IETF Logo Mail Archive

Re: Discussion of 9.2.2

Greg Wilkins <gregw@intalio.com> Fri, 26 September 2014 21:08 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 364511A0360 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 26 Sep 2014 14:08:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.065
X-Spam-Level:
X-Spam-Status: No, score=-7.065 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.786, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o0J0QevBj4LE for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 26 Sep 2014 14:08:47 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB6751A0243 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 26 Sep 2014 14:08:46 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1XXci0-0006zi-B0 for ietf-http-wg-dist@listhub.w3.org; Fri, 26 Sep 2014 21:05:44 +0000
Resent-Date: Fri, 26 Sep 2014 21:05:44 +0000
Resent-Message-Id: <E1XXci0-0006zi-B0@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <gregw@intalio.com>) id 1XXchR-0006yB-OW for ietf-http-wg@listhub.w3.org; Fri, 26 Sep 2014 21:05:09 +0000
Received: from mail-pd0-f170.google.com ([209.85.192.170]) by maggie.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_SHA1:16) (Exim 4.72) (envelope-from <gregw@intalio.com>) id 1XXchQ-0003LI-Fv for ietf-http-wg@w3.org; Fri, 26 Sep 2014 21:05:09 +0000
Received: by mail-pd0-f170.google.com with SMTP id y13so13472430pdi.1 for <ietf-http-wg@w3.org>; Fri, 26 Sep 2014 14:04:41 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=JKTbr9yUFb1cZsojzDpI9SeORCrhozbba/tqMiBB+HU=; b=RrB3K178rLnYh2lp8WhJ0rLRrp7DotbZ0rIvTyZclg/A6v3W+IWpY9pHUWLa+Mhg+2 DmkCmQoKCnBb9QbWjq2U6TMTnqYj009AX3GRWKRzBw979gVOqb9d7j0ZAZ4TJX9ZNUSB tK1fAH2gXFWMA6r2AFJFKWE/WIPiu9Bh9ANuDWcIt3+ArGY5TpVOaIIc5Io/jUHfC3hx tmEqSE2WK2Ig3KNKur+Oj1EstQnDTJ/vzPn4YK/OwSxA37PHetdoiI1pnn2kJQa8auFi 9sSRjA5pX7cXAbRbNAnKsAN8C5PMui82w4/SnBIuu/4SOYN/6bURN94r9HBLN05kNXYX P/2A==
X-Gm-Message-State: ALoCoQkJnWhBpXSrDj5fcC3Q9wk74YwxrXTtpyUrqYr8iy77qtoRZHRMoC/MS8Nv7vvvTdNP8GDD
MIME-Version: 1.0
X-Received: by 10.68.241.230 with SMTP id wl6mr35901073pbc.1.1411765481400; Fri, 26 Sep 2014 14:04:41 -0700 (PDT)
Received: by 10.70.28.227 with HTTP; Fri, 26 Sep 2014 14:04:41 -0700 (PDT)
In-Reply-To: <CABkgnnWszVer8Y3qgmEQnxNKUhroUEeseC8JkBbGT2P6z3iZxQ@mail.gmail.com>
References: <F0D4BA2A-46B2-4F1A-8A23-1A319A3E5FC0@mnot.net> <CABkgnnWszVer8Y3qgmEQnxNKUhroUEeseC8JkBbGT2P6z3iZxQ@mail.gmail.com>
Date: Sat, 27 Sep 2014 07:04:41 +1000
Message-ID: <CAH_y2NEvsTaZQpfAajycuo9xqKqd3Pu9aCtVGZLZez7Ux=p+Yw@mail.gmail.com>
From: Greg Wilkins <gregw@intalio.com>
To: Martin Thomson <martin.thomson@gmail.com>
Cc: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>
Content-Type: multipart/alternative; boundary="047d7b339c29068d900503fe44cc"
Received-SPF: permerror client-ip=209.85.192.170; envelope-from=gregw@intalio.com; helo=mail-pd0-f170.google.com
X-W3C-Hub-Spam-Status: No, score=-4.7
X-W3C-Hub-Spam-Report: AWL=-2.137, BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7
X-W3C-Scan-Sig: maggie.w3.org 1XXchQ-0003LI-Fv c82220e9d77a0ea0722515ca4b6e287e
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Discussion of 9.2.2
Archived-At: <http://www.w3.org/mid/CAH_y2NEvsTaZQpfAajycuo9xqKqd3Pu9aCtVGZLZez7Ux=p+Yw@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/27273
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On 26 September 2014 18:08, Martin Thomson <martin.thomson@gmail.com> wrote:

> I believe that these changes resolve the issues people have raised.


Those changes are indeed better, but they don't totally address my concerns
about the fragility of the handshake.

They do greatly reduce the probability that the handshake fragility will be
a problem, but only on the basis of assumptions of how the evolution of
TLS1.2 ciphers will progress, plus hope that any configurability of
ciphersuites will always be done in accordance with the principles of 9.2.2

Who is to say that a crypto emergency wont arise that requires the
deployment of TLS1.2 ciphers that are unknown for the purposes of the http2
implementation?     If cipher evolution does not pan out as expected and
deployers are forced to bend whatever rules they can with configuration,
then we still may have interoperability problems.

So while I don't oppose those changes, I still do not think they go far
enough as the handshake is still fragile - they just reduce the fragile
surface.

I think  that we either we need a handshake that clearly identifies the
break in the offered ciphers between acceptable and unacceptable.... or we
need an explicit white list of unacceptable h2 ciphers that may be offered
for h1 fallback.

regards








-- 
Greg Wilkins <gregw@intalio.com>
http://eclipse.org/jetty HTTP, SPDY, Websocket server and client that scales
http://www.webtide.com  advice and support for jetty and cometd.

v2.46.0 | Report a Bug | By Email | System Status