IETF Logo Mail Archive

Re: [DNSOP] DNSOPI-D Action: draft-ietf-dnsop-nsec3-guidance-02.txt

Petr Špaček <pspacek@isc.org> Mon, 29 November 2021 17:41 UTC

Return-Path: <pspacek@isc.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 783283A0038 for <dnsop@ietfa.amsl.com>; Mon, 29 Nov 2021 09:41:08 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.951
X-Spam-Level:
X-Spam-Status: No, score=-3.951 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-1.852, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=isc.org header.b=g8pH4H2m; dkim=pass (1024-bit key) header.d=isc.org header.b=Ok+PA7Ax
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kk6zgadTEF04 for <dnsop@ietfa.amsl.com>; Mon, 29 Nov 2021 09:41:02 -0800 (PST)
Received: from mx.pao1.isc.org (mx.pao1.isc.org [IPv6:2001:4f8:0:2::2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CED1D3A0035 for <dnsop@ietf.org>; Mon, 29 Nov 2021 09:41:02 -0800 (PST)
Received: from zimbrang.isc.org (zimbrang.isc.org [149.20.1.12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx.pao1.isc.org (Postfix) with ESMTPS id 05A00435245 for <dnsop@ietf.org>; Mon, 29 Nov 2021 17:41:01 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=isc.org; s=ostpay; t=1638207661; bh=EsiPCxzhf6XJb3/9iYRnI9YsPBRxyWSGiB+bfi2P/tw=; h=Date:Subject:To:References:From:In-Reply-To; b=g8pH4H2mwhMtoC/YxkKW9Zpd9TNaaxkewAtpBgzXwenEOwo7eWYkqhYJpFlYtsTTP kJTEPnGh2GY9regyF8VYn97YGbmvfVUn7fgxfc5W7uevmgifgMQz69XTDcdUhtYynH nSjMxakS+J95MQtU2uC0I9cKR/EOk/ekXMZo++Wg=
Received: from zimbrang.isc.org (localhost.localdomain [127.0.0.1]) by zimbrang.isc.org (Postfix) with ESMTPS id F103BF24315 for <dnsop@ietf.org>; Mon, 29 Nov 2021 17:41:00 +0000 (UTC)
Received: from localhost (localhost.localdomain [127.0.0.1]) by zimbrang.isc.org (Postfix) with ESMTP id CA68DF24317 for <dnsop@ietf.org>; Mon, 29 Nov 2021 17:41:00 +0000 (UTC)
DKIM-Filter: OpenDKIM Filter v2.10.3 zimbrang.isc.org CA68DF24317
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=isc.org; s=05DFB016-56A2-11EB-AEC0-15368D323330; t=1638207660; bh=upOVTFgnyX2bFBXR+G6DO4LSZHNXh2QtUAp8f9Wd4ds=; h=Message-ID:Date:MIME-Version:To:From; b=Ok+PA7AxswF5kxQv2Cu9ZQEP9X4ZOibBsq5v9lSeaDuDhVr3eAGeImOamPc9FHtsL L948gr9Deg/WCH45lyO7Z/j3GWZ4yb62LFieoQo6ML4PbwwzIkzA75zuLsoLDnm9/i QsgfBsAYKLx2/FWJKussFWN1dbnS5+YMGzOWyqz4=
Received: from zimbrang.isc.org ([127.0.0.1]) by localhost (zimbrang.isc.org [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id Fs8TRx-7PoJO for <dnsop@ietf.org>; Mon, 29 Nov 2021 17:41:00 +0000 (UTC)
Received: from [192.168.0.157] (ip-86-49-254-49.net.upcbroadband.cz [86.49.254.49]) by zimbrang.isc.org (Postfix) with ESMTPSA id 5B913F24315 for <dnsop@ietf.org>; Mon, 29 Nov 2021 17:41:00 +0000 (UTC)
Message-ID: <0a2da4d5-28ee-d054-1572-b96b75e08a0c@isc.org>
Date: Mon, 29 Nov 2021 18:40:58 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.3.2
Content-Language: en-US
To: dnsop@ietf.org
References: <163777315136.16773.10633006296842101587@ietfa.amsl.com> <yblh7c1fpwf.fsf@w7.hardakers.net> <914ced6b-52c7-9354-4b91-87f80cd26037@pletterpet.nl> <6153c0ed-523a-5225-40ac-5be9fd5e6ed5@isc.org> <ab48df81-030a-2ff3-2ac9-228edbfd15d5@nic.cz> <a626139e-556f-8556-f37f-d9b9a3b3d4bd@isc.org> <YaHMaVswerssRk7T@straasha.imrryr.org>
From: Petr Špaček <pspacek@isc.org>
In-Reply-To: <YaHMaVswerssRk7T@straasha.imrryr.org>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/SEtc_5q-eZd48N7qrZ6nX4LlRj8>
Subject: Re: [DNSOP] DNSOPI-D Action: draft-ietf-dnsop-nsec3-guidance-02.txt
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Nov 2021 17:41:08 -0000

On 27. 11. 21 7:12, Viktor Dukhovni wrote:
> On Fri, Nov 26, 2021 at 12:32:19PM +0100, Petr Špaček wrote:
> 
>> Also, when we are theorizing, we can also consider that resalting
>> thwarts simple correlation: After a resalt attacker cannot tell if a set
>> of names has changed or not. With a constant salt attacker can detect
>> new and removed names by their hash. (I'm not sure it is useful
>> information without cracking the hashes.)
> 
> Actually, no.  If one has previously been mostly successful at cracking
> extant names in a zone, rehashing of a small set (much smaller than the
> full dictionary one use) of known names is rather quick.  So old names
> can be quickly identified even after a salt change.  Leaving just the
> hashes of new names.

To be clear: I was talking about attacker who does not cracked the zone. 
You are right that rehashing know names is very cheap.


> Mind you, for cracking the new names, one would still rehash the entire
> dictionary when the salt changes, the number of new names to check is
> not a scaling factor in the cost.  Just a table join.
> 
> So periodic resalting does raise the cost of ongoing tracking of a
> zone's content, if that's the sort of thing one cares enough about.
> Rarely worth it, but mostly harmless if the salt is not too long and
> rotated say on each ZSK rollover.

Plus all the mess with large zone transfers, which often can cause 
issues, especially when done in huge batches (like rotating ZSK/salt 
shared for 100 000 zones on a shared hosting.)

-- 
Petr Špaček

v2.23.0 | Report a Bug | By Email