IETF Logo Mail Archive

Re: [TLS] Call for Consensus on removal of renegotiation

Brian Hamon <B.Hamon@F5.com> Thu, 26 June 2014 21:38 UTC

Return-Path: <B.Hamon@f5.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 735B81B2F2C for <tls@ietfa.amsl.com>; Thu, 26 Jun 2014 14:38:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.552
X-Spam-Level:
X-Spam-Status: No, score=-7.552 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y6hfOkrPw1bN for <tls@ietfa.amsl.com>; Thu, 26 Jun 2014 14:38:09 -0700 (PDT)
Received: from mail.f5.com (mail.f5.com [208.85.209.139]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 762641B2F17 for <tls@ietf.org>; Thu, 26 Jun 2014 14:38:09 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.97,830,1389744000"; d="scan'208";a="119749351"
X-IPAS-Result: AqYEADD7RVPAqArr/2dsb2JhbABQCYQYgw7BBRmBHnSCJQEBAQEDHQYRRQwEAgEIEQQBAQECAgYdAwICAh8RFAEICAIEDgUIE4dNA6kmm3INhwkXgSmLKoE+KgYrBwQCgmk1gRQElHGBf45hiH+CKw
Received: from oracle-apps.f5net.com (HELO exchmail.f5net.com) ([192.168.10.235]) by seamgw02.olympus.f5net.com with ESMTP; 26 Jun 2014 21:38:09 +0000
Received: from SEAEMBX02.olympus.F5Net.com ([fe80::a5e3:d11c:e46a:e7c7]) by SEAECAS04.olympus.F5Net.com ([::1]) with mapi id 14.03.0181.006; Thu, 26 Jun 2014 14:38:08 -0700
From: Brian Hamon <B.Hamon@F5.com>
To: Martin Thomson <martin.thomson@gmail.com>
Thread-Topic: [TLS] Call for Consensus on removal of renegotiation
Thread-Index: AQHPkKQi2ibdHwQZAU+UoLazXGbTxJuCn8+AgAAVNgCAATV4AP//97oQgAB9MwD//4sSAA==
Date: Thu, 26 Jun 2014 21:38:08 +0000
Message-ID: <CE5218A410D7774BA10C7A54F8BB4D305EBAEB@SEAEMBX02.olympus.F5Net.com>
References: <B7430912-46B8-49DD-85EC-00FC5BC3B8D3@cisco.com> <20140626143044.F3B0C1AD68@ld9781.wdf.sap.corp> <CE5218A410D7774BA10C7A54F8BB4D305EBAC9@SEAEMBX02.olympus.F5Net.com> <CABkgnnVBsAJ3+KaR87WgUO0oQ=mYrnA7r4+qSOdcrmkM3ne7iw@mail.gmail.com>
In-Reply-To: <CABkgnnVBsAJ3+KaR87WgUO0oQ=mYrnA7r4+qSOdcrmkM3ne7iw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.168.16.236]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/tls/ZI2sTypSRy6x8f-FRnXWikjPlcw
Cc: "<tls@ietf.org>" <tls@ietf.org>
Subject: Re: [TLS] Call for Consensus on removal of renegotiation
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Jun 2014 21:38:11 -0000

Yes, I do understand this is a discussion of renegotiation, and I'm in basic agreement with your proposal. However, it does leave unaddressed the issue I presented regarding the loss of the ability of the server to postpone demanding client authentication until the contents of one or more ApplicationData messages are examined.

I was trying to gather a list of objections that some have expressed of the use of renegotiation to deal with this specific situation, and as far as I can recall the only ones dealt with resumption. Am I forgetting any others?

My main concern is that if your proposal is accepted, what is the solution for a server that must examine some ApplicationData in order to determine if client authentication is required?  

-----Original Message-----
From: Martin Thomson [mailto:martin.thomson@gmail.com] 
Sent: Thursday, June 26, 2014 2:29 PM
To: Brian Hamon
Cc: mrex@sap.com; Joseph Salowey (jsalowey); <tls@ietf.org>
Subject: Re: [TLS] Call for Consensus on removal of renegotiation

On 26 June 2014 14:18, Brian Hamon <B.Hamon@f5.com> wrote:
> I would argue that session resumption should revert the client's identity back to "unauthenticated". This avoids a lot of the complicated workarounds required for #2.

I hope that you realize that we're not talking about resumption right at this moment.  There are some interactions with resumption, but I think we're trying not to overcomplicate the issue by considering the implications of those just yet.

That said, if you did mean renegotiation in the above statement.  I don't think that making any recommendation to this effect will have any material impact on the sorts of bugs we've seen with renegotiation.  You can *say* that people should do this or that because it's good practice, but I think that that is just wishful thinking.

v2.23.0 | Report a Bug | By Email