IETF Logo Mail Archive

Re: [hybi] Why not just use ssh?

Adam Barth <ietf@adambarth.com> Wed, 01 September 2010 05:53 UTC

Return-Path: <ietf@adambarth.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B405A3A6ABA for <hybi@core3.amsl.com>; Tue, 31 Aug 2010 22:53:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[AWL=-0.132, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DqMG4d0lvhpM for <hybi@core3.amsl.com>; Tue, 31 Aug 2010 22:53:34 -0700 (PDT)
Received: from mail-gw0-f44.google.com (mail-gw0-f44.google.com [74.125.83.44]) by core3.amsl.com (Postfix) with ESMTP id D61753A6A79 for <hybi@ietf.org>; Tue, 31 Aug 2010 22:53:33 -0700 (PDT)
Received: by gwb20 with SMTP id 20so3467451gwb.31 for <hybi@ietf.org>; Tue, 31 Aug 2010 22:54:04 -0700 (PDT)
Received: by 10.100.34.19 with SMTP id h19mr7719431anh.2.1283320444010; Tue, 31 Aug 2010 22:54:04 -0700 (PDT)
Received: from mail-iw0-f172.google.com (mail-iw0-f172.google.com [209.85.214.172]) by mx.google.com with ESMTPS id h5sm16018326anb.28.2010.08.31.22.54.02 (version=SSLv3 cipher=RC4-MD5); Tue, 31 Aug 2010 22:54:03 -0700 (PDT)
Received: by iwn3 with SMTP id 3so7164585iwn.31 for <hybi@ietf.org>; Tue, 31 Aug 2010 22:54:02 -0700 (PDT)
Received: by 10.231.13.130 with SMTP id c2mr8344712iba.24.1283320441947; Tue, 31 Aug 2010 22:54:01 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.231.187.218 with HTTP; Tue, 31 Aug 2010 22:53:31 -0700 (PDT)
In-Reply-To: <20100901054906.GB5888@1wt.eu>
References: <d48398080b610405d982ffd924f58e27.squirrel@sm.webmail.pair.com> <AANLkTin8CiHFoOSFdcRPern5YY-FdODC4GST+BrP3t_j@mail.gmail.com> <AANLkTi=fn2JE7a0b_0KFFLwq3eG_-xnaRazXAMPGi0N3@mail.gmail.com> <CA566BAEAD6B3F4E8B5C5C4F61710C110FAFBCBD@TK5EX14MBXW605.wingroup.windeploy.ntdev.microsoft.com> <AANLkTinE1MB10nUhpnU-SC+aLjPmFyu3NhjLC1-wMmW7@mail.gmail.com> <AANLkTi=b==PVb9i3VeNo+JRzQwKrr-5=t14HH2m=Tc5Z@mail.gmail.com> <20100901054906.GB5888@1wt.eu>
From: Adam Barth <ietf@adambarth.com>
Date: Tue, 31 Aug 2010 22:53:31 -0700
Message-ID: <AANLkTimZ9=V0qJb0cwts6-u=3jJvdqZ64dJ1w-av_+AD@mail.gmail.com>
To: Willy Tarreau <w@1wt.eu>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: "hybi@ietf.org" <hybi@ietf.org>
Subject: Re: [hybi] Why not just use ssh?
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Sep 2010 05:53:35 -0000

On Tue, Aug 31, 2010 at 10:49 PM, Willy Tarreau <w@1wt.eu> wrote:
> On Tue, Aug 31, 2010 at 08:40:45PM -0400, John Tamplin wrote:
>> On Tue, Aug 31, 2010 at 8:26 PM, Adam Barth <ietf@adambarth.com> wrote:
>> > Why?  There are a number of compelling technical reasons to prefer the
>> > TLS-based handshake.  The counter arguments appear to be entirely
>> > non-technical.
>>
>> I don't know -- does changing the typical total frame header size
>> after RoHC from 7 bytes to 22 count as a technical argument?  With a
>> large number of frames likely being a few dozen bytes after
>> compression, that seems significant.  The requirement for any
>> implementation to include TLS libraries also seems to be a technical
>> argument.
>
> I'd like to add that the WG's goal is to achieve interoperability, and
> that's not only based on technical arguments. With TLS, an administrator
> can't analyze traffic. That's very important in schools for example, and
> some large enterprises, where the policy is simple : either you can
> analyze and filter, or you block. While I'm very favorable to a TLS
> version, I'd really like to have an HTTP one too. For this reason, I
> think we should ensure the handshake is simple enough to limit misuses,
> and looks a lot like HTTP so that it does not create a new attack
> vector. After all, the WS clients will be the browsers. They already
> have access to the net (direct or via proxies), and what we should be
> concerned about is that we can't do with WS what we can't already do
> with HTTP.
>
> So in my opinion, trying to stop protocol attacks before the handshake
> is complete is a waste of time since the HTTP vector is still available,
> however we have to ensure we won't complete the handshake on a non-WS
> server. For that use, I think that the nonce, whatever its form (possibly
> a WS ping+pong) is very important.

We're just going in circles.  You've made all these points before.

Adam

v2.23.0 | Report a Bug | By Email