Re: [Secdispatch] draft-campling-ech-deployment-considerations (was: Request for a slot at the Secdispatch IETF 113) Session
Toerless Eckert <tte@cs.fau.de> Fri, 07 October 2022 18:29 UTC
Return-Path: <eckert@i4.informatik.uni-erlangen.de>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2A81EC14CF17 for <secdispatch@ietfa.amsl.com>; Fri, 7 Oct 2022 11:29:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.96
X-Spam-Level:
X-Spam-Status: No, score=-3.96 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id il0O-3VcnQPq for <secdispatch@ietfa.amsl.com>; Fri, 7 Oct 2022 11:29:51 -0700 (PDT)
Received: from faui40.informatik.uni-erlangen.de (faui40.informatik.uni-erlangen.de [131.188.34.40]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21067C14F73E for <secdispatch@ietf.org>; Fri, 7 Oct 2022 11:29:50 -0700 (PDT)
Received: from faui48e.informatik.uni-erlangen.de (faui48e.informatik.uni-erlangen.de [131.188.34.51]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits)) (No client certificate requested) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTPS id 7E7E2548501; Fri, 7 Oct 2022 20:29:45 +0200 (CEST)
Received: by faui48e.informatik.uni-erlangen.de (Postfix, from userid 10463) id 757534EBC6E; Fri, 7 Oct 2022 20:29:45 +0200 (CEST)
Date: Fri, 07 Oct 2022 20:29:45 +0200
From: Toerless Eckert <tte@cs.fau.de>
To: Mark Nottingham <mnot@mnot.net>
Cc: Andrew Campling <andrew.campling@419.consulting>, David Schinazi <dschinazi.ietf@gmail.com>, "secdispatch@ietf.org" <secdispatch@ietf.org>
Message-ID: <Y0BwGS4u/smgf61u@faui48e.informatik.uni-erlangen.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/BgTIniFE9IHz8YBi7-czGRqobK8>
Subject: Re: [Secdispatch] draft-campling-ech-deployment-considerations (was: Request for a slot at the Secdispatch IETF 113) Session
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Oct 2022 18:29:53 -0000
I find subject draft to be very useful in pointing out the challenges ECH
introduces to security operations that can not simply be given up, so
it would really be great if the IETF would put an effort into finding
adequate solutions for this issue.
On Tue, Mar 22, 2022 at 01:17:11PM +1100, Mark Nottingham wrote:
> Now, regarding the draft -- draft-campling-ech-deployment-considerations seems to assume that the *only* viable way to scan for viruses, impose parental controls, or control access to resources is by having a network element impose it without coordination. Your draft supports this by noting that transparent proxies are used because they're easier to administer than on-endpoint software -- a viewpoint which privileges administrator convenience and cost over user safety, and ignores other options.
I think it is purely a matter of feasibility. With all the different OSs and
client software, it is practically impossible for entities responsible for
security to always ensure that the endpoint software includes all necessary
security element. Having been working for companies who where upsold into
MDM endpoint software for at least a decade, i know how many constraints this
has, and what pain it creates. Foremost also, how intrusive it is to the
users. And i would be surprised if you find a lot of enterprise worker
with sufficient insight into the matter that would disagree. Aka: user privacy
can IMHO not be maintained anymore when current state of the art on-endpoint
software is used (MDM).
On the other hand, i fully agree with the sentinement that simply letting
the server certificate stay in the clear is also not a good solution for user
privacy. IMHO it is at best a workaround that should be possible to enable until the IETF
has standardized a better solution.
Aka: IMHO what we need is a way for connection setup to be performed in a way
that a client-device trusted man-in-the-middle can validate the server
certificate and client credentials for the trusted man-in-the-middle.
But nothing else, especially not the payload.
My typical workflow btw would be client devices in the Jones' family home
where one would need to enter on each client device merely credentials for
the families home gateway, and that home gateway would then be able to
have a permitted matrix of which client (aka: user) would be able to
have communications with which internet service (by certificate/dns-patterns),
but without that home gateway being able to exmine the conversation.
And of course, ideally, on the server there should be zero or minimum
change to the protocols needed to be supported to enable this. And of course,
any untrusted MitM must not be able to oberve server certificate.
Cheers
Toerless
- Re: [Secdispatch] draft-campling-ech-deployment-c… Toerless Eckert
- Re: [Secdispatch] draft-campling-ech-deployment-c… Mark Nottingham