Re: [quicwg/base-drafts] Authenticating connection IDs (#3439)

Martin Thomson <> Thu, 05 March 2020 06:38 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id A3AEC3A0E21 for <>; Wed, 4 Mar 2020 22:38:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.482
X-Spam-Status: No, score=-1.482 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_IMAGE_ONLY_24=1.618, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id QNYeUKmTsq8o for <>; Wed, 4 Mar 2020 22:38:12 -0800 (PST)
Received: from ( []) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 9424B3A0E20 for <>; Wed, 4 Mar 2020 22:38:12 -0800 (PST)
Date: Wed, 04 Mar 2020 22:38:11 -0800
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=pf2014; t=1583390292; bh=NHwb8I4AGDtwxypLm9AkZs/PbD5/it5B0uXj1VzQ1uE=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=Czwc2VtxPMBj80WUryd7+lUDV8uO1JuexCwCy6NgC5u08bOrIVlnqzXEbFwTwIKex 6gabbAZhrxT76+AH9uSPUfSg2f8urNj1Q0eyvfM8bLxePL89BtpL4QGOp+wM8tQPZ8 qLeKfc65YI0zCB5FTAqoWZfLgC3kQVjD1L2v+tvo=
From: Martin Thomson <>
Reply-To: quicwg/base-drafts <>
To: quicwg/base-drafts <>
Cc: Subscribed <>
Message-ID: <quicwg/base-drafts/issues/3439/>
In-Reply-To: <quicwg/base-drafts/issues/>
References: <quicwg/base-drafts/issues/>
Subject: Re: [quicwg/base-drafts] Authenticating connection IDs (#3439)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5e609e53afd26_28ac3fd59b0cd96444433f"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: martinthomson
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
Archived-At: <>
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Thu, 05 Mar 2020 06:38:14 -0000

@huitema, Though we tolerate denial of service prior to handshake completion, we don't tolerate attacks that alter connection properties. This results in the attacker choosing a connection ID that the client will use after the handshake completes.

You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub: