IETF Logo Mail Archive

Re: (short version) Re: Last Call: <draft-faltstrom-uri-10.txt> (The Uniform Resource Identifier (URI) DNS Resource Record) to Proposed Standard

Sam Hartman <hartmans-ietf@mit.edu> Mon, 23 February 2015 16:33 UTC

Return-Path: <hartmans@mit.edu>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7D1431A1B79 for <ietf@ietfa.amsl.com>; Mon, 23 Feb 2015 08:33:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.635
X-Spam-Level:
X-Spam-Status: No, score=-0.635 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_64=0.6, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y0GVpHTS3QNc for <ietf@ietfa.amsl.com>; Mon, 23 Feb 2015 08:33:14 -0800 (PST)
Received: from mail.painless-security.com (mail.painless-security.com [23.30.188.241]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79D7D1A00D0 for <ietf@ietf.org>; Mon, 23 Feb 2015 08:33:14 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mail.painless-security.com (Postfix) with ESMTP id D395F20606 for <ietf@ietf.org>; Mon, 23 Feb 2015 11:32:43 -0500 (EST)
Received: from mail.painless-security.com ([127.0.0.1]) by localhost (mail.suchdamage.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yLLuY6ZmnI2y for <ietf@ietf.org>; Mon, 23 Feb 2015 11:32:43 -0500 (EST)
Received: from carter-zimmerman.suchdamage.org (unknown [10.1.10.106]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "laptop", Issuer "laptop" (not verified)) by mail.painless-security.com (Postfix) with ESMTPS for <ietf@ietf.org>; Mon, 23 Feb 2015 11:32:43 -0500 (EST)
Received: by carter-zimmerman.suchdamage.org (Postfix, from userid 8042) id 9514B80480; Mon, 23 Feb 2015 11:33:11 -0500 (EST)
From: Sam Hartman <hartmans-ietf@mit.edu>
To: ietf@ietf.org
Subject: Re: (short version) Re: Last Call: <draft-faltstrom-uri-10.txt> (The Uniform Resource Identifier (URI) DNS Resource Record) to Proposed Standard
References: <20150127223859.28024.43756.idtracker@ietfa.amsl.com> <4257D8A3-0EFE-40E3-B0AD-8E23772B7693@mnot.net> <6F9BB11D-C224-4D7B-A06C-41EACBAAB4B2@netnod.se> <54C9DA42.5040901@cisco.com> <9EB44D8A-278B-42FC-A542-1C182AD43128@netnod.se> <A74A30F4D1214630918FD4CA@JcK-HP8200.jck.com> <20150223153757.GI1260@mournblade.imrryr.org> <20150223155241.GJ1260@mournblade.imrryr.org>
Date: Mon, 23 Feb 2015 11:33:11 -0500
In-Reply-To: <20150223155241.GJ1260@mournblade.imrryr.org> (Viktor Dukhovni's message of "Mon, 23 Feb 2015 15:52:41 +0000")
Message-ID: <tsl8ufoh9ko.fsf@mit.edu>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.3 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/LOz0s51nmAKWP2iDpaTgXLnP2Ng>
X-Mailman-Approved-At: Tue, 24 Feb 2015 08:13:17 -0800
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Feb 2015 16:33:16 -0000

>>>>> "Viktor" == Viktor Dukhovni <ietf-dane@dukhovni.org> writes:

    Viktor> On Mon, Feb 23, 2015 at 03:37:57PM +0000, Viktor Dukhovni wrote:
    >> > I do note that having "priority" and "weight" separated is not
    >> > well-motivated (or even explained) in either this document or
    >> in > the original application.
    >> 
    >> This is simply carried over verbatim from SRV, where priorities
    >> yield strict ordering, while weights (for entries with the same
    >> priority) support weighted load-sharing.  This draft does not
    >> appear to differ from SRV except in replacing target+port with an
    >> URI.

    Viktor> I neglected to comment on the "Security Considerations"
    Viktor> section.

    Viktor> As observed in the DANE SMTP draft
    Viktor> (draft-ietf-dane-smtp-with-dane-14 section 1.3.2) mixing DNS
    Viktor> indirection with TLS significantly changes the security
    Viktor> picture.  The URI draft mentions the need for DNSSEC but
    Viktor> likely understates the significance of the impact.

    Viktor> For example, what determines whether to use TLS?  The target
    Viktor> URI, or some prior policy in the application?  Must URI
    Viktor> RRsets always be DNSSEC validated?  If not what prevents
    Viktor> downgrade attacks to HTTP?  If the DNS (via DNSSEC) is a
    Viktor> critical "trusted entity", should not then TLS use the DANE
    Viktor> PKI (any DNS compromise cannot be compensated for by a
    Viktor> public CA validating a URI that has been redirected to a
    Viktor> hostile site)?

    Viktor> So I take issue with the opening sentence of "Security
    Viktor> Considerations".

    Viktor>     "The authors do not believe this resource record cause
    Viktor> any new security problems."


Yes, I see significant security problems with this URI.

In particular, prior to this URI, your security depends on your TLS
trust anchors.  Since this RR encourages folks to validate the
certificate in the target URI, not the expected name entered by the
user, even if DNSSec validation is done, the security now depends on the
DNS trust anchors and the TLS trust anchors.

For the public web, those trust anchors probably have similar enough
security that it is reasonable to assume they are similar by default.

For most other applications I don't think that's true.  For some
applications i'd expect TLS trust anchors for that application to be
much stronger than DNS trust anchors, while for other apps I'd expect
DNS trust anchors to be much stronger.


I think the security implications of this draft, and by implication the
advisability of this draft have been inadequately considered.  I believe
a last-call is premature at this time.

v2.23.0 | Report a Bug | By Email