Re: [openpgp] Message padding in OpenPGP
Stephen Farrell <stephen.farrell@cs.tcd.ie> Fri, 27 September 2019 11:18 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D9A9120801 for <openpgp@ietfa.amsl.com>; Fri, 27 Sep 2019 04:18:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id outL4J792nhn for <openpgp@ietfa.amsl.com>; Fri, 27 Sep 2019 04:18:13 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E8181200B7 for <openpgp@ietf.org>; Fri, 27 Sep 2019 04:18:12 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 255D4BE2F; Fri, 27 Sep 2019 12:18:11 +0100 (IST)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ks3fT2G5_Tcv; Fri, 27 Sep 2019 12:18:10 +0100 (IST)
Received: from [134.226.36.93] (unknown [134.226.36.93]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id D22BFBE2C; Fri, 27 Sep 2019 12:18:10 +0100 (IST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1569583090; bh=LGaTG+UovjAxS9qiuDmnJwY2UUOUbvLKEnQxfXeguL0=; h=Subject:To:References:From:Date:In-Reply-To:From; b=IbHx2n46kPaumkOzV8v2iqgC0ix8wJJG83/C0q8oO61ehQzGtcLJG/WIvHWPncxJk +wBCJhOZJZdGFphtyqNf1y0AGfOlsODMydtyL2ZoOGGEI/7XVF9gsQs41HMaBmTH7N 4mkx7dUYCPU2OMZZoFeyarEJV1OOIpn2qmQufJMg=
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>, Justus Winter <justuswinter@gmail.com>, openpgp@ietf.org
References: <CA+t5QVsZoWEuDWEzGn+mWNsx+giJsq+9pYptt3TfffASBVoGsw@mail.gmail.com> <87lfua3b4b.fsf@fifthhorseman.net> <74a4ed22-a2ba-73cf-f665-f720b7f18d7d@cs.tcd.ie> <87blv62f68.fsf@fifthhorseman.net>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=5BB5A6EA5765D2C5863CAE275AB2FAF17B172BEA; url=
Autocrypt: addr=stephen.farrell@cs.tcd.ie; prefer-encrypt=mutual; keydata= mQINBFo9UDIBEADUH4ZPcUnX5WWRWO4kEkHea5Y5eEvZjSwe/YA+G0nrTuOU9nemCP5PMvmh 5Cg8gBTyWyN4Z2+O25p9Tja5zUb+vPMWYvOtokRrp46yhFZOmiS5b6kTq0IqYzsEv5HI58S+ QtaFq978CRa4xH9Gi9u4yzUmT03QNIGDXE37honcAM4MOEtEgvw4fVhVWJuyy3w//0F2tzKr EMjmL5VGuD/Q9+G/7abuXiYNNd9ZFjv4625AUWwy+pAh4EKzS1FE7BOZp9daMu9MUQmDqtZU bUv0Q+DnQAB/4tNncejJPz0p2z3MWCp5iSwHiQvytYgatMp34a50l6CWqa13n6vY8VcPlIqO Vz+7L+WiVfxLbeVqBwV+4uL9to9zLF9IyUvl94lCxpscR2kgRgpM6A5LylRDkR6E0oudFnJg b097ZaNyuY1ETghVB5Uir1GCYChs8NUNumTHXiOkuzk+Gs4DAHx/a78YxBolKHi+esLH8r2k 4LyM2lp5FmBKjG7cGcpBGmWavACYEa7rwAadg4uBx9SHMV5i33vDXQUZcmW0vslQ2Is02NMK 7uB7E7HlVE1IM1zNkVTYYGkKreU8DVQu8qNOtPVE/CdaCJ/pbXoYeHz2B1Nvbl9tlyWxn5Xi HzFPJleXc0ksb9SkJokAfwTSZzTxeQPER8la5lsEEPbU/cDTcwARAQABtDJTdGVwaGVuIEZh cnJlbGwgKDIwMTcpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPokCQAQTAQgAKgIbAwUJ CZQmAAULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAUCWj6jdwIZAQAKCRBasvrxexcr6o7QD/9m x9DPJetmW794RXmNTrbTJ44zc/tJbcLdRBh0KBn9OW/EaAqjDmgNJeCMyJTKr1ywaps8HGUN hLEVkc14NUpgi4/Zkrbi3DmTp25OHj6wXBS5qVMyVynTMEIjOfeFFyxG+48od+Xn7qg6LT7G rHeNf+z/r0v9+8eZ1Ip63kshQDGhhpmRMKu4Ws9ZvTW2ACXkkTFaSGYJj3yIP4R6IgwBYGMz DXFX6nS4LA1s3pcPNxOgrvCyb60AiJZTLcOk/rRrpZtXB1XQc23ZZmrlTkl2HaThL6w3YKdi Ti1NbuMeOxZqtXcUshII45sANm4HuWNTiRh93Bn5bN6ddjgsaXEZBKUBuUaPBl7gQiQJcAlS 3MmGgVS4ZoX8+VaPGpXdQVFyBMRFlOKOC5XJESt7wY0RE2C8PFm+5eywSO/P1fkl9whkMgml 3OEuIQiP2ehRt/HVLMHkoM9CPQ7t6UwdrXrvX+vBZykav8x9U9M6KTgfsXytxUl6Vx5lPMLi 2/Jrsz6Mzh/IVZa3xjhq1OLFSI/tT2ji4FkJDQbO+yYUDhcuqfakDmtWLMxecZsY6O58A/95 8Qni6Xeq+Nh7zJ7wNcQOMoDGj+24di2TX1cKLzdDMWFaWzlNP5dB5VMwS9Wqj1Z6TzKjGjru q8soqohwb2CK9B3wzFg0Bs1iBI+2RuFnxLkCDQRaPVAyARAA+g3R0HzGr/Dl34Y07XqGqzq5 SU0nXIu9u8Ynsxj7gR5qb3HgUWYEWrHW2jHOByXnvkffucf5yzwrsvw8Q8iI8CFHiTYHPpey 4yPVn6R0w/FOMcY70eTIu/k6EEFDlDbs09DtKcrsT9bmN0XoRxITlXwWTufYqUnmS+YkAuk+ TLCtUin7OdaS2uU6Ata3PLQSeM2ZsUQMmYmHPwB9rmf+q2I005AJ9Q1SPQ2KNg/8xOGxo13S VuaSqYRQdpV93RuCOzg4vuXtR+gP0KQrus/P2ZCEPvU9cXF/2MIhXgOz207lv3iE2zGyNXld /n8spvWk+0bH5Zqd9Wcba/rGcBhmX9NKKDARZqjkv/zVEP1X97w1HsNYeUFNcg2lk9zQKb4v l1jx/Uz8ukzH2QNhU4R39dbF/4AwWuSVkGW6bTxHJqGs6YimbfdQqxTzmqFwz3JP0OtXX5q/ 6D4pHwcmJwEiDNzsBLl6skPSQ0Xyq3pua/qAP8MVm+YxCxJQITqZ8qjDLzoe7s9X6FLLC/DA L9kxl5saVSfDbuI3usH/emdtn0NA9/M7nfgih92zD92sl1yQXHT6BDa8xW1j+RU4P+E0wyd7 zgB2UeYgrp2IIcfG+xX2uFG5MJQ/nYfBoiALb0+dQHNHDtFnNGY3Oe8z1M9c5aDG3/s29QbJ +w7hEKKo9YMAEQEAAYkCJQQYAQgADwUCWj1QMgIbDAUJCZQmAAAKCRBasvrxexcr6qwvD/9b Rek3kfN8Q+jGrKl8qwY8HC5s4mhdDJZI/JP2FImf5J2+d5/e8UJ4fcsT79E0/FqX3Z9wZr6h sofPqLh1/YzDsYkZDHTYSGrlWGP/I5kXwUmFnBZHzM3WGrL3S7ZmCYMdudhykxXXjq7M6Do1 oxM8JofrXGtwBTLv5wfvvygJouVCVe87Ge7mCeY5vey1eUi4zSSF1zPpR6gg64w2g4TXM5qt SwkZVOv1g475LsGlYWRuJV8TA67yp1zJI7HkNqCo8KyHX0DPOh9c+Sd9ZX4aqKfqH9HIpnCL AYEgj7vofeix7gM3kQQmwynqq32bQGQBrKJEYp2vfeO30VsVx4dzuuiC5lyjUccVmw5D72J0 FlGrfEm0kw6D1qwyBg0SAMqamKN6XDdjhNAtXIaoA2UMZK/vZGGUKbqTgDdk0fnzOyb2zvXK CiPFKqIPAqKaDHg0JHdGI3KpQdRNLLzgx083EqEc6IAwWA6jSz+6lZDV6XDgF0lYqAYIkg3+ 6OUXUv6plMlwSHquiOc/MQXHfgUP5//Ra5JuiuyCj954FD+MBKIj8eWROfnzyEnBplVHGSDI ZLzL3pvV14dcsoajdeIH45i8DxnVm64BvEFHtLNlnliMrLOrk4shfmWyUqNlzilXN2BTFVFH 4MrnagFdcFnWYp1JPh96ZKjiqBwMv/H0kw==
Message-ID: <ebbf1724-5a18-4039-fa47-90324bbcbc84@cs.tcd.ie>
Date: Fri, 27 Sep 2019 12:18:09 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <87blv62f68.fsf@fifthhorseman.net>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="u0xvAr696lMsgmHQRGO3Il0mAucK4DgFb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/SWsIearF7NpAJJuXRfwJMOYcZcw>
Subject: Re: [openpgp] Message padding in OpenPGP
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Sep 2019 11:18:16 -0000
Hiya, On 27/09/2019 11:42, Daniel Kahn Gillmor wrote: > On Fri 2019-09-27 01:41:55 +0100, Stephen Farrell wrote: >> On 27/09/2019 00:12, Daniel Kahn Gillmor wrote: >>> The ideal place to apply padding is at the application layer >> >> That's not clear to me. It may be true or it may not. >> (Perhaps that's just me being suspicious of terms like >> "ideal" though:-) >> >> As a (possible) counter-example, application layer code >> is perhaps not (yet) well positioned to deal with padding >> of both DNS and application layer traffic, all at once. > > i agree with your concerns, Stephen, though maybe not the specific > wording. :) I mean, DNS *is* application layer traffic, right? Yep, you're right - I should've said "DNS and other application layer traffic." > > But you're right, as we move toward multiplexed application layer > protocols within a standard encryption layer (e.g. DNS over HTTPS on the > same endpoint that is serving "normal" HTTPS traffic as well), the > padding designs needed to mitigate size-based traffic analysis require > some sort of systemic reasoning about the combination of the application > layers involved. > > So maybe the better way to say this is that padding policy should be > designed and set based on the encryption layer's properties (and padding > capabilities) and the union of all the traffic that is expected to be > encapsulated by that layer. That's better yes. I'm not sure it's correct yet though, but I don't know how to properly characterise it myself as tricky corner cases abound. For example, a browser that does DoH to a local-ish recursive might be slightly better off padding HTTPS traffic differently from that same browser when the DoH server is more topologically remote. But that's definitely taking us out of the scope of PGP. Good topic for pearg [1] though I guess. Cheers, S. [1] https://irtf.org/pearg > > --dkg >
- [openpgp] Message padding in OpenPGP Justus Winter
- Re: [openpgp] Message padding in OpenPGP Ryan Carboni
- Re: [openpgp] Message padding in OpenPGP Heiko Stamer
- Re: [openpgp] Message padding in OpenPGP Jon Callas
- Re: [openpgp] Message padding in OpenPGP Justus Winter
- Re: [openpgp] Message padding in OpenPGP Derek Atkins
- Re: [openpgp] Message padding in OpenPGP Jon Callas
- Re: [openpgp] Message padding in OpenPGP vedaal
- Re: [openpgp] Message padding in OpenPGP Justus Winter
- Re: [openpgp] Message padding in OpenPGP Daniel Kahn Gillmor
- Re: [openpgp] Message padding in OpenPGP Stephen Farrell
- Re: [openpgp] Message padding in OpenPGP Daniel Kahn Gillmor
- Re: [openpgp] Message padding in OpenPGP Stephen Farrell
- Re: [openpgp] Message padding in OpenPGP Derek Atkins
- Re: [openpgp] Message padding in OpenPGP Justus Winter
- Re: [openpgp] Message padding in OpenPGP Daniel Kahn Gillmor