Re: [quicwg/base-drafts] QUIC Ossification (#2496)

MikkelFJ <> Tue, 05 March 2019 06:29 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 9CB0F130FB5 for <>; Mon, 4 Mar 2019 22:29:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -8
X-Spam-Status: No, score=-8 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_32=0.001, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id FjE4hU2kG5AN for <>; Mon, 4 Mar 2019 22:29:41 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id C95FC130FB2 for <>; Mon, 4 Mar 2019 22:29:40 -0800 (PST)
Date: Mon, 04 Mar 2019 22:29:39 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1551767379; bh=FvvPq86kDxYAY3+vWJJLqpCJw2nr9vqSN2owgH5oLSY=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=gv+TNbl3tvcyOtCZwkSFcSEEq1zsGxMrCzwTvfBxbC3KIvkc/F+PWr8yBtwliqE6O JhatmmSsUGaGOsLB4vo7+rLhBxmob7iHwUqYZI+10IJqTQv9QotWGf2cqCpoUMTbA7 PCasxdMPG8TkXZrdeR7QgCNXIy75iHLmI4PGDUbc=
From: MikkelFJ <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/issues/2496/>
In-Reply-To: <quicwg/base-drafts/issues/>
References: <quicwg/base-drafts/issues/>
Subject: Re: [quicwg/base-drafts] QUIC Ossification (#2496)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5c7e1753af9b5_1c873fdb648d45bc376855"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: mikkelfj
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 05 Mar 2019 06:29:43 -0000

I originaly thought this is pointless. The registry key story both confirms that it is pointless but also, along with TLS version history, that it is a real concern.

So weak obfuscation will not work. Random values that are public will not work. Genersted values that are easy to compute will not work.

I was thinking challenge response, which is the same as init packet encryption. But that is version specific.

There need to be a time or implementation complexity component like key derivation.

But that is costly to the peers, but perhaps not too costly compared to handshake.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: