Roman Danyliw's No Objection on draft-ietf-httpbis-cache-header-09: (with COMMENT)
Roman Danyliw via Datatracker <noreply@ietf.org> Tue, 10 August 2021 22:31 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C16823A1F12 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 10 Aug 2021 15:31:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.899
X-Spam-Level:
X-Spam-Status: No, score=-2.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mKlyWi3Dj1vL for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 10 Aug 2021 15:31:25 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04B723A1F11 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 10 Aug 2021 15:31:24 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1mDaFG-0000J9-6V for ietf-http-wg-dist@listhub.w3.org; Tue, 10 Aug 2021 22:29:14 +0000
Resent-Date: Tue, 10 Aug 2021 22:29:14 +0000
Resent-Message-Id: <E1mDaFG-0000J9-6V@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <noreply@ietf.org>) id 1mDaFD-0000IN-W8 for ietf-http-wg@listhub.w3.org; Tue, 10 Aug 2021 22:29:12 +0000
Received: from mail.ietf.org ([4.31.198.44]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <noreply@ietf.org>) id 1mDaFC-0003O5-1k for ietf-http-wg@w3.org; Tue, 10 Aug 2021 22:29:11 +0000
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C3D53A1F02; Tue, 10 Aug 2021 15:28:58 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
From: Roman Danyliw via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-httpbis-cache-header@ietf.org, httpbis-chairs@ietf.org, ietf-http-wg@w3.org, tpauly@apple.com, tpauly@apple.com
X-Test-IDTracker: no
X-IETF-IDTracker: 7.36.0
Auto-Submitted: auto-generated
Reply-To: Roman Danyliw <rdd@cert.org>
Message-ID: <162863453808.26979.4599291725942512822@ietfa.amsl.com>
Date: Tue, 10 Aug 2021 15:28:58 -0700
Received-SPF: pass client-ip=4.31.198.44; envelope-from=noreply@ietf.org; helo=mail.ietf.org
X-W3C-Hub-Spam-Status: No, score=-6.2
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1mDaFC-0003O5-1k 25d8537d474e08979af9dee38eafd71d
X-Original-To: ietf-http-wg@w3.org
Subject: Roman Danyliw's No Objection on draft-ietf-httpbis-cache-header-09: (with COMMENT)
Archived-At: <https://www.w3.org/mid/162863453808.26979.4599291725942512822@ietfa.amsl.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/39150
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Roman Danyliw has entered the following ballot position for draft-ietf-httpbis-cache-header-09: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-httpbis-cache-header/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- ** Is there further guidance that can be provided to inform the tradeoff between operational and security considerations? (a) Section 2 says “While these parameters are OPTIONAL, caches are encouraged to provide as much information as possible.” (b) Section 6 says “Attackers can use the information in Cache-Status to probe the behaviour of the cache (and other components), and infer the activity of those using the cache. The Cache-Status header field may not create these risks on its own, but can assist attackers in exploiting them. For example, knowing if a cache has stored a response can help an attacker execute a timing attack on sensitive data. Exposing the cache key can help an attacker understand modifications to the cache key, which may assist cache poisoning attacks. See [ENTANGLE] for details.” On the one hand, the operational guidance in (a) seems to be saying share as much as you can to support debugging. However, the security considerations of (b) reminds the reader that the presence these parameters can be exploited. Is there any additional guidance that can be provided on how this tradeoff could or should be made?
- Roman Danyliw's No Objection on draft-ietf-httpbi… Roman Danyliw via Datatracker
- Re: Roman Danyliw's No Objection on draft-ietf-ht… Mark Nottingham