Re: [quicwg/base-drafts] Describe a new version negotiation mechanism which allows for (#1755)
ianswett <notifications@github.com> Thu, 27 September 2018 13:28 UTC
Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 85F24130E98 for <quic-issues@ietfa.amsl.com>; Thu, 27 Sep 2018 06:28:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.999
X-Spam-Level:
X-Spam-Status: No, score=-7.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4jlAvWrhAE8d for <quic-issues@ietfa.amsl.com>; Thu, 27 Sep 2018 06:28:28 -0700 (PDT)
Received: from out-5.smtp.github.com (out-5.smtp.github.com [192.30.252.196]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E461D130E86 for <quic-issues@ietf.org>; Thu, 27 Sep 2018 06:28:27 -0700 (PDT)
Date: Thu, 27 Sep 2018 06:28:25 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1538054907; bh=6C+tRJSYdZRijsTS38m1uepHwr0OA1WJjSUUib5IjpY=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=DwmiQtbCVwbYEVJABzvnhldPhN+AQZiorC9imbMJaZA+g+tzlLpYQ8ANUrGK76/pA ORcFhn2DwErcQWDHk7Vp+Skb4K791AUOR4L3sZgIQpuUj0r2XwwPEM62dqj1RwpBsb wNCB4tEdf84bvcB1ixbG67GSoBRt73iB3zfYwmhY=
From: ianswett <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab91bb9dbcd75c5cdf173890ab03d04834d9d0497692cf0000000117c49cf992a169ce1583704e@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/1755/c425092040@github.com>
In-Reply-To: <quicwg/base-drafts/pull/1755@github.com>
References: <quicwg/base-drafts/pull/1755@github.com>
Subject: Re: [quicwg/base-drafts] Describe a new version negotiation mechanism which allows for (#1755)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5bacdaf98dda6_5f993fb6d32d45b41064fa"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: ianswett
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/JdhAtzKY22DHzNtldWtX839db0w>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Sep 2018 13:28:30 -0000
Kazuho, I think this approach only works if the server supports both the version the client tries intitially and another version the client offers. The client can choose to only offer alternate versions it prefers, but does not know if the server supports. I believe that mitigates the downgrade attack? If the client tries v1 and the server only supports v0, the server is going to have to send a VN anyway I think? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/pull/1755#issuecomment-425092040
- [quicwg/base-drafts] Describe a new version negot… ekr
- Re: [quicwg/base-drafts] Describe a new version n… ianswett
- Re: [quicwg/base-drafts] Describe a new version n… ekr
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… ekr
- Re: [quicwg/base-drafts] Describe a new version n… Ryan Hamilton
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… Martin Thomson
- Re: [quicwg/base-drafts] Describe a new version n… Mike Bishop
- Re: [quicwg/base-drafts] Describe a new version n… Martin Thomson
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… MikkelFJ
- Re: [quicwg/base-drafts] Describe a new version n… ianswett
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… ianswett
- Re: [quicwg/base-drafts] Describe a new version n… Mike Bishop
- Re: [quicwg/base-drafts] Describe a new version n… Mike Bishop
- Re: [quicwg/base-drafts] Describe a new version n… MikkelFJ
- Re: [quicwg/base-drafts] Describe a new version n… Mike Bishop
- Re: [quicwg/base-drafts] Describe a new version n… Martin Thomson
- Re: [quicwg/base-drafts] Describe a new version n… martinduke
- Re: [quicwg/base-drafts] Describe a new version n… Kazuho Oku
- Re: [quicwg/base-drafts] Describe a new version n… Martin Thomson
- Re: [quicwg/base-drafts] Describe a new version n… Martin Thomson