Re: [TLS] Is stateless HelloRetryRequest worthwhile? (was Re: TLS 1.3 Problem?)

Hannes.Tschofenig@gmx.net Wed, 30 September 2020 17:27 UTC

From: Hannes.Tschofenig@gmx.net
To: 'Michael D'Errico' <mike-list@pobox.com>, tls@ietf.org
References: <0c31f2d6-5f8e-2fd6-9a1a-08b7902dd135@pobox.com> <AM0PR08MB37164F2D0E0CE5FB6D62D461FA350@AM0PR08MB3716.eurprd08.prod.outlook.com> <1c7e2f31-8a9e-4bd8-9e80-ab18ebeb609f@www.fastmail.com> <CACsn0cmbDz3ML8o5moAacqfXqYQo-Hqi53XQL6UoGYcZBwy-Mg@mail.gmail.com> <96777977-7707-4311-9876-ca3d53f57f3e@www.fastmail.com> <9b2bb784-5895-bc8a-fae5-1c2056972f97@pobox.com> <eaace566-4fe2-4e86-8382-e0583ce43435@www.fastmail.com> <24f5cd7e-4fff-ce47-f9d9-840dff3f23aa@pobox.com> <3b48fa2d-f923-40ee-a93f-e0896a96fc1b@www.fastmail.com> <ba70c2ba-9023-4cc8-974a-01a64a60de2d@www.fastmail.com> <82488341-a4c6-2ed9-d8e2-6479151a5f90@pobox.com>
In-Reply-To: <82488341-a4c6-2ed9-d8e2-6479151a5f90@pobox.com>
Date: Wed, 30 Sep 2020 19:27:39 +0200
Message-ID: <03ba01d6974e$ffaefe30$ff0cfa90$@gmx.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Content-Language: en-us
Thread-Index: AQENHY4oM9Gncf3xDJusovVsGka6XwJ7J7XlAZq3kYoBs7cNiwClLSWOAYYeJegCKJEYVAGl8T25Ahxx4BMBc157cALsBjEXqoJokVA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/_f6HfyhUi2SghDP5b4gaET5Tz6Q>
Subject: Re: [TLS] Is stateless HelloRetryRequest worthwhile? (was Re: TLS 1.3 Problem?)
Precedence: list

Mike, 

DTLS 1.3 can be found here: 
https://tools.ietf.org/html/draft-ietf-tls-dtls13-38

The HRR is used in DTLS 1.3 for DDoS prevention. 

Ciao
Hannes

-----Original Message-----
From: TLS <tls-bounces@ietf.org> On Behalf Of Michael D'Errico
Sent: Wednesday, September 30, 2020 7:21 PM
To: tls@ietf.org
Subject: Re: [TLS] Is stateless HelloRetryRequest worthwhile? (was Re: TLS 1.3 Problem?)

 > The costs you describe are trivial.

The general idea among developers these days that CPU cycles are free is a huge problem.

You didn't answer my biggest question, though, which was whether you (or anybody else!) has had success using stateless HelloRetryRequest to increase the number of connections a datacenter can handle due to the fact that the servers were memory-bound.  The amount of memory to hold the first ClientHello message is trivial.  But if doing stateless HRR has measurably increased the performance of a data center's web serving capability, I'll change my mind about it.

 > We also implement DTLS where this is properly useful.

I can't find the DTLS 1.3 spec.  Which RFC is it?

Mike

_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls

[TLS] TLS 1.3 Problem? Michael D'Errico
Re: [TLS] TLS 1.3 Problem? Ben Smyth
Re: [TLS] TLS 1.3 Problem? Michael D'Errico
Re: [TLS] TLS 1.3 Problem? Richard Barnes
Re: [TLS] TLS 1.3 Problem? Michael D'Errico
Re: [TLS] HelloRetryRequest question (was Re: TLS… Michael D'Errico
Re: [TLS] TLS 1.3 Problem? Hannes Tschofenig
Re: [TLS] TLS 1.3 Problem? Michael D'Errico
Re: [TLS] TLS 1.3 Problem? Watson Ladd
Re: [TLS] TLS 1.3 Problem? Rob Sayre
Re: [TLS] TLS 1.3 Problem? Martin Thomson
Re: [TLS] TLS 1.3 Problem? Michael D'Errico
Re: [TLS] TLS 1.3 Problem? Ben Smyth
Re: [TLS] TLS 1.3 Problem? mrex
Re: [TLS] TLS 1.3 Problem? Martin Thomson
Re: [TLS] TLS 1.3 Problem? Michael D'Errico
[TLS] Is stateless HelloRetryRequest worthwhile? … Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Martin Thomson
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Nico Williams
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Hannes.Tschofenig
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Salz, Rich
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Benjamin Kaduk
[TLS] HelloRetryRequest question (was Re: TLS 1.3… Michael D'Errico
Re: [TLS] HelloRetryRequest question (was Re: TLS… Michael D'Errico
Re: [TLS] HelloRetryRequest question (was Re: TLS… Benjamin Kaduk
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Rob Sayre
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Salz, Rich
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Nick Harper
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
[TLS] Client attacks on stateless HRR? (was Re: I… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Nick Lamb
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Michael D'Errico
Re: [TLS] Is stateless HelloRetryRequest worthwhi… Luke Curley