Re: Comments on draft-ietf-httpbis-http2-secondary-certs-04

Ryan Sleevi <ryan-ietf@sleevi.com> Fri, 09 August 2019 00:33 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4088120152 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 8 Aug 2019 17:33:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.698
X-Spam-Level:
X-Spam-Status: No, score=-2.698 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.201, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VrGIbNfmi4Ma for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 8 Aug 2019 17:33:47 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9748B1200CE for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 8 Aug 2019 17:33:47 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1hvsoP-0007an-BG for ietf-http-wg-dist@listhub.w3.org; Fri, 09 Aug 2019 00:31:17 +0000
Resent-Date: Fri, 09 Aug 2019 00:31:17 +0000
Resent-Message-Id: <E1hvsoP-0007an-BG@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <ryan.sleevi@gmail.com>) id 1hvsoM-0007a1-BN for ietf-http-wg@listhub.w3.org; Fri, 09 Aug 2019 00:31:14 +0000
Received: from mail-ed1-f52.google.com ([209.85.208.52]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.89) (envelope-from <ryan.sleevi@gmail.com>) id 1hvsoK-0005kr-KO for ietf-http-wg@w3.org; Fri, 09 Aug 2019 00:31:14 +0000
Received: by mail-ed1-f52.google.com with SMTP id r12so58188621edo.5 for <ietf-http-wg@w3.org>; Thu, 08 Aug 2019 17:30:52 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Cbu7zDMUQZTtHGDHSvYId8agGYrJHn5Ajw60GeGvlhw=; b=Cnk8cCVSZL3O6qXXUjy/oNI6t3oAta0/R6mrnMl0LvCPsKF7YQs5QPftBp0MWirUbt pySGBF45Efeo3SRVdgF7le9+ktuirU+6AHSxU1iOcjgyQJiLHundWeE5TFd3NS9BSIxz 9A9OXfl8SdWGYciYq5aq1PjZRHtFdHiXgczcd8TMO0H99meGwBD6WN9iIrbco3dVTRoX e0/6WU1wVpF4VDWgXwa/bz+OT77DoLmlOilH+aBGr5lG5tth0BBAQyDPawPtJYBP4j2l qcEztaZMKzfF9HwTfAk0nAx73oObEMUTHO6gQPgcEydyCOFVGphYpQ4phEj1jjtLQ/Sa P7wA==
X-Gm-Message-State: APjAAAWIWWSjtHVd9f4mgyDFYfFs/HwTDQFszDYL+61KGaqb7ZooOnWx Oa8dItqWoU+bl4VGdlKt7PKXhud0
X-Google-Smtp-Source: APXvYqxMwEx8D3nf2LfHCS3f6XB18Lw3PiOfmG4oRgZfC1woFiHANOtXYyjFaDkOcDdKBdoOE4x7aA==
X-Received: by 2002:a17:906:3948:: with SMTP id g8mr16084922eje.240.1565310650860; Thu, 08 Aug 2019 17:30:50 -0700 (PDT)
Received: from mail-wm1-f44.google.com (mail-wm1-f44.google.com. [209.85.128.44]) by smtp.gmail.com with ESMTPSA id a18sm149686edd.28.2019.08.08.17.30.50 for <ietf-http-wg@w3.org> (version=TLS1_3 cipher=AEAD-AES128-GCM-SHA256 bits=128/128); Thu, 08 Aug 2019 17:30:50 -0700 (PDT)
Received: by mail-wm1-f44.google.com with SMTP id z23so4027517wmf.2 for <ietf-http-wg@w3.org>; Thu, 08 Aug 2019 17:30:50 -0700 (PDT)
X-Received: by 2002:a1c:cb01:: with SMTP id b1mr7260117wmg.69.1565310650307; Thu, 08 Aug 2019 17:30:50 -0700 (PDT)
MIME-Version: 1.0
References: <CAN2QdAED_6C7GmyTSXqTaZHFUYm7GVRWa753WbqrJ7Uf8fwp9w@mail.gmail.com> <CAErg=HEKVcbCuP=5ROP_mh9-EFuBzXCRTChX6RHOmNim1YD-LQ@mail.gmail.com> <CAN2QdAEt2AD1QUQ=EYkN696hbMCa9dpOKJd+dxDUFxNoHTrtZQ@mail.gmail.com> <CAErg=HGrbsKgrH_Xwk0PXXe1OeaVgOxBz2-F3CC4niEnbwT0Eg@mail.gmail.com> <CAN2QdAGyPvd_SiLHFfgnPbS=dNENGb17UA5bVfu=WY6keRshiQ@mail.gmail.com> <CAErg=HGvzVfvZq71_aSFKQcqR1Q4qX_x-6ai_MvPK4Jov54-0Q@mail.gmail.com>
In-Reply-To: <CAErg=HGvzVfvZq71_aSFKQcqR1Q4qX_x-6ai_MvPK4Jov54-0Q@mail.gmail.com>
From: Ryan Sleevi <ryan-ietf@sleevi.com>
Date: Thu, 08 Aug 2019 20:30:39 -0400
X-Gmail-Original-Message-ID: <CAErg=HE+iVKy6LwrJMEEZsXVeMvK45-9qXTG36A3AX1k36XMhQ@mail.gmail.com>
Message-ID: <CAErg=HE+iVKy6LwrJMEEZsXVeMvK45-9qXTG36A3AX1k36XMhQ@mail.gmail.com>
To: "ietf-http-wg@w3.org Group" <ietf-http-wg@w3.org>
Cc: Watson Ladd <watson@cloudflare.com>
Content-Type: multipart/alternative; boundary="000000000000465ece058fa449dc"
Received-SPF: pass client-ip=209.85.208.52; envelope-from=ryan.sleevi@gmail.com; helo=mail-ed1-f52.google.com
X-W3C-Hub-Spam-Status: No, score=-3.5
X-W3C-Hub-Spam-Report: AWL=-0.147, BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.25, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1hvsoK-0005kr-KO a0b23f4cd5f675b109daf75d87c1342e
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Comments on draft-ietf-httpbis-http2-secondary-certs-04
Archived-At: <https://www.w3.org/mid/CAErg=HE+iVKy6LwrJMEEZsXVeMvK45-9qXTG36A3AX1k36XMhQ@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/36959
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Thu, Aug 8, 2019 at 7:47 PM Ryan Sleevi <ryan-ietf@sleevi.com> wrote:
<Snip for everyone's benefit>

> You might say this is news.example's fault, for not rejecting CDN 1's
> certificate when it transitioned authority. This is BygoneSSL - and why I
> mentioned revocation. I don't think we'd suggest that CDN 1 is necessarily
> behaving adversarial - after all, news.example previously authorized them.
> However, CDN 1 doesn't know that news.example now has a relationship with
> CDN 2 (again, c.f. BygoneSSL), and thus doesn't know it should stop
> advertising to serve news.example via CDN 1's connection.
>
> Does that resonate more?
>

I suppose it's worthwhile to highlight that the assumption about that 6.5 -
and explicitly stated in 6.1 - is the omission of a DNS check prior to
using the asserted identity. That's not something inherent to
secondary-certs, but something it inherits from Section 1.1 / RFC 8336. If
https://tools.ietf.org/html/draft-bishop-httpbis-origin-fed-up were to
progress - such that a DNS check existed - then arguably the security
concerns for 6.1 / 6.5 would disappear.

Put differently, the security risk is not in secondary-certs; it's in
secondary-certs + skipping DNS. The current draft indirectly depends on
skipping DNS, but that's something that can change, in which case, I think
some of the concerns highlighted would disappear. That's just not (yet?) in
the current draft.