Re: [quicwg/base-drafts] Are random packet number skips still relevant for opportunistic ACK protection? (#1030)
MikkelFJ <notifications@github.com> Thu, 04 January 2018 23:23 UTC
Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB9AD126D74 for <quic-issues@ietfa.amsl.com>; Thu, 4 Jan 2018 15:23:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.626
X-Spam-Level:
X-Spam-Status: No, score=-0.626 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_28=1.404, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tWBt-sTMMNuD for <quic-issues@ietfa.amsl.com>; Thu, 4 Jan 2018 15:23:17 -0800 (PST)
Received: from o11.sgmail.github.com (o11.sgmail.github.com [167.89.101.202]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 425B8126BF7 for <quic-issues@ietf.org>; Thu, 4 Jan 2018 15:23:17 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:in-reply-to:references:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=SdiLMhTgQ1AdMaTCL+8h9RfO4rQ=; b=XBzdBo0H+0gYot1J 5SzetLMO/3JoS7SIYJ7/BJ0xzjtCMrvmnFOJTsImLqs6IyzXi6EaNmdF4ehAjn5N QP10KaUnIfZZWkcigklerHtUcfmfxucLjiK8NG1P+i67ZIqIsfPISvRFL6o+GWlX mDAkRdUAZN4n8z33PDlat1UTDpI=
Received: by filter0530p1mdw1.sendgrid.net with SMTP id filter0530p1mdw1-4762-5A4EB763-3A 2018-01-04 23:23:16.005717041 +0000 UTC
Received: from github-smtp2b-ext-cp1-prd.iad.github.net (github-smtp2b-ext-cp1-prd.iad.github.net [192.30.253.17]) by ismtpd0006p1iad1.sendgrid.net (SG) with ESMTP id Z1JtPvmmS_eULvEBvVD91Q for <quic-issues@ietf.org>; Thu, 04 Jan 2018 23:23:16.015 +0000 (UTC)
Date: Thu, 04 Jan 2018 23:23:16 +0000
From: MikkelFJ <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4abcc23ed978c98936073de2cbe9914c71d366246e192cf000000011666796392a169ce10eae4f0@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/1030/355428122@github.com>
In-Reply-To: <quicwg/base-drafts/issues/1030@github.com>
References: <quicwg/base-drafts/issues/1030@github.com>
Subject: Re: [quicwg/base-drafts] Are random packet number skips still relevant for opportunistic ACK protection? (#1030)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5a4eb763dfe2e_e843fb0b9694f343733d9"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: mikkelfj
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak3Qu+CPybAYrznjqWvKIk3+2/vLkKJMO/qyes KMUAfHnzPFjJ5MQYXN1HET/h7waDBj7OJmlGxeefU+9sd1ovbdv1Yz/elElvlA4o7N2UGjvJ1ZnjfY OufcKJ5wf9gbvdQWJ0/o+tCjSgo1mBV0+mjx4TbNXtXldGPEpSvQfuZ39A==
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/cN-g-RXAgouFykAq8INhudiLGik>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jan 2018 23:23:18 -0000
If the ACK is contained in a packet encrypted with the connection ID, the attacker must known the connection ID or guess 1/2^64. So effectively the attacker is able to listen to the transmission. How would path verification improve on this before the handshake is complete if the attacker can observe traffic and spoof the source? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/quicwg/base-drafts/issues/1030#issuecomment-355428122
- [quicwg/base-drafts] Are random packet number ski… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… Marten Seemann
- Re: [quicwg/base-drafts] Are random packet number… Martin Thomson
- Re: [quicwg/base-drafts] Are random packet number… Marten Seemann
- Re: [quicwg/base-drafts] Are random packet number… Martin Thomson
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… Marten Seemann
- Re: [quicwg/base-drafts] Are random packet number… Martin Thomson
- Re: [quicwg/base-drafts] Are random packet number… Marten Seemann
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… Marten Seemann
- Re: [quicwg/base-drafts] Are random packet number… janaiyengar
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… janaiyengar
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… Nick Banks
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… ianswett
- Re: [quicwg/base-drafts] Are random packet number… janaiyengar
- Re: [quicwg/base-drafts] Are random packet number… MikkelFJ
- Re: [quicwg/base-drafts] Are random packet number… ianswett
- Re: [quicwg/base-drafts] Are random packet number… ianswett