IETF Logo Mail Archive

[DNSOP] Re: New draft on collision free key tags in DNSSEC

Edward Lewis <eppdnsprotocols@gmail.com> Sat, 27 July 2024 17:51 UTC

Return-Path: <eppdnsprotocols@gmail.com>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8BF37C14F713 for <dnsop@ietfa.amsl.com>; Sat, 27 Jul 2024 10:51:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.604
X-Spam-Level:
X-Spam-Status: No, score=-6.604 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, FROM_LOCAL_NOVOWEL=0.5, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gvt77Gob4awx for <dnsop@ietfa.amsl.com>; Sat, 27 Jul 2024 10:51:38 -0700 (PDT)
Received: from mail-qt1-x843.google.com (mail-qt1-x843.google.com [IPv6:2607:f8b0:4864:20::843]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 68A76C14F706 for <dnsop@ietf.org>; Sat, 27 Jul 2024 10:51:38 -0700 (PDT)
Received: by mail-qt1-x843.google.com with SMTP id d75a77b69052e-450059a25b9so8263491cf.0 for <dnsop@ietf.org>; Sat, 27 Jul 2024 10:51:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1722102697; x=1722707497; darn=ietf.org; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:from:to:cc:subject:date:message-id:reply-to; bh=fxgzFVVfwVbwFrB3vnbNMiISiMj3MDVrf8vpxrrYG0o=; b=cHWQNfM+IAF/rUeo3b6t2CjD6jFtz6JUhPmSiuwP++ZBXROvRCNssW89av5u+y4d+b /81Dxsubtsda4ZDHiqucStmJAHCc30jbGlGaVqaTn15KFE9j/8iFpZSkGSTXcF+M+KZy D022p+NF1/bRuV2ihENqkUjV5Nj18oi4AIk0/nQum2NCbL8nAwxQmS+q0jlWPV8pjeTS HqcQdJE0jJ9Gbs1F8HdaezoIFLQPl6lMDJhbGlpfSU+V3rPXgxKzbvEnw3iClFpdP38k nTh+kjbALMckIOeCcnegPChJvoPKgjocK0rAHQ1NtkHo34MbUIUUkcoTJufddxczQo1S 3HAg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1722102697; x=1722707497; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=fxgzFVVfwVbwFrB3vnbNMiISiMj3MDVrf8vpxrrYG0o=; b=VQjXzYEAf1RzQKjgLyh1gniOH12nvc+mqB6iD+lV9btzIHC2UzZH/YugANzC7p/EeL I69GID+YPicwHDprW/fp91FoRSFKZCBr0N2uZ/9cI98D4TyEUvU/5+my9pzfzKnmcNF7 CoiVdX78e15h6ec/XM0BimBkInTY3F5x1STAkvI8h5GoJnFYWbupSBqac2ZM0J/i5AMd +jVRWJWBLDF4LRzopUe44EUt3shzXFGjdtVDlCQ4BU5DYdYGXzhqwyb0fYOe7j0gwtsH 0ggYSBXYRIDOmDa/eiEXniLuDdF46+fKwZnCRo8iuZ9ikNGmWMeCfKOfeTuFq5cyd8uT 998w==
X-Forwarded-Encrypted: i=1; AJvYcCUYjDv80HbLP4eT+xmmbcic8Rm6nlev+H6emU2fgyoU+qEb2tt2Mh8T610nznu9nN5RBnrXvYZX5e534jmJgQ==
X-Gm-Message-State: AOJu0Yz/kQ87m184s7ZXlj4VXTSK5+pfZPpV1TwyGEEAGOKY3kvd02QE q3nPve2r2nchjfYMsgZYICw3NNxRAfr2fYRLfdBPgJ9D6EJYmCz+C0kC50Vj
X-Google-Smtp-Source: AGHT+IE+3/PYVXNrVLO6pMN92fPEwKmiJI2p9I8g6TzQRdKcxf4guyBQlCQBaP5N52T9D1kHzFEe3A==
X-Received: by 2002:a05:622a:1a06:b0:447:e76e:d8de with SMTP id d75a77b69052e-45005abe101mr68017211cf.1.1722102697169; Sat, 27 Jul 2024 10:51:37 -0700 (PDT)
Received: from smtpclient.apple (pool-96-255-253-89.washdc.fios.verizon.net. [96.255.253.89]) by smtp.gmail.com with ESMTPSA id d75a77b69052e-44fe81745aesm25373441cf.51.2024.07.27.10.51.36 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Sat, 27 Jul 2024 10:51:36 -0700 (PDT)
From: Edward Lewis <eppdnsprotocols@gmail.com>
Message-Id: <45A69803-155C-475F-8F47-D447E2423BA5@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_6113FE17-A5E0-4F86-8886-37A64A35C75B"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.15\))
Date: Sat, 27 Jul 2024 13:51:36 -0400
In-Reply-To: <CAHPuVdUveYraaGtrGveKTiLgP1L19G6g6=bsKsHjsPsP5fkiXg@mail.gmail.com>
To: Shumon Huque <shuque@gmail.com>
References: <CAHPuVdUveYraaGtrGveKTiLgP1L19G6g6=bsKsHjsPsP5fkiXg@mail.gmail.com>
X-Mailer: Apple Mail (2.3654.120.0.1.15)
Message-ID-Hash: CUVHJBAOUI6FLNO2TC2PKOBKEMN2GJ3Y
X-Message-ID-Hash: CUVHJBAOUI6FLNO2TC2PKOBKEMN2GJ3Y
X-MailFrom: eppdnsprotocols@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Edward Lewis <eppdnsprotocols@gmail.com>, "dnsop@ietf.org WG" <dnsop@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [DNSOP] Re: New draft on collision free key tags in DNSSEC
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/jUmgnW6ggnkYWO_TGMC8gZ_i4uM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

On Jul 25, 2024, at 20:34, Shumon Huque <shuque@gmail.com> wrote:
>     https://datatracker.ietf.org/doc/html/draft-huque-dnsop-keytags-00 <https://datatracker.ietf.org/doc/html/draft-huque-dnsop-keytags-00>

I suggest changing this:

Colliding key tags impose additional work on a validating resolver, which then has to check signatures for each of the candidate set of keys identified by the Key Tag.

to:

Colliding key tags may be used to hide an attempt by a zone manager to maliciously lure a validator into an overly computationally and futile attempt to validate data, a form of denial of service.

I think “that” is the problem, not just the fact that there may be multiple keys with the same tag.  Operationally, in benign situations, I’ve seen two keys “collide” twice - not often and a shallow problem.  Only once had I noticed it while it was live - the first time it came and went without anyone complaining, with evidence that the operator did notice and fixed it.

As far as the document beyond that, I’d suggest “enforcement” be placed at the primary server - the one place the zone is assembled and assigned a serial number.  A zone could be refused loading if tags collided, pushing back on the admin/operator whose new key probably caused the collision.

OTOH, this is a DNSSEC key management tool issue, not a resolver/server issue.  Yes, resolver (validator) is impacted but cannot fix the problem.  With multi-signer in mind, there are multiple, discreet (not coordinated) key generators in use, the only common point (or first common point in the flow) is at the primary DNS server.

I don’t see how this can be DNS security algorithm specific, how collision avoidance could be made part of a “DSA”’s definition.

Ed

v2.39.1 | Report a Bug | By Email | System Status