IETF Logo Mail Archive

Re: PRISM and HTTP/2.0

Reto Bachmann-Gmür <reto@gmuer.ch> Tue, 16 July 2013 16:30 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 17AC811E80ED for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 16 Jul 2013 09:30:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.677
X-Spam-Level:
X-Spam-Status: No, score=-9.677 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MV5bo5i-vr7F for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 16 Jul 2013 09:29:33 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id 4789811E80E9 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 16 Jul 2013 09:29:33 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1Uz87o-00078Z-Se for ietf-http-wg-dist@listhub.w3.org; Tue, 16 Jul 2013 16:29:16 +0000
Resent-Date: Tue, 16 Jul 2013 16:29:16 +0000
Resent-Message-Id: <E1Uz87o-00078Z-Se@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <reto@gmuer.ch>) id 1Uz87f-00077l-Ni for ietf-http-wg@listhub.w3.org; Tue, 16 Jul 2013 16:29:07 +0000
Received: from r2-d2.netlabs.org ([213.238.45.90]) by maggie.w3.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.72) (envelope-from <reto@gmuer.ch>) id 1Uz87e-0005ay-7i for ietf-http-wg@w3.org; Tue, 16 Jul 2013 16:29:07 +0000
Received: (qmail 68704 invoked by uid 89); 16 Jul 2013 16:28:44 -0000
Received: from unknown (HELO mail-lb0-f180.google.com) (farewellutopia@netlabs.org@209.85.217.180) by 0 with ESMTPA; 16 Jul 2013 16:28:44 -0000
Received: by mail-lb0-f180.google.com with SMTP id o10so755733lbi.25 for <ietf-http-wg@w3.org>; Tue, 16 Jul 2013 09:28:43 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-originating-ip:in-reply-to:references:date :message-id:subject:from:to:cc:content-type :content-transfer-encoding:x-gm-message-state; bh=TXVEM+gZBG4HlSdxkUKu7yQQAPiczuFu+1/UcOA+vBM=; b=nSPUwbAvS7H2ZtoLIiN2KLi7CawPtNq3lkW9wr/GYvzCi9HjyY6hUyTcFMw0lB5QO+ 2VOKttx+vxiKmbJUsfrk5C7+hiCSBsqeMavdAEoMVMeb9QdUFX1c95jLuuB74PuumG2X qJtyEjPWlL+lAGVypvyxh+nU3kbailwqh/dROsQlcCG8wQAoFm/kVxPJTKfd7MpcuaXT E37PDRpwT2BiKz4OypHTshe+8dk+lofWHeQtSVqyauadzb42kP3XRhtOh7kdbdd3EjEM jd/H1f4EnnOLkizgdrzBdkAdPEg6xGUkZykknHd+3il4srs6Ej4pFXzO8r+eq4trmzmd Nm5A==
MIME-Version: 1.0
X-Received: by 10.112.52.97 with SMTP id s1mr1469994lbo.8.1373992123443; Tue, 16 Jul 2013 09:28:43 -0700 (PDT)
Received: by 10.152.125.144 with HTTP; Tue, 16 Jul 2013 09:28:43 -0700 (PDT)
X-Originating-IP: [31.24.10.206]
In-Reply-To: <51E53A7D.4090306@treenet.co.nz>
References: <5672.1373710085@critter.freebsd.dk> <51E1D7AF.20708@jrn.me.uk> <CALvhUEW87qGoCYAPY_DW37bs4P=maD0iWFk6tWc-ZVN15KUWtg@mail.gmail.com> <51E53A7D.4090306@treenet.co.nz>
Date: Tue, 16 Jul 2013 18:28:43 +0200
Message-ID: <CALvhUEVxnJcvfc13PsEZW_8S4ZsLiZb1+h_f-M2W96jv_b0EBQ@mail.gmail.com>
From: Reto Bachmann-Gmür <reto@gmuer.ch>
To: Amos Jeffries <squid3@treenet.co.nz>
Cc: HTTP Working Group <ietf-http-wg@w3.org>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
X-Gm-Message-State: ALoCoQmup/9rYuVH+E69t2iLOeLMG9TOKdkjCl35dTuo1d4SEwOGzSAJaMd+N85780Y0kmwrNRI9
Received-SPF: none client-ip=213.238.45.90; envelope-from=reto@gmuer.ch; helo=r2-d2.netlabs.org
X-W3C-Hub-Spam-Status: No, score=-3.5
X-W3C-Hub-Spam-Report: AWL=-3.450
X-W3C-Scan-Sig: maggie.w3.org 1Uz87e-0005ay-7i 61410338ef0dbdf98b8e4b49e9ec5f3f
X-Original-To: ietf-http-wg@w3.org
Subject: Re: PRISM and HTTP/2.0
Archived-At: <http://www.w3.org/mid/CALvhUEVxnJcvfc13PsEZW_8S4ZsLiZb1+h_f-M2W96jv_b0EBQ@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/18812
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Tue, Jul 16, 2013 at 2:20 PM, Amos Jeffries <squid3@treenet.co.nz> wrote:
> On 16/07/2013 4:19 a.m., Reto Bachmann-Gmür wrote:
>
>> On Sun, Jul 14, 2013 at 12:41 AM, J Ross Nicoll wrote:
>>>
>>> Bogus certificates and server-side backdoors seem inevitable, at least in
>>> the current political climate. I don't think any realistic changes at the
>>> transport layer will affect that (unrealistic changes would include "move
>>> to
>>> a web of trust").
>>
>> Not sure if it would be within the possibilities of this WG to define
>> an optional public key hash in HTTP URIs. If a link contains such a
>> hash of the public key of the target this would protect against
>> attacks from a root-certificate holding man in the middle.
>
>
> I can't think how.

Abusing the userinfo subcomponent a  URI could look like this

https://WanYixZKajPyjw2llf@example.org/foo

If the public key presented by the server does not match the digest
WanYixZKajPyjw2llf the client would present a warning.

> The MITM can as easily change that public key to its own
> one and use the original itself as the client could use it in the first
> place.

No. The MITM might be able to provide a duly signed certificate for
example.org but it would much harder to create one which matches the
digest present in the referring URIs.


Reto

v2.23.0 | Report a Bug | By Email