Re: New confidentiality and integrity limits

Watson Ladd <watsonbladd@gmail.com> Thu, 16 July 2020 01:40 UTC

MIME-Version: 1.0
References: <43bb1525-0afa-4c4e-a234-f6ccfacbdd29@www.fastmail.com> <a4d7e8cf-5879-6941-e059-5d2f3e67ae86@huitema.net> <58b40fc0-86ad-49e9-bc17-187c38e97f7a@www.fastmail.com> <1d543593-7abc-4a89-93c5-82c464492786@www.fastmail.com> <CACpbDccSB6H9AhmAinia7ojEg1VY-S=dF214wHvZcZkoiL-xFA@mail.gmail.com> <7d549475-249b-4674-9aa8-c2bf9953243b@www.fastmail.com> <CALGR9oaHQHJneN2edetGLcq4u4PNF0oAyq9PKc7ZVxz_pXTMGw@mail.gmail.com>
In-Reply-To: <CALGR9oaHQHJneN2edetGLcq4u4PNF0oAyq9PKc7ZVxz_pXTMGw@mail.gmail.com>
From: Watson Ladd <watsonbladd@gmail.com>
Date: Wed, 15 Jul 2020 21:40:03 -0400
Message-ID: <CACsn0c=HkByj0dkwfW+0=n9HzGZ0cZamot6N=AFks3wbnwnWXQ@mail.gmail.com>
Subject: Re: New confidentiality and integrity limits
To: Lucas Pardue <lucaspardue.24.7@gmail.com>
Cc: QUIC WG <quic@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/Ppd1Fqv0xDeUS4KLkeAKQbVZXYE>
Precedence: list

I do not believe the analysis is correct.

A forgery against a QUIC connection will be checked at one or at most
two keys: the current one and the next one. It is not the case that a
forgery will be attempted against all the keys simultaneously: it will
have to be resent. Perhap I'm missing something about the setting here
that makes this the multiuser and not the singleuser setting.

Sincerely,
Watson

New confidentiality and integrity limits Christopher Wood
Re: New confidentiality and integrity limits Martin Thomson
Re: New confidentiality and integrity limits Christian Huitema
Re: New confidentiality and integrity limits Christopher Wood
Re: New confidentiality and integrity limits Martin Thomson
Re: New confidentiality and integrity limits Jana Iyengar
Re: New confidentiality and integrity limits Martin Thomson
Re: New confidentiality and integrity limits Lucas Pardue
Re: New confidentiality and integrity limits Watson Ladd
Re: New confidentiality and integrity limits Martin Thomson
Re: New confidentiality and integrity limits Felix Günther
Re: New confidentiality and integrity limits Lars Eggert
Re: New confidentiality and integrity limits Watson Ladd