Re: Questions about Version Negotiation Concerning Possible Handshake Interruption

Martin Thomson <martin.thomson@gmail.com> Fri, 09 February 2018 10:11 UTC

MIME-Version: 1.0
In-Reply-To: <1d386744-c46a-842a-b172-24e290e03668@gmail.com>
References: <1d386744-c46a-842a-b172-24e290e03668@gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Fri, 09 Feb 2018 21:11:08 +1100
Message-ID: <CABkgnnVRn+1sNZQFB8BZc4VyzN5usLmYJ3xLo+p2uTeW_0Ji_Q@mail.gmail.com>
Subject: Re: Questions about Version Negotiation Concerning Possible Handshake Interruption
To: Lingmo Zhu <zlm2006@gmail.com>
Cc: "quic@ietf.org" <quic@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/bleAVNjvITiY4Zr-HkKRJ_vY72I>
Precedence: list

Any spoofed version negotiation packet will be detected once the
handshake completes: the server is required to include its list of
supported versions in the TLS handshake.  See the link Mikkel provided
for details.

On Fri, Feb 9, 2018 at 8:34 PM, Lingmo Zhu <zlm2006@gmail.com> wrote:
> Hi
>
> I'm new to QUIC and not sure if that could be considered but for Version
> Negotiation with the same connection ID as Initial packet, client should
> choose an acceptable version from the list. What if spoofing from something
> like router happens? Should mitigations be considered, such as adding a
> delay for validated Version Negotiation handling so that following handshake
> packets could be received later and that fake Version Negotiation could be
> ignored?
>
> Such concerning is just come out from DNS hijacking which is partially
> similar, though for QUIC it would only interrupt the handshake. I'm not sure
> but it might be used by downgrade attack in the future. Of course I'm new to
> this field so my opinion would be wrong.
>
> Thanks.
>
> Lingmo Zhu
>

Questions about Version Negotiation Concerning Po… Lingmo Zhu
Re: Questions about Version Negotiation Concernin… Mikkel Fahnøe Jørgensen
Re: Questions about Version Negotiation Concernin… Martin Thomson
Re: Questions about Version Negotiation Concernin… Mikkel Fahnøe Jørgensen
Re: Questions about Version Negotiation Concernin… Lingmo Zhu
Re: Questions about Version Negotiation Concernin… Mikkel Fahnøe Jørgensen
Re: Questions about Version Negotiation Concernin… Kazuho Oku
Re: Questions about Version Negotiation Concernin… Mikkel Fahnøe Jørgensen
Re: Questions about Version Negotiation Concernin… Lingmo Zhu
Re: Questions about Version Negotiation Concernin… Christian Huitema
Re: Questions about Version Negotiation Concernin… alexandre.ferrieux
Re: Questions about Version Negotiation Concernin… Martin Thomson
Re: Questions about Version Negotiation Concernin… Kazuho Oku
Re: Questions about Version Negotiation Concernin… alexandre.ferrieux
Re: Questions about Version Negotiation Concernin… Lingmo Zhu
Malicious Version Negotiation Handling (Was: Ques… Lingmo Zhu
Re: Malicious Version Negotiation Handling (Was: … Mikkel Fahnøe Jørgensen
Re: Malicious Version Negotiation Handling (Was: … Eric Rescorla
Re: Malicious Version Negotiation Handling (Was: … Lingmo Zhu
Re: Malicious Version Negotiation Handling (Was: … Eric Rescorla
Re: Malicious Version Negotiation Handling (Was: … Subodh Iyengar
Re: Malicious Version Negotiation Handling (Was: … Lingmo Zhu
Re: Malicious Version Negotiation Handling (Was: … Eric Rescorla
Re: Malicious Version Negotiation Handling (Was: … Christian Huitema
Re: Malicious Version Negotiation Handling (Was: … Eric Rescorla
RE: Malicious Version Negotiation Handling (Was: … Lubashev, Igor
Re: Malicious Version Negotiation Handling (Was: … Christian Huitema
Re: Malicious Version Negotiation Handling (Was: … Mikkel Fahnøe Jørgensen
Re: Malicious Version Negotiation Handling (Was: … Spencer Dawkins at IETF