IETF Logo Mail Archive

Re: [Privacy-pass] Detecting malicious registries/servers

Ben Schwartz <bemasc@google.com> Mon, 03 August 2020 22:00 UTC

Return-Path: <bemasc@google.com>
X-Original-To: privacy-pass@ietfa.amsl.com
Delivered-To: privacy-pass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB3373A110A for <privacy-pass@ietfa.amsl.com>; Mon, 3 Aug 2020 15:00:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.699
X-Spam-Level:
X-Spam-Status: No, score=-15.699 tagged_above=-999 required=5 tests=[DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AjHmZw3gXQ0M for <privacy-pass@ietfa.amsl.com>; Mon, 3 Aug 2020 15:00:12 -0700 (PDT)
Received: from mail-wr1-x431.google.com (mail-wr1-x431.google.com [IPv6:2a00:1450:4864:20::431]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A9ED53A0CA4 for <privacy-pass@ietf.org>; Mon, 3 Aug 2020 15:00:12 -0700 (PDT)
Received: by mail-wr1-x431.google.com with SMTP id f1so35006250wro.2 for <privacy-pass@ietf.org>; Mon, 03 Aug 2020 15:00:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ibzafBhnI0RhHS5NrPRc8hc+TqSY25zjeh7u0HDtYtk=; b=ODSNPbIF2SlyzDv0HzARxa+RpuJin2lCZVy07Wyq+PbtU9SEJfObSfY5eyj5jk4XU2 WZKwCbUW3g1+GNqufVDXMSRkfVeFQMgt50/eO3yNDoUUd55VnGJL3Wu90IIzt83RNn+V IF13HbAdar+KRf0BH38sq8+feR+51yrXsKZKr2B+Lvbi4rmrkxzCxzrBW7FE4Gpi7Ber ChZILwGw1Q/JVaXAiexi4vP+vB2ANkPpQd6ZEj0FvNXPoMtsahmFJLR4u8SP3Q4Q3zoZ xrh1XQ9qIYbsrOfmDo2IzEahyC+RUUDlUElagJsbCz/1i4uUYylkY0TWsgPpPRPZKUdH qBvA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ibzafBhnI0RhHS5NrPRc8hc+TqSY25zjeh7u0HDtYtk=; b=dGzm+UBMC+EDClG3du3YVObg187GACvkhUcp4GbAW/Hi95sm9jhoCT4Pv/SG01rdYk CGwsXcgOvHL7JUEbEyRHexFe1me+dVtkIVXOnEiM3+voDtbV4VeTRS9TgGXJIs/LK6oc EMHyILfh77JPP2Lh5J6unBTob9PxO3Px62pZfTmyeVjfTi8VDjON/Ti6V9pO49w+MHwN gn2z1QahSu7YFC4Fw+mh094RgBtTxO1kAJLB5ha2/QxWTs+KuiGuN4PWFAI2/AHV0XBF 7zJC1xhbHqLBElBMd8otErh+njhyPv9iE83RZKILrMrH+YxH929repZn//VYzsF42N8s 09mA==
X-Gm-Message-State: AOAM531aEDCFXxVv13+KoKYYMp4q0cXPZtSCK9hP+HAlGD8qDdE/y5/5 NldNQVuiB30IvosRVXE3gKa84ZMH7FMkr0232oicIQ==
X-Google-Smtp-Source: ABdhPJwPel/F+gkv0pdhNco1RjGNZyTZg7xxh1urm6X+tdYw5yVuywX8jy0qf1sndIg1+9BLc34iYliCGqwRyDo7SzY=
X-Received: by 2002:a5d:4407:: with SMTP id z7mr16351607wrq.404.1596492010761; Mon, 03 Aug 2020 15:00:10 -0700 (PDT)
MIME-Version: 1.0
References: <CAJoqpT+U9QAHqncX0Aj2yWRaNRBgqE4ZG4k7Yx7xHtevsQ8EVA@mail.gmail.com>
In-Reply-To: <CAJoqpT+U9QAHqncX0Aj2yWRaNRBgqE4ZG4k7Yx7xHtevsQ8EVA@mail.gmail.com>
From: Ben Schwartz <bemasc@google.com>
Date: Mon, 03 Aug 2020 17:59:59 -0400
Message-ID: <CAHbrMsD9RtVS+zLscxvDJrynzDsuogEpdWqvBJRJVg2czkC+xg@mail.gmail.com>
To: Chelsea Komlo <chelsea.komlo@gmail.com>
Cc: privacy-pass@ietf.org
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="00000000000037337505ac004344"
Archived-At: <https://mailarchive.ietf.org/arch/msg/privacy-pass/SXxV98DxsFNOo-k0BZ_OKDQhWhY>
Subject: Re: [Privacy-pass] Detecting malicious registries/servers
X-BeenThere: privacy-pass@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <privacy-pass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privacy-pass/>
List-Post: <mailto:privacy-pass@ietf.org>
List-Help: <mailto:privacy-pass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Aug 2020 22:00:15 -0000

I found your and Richard's comment during the meeting particularly
insightful on this point: we should clarify the assumptions Privacy Pass
has to make about the intrinsic identifiability of client requests.  For
example, if Privacy Pass necessarily assumes that the Client's connections
to Verifiers are unlinkable, then perhaps we can simply declare that the
Client's connections to Registries must be similarly unlinkable.

The mechanism for ensuring that unlinkability might be out of scope for us,
but we would need to describe the requirements for it.

On Mon, Aug 3, 2020 at 5:16 PM Chelsea Komlo <chelsea.komlo@gmail.com>
wrote:

> Hi all,
>
> One question that has been raised is how clients can detect registry or
> server misbehavior. One particular concern is the possibility that
> registries or servers can perform targeted attacks by publishing different
> keys to specific users without detection (resulting in a small anonymity
> set).
>
> While client-side gossip protocols or use of anonymity networks give the
> client an option to detect such targeted attacks, these options are not
> necessarily generalizable.
>
> However, I think if we introduce the assumption that *at least one*
> registry is acting honestly, then this problem may be easier to solve.
>
> Registries just need to add an additional capability to query other
> registries on behalf of a client (if the client specifies this in their
> request). In doing so, they can act as a one-hop proxy for the client. If
> clients perform these requests periodically through a series of
> randomly-chosen registries, they should eventually be able to detect
> misbehavior, assuming one of the registries is acting honestly.
>
> Chris Wood pointed out to me that the above approach may have false
> positives when a server rotates their key, so adding some kind of
> "suspected" and "failed state" with retries might help get around such edge
> cases.
>
> Thanks,
> Chelsea
> --
> Privacy-pass mailing list
> Privacy-pass@ietf.org
> https://www.ietf.org/mailman/listinfo/privacy-pass
>

v2.23.0 | Report a Bug | By Email