IETF Logo Mail Archive

Re: [quicwg/base-drafts] Stateless Reset needs "on-path" proof (#1230)

Kazuho Oku <notifications@github.com> Tue, 10 April 2018 05:04 UTC

Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ABBF212D947 for <quic-issues@ietfa.amsl.com>; Mon, 9 Apr 2018 22:04:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.009
X-Spam-Level:
X-Spam-Status: No, score=-3.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yuteVmiyibeD for <quic-issues@ietfa.amsl.com>; Mon, 9 Apr 2018 22:04:36 -0700 (PDT)
Received: from o3.sgmail.github.com (o3.sgmail.github.com [192.254.112.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6588F127136 for <quic-issues@ietf.org>; Mon, 9 Apr 2018 22:04:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:in-reply-to:references:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=tCpjj5/httj3ag887kuUtEQ4N7Q=; b=r72NY4hRu2bd9Zcf ZJ0Lgd5KV2JgWrUXyBQuxc2MsAr5VxDQyG/6PZgkhxL//FeyCWOMdQIeB1Vs2PKz OTUw/1sH5glscCT95M68cep+Q3n8eHLYFk63mxoKb/f4Hle8cTeutNbTsfWbCEc8 efPgS++CxGou6GEFiMqnghoNADU=
Received: by filter0524p1las1.sendgrid.net with SMTP id filter0524p1las1-29106-5ACC45E0-12 2018-04-10 05:04:32.910165685 +0000 UTC
Received: from smtp.github.com (out-5.smtp.github.com [192.30.252.196]) by ismtpd0015p1iad2.sendgrid.net (SG) with ESMTP id m6rVb6chR4u-IWCWMnVejw for <quic-issues@ietf.org>; Tue, 10 Apr 2018 05:04:32.717 +0000 (UTC)
Date: Tue, 10 Apr 2018 05:04:33 +0000
From: Kazuho Oku <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab5c75db067cd8e149d25504e57a92c53fcdcb3a5b92cf0000000116e407e092a169ce12414b9e@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/1230/379974834@github.com>
In-Reply-To: <quicwg/base-drafts/issues/1230@github.com>
References: <quicwg/base-drafts/issues/1230@github.com>
Subject: Re: [quicwg/base-drafts] Stateless Reset needs "on-path" proof (#1230)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5acc45e0b41d2_76073f9d4aa6ef38114473"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: kazuho
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak0gNyF6kY4dE4jfR8iBSbHQsztG1UKAoLBL42 aEMsHlwPJ/B2MrpiNCOWPbPcJeiMbjFWgrXmK7rd8tRo/nNcxfYLk3hq8x+Ak9dyKG+WlsdSSagAGF 9M5CZdP5zvZIY/KcSbtTlVfiD3m+PKL6EcHL+BBPmGXtXsREmeZwI+Ma3J9IqKbYzxv7jeOnoS7cmR I=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/G9ZieROENTzkHrMz2GORlI0Jcjc>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 10 Apr 2018 05:04:39 -0000

> OK, thanks for clearing that up. I think that you have an attack, though it might not be that interesting.
> 
> Connection IDs are scoped to a state store, whereas your proposed key is global. That means that an attacker that can learn the key for a given connection ID in any state store can use it to attack all other state stores. For high entropy connection IDs, that takes some doing, but it isn't generically safe, especially now we allow as little as 32 bits.

Thank you for considering the approach and pointing out the issue. I had not considered of the attack vector.

And considering of the attack vector, I realize that there is a less complex approach.

Assuming that the ID of the POP (i.e. the "state-store") is included in the DCID, a server can determine if it should have known the state a connection that the DCID designates, and send a connection reset or a path rejection based on that.

With that said, I am personally fine with _requiring co-extant state_. As expressed in https://github.com/quicwg/base-drafts/issues/1230#issuecomment-379963211, my intent behind the proposal has been under the premise that some might want to reject path creation when packets arrive at a POP that does not have access tho the state store.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/1230#issuecomment-379974834

v2.39.1 | Report a Bug | By Email | System Status