Re: [hybi] Experiment comparing Upgrade and CONNECT handshakes

John Tamplin <jat@google.com> Wed, 01 December 2010 00:36 UTC

Return-Path: <jat@google.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id BAFF73A6C45 for <hybi@core3.amsl.com>; Tue, 30 Nov 2010 16:36:56 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -109.891
X-Spam-Level:
X-Spam-Status: No, score=-109.891 tagged_above=-999 required=5 tests=[AWL=0.085, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IA4qm3biHrDo for <hybi@core3.amsl.com>; Tue, 30 Nov 2010 16:36:53 -0800 (PST)
Received: from smtp-out.google.com (smtp-out.google.com [74.125.121.35]) by core3.amsl.com (Postfix) with ESMTP id 6794C3A6BCF for <hybi@ietf.org>; Tue, 30 Nov 2010 16:36:52 -0800 (PST)
Received: from hpaq5.eem.corp.google.com (hpaq5.eem.corp.google.com [172.25.149.5]) by smtp-out.google.com with ESMTP id oB10c3qk002419 for <hybi@ietf.org>; Tue, 30 Nov 2010 16:38:03 -0800
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=google.com; s=beta; t=1291163883; bh=SXHumw9Q+NKQc9yDjwF2G46SUD4=; h=MIME-Version:In-Reply-To:References:From:Date:Message-ID:Subject: To:Cc:Content-Type; b=dKxpXN5xtyBJFcwBPZEgFG0upLOhDipK5BTEA6iECCUL1qLS3gLJbrv7nkVm2OPJZ Ahh3LuRip/T13A5hy2L+Q==
Received: from yws5 (yws5.prod.google.com [10.192.19.5]) by hpaq5.eem.corp.google.com with ESMTP id oB10c2iI025365 for <hybi@ietf.org>; Tue, 30 Nov 2010 16:38:02 -0800
Received: by yws5 with SMTP id 5so2611591yws.16 for <hybi@ietf.org>; Tue, 30 Nov 2010 16:38:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=beta; h=domainkey-signature:received:mime-version:received:in-reply-to :references:from:date:message-id:subject:to:cc:content-type; bh=zNQ7IR/7fEXbvOrFn4NrZ+D0d57slyk9McbvqbM+M78=; b=SninpndanCV/UI+urWoj93sEpS4iUPxZ2BKtoZLujHLMCMXTjyvJ+AG3Dz1PDYee5S we/0IWbOEFozblBw7EPA==
DomainKey-Signature: a=rsa-sha1; c=nofws; d=google.com; s=beta; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; b=ex7xVt2KhqqlEYkP+y24b/8AY9zcPs43Q9XR4u7x+qRVvyht5AyPbO1I2WyWgPPRlE he+0xBNk/cgRu+NtGSYA==
Received: by 10.151.143.12 with SMTP id v12mr2864412ybn.35.1291163881335; Tue, 30 Nov 2010 16:38:01 -0800 (PST)
MIME-Version: 1.0
Received: by 10.150.217.12 with HTTP; Tue, 30 Nov 2010 16:31:01 -0800 (PST)
In-Reply-To: <BB31C4AB95A70042A256109D46199126057903CE@XCH117CNC.rim.net>
References: <AANLkTim_8g-Cb01si00EkvCK5BtXUx3zHsUee1F6JqsD@mail.gmail.com> <AANLkTimSu1fOGCg0gqX2EFh4v-MkpZuY_-onm3+TO_Z0@mail.gmail.com> <AANLkTimYpdp-75BQSmhAUfyrQv19LvzF1ouznst+ANUG@mail.gmail.com> <AANLkTikbycTS51Ein9ybbZ52zcrViFCNBjCmpRGD3yCk@mail.gmail.com> <AANLkTim=_Ey_7tSJ0H8OKzip-UcwtJ=YMG5wf_f_qnty@mail.gmail.com> <20101127071644.GB26428@1wt.eu> <AANLkTi=Rqu-hm=Jy-GFf706smD8zEHbeD-oP7dNCN6Ro@mail.gmail.com> <20101127161638.GE26428@1wt.eu> <AANLkTi=snwcb8F89KjpD8tQUYSSBr6YF1OdaGgr1e9Xa@mail.gmail.com> <AANLkTi=2M1ubEgR44PL7JpydkaZaOwwimuvhJq=E30+A@mail.gmail.com> <4CF1EFF9.7040803@caucho.com> <AANLkTimotYL70P3Rqwz3uFbf=G3JERkUJqqdEhU6eMEb@mail.gmail.com> <4CF3E676.8040001@caucho.com> <AANLkTimn92qXDa+7HNW79bSSHhEryH0kPCYYbkDsUZRZ@mail.gmail.com> <4CF3F563.3050808@caucho.com> <AANLkTimW3CP-B9TuXhtRYr051eExkMgZPT_Rm7XMp8NK@mail.gmail.com> <AANLkTimgs8Sw_Witxk+T4tx0_+vHiXdA=Hv6b1wQ4mey@mail.gmail.com> <BB31C4AB95A70042A256109D46199126057903CE@XCH117CNC.rim.net>
From: John Tamplin <jat@google.com>
Date: Tue, 30 Nov 2010 19:31:01 -0500
Message-ID: <AANLkTikcMHTue7CO436pFyx5um76tFOLB9ALiwxt1bi7@mail.gmail.com>
To: Joe Mason <jmason@rim.com>
Content-Type: multipart/alternative; boundary="00151750ddc67e6c3a04964e8460"
X-System-Of-Record: true
Cc: Hybi <hybi@ietf.org>
Subject: Re: [hybi] Experiment comparing Upgrade and CONNECT handshakes
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Dec 2010 00:36:57 -0000

On Tue, Nov 30, 2010 at 7:16 PM, Joe Mason <jmason@rim.com> wrote:

> I noticed that version uses XOR for masking, while your paper mentioned
> using AES.  Are you planning to update this proposal to use AES as well?
>  (Also, now that I've read the thing, here's another vote for rewriting it
> in declarative style.)
>

It was changed to XOR following feedback that since it wasn't for security
purposes (as the key would be known to an eavesdropper), there was little
point in additional complexity and dependencies (and more things to go
wrong, such as how you configure it) to use AES rather than XOR.

-- 
John A. Tamplin
Software Engineer (GWT), Google