IETF Logo Mail Archive

Re: [perpass] Howdy!

Dean Willis <dean.willis@softarmor.com> Fri, 13 September 2013 16:27 UTC

Return-Path: <dean.willis@softarmor.com>
X-Original-To: perpass@ietfa.amsl.com
Delivered-To: perpass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9AA8E21E80B7 for <perpass@ietfa.amsl.com>; Fri, 13 Sep 2013 09:27:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.013
X-Spam-Level:
X-Spam-Status: No, score=-102.013 tagged_above=-999 required=5 tests=[AWL=-0.014, BAYES_00=-2.599, J_CHICKENPOX_42=0.6, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N0Z1H8Kw9DGB for <perpass@ietfa.amsl.com>; Fri, 13 Sep 2013 09:27:55 -0700 (PDT)
Received: from mail-oa0-x22a.google.com (mail-oa0-x22a.google.com [IPv6:2607:f8b0:4003:c02::22a]) by ietfa.amsl.com (Postfix) with ESMTP id 168CD21E80F1 for <perpass@ietf.org>; Fri, 13 Sep 2013 09:27:44 -0700 (PDT)
Received: by mail-oa0-f42.google.com with SMTP id n12so1383494oag.1 for <perpass@ietf.org>; Fri, 13 Sep 2013 09:27:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=softarmor.com; s=google; h=content-type:mime-version:subject:from:in-reply-to:date:cc :message-id:references:to; bh=CEburxc4Cfwh+ycvTKZSbefw+GjGZEc8StOWuKfVvxg=; b=hengNfFnlB1C+7SL/ft7FMbHuYEUlWg+skiVxQVSRLjrYs2+3lPgDuyDGMwn9IDl5c Vq4byzDH2sDSdf0crUraRJYs+/PPTWt60b3P0oSYWw0nnI8M7LjA5mVQowjZ8+PjFUTa /TKpo1tW6s+GKnt33KoV2UsI0L8zFI40gDeks=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:content-type:mime-version:subject:from :in-reply-to:date:cc:message-id:references:to; bh=CEburxc4Cfwh+ycvTKZSbefw+GjGZEc8StOWuKfVvxg=; b=Yi5Qu/ffmWFYaHRdC1+jEf0qNPBq5TfGILSGk47SvHapmAIFuTTEedRW9OMWCbvN3a c8nfQhwKajP5vjs59c9uhQpwfMvFapmmO7ckg0Z98Hdn+7eMsK/5nkjx7ZNTQ7GVA1bw nyRxby0CkxFFBU1bhb3zyOwevydxxIZnODYFhRzTgzYlfSrZXkMC3C56pp8yxSTJLUkc CNrdMDyOz+VGxDDT9nY/yk2WVvHxAmbOHZY3gfx9NVbvV5RAeb0U+ALjdvkNzfTlsdzn MAFp03P/mRaan7P96k7dMJlAiaimzdkrqh7SACFaOHPy1brX9ldfHjVWc6h6bPMd2bvS +Xuw==
X-Gm-Message-State: ALoCoQmJ4tAFvruJrv2rl7WF94WS773/EmGj4wkfVjwhUwCFz8iRy4mdZKevnu0HO0h0ZHeOBBTi
X-Received: by 10.182.130.131 with SMTP id oe3mr13030431obb.34.1379089664463; Fri, 13 Sep 2013 09:27:44 -0700 (PDT)
Received: from [192.168.2.112] (cpe-72-181-157-19.tx.res.rr.com. [72.181.157.19]) by mx.google.com with ESMTPSA id tz10sm14990597obc.10.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 13 Sep 2013 09:27:43 -0700 (PDT)
Content-Type: multipart/signed; boundary="Apple-Mail=_BCC58AB8-F368-4B7A-9569-6188163E587D"; protocol="application/pgp-signature"; micalg="pgp-sha1"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Dean Willis <dean.willis@softarmor.com>
In-Reply-To: <5232D366.1000803@appelbaum.net>
Date: Fri, 13 Sep 2013 11:27:42 -0500
Message-Id: <862382F3-A1D4-4AE2-94ED-D9D96B1D6805@softarmor.com>
References: <CAOHm=4ujOYTHO63EFWMYJBgxUWq00zezYKAJ8B4Vgf_C=xRRVg@mail.gmail.com> <5224DF25.60503@cs.tcd.ie> <7C92613E-33E8-48A6-A152-E9DBB29DEC04@softarmor.com> <522A328A.5060008@cs.tcd.ie> <522E17F9.4000206@bbn.com> <522F685B.8040106@gmx.net> <20130910185544.GF29237@thunk.org> <5232D366.1000803@appelbaum.net>
To: Jacob Appelbaum <jacob@appelbaum.net>
X-Mailer: Apple Mail (2.1508)
Cc: perpass@ietf.org, Hannes Tschofenig <hannes.tschofenig@gmx.net>, Theodore Ts'o <tytso@mit.edu>
Subject: Re: [perpass] Howdy!
X-BeenThere: perpass@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "The perpass list is for discussion of the privacy properties of IETF protocols and concrete ways in which those could be improved. " <perpass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perpass>, <mailto:perpass-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/perpass>
List-Post: <mailto:perpass@ietf.org>
List-Help: <mailto:perpass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perpass>, <mailto:perpass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Sep 2013 16:27:55 -0000

On Sep 13, 2013, at 3:57 AM, Jacob Appelbaum <jacob@appelbaum.net> wrote:
>> 
> I think this is a reasonable read but I'd like to encourage dissent
> here. Time is a very important part of almost all cryptographic
> protocols - if an attacker is able to distinguish queries about time
> from other queries, it allows the attacker to discriminate and thus to
> tamper with time related protocols. This is especially true when the
> system in question may not have a properly sync'ed clock.

I concur. Unless you have a VERY hard reason NOT to encrypt, then encrypt. Even if it does nothing for you, it helps mask other encrypted traffic.

--
Dean

v2.23.0 | Report a Bug | By Email