Re: [hybi] I-D Action: draft-ietf-hybi-thewebsocketprotocol-13.txt
Tobias Oberstein <tobias.oberstein@tavendo.de> Thu, 08 September 2011 17:04 UTC
Return-Path: <tobias.oberstein@tavendo.de>
X-Original-To: hybi@ietfa.amsl.com
Delivered-To: hybi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3976421F87D9 for <hybi@ietfa.amsl.com>; Thu, 8 Sep 2011 10:04:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.51
X-Spam-Level:
X-Spam-Status: No, score=-2.51 tagged_above=-999 required=5 tests=[AWL=0.088, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6zTwaYI+6YEI for <hybi@ietfa.amsl.com>; Thu, 8 Sep 2011 10:04:05 -0700 (PDT)
Received: from EXHUB020-1.exch020.serverdata.net (exhub020-1.exch020.serverdata.net [206.225.164.28]) by ietfa.amsl.com (Postfix) with ESMTP id 679CE21F8797 for <hybi@ietf.org>; Thu, 8 Sep 2011 10:04:05 -0700 (PDT)
Received: from EXVMBX020-12.exch020.serverdata.net ([169.254.3.209]) by EXHUB020-1.exch020.serverdata.net ([206.225.164.28]) with mapi; Thu, 8 Sep 2011 10:05:57 -0700
From: Tobias Oberstein <tobias.oberstein@tavendo.de>
To: John Tamplin <jat@google.com>
Date: Thu, 08 Sep 2011 10:04:36 -0700
Thread-Topic: [hybi] I-D Action: draft-ietf-hybi-thewebsocketprotocol-13.txt
Thread-Index: AcxuSLyiUL0oP3/bQ02zia67LFw3owAABVpg
Message-ID: <634914A010D0B943A035D226786325D422C0F6DC2B@EXVMBX020-12.exch020.serverdata.net>
References: <20110831184207.1514.64093.idtracker@ietfa.amsl.com> <0fc901cc6878$1681eec0$0a00a8c0@Venus> <CAH9hSJb2rH+fX0AnekYxsEkHKzb15aHrg_hDQw1baWLiWBF-3w@mail.gmail.com> <17b501cc6d31$3016d6d0$0a00a8c0@Venus> <CAH9hSJYhLpcXrOtS-nzLt2YW9QbngEsfdcNF+0TadyVA6rrK1A@mail.gmail.com> <17ef01cc6d39$3575ae50$0a00a8c0@Venus> <20110907085128.GA19144@1wt.eu> <CAH9hSJYXZ285L_+eJh6VUVCAg4D+u=vQbcjVOA4RMsJSbcHqiw@mail.gmail.com> <CABLsOLBKgnTFga821t2AZ1dXobTsfMb5v8CTJhm_Nr8WMkonaA@mail.gmail.com> <53451FDB-77F7-42A1-8D16-05094C35AB5D@bbn.com> <4E68E9F6.6030901@stpeter.im> <634914A010D0B943A035D226786325D422C0F6DBF7@EXVMBX020-12.exch020.serverdata.net> <CABLsOLAw=ru059x7p2EWnye6ssVQGAvrzBB9Y5mNyo9Ez_ae6A@mail.gmail.com>
In-Reply-To: <CABLsOLAw=ru059x7p2EWnye6ssVQGAvrzBB9Y5mNyo9Ez_ae6A@mail.gmail.com>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: de-DE, en-US
Content-Type: multipart/alternative; boundary="_000_634914A010D0B943A035D226786325D422C0F6DC2BEXVMBX02012ex_"
MIME-Version: 1.0
Cc: "hybi@ietf.org" <hybi@ietf.org>
Subject: Re: [hybi] I-D Action: draft-ietf-hybi-thewebsocketprotocol-13.txt
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Sep 2011 17:04:06 -0000
A client can just send frames with mask bit set, a random mask, but don't actually mask (XOR) the payload. The intermediary can check for mask bit set, unmask the payload using the random mask, and then? When a client send white noise as payload, XORing the white noise with any mask will not change the statistics of the result vs the original. Same for any sane encryption, which looks like white noise after encryption, and will look like white noise after XOR with _any_ mask How can an intermediary proof that payload is really masked? Von: John Tamplin [mailto:jat@google.com] Gesendet: Donnerstag, 8. September 2011 18:59 An: Tobias Oberstein Cc: Peter Saint-Andre; Richard L. Barnes; hybi@ietf.org Betreff: Re: [hybi] I-D Action: draft-ietf-hybi-thewebsocketprotocol-13.txt On Thu, Sep 8, 2011 at 12:37 PM, Tobias Oberstein <tobias.oberstein@tavendo.de<mailto:tobias.oberstein@tavendo.de>> wrote: - intermediaries can not check weather c2s frames are really masked, since they can't differentiate between payload which is masked random noise/encrypted app payload vs. payload that is non-masked random noise/encrypted app payload anyway This isn't correct - an intermediary can see the MASK bit is set or not, and if it wants to even find the payload it has to respect that. -- John A. Tamplin Software Engineer (GWT), Google
- Re: [hybi] what's next Peter Saint-Andre
- [hybi] I-D Action: draft-ietf-hybi-thewebsocketpr… internet-drafts
- [hybi] what's next Peter Saint-Andre
- Re: [hybi] what's next Julian Reschke
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Len Holgate
- Re: [hybi] what's next Iñaki Baz Castillo
- Re: [hybi] what's next Alexey Melnikov
- Re: [hybi] what's next Iñaki Baz Castillo
- Re: [hybi] what's next Alexey Melnikov
- Re: [hybi] what's next Iñaki Baz Castillo
- Re: [hybi] what's next Peter Saint-Andre
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Takeshi Yoshino
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Sylvain Hellegouarch
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Willy Tarreau
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Sylvain Hellegouarch
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Sylvain Hellegouarch
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Len Holgate
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Takeshi Yoshino
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Len Holgate
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Willy Tarreau
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Len Holgate
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Peter Saint-Andre
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Len Holgate
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Takeshi Yoshino
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Len Holgate
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Tobias Oberstein
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Takeshi Yoshino
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… John Tamplin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Joel Martin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Tobias Oberstein
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Sylvain Hellegouarch
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Gabriel Montenegro
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… John Tamplin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Peter Saint-Andre
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Alexey Melnikov
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Gabriel Montenegro
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… John Tamplin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Joel Martin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Joel Martin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Tobias Oberstein
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Gabriel Montenegro
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… John Tamplin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Tobias Oberstein
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… SM
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Peter Saint-Andre
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… John Tamplin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… John Tamplin
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Tobias Oberstein
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… SM
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Ian Fette (イアンフェッティ)
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Willy Tarreau
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Willy Tarreau
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Gabriel Montenegro
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Greg Wilkins
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Martin J. Dürst
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Willy Tarreau
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Takeshi Yoshino
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Willy Tarreau
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Richard L. Barnes
- Re: [hybi] I-D Action: draft-ietf-hybi-thewebsock… Bruce Atherton