can all agree that when SRV is insecure, the client doesn't > >have a strong binding or "association" (using language from > >draft-ietf-xmpp-dna) of the service domain to the target server host > >name, so it needs to use the service domain as the reference identifier. I disagree. What's missing here, is any dependence on the existence of the associated TLSA records, and client support for DANE (else client would not have checked the TLSA records). When SRV is secure, the client proceeds to check TLSA RRs, otherwise it does not, and reverts to non-DANE behaviour inluding any legacy behaviour for choosing the SNI name. When SRV is secure *AND* TLSA records are found, the client MUST use the TLSA base domain as the SNI name, and MUST look for that domain in the server certificate. Non-DANE servers will not have TLSA records, so they are not affected. The client will also for compatibility with legacy certificate deployments tolerate the service domain as a name in the peer certificate. See the DANE OPS draft description of the redirection use-cases. Also compare with the SMTP draft. > >When SRV is secure, the client does have that kind of strong binding or > >association, so it is OK for the client to seek a match against both the > >target server host name and the service domain when checking the > >identifiers in the certificate. No. This binding along is not enough. The server needs to also publish TLSA records to signal that support for DANE TLS (with secure redirection) is supported by the server. > NEW > SRV is secure: The reference identifiers SHALL include both the > service domain and the SRV target server host name (e.g., include > both "im.example.com" and "xmpp23.hosting.example.net"). The > service domain is still the preferred name for TLS SNI or its > equivalent (this reduces code complexity and the possibility of > interoperability problems). I object. The fix is to delay the decision until the presence of TLSA records has been checked. -- Viktor.
- [dane] DANE-SRV, SNI functional equivalent and XM… Kim Alvefur
- Re: [dane] DANE-SRV, SNI functional equivalent an… Peter Saint-Andre - &yet
- Re: [dane] DANE-SRV, SNI functional equivalent an… Kim Alvefur
- Re: [dane] DANE-SRV, SNI functional equivalent an… Peter Saint-Andre - &yet
- Re: [dane] DANE-SRV, SNI functional equivalent an… Peter Saint-Andre - &yet
- Re: [dane] DANE-SRV, SNI functional equivalent an… Viktor Dukhovni
- Re: [dane] DANE-SRV, SNI functional equivalent an… Peter Saint-Andre - &yet
- Re: [dane] DANE-SRV, SNI functional equivalent an… Viktor Dukhovni
- Re: [dane] DANE-SRV, SNI functional equivalent an… Peter Saint-Andre - &yet
- Re: [dane] DANE-SRV, SNI functional equivalent an… Viktor Dukhovni