Re: [TLS] WGLC for draft-ietf-tls-dtls-connection-id-06

Thomas Fossati <Thomas.Fossati@arm.com> Wed, 17 July 2019 16:42 UTC

Return-Path: <Thomas.Fossati@arm.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 10978120405 for <tls@ietfa.amsl.com>; Wed, 17 Jul 2019 09:42:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=1wmBpa9a; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=armh.onmicrosoft.com header.b=iqOqhR3e
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tBSXB0ILeuK2 for <tls@ietfa.amsl.com>; Wed, 17 Jul 2019 09:42:09 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60065.outbound.protection.outlook.com [40.107.6.65]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AF0941203BD for <tls@ietf.org>; Wed, 17 Jul 2019 09:42:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/gJCU2vo4Ow62gGWXGSxeD3HOgsyfUHkCbfIlgbJa6A=; b=1wmBpa9axeGqsrHiqUk1vfiDRhCXGsJtUYFllzJY1oGD0mIi23wVA7pWmBdZMKusIznj/sXMFhUisVTHSGyyNov6kYjtsWv9+wpb3cJxdDWx+eo2M3T46fxp3BmqxN+eR1qDMW7QATyyu3hh3EAVrG9FdmBgAsbG0JgibQNY3IQ=
Received: from HE1PR0802CA0021.eurprd08.prod.outlook.com (2603:10a6:3:bd::31) by HE1PR0801MB1849.eurprd08.prod.outlook.com (2603:10a6:3:89::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2094.11; Wed, 17 Jul 2019 16:42:05 +0000
Received: from VE1EUR03FT015.eop-EUR03.prod.protection.outlook.com (2a01:111:f400:7e09::206) by HE1PR0802CA0021.outlook.office365.com (2603:10a6:3:bd::31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.2073.14 via Frontend Transport; Wed, 17 Jul 2019 16:42:04 +0000
Authentication-Results: spf=temperror (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=temperror action=none header.from=arm.com;
Received-SPF: TempError (protection.outlook.com: error in processing during lookup of arm.com: DNS Timeout)
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by VE1EUR03FT015.mail.protection.outlook.com (10.152.18.176) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.2052.18 via Frontend Transport; Wed, 17 Jul 2019 16:42:02 +0000
Received: ("Tessian outbound c2673421c4c6:v24"); Wed, 17 Jul 2019 16:41:59 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: be49bf7e29a1deb8
X-CR-MTA-TID: 64aa7808
Received: from 419eced53aad.2 (cr-mta-lb-1.cr-mta-net [104.47.0.57]) by 64aa7808-outbound-1.mta.getcheckrecipient.com id 33324744-6B69-4676-B79F-A75F9DDE9709.1; Wed, 17 Jul 2019 16:41:54 +0000
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01lp2057.outbound.protection.outlook.com [104.47.0.57]) by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 419eced53aad.2 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384); Wed, 17 Jul 2019 16:41:54 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=GJmA0HCiM6xdjP2XWzWMXy6t4o34nKJkoOwXuUuDY1gNtPIfQkYwFrrtkQYTmKzjOH/ySsLkN1dBbhc0ZvNbU6XG+NnpLXmhI9gSJnBInrDi2bPCcV+BDC2fYjSNOwmsQjDlk4B1Ux13/uUZMVm2036t6uCzQC1XwK1nDuWKVfofLwsuzJMznHV4Q1qcNXxheJ8icesLE+/ttVr8Hn1rUfpKUp5sAUkY+eEwwr0U5+F1vGa+BEkIzzWW5HKRiH6NKZrT973gJ+98Nfsqs/no71QY/tsZ12+1o2XLwWQ6Zp8//a/+T+vvJXR3OhBvEqgiFNIzFRXMueEvfmFtlcwJUQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Uh68F2U4lWuYyyOLZT8FiSHG3EQkWyYRpwc2PRdOk+c=; b=C9oDMFnXQQb97b8coTLyak+9SzoGGHXR30n0u9v9xsFjrAQVlk8NHPp3UDRNzPG2059HhIfurICcIkalQ8z5muhJGJuaEPVp0Q9bHfg7on2A59b1TrujiDUU7GDqiNRCgpz+5Gde7NnmxLDnWmvAYTHK+uakw3GM4b7ZPbrmx/HccdNfFqdpvgGS5UhqxiK+oky+Ev8M4hWp69be2NwkCmsvQR32QLmDF9Br1Z+Cf7Ds7fV80r6fghzUNVaOV7/fDw1rEIYmUGAM1dQ52+/MNuyO8QtTIYE8ct5njUEV5d+eRC9lhkG143R/+v2ltEMEp2rE4X85pz7dpeNefuCBKg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1;spf=pass smtp.mailfrom=arm.com;dmarc=pass action=none header.from=arm.com;dkim=pass header.d=arm.com;arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Uh68F2U4lWuYyyOLZT8FiSHG3EQkWyYRpwc2PRdOk+c=; b=iqOqhR3ePF5CyQ+SfghdDbDK67oKiHHW3q9tEprb49XyeX1QXcE57XQkAOxHfO4WJC3alI6HdmCemg7PVz+4Y+GWU5/UEmsC3mwup58RLmUZDw+guy2ztg3/gU//J5y36YKa2lBCBbrF/Kg2L24myJxnq6RgFJCywLpp9kVP/9c=
Received: from AM6PR08MB4231.eurprd08.prod.outlook.com (20.179.4.202) by AM6PR08MB3094.eurprd08.prod.outlook.com (52.135.165.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2073.14; Wed, 17 Jul 2019 16:41:52 +0000
Received: from AM6PR08MB4231.eurprd08.prod.outlook.com ([fe80::a0cb:7d43:97aa:b4fa]) by AM6PR08MB4231.eurprd08.prod.outlook.com ([fe80::a0cb:7d43:97aa:b4fa%7]) with mapi id 15.20.2073.015; Wed, 17 Jul 2019 16:41:52 +0000
From: Thomas Fossati <Thomas.Fossati@arm.com>
To: Martin Thomson <mt@lowentropy.net>, "tls@ietf.org" <tls@ietf.org>
Thread-Topic: [TLS] WGLC for draft-ietf-tls-dtls-connection-id-06
Thread-Index: AQHVOzGDQTLI3l+ruUWjXKcgx5CgF6bO84kAgAAj6QA=
Date: Wed, 17 Jul 2019 16:41:52 +0000
Message-ID: <28361FA1-92AA-4FEB-9372-E6BDE794A067@arm.com>
References: <CAOgPGoDA8UAM2Jjm_ajE12gOQYCnPZdOtVY2hL92S0bLVBi8_g@mail.gmail.com> <ca108e83-9075-4b7f-99e0-589cdb1cec75@www.fastmail.com>
In-Reply-To: <ca108e83-9075-4b7f-99e0-589cdb1cec75@www.fastmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Authentication-Results-Original: spf=none (sender IP is ) smtp.mailfrom=Thomas.Fossati@arm.com;
x-originating-ip: [217.140.106.54]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-Correlation-Id: 69fa7e1a-494a-444f-a10a-08d70ad5b1fa
X-MS-Office365-Filtering-HT: Tenant
X-Microsoft-Antispam-Untrusted: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:AM6PR08MB3094;
X-MS-TrafficTypeDiagnostic: AM6PR08MB3094:|HE1PR0801MB1849:
X-MS-Exchange-PUrlCount: 2
X-Microsoft-Antispam-PRVS: <HE1PR0801MB1849C37429F6863E13810E2B9CC90@HE1PR0801MB1849.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
x-ms-oob-tlc-oobclassifiers: OLM:10000;OLM:10000;
x-forefront-prvs: 01018CB5B3
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(10009020)(4636009)(136003)(366004)(396003)(39860400002)(376002)(346002)(189003)(199004)(51444003)(81156014)(81166006)(66946007)(68736007)(8936002)(66066001)(66446008)(66556008)(11346002)(91956017)(5660300002)(446003)(66476007)(476003)(76116006)(2616005)(478600001)(64756008)(53936002)(53546011)(186003)(26005)(6506007)(102836004)(6246003)(76176011)(305945005)(33656002)(229853002)(6436002)(6512007)(966005)(14454004)(7736002)(6486002)(6306002)(36756003)(316002)(110136005)(6116002)(71200400001)(99286004)(71190400001)(3846002)(14444005)(256004)(4326008)(25786009)(2501003)(486006)(2906002)(86362001)(8676002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM6PR08MB3094; H:AM6PR08MB4231.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Message-Info-Original: EbHwdJh9UGXfSVwCwnL3bMR8e3r/l/BVvLUKhRaNFcxGuGb8oAL0nip9OjsBnkTCkUwX8ROtI+iwDKfBaKO6xPzZ/9BifqVS1SxzXEHPbiC63h2h+RnZ6zrecDlhFY1t0mxqh3cOCSdhITO2U1J9A7nTCuvKc9dw4K2hOOi4okJ3Sl5ysSH73PjrsQOvL2y4kZTnPMt4vkpLMjbCRbw7IEj3vNqmbuAe/2Ei1I5tdgas5Qc7K9aYDWnvtLHrfT/Q4IHOzVo4OcjZaCQVLx7JQBIOFp/XyHpM289xe3sFEOHO3fgvVWbz1J9VXBuQsvovmPRXhjkn6qVjBwKwqCZb25wfAug6vnbTOXK+YZ91PHhPf+B3Xh8WbBMWHfEUdw4a57umsbb2WBKXILSqfeG/HJy4KlCss/aT6RSL9eVdiRw=
Content-Type: text/plain; charset="utf-8"
Content-ID: <EB53A23BA93F824E8F36614D493FC43E@eurprd08.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR08MB3094
Original-Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=Thomas.Fossati@arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: VE1EUR03FT015.eop-EUR03.prod.protection.outlook.com
X-Forefront-Antispam-Report: CIP:63.35.35.123; IPV:CAL; SCL:-1; CTRY:IE; EFV:NLI; SFV:NSPM; SFS:(10009020)(4636009)(396003)(136003)(346002)(376002)(39860400002)(2980300002)(51444003)(40434004)(189003)(199004)(81156014)(99286004)(6116002)(8936002)(3846002)(81166006)(14444005)(5024004)(2906002)(36906005)(8676002)(33656002)(25786009)(14454004)(22756006)(316002)(110136005)(2501003)(486006)(6506007)(102836004)(76176011)(53546011)(229853002)(4326008)(2486003)(356004)(23676004)(26005)(76130400001)(5660300002)(66066001)(70586007)(47776003)(70206006)(36756003)(63350400001)(436003)(86362001)(63370400001)(2616005)(476003)(186003)(11346002)(446003)(336012)(126002)(26826003)(478600001)(6306002)(6512007)(6486002)(7736002)(305945005)(50466002)(966005)(6246003); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0801MB1849; H:64aa7808-outbound-1.mta.getcheckrecipient.com; FPR:; SPF:TempError; LANG:en; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; MX:1; A:1;
X-MS-Office365-Filtering-Correlation-Id-Prvs: a808903e-c3d1-44f3-6342-08d70ad5abe0
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(710020)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:HE1PR0801MB1849;
X-Forefront-PRVS: 01018CB5B3
X-Microsoft-Antispam-Message-Info: hKyu46i3PRlsq8C2IDxpsoDqv2ZwFtEzDrGC67o/uNSx4IhyXDTms+ma6+YyLG/nWMfOiTOBqaWarmvuZeahc3X921YMrvDByVDOWrry6ZBBcnnbR+nziJ6s/CNm5KBcOAW1UdtQVoQA9P3qDCuWclRG+W5rrlufJyMXgTz0z8cowh836LZee0BhIr+CeocSxgn6/5+yzLPv5fkRPCw/VSAIVof2Gz3VxGqmxxdVyqTi4ZRyDVqLTHvstnUYUBJII8o+uAcUWmokSLh4SCg0ZhpN2BhqkH2xy+M6jMyO9XorAgAAz6A6rbBdFRkl1wdasIA4ZVyJZO/ublwQpYiUV5F17FM6qenJ4n0/36XtE3qcApHRbJVBOPf2GQwZPNZivpQegu5cTUeLJ0DlMXXCL/YxHlOiEMd/YDL/CigNAzQ=
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 17 Jul 2019 16:42:02.5237 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 69fa7e1a-494a-444f-a10a-08d70ad5b1fa
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0801MB1849
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/TauKJYj-e00_QPTfui5FpDDFOZc>
Subject: Re: [TLS] WGLC for draft-ietf-tls-dtls-connection-id-06
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jul 2019 16:42:12 -0000

On 17/07/2019, 16:33, "TLS on behalf of Martin Thomson" <tls-bounces@ietf.org on behalf of mt@lowentropy.net> wrote:
> I'm really concerned about shipping a protocol that enables the sorts
> of attacks that connection IDs enable.  I think that we should discuss
> that issue when we meet.  I know that Hannes' new draft is an attempt
> to tackle this issue, but that's a long way from being done.  If we
> ship a spec with this hole, it will only be usable in certain narrow
> contexts, like with ICE, where this really isn't a concern anyway.

I share the same worry that the document as it is at the moment creates
a dangerous situation if implemented in isolation, i.e. without RRC.

Originally I had proposed the text in [1].  The two MUSTs in that PR
should counter the man-on-the-side attacks described in [2].  They are
self-contained, cheap and effective countermeasures that an endpoint can
implement unilaterally.

This was before RRC was drafted.  Those paragraphs have now been moved
there; however, I think they really belong to conn-id.

My suggestion is we move that section back and point to RRC for the
"final" solution.  This doesn't give complete internal coherency to
conn-id -- which is indeed suboptimal -- but the recommendation to
provide peer address update call-backs provides at least a way out and
looks to me like the least worse solution given where we are.

Cheers, t

[1] https://github.com/tlswg/dtls-conn-id/pull/65/files
[2] https://github.com/tlswg/dtls-conn-id/issues/64#issue-448307810



IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.