Re: [quicwg/base-drafts] CID's should be compared in constant time (#2477)
Martin Thomson <notifications@github.com> Sun, 17 February 2019 19:46 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8387112D4EF for <quic-issues@ietfa.amsl.com>; Sun, 17 Feb 2019 11:46:10 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.001
X-Spam-Level:
X-Spam-Status: No, score=-8.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BfPg7lNbFQCN for <quic-issues@ietfa.amsl.com>; Sun, 17 Feb 2019 11:46:08 -0800 (PST)
Received: from out-6.smtp.github.com (out-6.smtp.github.com [192.30.252.197]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A81C5129619 for <quic-issues@ietf.org>; Sun, 17 Feb 2019 11:46:08 -0800 (PST)
Date: Sun, 17 Feb 2019 11:46:07 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1550432767; bh=UTb56UIhoNCgf0AHn24Uuj4DgvzWkJls28ufEZwXHvA=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=QrGMKe17a/A7SZ2mgUlJBFOvCnsRTufM1AZ7LRWrcyvWKiW8VTtYdwAHHY3H5mi0g uuEbiUMVlTohyrKfnPNVpPGtG0YchiZw3P8PpWyn1Zj9T/ra0aNHxKqFpsfw18bUCp IlA+twOu9jo4MlESH38nkaSE6PLKQSWBChRxppvA=
From: Martin Thomson <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab51c8b5decacc0d7950af3ebbb0e2fce37435591b92cf0000000118817bff92a169ce187e182d@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/2477/464500176@github.com>
In-Reply-To: <quicwg/base-drafts/issues/2477@github.com>
References: <quicwg/base-drafts/issues/2477@github.com>
Subject: Re: [quicwg/base-drafts] CID's should be compared in constant time (#2477)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5c69b9ff69451_17f13f8cfbad45b815312bf"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinthomson
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/1gwrU5Eflaxzx2blN8L0k7pcWwM>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 17 Feb 2019 19:46:11 -0000
The "secret" here is a connection ID. Something we put in packets without encryption. If the cost is that you can force a server to attempt to decrypt packets, that's relatively easy to do by other means. If the point is to attribute that pointless work to others, that's maybe a tiny bit interesting as a DoS vector, but it seems to me like this isn't that useful a thing to document. The underlying assumption here has always been that decryption, successful or otherwise, is cheap enough that an attacker ends up spending more resources in sending the packet than the defender does in discarding them. That's not completely true as decryption isn't free, but the cost/benefit to an attacker is very low and - relevant to our current effort - it is extremely difficult to defend if you assume differently. From that perspective, I don't think we should do anything about this. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/2477#issuecomment-464500176
- [quicwg/base-drafts] CID's should be compared in … Mike Bishop
- Re: [quicwg/base-drafts] CID's should be compared… Mike Bishop
- Re: [quicwg/base-drafts] CID's should be compared… MikkelFJ
- Re: [quicwg/base-drafts] CID's should be compared… Kazuho Oku
- Re: [quicwg/base-drafts] CID's should be compared… MikkelFJ
- Re: [quicwg/base-drafts] CID's should be compared… Dmitri Tikhonov
- Re: [quicwg/base-drafts] CID's should be compared… Martin Thomson
- Re: [quicwg/base-drafts] CID's should be compared… ianswett
- Re: [quicwg/base-drafts] CID's should be compared… Jana Iyengar
- Re: [quicwg/base-drafts] CID's should be compared… MikkelFJ
- Re: [quicwg/base-drafts] CID's should be compared… Martin Thomson
- Re: [quicwg/base-drafts] CID's should be compared… Martin Thomson