Re: [TLS] Adoption call for draft-sy-tls-resumption-group
Erik Sy <sy@informatik.uni-hamburg.de> Fri, 26 April 2019 09:30 UTC
Return-Path: <sy@informatik.uni-hamburg.de>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7ED47120335 for <tls@ietfa.amsl.com>; Fri, 26 Apr 2019 02:30:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fmWhm9CfWwSR for <tls@ietfa.amsl.com>; Fri, 26 Apr 2019 02:30:02 -0700 (PDT)
Received: from mailhost.informatik.uni-hamburg.de (mailhost.informatik.uni-hamburg.de [134.100.9.70]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E1AEB1202F0 for <tls@ietf.org>; Fri, 26 Apr 2019 02:30:01 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mailhost.informatik.uni-hamburg.de (Postfix) with ESMTP id 114F8B3B for <tls@ietf.org>; Fri, 26 Apr 2019 11:29:59 +0200 (CEST)
X-Virus-Scanned: amavisd-new at informatik.uni-hamburg.de
Received: from mailhost.informatik.uni-hamburg.de ([127.0.0.1]) by localhost (mailhost.informatik.uni-hamburg.de [127.0.0.1]) (amavisd-new, port 10024) with LMTP id wI4rR-8SKGP1 for <tls@ietf.org>; Fri, 26 Apr 2019 11:29:58 +0200 (CEST)
Received: from svs26.informatik.uni-hamburg.de (svs26.informatik.uni-hamburg.de [134.100.15.26]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) (Authenticated sender: sy) by mailhost.informatik.uni-hamburg.de (Postfix) with ESMTPSA id 55C18B3A for <tls@ietf.org>; Fri, 26 Apr 2019 11:29:57 +0200 (CEST)
Reply-To: sy@informatik.uni-hamburg.de
To: tls@ietf.org
References: <4f21da8a-a30c-4255-9400-aab3a599fb9b@www.fastmail.com> <CAAZdMaf6Fs6fEQoF_uS63d2rMFZwbqsugz7O9weSDxgdOLNU=w@mail.gmail.com>
From: Erik Sy <sy@informatik.uni-hamburg.de>
Openpgp: preference=signencrypt
Autocrypt: addr=sy@informatik.uni-hamburg.de; prefer-encrypt=mutual; keydata= mQENBFdYdRoBCADpTVcxZw2Z+3IEm8QgmYNdzKQdCPnDm3mvV+dskI2vNuhAM7eTHE62Ibl8 TD08JJ0Q5DbaHLZBYZR7dVc6Vw+p5Ns5YM5MpDH4rcJTm9FR/QgJ94dH0dOKwtq9gMhLdlhV N0v/OgDb7YdfNYzhthVc3MUxBEznspDaBsGXCASM98SvCaovrhDU05OyIIq6yaIZc6W1ad8z oLn3kZ1O0NkJFuS2H6W1Sg6+af2980SagRTEntr/U6y9wKrKMr0woPBkgYjjivW31yRpjbW0 FClGr/WamdETrJFMTnn6Zc4tELj4pI5T/3jsSCuJ+Mf0fxGIoznG1xW09E5KoT4RBQZ7ABEB AAG0JkVyaWsgU3kgPHN5QGluZm9ybWF0aWsudW5pLWhhbWJ1cmcuZGU+iQFBBBMBCgArAhsD BQkFo5qABgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAUCV8aJfQIZAQAKCRB4ziXHIWIRJSVz B/wJ1qq82vLrjp+4GOUJf3w23FGK3gtK0THs7VVwtZD+xRGYOzoMG+my0TscPZI5drHnZJeK vYmx+bz0IvJSW9DgYib5kUKtz2qPmj0HR6qW7o5opbIMWmkZJO0ACUEI3pAX+j7O3nEApijT 6dg3XhkLdRBgKVHD6x7n8a0ZbYEta6Co0vmPSpIU8XL1B0MmC9fC/L85kH3MBU0bNA4QU0b+ I9ojylgLnqHhIL39mqpJ/cRfCkuzWeeyFvvD+EGMBVxVKVu7ULNk4sKvqutsoYV6GQ7pAx+O pCKQO87M8aeMF7ytpQ67WGscqCO6IWO5tqDXX3aV9MCswPsuwn+PGjAguQENBFdYdRoBCADQ HO0cmKfEv9y5WW6sXJdnn7PEknFyiI9HoCULGVJi4vWyqYoQBGAM8wWRAVstm8zhqIWTlKR2 EntH6JBQB9dkUtmvuVRBBXs9SSloZU4R7SDysuTmDo3derqbIcomtyTkbfxYI50EQayL8TgR sA6jj9OJzyeywX3c+Nr6G8a0kVvCB97I1qLO5RA1tTIxTiXJMbL+E3CurUIMAakxbuqfH3SV mtH+lmlvGzvUF9mI4a5xti1Jkl/k6p2Q5z3nLt6MgkC9n47BSvrzelIr526FzNTamFIVb4fT /QnC33IydbaVQZaOYD9wi9dHTRBaeAF5a+zY5MCUu17GV3jR36SVABEBAAGJASUEGAECAA8F AldYdRoCGwwFCQWjmoAACgkQeM4lxyFiESV1zwf+PwKloXwIb7450kQq/OukJ90o9jkfGMz1 uC84E/HoYaz8KBUJVmx07zYi0zopAn2Pvh+HtTB6NzoGoRvmvajVa3lWRVeytgtJp+YqdcJq mKa+c1MsrJD2iMr3jMLB70bWT+GA8Moe1Slw4+/c+BndlwnfA5B54PVHjnZtaJDVsyVO1dnj gPReP6YNOQP/AgGexfSqUMYI/ni1QKwMT8e806hc48zT2A1ZnBit5PkGjzvQU0Qoel6Cwj3R uzZJgC5iEdX6kxMEOB0mD6zSKzBg4FNn2r3kUQ24IhbTuMm6/aCv6YlObR8HHkqXcQF6/BTH jlkuqsjIxOXZXqe4DeUnhw==
Message-ID: <3cab1508-1c81-3a9f-afb9-9d8bc55871bd@informatik.uni-hamburg.de>
Date: Fri, 26 Apr 2019 11:29:56 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.6.1
MIME-Version: 1.0
In-Reply-To: <CAAZdMaf6Fs6fEQoF_uS63d2rMFZwbqsugz7O9weSDxgdOLNU=w@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Content-Language: en-GB
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/8ojTzc5xZIUuMAUsda_lwlq-ZAk>
Subject: Re: [TLS] Adoption call for draft-sy-tls-resumption-group
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Apr 2019 09:30:05 -0000
On 4/26/19 08:45, Victor Vasiliev wrote: > > From the technical standpoint, I agree with Martin that a > NewSessionTicket extension would be a better fit, but this is > something that we can figure out later without much trouble. I agree with Martin and Victor, that the NewSessionTicket extension is the better fit to signal support for this TLS extension. > > The policy questions (when /should/ the client resume?) are more > difficult here, and there are multiple aspects to this. One is, as > Martin pointed out, is clarifying the notion of server identity from > application perspective in cross-domain scenario. Another is ensuring > that the linkability properties are not altered in ways we don't > understand. On the surface, one can argue that this is semantically > the same procedure as HTTP/2 connection pooling, but without the IP > match requirement. This is good, because we can build on the analysis > of an existing mechanism. Still, in practice, this might open us up > to attacks that with the IP match were impractical. We should ensure > that the document describes things we've learned from connection > pooling, too. > I agree, that the new feature of this extension for web browsing is to conduct HTTP/2 connection pooling without the IP match requirement. However, we should consider a network attacker to be anyway in control of DNS. Thus, the requirement of a matching IP does not provide security benefits against this attacker. As learnings from connection pooling I'm aware of origin confusion attacks against virtual hosting. Can somebody point out other relevant attacks in this context? Best, Erik
- [TLS] Adoption call for draft-sy-tls-resumption-g… Christopher Wood
- Re: [TLS] Adoption call for draft-sy-tls-resumpti… Martin Thomson
- Re: [TLS] Adoption call for draft-sy-tls-resumpti… Erik Sy
- Re: [TLS] Adoption call for draft-sy-tls-resumpti… Martin Thomson
- Re: [TLS] Adoption call for draft-sy-tls-resumpti… Victor Vasiliev
- Re: [TLS] Adoption call for draft-sy-tls-resumpti… Erik Sy
- Re: [TLS] Adoption call for draft-sy-tls-resumpti… Christopher Wood