IETF Logo Mail Archive

Re: [TLS] Malware (was Re: draft-green-tls-static-dh-in-tls13-01)

"Roland Dobbins" <rdobbins@arbor.net> Mon, 17 July 2017 18:49 UTC

Return-Path: <rdobbins@arbor.net>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 60C0712F290 for <tls@ietfa.amsl.com>; Mon, 17 Jul 2017 11:49:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=thescout.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RhNn9LUIrfox for <tls@ietfa.amsl.com>; Mon, 17 Jul 2017 11:49:21 -0700 (PDT)
Received: from NAM03-DM3-obe.outbound.protection.outlook.com (mail-dm3nam03on0116.outbound.protection.outlook.com [104.47.41.116]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88AC412F258 for <tls@ietf.org>; Mon, 17 Jul 2017 11:49:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=thescout.onmicrosoft.com; s=selector1-arbor-net; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=95y6pxrWBODI38YmLNMOeZx9pUwrs5+heE9Z2BHUiwg=; b=bdLRq6lTJ5SRFGqSxgYYbjhcwdIrKWw/nHFdGTRv7EXQwEKxKRPzxAloM6rZ7xzMh8hgajT8hmVKxUGUs+3GoBQ2YHbVrSno1XIS5I6steOffcV/LQ8mpHrnjLsfsbBBfzpWk4SrcIlVksZTquw2fS4OL9yCzH5EgDQN9Wg9r2Q=
Authentication-Results: ll.mit.edu; dkim=none (message not signed) header.d=none;ll.mit.edu; dmarc=none action=none header.from=arbor.net;
Received: from [172.16.1.3] (88.208.89.131) by BN3PR0101MB1025.prod.exchangelabs.com (10.160.182.154) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1261.13; Mon, 17 Jul 2017 18:49:18 +0000
From: Roland Dobbins <rdobbins@arbor.net>
To: "Blumenthal, Uri - 0553 - MITLL" <uri@ll.mit.edu>
Cc: IETF TLS <tls@ietf.org>
Date: Mon, 17 Jul 2017 20:49:08 +0200
Message-ID: <E638AD9C-16CC-4CB3-A7CB-2D4B210597A2@arbor.net>
In-Reply-To: <0393B6D5-BE7F-41A2-BC8F-43D330BD499D@ll.mit.edu>
References: <CABkgnnU8ho7OZpeF=BfEZWYkt1=3ULjny8hcwvp3nnaCBtbbhQ@mail.gmail.com> <2A9492F7-B5C5-49E5-A663-8255C968978D@arbor.net> <CABkgnnX7w0+iH=uV7LRKnsVokVWpCrF1ZpTNhSXsnZaStJw2cQ@mail.gmail.com> <FDDB46BC-876C-49FC-9DAE-05C61BB5EFC9@vigilsec.com> <9C81BE7B-7C21-4504-B60D-96BA95C3D2FD@arbor.net> <CAEa9xj55jzch-v0mysbRSryNM0Y7Bdtevmrc3+FVxMO8EP5zWA@mail.gmail.com> <CC3CE5F8-C8C2-4A70-829D-483E26D20733@arbor.net> <CAEa9xj5eR6b_+CsSDArMWWr-u8hx5B81kDVEMEX8sgfUeMUS8g@mail.gmail.com> <C3B01C35-E3A2-4A8B-9DD7-D6E4153ED39F@arbor.net> <CAEa9xj6p0y9ZzxLJvtv9GDzzfs5s13nnLqm=4_fNDPGV+=Od8Q@mail.gmail.com> <BE4E8E4A-51FC-4211-A16F-EBA8B3F01757@arbor.net> <66C1C32C-53C2-43A4-BCB0-96DDC26A1F58@ll.mit.edu> <69018030-3157-42D4-A573-0E39E46EFAA9@arbor.net> <31C01911-5E2B-4812-B4B5-334C7D212F22@ll.mit.edu> <7995AB85-5144-4ABE-993D-EB1415E7E2DD@arbor.net> <0393B6D5-BE7F-41A2-BC8F-43D330BD499D@ll.mit.edu>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Mailer: MailMate (1.9.6r5347)
X-Originating-IP: [88.208.89.131]
X-ClientProxiedBy: DB6PR07CA0059.eurprd07.prod.outlook.com (10.175.237.149) To BN3PR0101MB1025.prod.exchangelabs.com (10.160.182.154)
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 2890836b-d224-4e35-5ebc-08d4cd4487e9
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(300000503095)(300135400095)(201703131423075)(201703031133081)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:BN3PR0101MB1025;
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0101MB1025; 3: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
X-MS-TrafficTypeDiagnostic: BN3PR0101MB1025:
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0101MB1025; 25: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
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0101MB1025; 31:rMtnk/yIxTNvBCCjbqz19Dfhmjca+zPBUZldcNjRG14FV0ijzKIpYSmuPCDoPUqtczfQsKMHbCUU+k9n5azbz+9AGxjJXE3JQH0c34rltim1bNzb5O6AgHfM4ktt/VBuQAOuulrSgt0bfy/oFb6bWyMJMvciQLLlzTIit2pIbR9CuMRGAUDkMKuLJB7sCzcsTSlyrkw9wlKt3xIc90hyl+p8zQfmgV6z7UkQcPiPSPvlu3mkpdx7guIDgGsjdB/02gV0Y4hckXNNw50W3jnSw/KaP2VMfNlXvRidGq4bzgI4IreuvHZZ47KOdvX56oYpsp7QTp8D9rBG0UE17tyZkCoBUCr8HPpT/w68YFciehRYxOHMwwOxLf6tE9Fy1h/UsVolX4nZ9DQKDW1ZHR8GQfSu9ohBU104d/zYeSFjV/gc7iewkAXwHoRzydq1totYHC3TVDBLdXURvQu1Akq4Qg3vOGvdi6OakVz+DdczM5cURxx6/yH781+C1FMZNRR9fUngGYErWx0O2j5zRWNIpSFTRPdM6JALBkjfC52GQJPTEqZ/woYFBujEjD7XemKZiBgHu9seyAjeauwXTTAbFEStHIqws0PkI/gSto7ig/EO7jT8K7QJYnK6k70cpy2TgeQnFs+t1QC+jWVvQzP4eGr5HU9SxYAnKurMx+MkD0tMRzIXQpWreCQlTBJh9WGgYcyA11ebq94aDNeY1hmfGg==
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0101MB1025; 20:U5wWWuNGbia4Z3FJZJu+FeBdOE9Av2M/C8xKR2vnulefXDq5vQEFqXLwO5PSYMsc95+yLTl6esz5ordHyjLnxoS9WhKp/imkdFJh37OMN9ZvHwaB+gHqxD0iMv14WT53wGUOUSw1FXxDVqEqgWEPhTQrYS0wfnscj9l0/iSOpocPSJpLditQRbrDkrjk2z+ij+E94ccz459ODL6uS3vw8t4VsIdK/2k1RrLwW+HWNdIwmuehTT9BmuWQY92ZVeerycwrzYOP0eT+iOC0Rs+cM2wIWwt+RUmrQXxHWNKN3HaDxt6wnl2dYqz7Qs1G3zCgDI/hraTsVJifokNPbM8EJsu+WDhpzT/T5HsYeuQemvKBLnXI4TI1VzfhU4JF0UlscLbop9oRTQKAKKTj38hoQgKgvhJ50upIbygSUAauO5Q+ug6QDVlD2aJmtzKxp59TbqPrwltbjLjtCUwtfJJH6qC8h/F/o4C77bsjnDronvb0KDhi2Mt/a6PkWVZtzEhx
X-Exchange-Antispam-Report-Test: UriScan:(236129657087228)(48057245064654)(247924648384137);
X-Microsoft-Antispam-PRVS: <BN3PR0101MB1025E31FBA8E5C907848C180CAA00@BN3PR0101MB1025.prod.exchangelabs.com>
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(5005006)(8121501046)(2017060910075)(100000703101)(100105400095)(93006095)(93001095)(10201501046)(3002001)(6041248)(20161123558100)(20161123555025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123562025)(20161123564025)(20161123560025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:BN3PR0101MB1025; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:BN3PR0101MB1025;
X-Microsoft-Exchange-Diagnostics: 1;BN3PR0101MB1025;4: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
X-Forefront-PRVS: 0371762FE7
X-Forefront-Antispam-Report: SFV:NSPM; SFS:(10019020)(4630300001)(7370300001)(6049001)(6009001)(39400400002)(39840400002)(39450400003)(39410400002)(39850400002)(24454002)(93886004)(2870700001)(36756003)(6666003)(53936002)(7350300001)(81166006)(83716003)(2950100002)(6916009)(3846002)(82746002)(230783001)(86362001)(50226002)(4326008)(2906002)(33656002)(7736002)(6116002)(76176999)(53546010)(6486002)(77096006)(50986999)(8676002)(478600001)(25786009)(23676002)(66066001)(6246003)(38730400002)(110136004)(305945005)(2171002)(189998001)(50466002)(90366009)(5660300001)(47776003)(42186005)(229853002); DIR:OUT; SFP:1102; SCL:1; SRVR:BN3PR0101MB1025; H:[172.16.1.3]; FPR:; SPF:None; MLV:sfv; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1;BN3PR0101MB1025;23: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
X-Microsoft-Exchange-Diagnostics: 1;BN3PR0101MB1025;6:7RInrZskYfDCf8zpy8+pCXaf7R3Bu0T2GRGgEWhnOYxlivkm1rWhFlITcPlMh7dadfonr38uiSvlu/qRpkkE/W3+w46rreR4JBXwkPhUbMVM0OmXpjwy9Dm/YtmhVFEzMJ1R5aDOA5ed+srut8rmbxyefkyVShHdiDMyKZKbULwXk649zso1coFLHZxpY+iwefMIwDWgknZM1s7KbPM7P3DQN5SHOSJsnuU06MtoJe5rYyQvqDLGQrBSUygTjaLIg65ViLQ9kr3rRW6U6/REaoyvuin7FxmP6DWwKEwHIeAe+OLPjEORVy3HDS0NaA0jUjoQW0BeMCu9ezF3wO2wNjC2CXOCaNRTWJCKGeNuztOPrPRa0XwHoAWqok6Fr0vJe3xjoiS1Q6t8l4XuS3VnKH/h8JTRC9uu9VBp5ugHAhBjMzYvHpbCvhy751QWzOY7lCppoy0PV1zpfoXdXnHF+HQ4AcpSS2vmyUF73Fms4IEpwwszQTAukx/9rZ99TkCl79UTciIzkL8Qk5qt30mAoCf7MRLwoB/toISuoYuOfL9cGGwP1oDm1qZFNBxd46ktW6iw2OyYVNAAqzlmVWZT3VjROSh5ynamSH2baaRQJePzqGAAagvr1BAiUBsPLere1M3vEG1Jfw9+diC35P/7sFJIYhIESdFSH7lCEDcV8MmDzSw0mbp60fuscx3LgaLV9LfTXvSaNujB0bK9Xr8kMZrfuxFQ1LPLuUZLQHbfjMDuQGoO5WR3f/znifyQrEjNQ1IeeZ3PX2VSZXsjTjv1Zt8URcmCvH2HipwuNKG0+eZpRB1A/L8Y9romGNvOF0Qd/Wveo/MILkanxZMmXurJM/DUSRacVIpGSUjIevdWIIyxd7OsCnScOZQ8Co0fzb1SWzq1GwBlZ7+erNupS+N/V+kxEqOh7v4motnuwEZ6ZW51/qbRFrtWGjoS6u70vBBNm/cTX67EGVn2bu6WjHEBxMzp05cYfRX+o9Bbi3QO4sE=
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0101MB1025; 5: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; 24:MCx4kRAUQYhsBZRZ+ZfO6X4FgSRBFaL0DUMlDDghE0tkgDoCpwHLaRTULxlvSYFKuUH88vtAZhzBiBAKJKCLzo2WBFlN1AQWVVy/GoVOV1A=
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-Microsoft-Exchange-Diagnostics: 1; BN3PR0101MB1025; 7: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
X-OriginatorOrg: arbor.net
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 17 Jul 2017 18:49:18.1833 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN3PR0101MB1025
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/a_zngOzhYYxfuzDEWIqLuxEzXVU>
Subject: Re: [TLS] Malware (was Re: draft-green-tls-static-dh-in-tls13-01)
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jul 2017 18:49:23 -0000

On 17 Jul 2017, at 20:35, Blumenthal, Uri - 0553 - MITLL wrote:

> :-) It’s the Law Enforcement job to make the dumber ones disappear.

We aren't talking about law enforcement, per se - and it's law 
enforcement's job to make them *all* disappear.

> Let’s exchange our criminals – I’d much rather deal with yours. 
> ;-)

Sadly, I have to deal with all kinds.  I don't have the luxury of being 
selective, worse luck.

;>

> My point though is – this dropoff in visibility *will* come, like it 
> or not.

When that begins to occur in perceptible increments, then it's time to 
revisit.  But avoiding breaking existing, useful mechanisms is something 
we should strive for, IMHO.

> Based on my experience troubleshooting – I disagree. If I control at 
> least one end of the communications – I have all the visibility into 
> the traffic that I need.

Based on my experience troubleshooting, I disagree with your 
disagreement; while in many circumstances a great deal can be inferred 
from one end, it's sometimes vitally necessary to gain visibility from 
multiple points in the relevant topological scope.  Perhaps the scope 
and complexity of what we respectively troubleshoot differs 
considerably.

-----------------------------------
Roland Dobbins <rdobbins@arbor.net>

v2.23.0 | Report a Bug | By Email