Re: [TLS] Another IRINA bug in TLS

Santiago Zanella-Beguelin <santiago@microsoft.com> Thu, 21 May 2015 12:07 UTC

Return-Path: <santiago@microsoft.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5367E1AD0D0 for <tls@ietfa.amsl.com>; Thu, 21 May 2015 05:07:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fERG_t62y7Gz for <tls@ietfa.amsl.com>; Thu, 21 May 2015 05:07:04 -0700 (PDT)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2on0144.outbound.protection.outlook.com [207.46.100.144]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8CAFD1AD0CE for <tls@ietf.org>; Thu, 21 May 2015 05:07:04 -0700 (PDT)
Received: from BY2PR03CA048.namprd03.prod.outlook.com (10.141.249.21) by CY1PR0301MB0842.namprd03.prod.outlook.com (10.160.163.148) with Microsoft SMTP Server (TLS) id 15.1.166.22; Thu, 21 May 2015 12:07:02 +0000
Received: from BN1AFFO11FD020.protection.gbl (2a01:111:f400:7c10::126) by BY2PR03CA048.outlook.office365.com (2a01:111:e400:2c5d::21) with Microsoft SMTP Server (TLS) id 15.1.172.22 via Frontend Transport; Thu, 21 May 2015 12:07:02 +0000
Authentication-Results: spf=pass (sender IP is 206.191.250.196) smtp.mailfrom=microsoft.com; ietf.org; dkim=none (message not signed) header.d=none;
Received-SPF: Pass (protection.outlook.com: domain of microsoft.com designates 206.191.250.196 as permitted sender) receiver=protection.outlook.com; client-ip=206.191.250.196; helo=064-smtp-out.microsoft.com;
Received: from 064-smtp-out.microsoft.com (206.191.250.196) by BN1AFFO11FD020.mail.protection.outlook.com (10.58.52.80) with Microsoft SMTP Server (TLS) id 15.1.172.14 via Frontend Transport; Thu, 21 May 2015 12:07:00 +0000
Received: from DB4PR30MB032.064d.mgd.msft.net (141.251.50.216) by DB4PR30MB031.064d.mgd.msft.net (141.251.50.211) with Microsoft SMTP Server (TLS) id 15.1.112.16; Thu, 21 May 2015 12:06:59 +0000
Received: from DB4PR30MB032.064d.mgd.msft.net ([141.251.50.216]) by DB4PR30MB032.064d.mgd.msft.net ([141.251.50.216]) with mapi id 15.01.0112.000; Thu, 21 May 2015 12:06:59 +0000
From: Santiago Zanella-Beguelin <santiago@microsoft.com>
To: Peter Gutmann <pgut001@cs.auckland.ac.nz>, Nikos Mavrogiannopoulos <nmav@redhat.com>
Thread-Topic: [TLS] Another IRINA bug in TLS
Thread-Index: AQHQkwYvDdHZ+lmQNUW54l67jurcrZ2FE+rTgAD1qgCAAClNNoAAAYSAgAARVRI=
Date: Thu, 21 May 2015 12:06:59 +0000
Message-ID: <1432210017980.16807@microsoft.com>
References: <CACsn0ckaML0M_Foq9FXs5LA2dRb1jz+JDX7DUej_ZbuSkUB=tQ@mail.gmail.com> <1432141085848.37685@microsoft.com>, <1432193344.3243.2.camel@redhat.com>, <1432202373093.34978@microsoft.com>, <9A043F3CF02CD34C8E74AC1594475C73AB028124@uxcn10-tdc05.UoA.auckland.ac.nz>
In-Reply-To: <9A043F3CF02CD34C8E74AC1594475C73AB028124@uxcn10-tdc05.UoA.auckland.ac.nz>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [92.151.241.88]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Microsoft-Exchange-Diagnostics: 1; BN1AFFO11FD020; 1:RfJLYO9e8BtPhsmw5UKG4i8ZdOQtEy/1wJN1IWXqJ3+O4KNf+7Q83cA8eVw8JvIjWy2klVodEYfcUcPGub7orFh4WSBpaO1+IRztLuQBnjrVDOcEcJa9+Mzc+iLOKVe5Olf7pgOnruRHcpK1g0XQv6Mf9xlOlyhq9GBlB/gDbu2hZyHNTIteU07imVS6J6QDuC8iu4amCKF2VJoxQyylrPMu2eoGXLnO0630MhqmuHbLh0Jl/P1xqKNn/IwNKA5kNmSZSbyz2fOsIui1CH1xoWRqAK2BFRyy6MqYtFjPmG+SWBGytN8rVZiUUcqmNsI4
X-Forefront-Antispam-Report: CIP:206.191.250.196; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(438002)(199003)(189002)(377454003)(16796002)(36756003)(69596002)(2900100001)(19580395003)(19580405001)(6806004)(81156007)(86362001)(2950100001)(86612001)(97736004)(4001540100001)(5001830100001)(5001770100001)(92566002)(5001860100001)(46102003)(93886004)(64706001)(106466001)(117636001)(50466002)(62966003)(77156002)(23756003)(86146001)(189998001)(68736005)(102836002)(5001960100002)(87936001)(2656002)(66066001)(106116001)(47776003)(76176999)(54356999)(50986999); DIR:OUT; SFP:1102; SCL:1; SRVR:CY1PR0301MB0842; H:064-smtp-out.microsoft.com; FPR:; SPF:Pass; PTR:ErrorRetry; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0301MB0842; 2:SszP4CUVFaEL2AYkyCEjVqOm+/UGH/Xb7CQ7chKXUOBKpZ63re+gvoeRwhEcG5r8; 2:M8Wyn+5ttWCKB/eXbKudYvxqmodkWggUYE2FLkarDz7OJxBdem8oIOhUK8sXex9KdrhyUnosXnOJYiVYELV3xC/hHWa3cyGeWWuqLLHn+V/ccSjGgp1aEg8qMflBtuXz/e4YaO8N/fiyjbV8stLhz+umX8MgiqKwOoPkce5/NN5pWPTA6qanqtg+Kx9OFoQ0umgUzFIiFfGhHCLvyMkvUQRDt3L5mPrTAtvAplvSrT9P1uYJFUjFdF2ASgbU4O91; 6:R3UllqyHqI7je+obJyRPa/qa1Ny0qy0jv3tt8a4K9w1OJltVpWGawHKHIwnqLsUpW9Qi6oa7ch7CcbCp57iRjBlPbNWVchmVcBPAMLhCWNY6WT4zGXwi3cekhP9djIm7fyoF1RTeAZQyHRU1RSN7VYg+xFm2ggCG1Zcq4F9i5Bskn32JPZem7P8SScx1Nc2+WpetXlAGVUCZTvnz7rzAWOJuenyksWvRzAAcHqZxhBWU9+Hw+aTx/NvWjPZDie8/yv2uVY09j0e3bbb3RrUIYkA77r9269qQSIiefIDv9ln6HSh3vaSEUsrvUVxB2VI1/6YEV8J3dhE0tKrh5Grqtap3a95lt1QT4CQ8UUY/XpnupIYl657vSEfPV+o+tx5Ks3I9qtCbNA1XL3MxBDs3ZvpGr8gfIkUMrydX+ViSSiM01K0OrA3oJiDHC0/+aQNdOF2JDULxeV5TIPCAH7YzkIhAM41yeySkzCOcx+cLlm8k5exkn0QdwHBFMr0r3e+b
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:CY1PR0301MB0842;
X-Microsoft-Antispam-PRVS: <CY1PR0301MB0842EF1D8A172F97D2F7AA61C9C10@CY1PR0301MB0842.namprd03.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(2401001)(5005006)(3002001); SRVR:CY1PR0301MB0842; BCL:0; PCL:0; RULEID:; SRVR:CY1PR0301MB0842;
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0301MB0842; 3:+RVxdpxKcnkHKqLdH/xsNr/kiU87ykO1vVei4/+7JxeLcGoH2XOG//R9eQP6mwoU6l6E2hDhF1Etywi5mmk163XNZcOCOHNyEPDdpw4KOWYdDgwdIG9Te2S3lj6WnOBKiKdprfh7+DMDPWx2w/2A6L8qkbMJJsT3oPpQeHbECRdjU0ZeaOPq/uQxYsAIyFdNDQX3IeauKGhgmInU8Y2zwlNW+xbiHTxoL6uKcb7NSpIlYOTaBv5HE5L4AQMSUpC8raMNlV+D6uHLXTKfgLhtubu8KgR2b3Nb2KpLUGxw7oaVnLcjgUcTu/8ld/YqpA+O
X-Forefront-PRVS: 0583A86C08
X-Microsoft-Exchange-Diagnostics: =?iso-8859-1?Q?1; CY1PR0301MB0842; 9:TtinCIfE8rD9Y0ayoR796mqN3PZl8hZx0e9BK/?= =?iso-8859-1?Q?Uj6/zcI1+5MCQ4u9HvJg7m6k/xGe9/4BSmWFno69ryOm0iJD1mLeV4YkWT?= =?iso-8859-1?Q?azwSvzi4BBu0QFVddlJfvTdGM1TlpUaCAaCtZkOJW3EVGjpwqD53SiyiTo?= =?iso-8859-1?Q?ZB1ljk1fZiXrUz18L1rJ3oSLkWoP+9Q2K+lvfUOxpBFi+VWjLi04G8ngto?= =?iso-8859-1?Q?2pNSIu8RxmUc6PicLz67caf5Umo72oWCvbCVzk3gKD+pY66uxDeN1Zy5JQ?= =?iso-8859-1?Q?k1o9nYJQkGxEjXo8xBHX9EL4B3W4sub9b2T+OoJ0d/yPiKOXS43MYKECwU?= =?iso-8859-1?Q?Au8ctgrRAYPX+o6kkTTdeVIIZpj5Vxv448M5nXxpTazkEu9dEBmID1YChZ?= =?iso-8859-1?Q?DP8TlwSIVD7Oz0AeQOWwThHNjEkqLUtkJVYRmzkSId4S170rEVgmGy20Bb?= =?iso-8859-1?Q?tjNJ7i59b1Zg1mSQq4Xgqp/+qHTMcmOEw4//RrzQ8EALAmWL8fo8ggPL0G?= =?iso-8859-1?Q?VHErzq6N5ymK8Xmyr5nCPA6TxV87RyAYZC6cUV7vlWIaQpna25Tz3RxCn7?= =?iso-8859-1?Q?QViGlPB0PgDYlWqDUfdVjsENgH9v5DVMEAf96mc9QWSRLi3TFdXDwk6ol5?= =?iso-8859-1?Q?Kv4d98F2mRgYBrCQBMbpRRRGb3pQDV2qdQHYT11t6zXcPCovhVdCQKqy0g?= =?iso-8859-1?Q?t6w8Z2Sghj4QK7UixJLvHHsBt5dS4vVjOogMSvv4GxqpHpkEvCQUkeyy/w?= =?iso-8859-1?Q?V0F3vr29MmjAdB+t2K7/OUXKt2WsN4zKVsicozCiMaqQseCiDIwGy1RQFF?= =?iso-8859-1?Q?N+I4ZF1/hVEMCdYK4GFVRg6PiHXNPuAyNJfLjm8vqG104diy+eyxUvBnjZ?= =?iso-8859-1?Q?VU21kfwlxwREF9EM2iYFyEJqBl1plvPjZPjfZhB61G92LKNRDfFy0uXyJX?= =?iso-8859-1?Q?D4p11ezvrqxiXDZrA7uAxJ+AEpd2992RMp2wq2jby/KevQEloGvFFGMRAn?= =?iso-8859-1?Q?iaahhDdfuWhz1jkzNhb5cvQe4rRdnbqSrc8PpDMbXNULLSt1pOP0D6gYHe?= =?iso-8859-1?Q?ymL1d5OJRE3PP1snHRlr8rI16pcKW6zVYxsjysT/POSu+LtXrSJ6v8ZaCU?= =?iso-8859-1?Q?Z4MKgtt2u17gd56uUV/2qTvF4jShh8TkY81zBcl6FrgwMkJIgQW+QhwJRr?= =?iso-8859-1?Q?+YZdg1HTtRhiovFrGhWgrrPQlLMB9MZrFA=3D=3D?=
X-Microsoft-Exchange-Diagnostics: 1; CY1PR0301MB0842; 3:TbRhNDiRyKgG0IBQo/f6uEjEepSXYerCLbtUH/Earfnf/+ymqjHwxqsmQljz5b+WfoL7OM1MOhLZGz193xZoQS3Ed9uXjqazB1DDCeyF9fpp1jIgQyL4RdyiGgnIp/ALW8K8hqI+nMXRqIvjEO3e5g==; 10:GiASH5twXCNvThXPqwtpwsynYBhH4UHqtohWcppR7ESn0p8tImvTqTl5z/Ju2ZfU11WZsT84rNYSwrZ1sHa324WNGT3Eze7aCzJuEvbA/MI=; 6:HDPdYeThKhaXHq7FSfjntnGirzQbYeOd114iiqyIsta1wbudo0nl79WOR9I6GVCB
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 May 2015 12:07:00.7186 (UTC)
X-MS-Exchange-CrossTenant-Id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=72f988bf-86f1-41af-91ab-2d7cd011db47; Ip=[206.191.250.196]; Helo=[064-smtp-out.microsoft.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR0301MB0842
Archived-At: <http://mailarchive.ietf.org/arch/msg/tls/caO5cdEhXnBHGWvJyY54nb9QKTY>
Cc: "tls@ietf.org" <tls@ietf.org>
Subject: Re: [TLS] Another IRINA bug in TLS
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 May 2015 12:07:06 -0000

No typo. Yngve's numbers are in line with ours: 44k for Alexa top 1M websites, and 1.75M for full IPv4 on port 443.

That ciphersuite won't be negotiated by any modern client, but one can downgrade the handshake to use the weak DHE parameters that the server selects with it.

--Santiago
________________________________________
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>;
Sent: Thursday, May 21, 2015 11:02 AM
To: Santiago Zanella-Beguelin; Nikos Mavrogiannopoulos
Cc: tls@ietf.org
Subject: RE: [TLS] Another IRINA bug in TLS

Santiago Zanella-Beguelin <santiago@microsoft.com>; writes:

>We did find many HTTPS servers supporting TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA.

Just to make sure that's not a typo, you're saying you *did* (not didn't) find
many servers supporting 40-bit DES as a cipher?  Wow.  How many approximately,
are we talking tens, thousands, millions?

Peter.