Re: [Trans] Gossip: Unsticking a client caught with potential evidence of log misbehavior
Eran Messeri <eranm@google.com> Tue, 20 October 2015 15:34 UTC
Return-Path: <eranm@google.com>
X-Original-To: trans@ietfa.amsl.com
Delivered-To: trans@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B3E151B3469 for <trans@ietfa.amsl.com>; Tue, 20 Oct 2015 08:34:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.388
X-Spam-Level:
X-Spam-Status: No, score=-1.388 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EmKpISL0ywC4 for <trans@ietfa.amsl.com>; Tue, 20 Oct 2015 08:34:35 -0700 (PDT)
Received: from mail-io0-x232.google.com (mail-io0-x232.google.com [IPv6:2607:f8b0:4001:c06::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10C0E1B3433 for <trans@ietf.org>; Tue, 20 Oct 2015 08:32:30 -0700 (PDT)
Received: by ioll68 with SMTP id l68so26119360iol.3 for <trans@ietf.org>; Tue, 20 Oct 2015 08:32:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=m2D+ZgPvNkmPxHciKclqvPdUcvLr4kCm1m68mGhrHz8=; b=Si2IDQUXKO8yoiG32fqZigcoWJd50qKn0x8oD9DVQLq1HZTsY17J1NO+Cshqxc9htk 8nTy+SkuxrkCJBy8smqPYbukJJNeaJNzEANZT2dp5ojTakN76PLlhqubYsyMqVfLnPgX DbBN/QcimTGC6CdxNETnCW6ALCu0r/RdQbm+FL9b9nqvmemwZTFMBzJAd27++zpO+kTe pRvDBTfwduxXOfh9c1fSc3mBs+Msk49Rg/XCleZSBsPhmKs72ah80neb+B/DsTyS+C3y Js1LNzGwJTyGCVT0iypnPI6JPdgyTbVo4TBlnRlOaJ9slzcvSS3GtKHwq9cRFSLn8E9q vITg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=m2D+ZgPvNkmPxHciKclqvPdUcvLr4kCm1m68mGhrHz8=; b=ftdgVNejjqVVGLkw52B6q+DhjDqVdxkTcd9lggbD6dOoRM59L9GjjYisV3joVDEwMi +RGyDOjKHkblJO7j7QgYoS9gq0+uqk+93ffa37rEDA4cUzl2lnZaFvK1BDdBjnM79tQh UHNl0Iw3K/NecT7fp0jOsD5J9BKhXdtJXYhzUE1ZHlaZe6tb2l+r7eF46Disp1OvP99s dneFd9aY0L7VnGHr3uqgoQ7RZ/kENjRtfpGWWmlB6vgY9sxZFE0me0s0ease02YLT9nx KXUdQHD1DJV/KMoXvfDuvMoyzcTjE/qD1CY+JOk9HeznxXJmEC2dNZm1vH80ciW7zGth kTfw==
X-Gm-Message-State: ALoCoQnvz3hlhXJrAPJA86p+uYx8Tn69A7cMfRRvOwxXoCny5jL7SG6BkLFfwyW/YT/c6tAfk5hO
MIME-Version: 1.0
X-Received: by 10.107.163.17 with SMTP id m17mr4188677ioe.79.1445355148888; Tue, 20 Oct 2015 08:32:28 -0700 (PDT)
Received: by 10.64.233.4 with HTTP; Tue, 20 Oct 2015 08:32:28 -0700 (PDT)
In-Reply-To: <CA+cU71=YMq3jJhdnv_CqmteUhRnnxYmbpjQ=hN0DhFbBoy+ERg@mail.gmail.com>
References: <CA+cU71m0wpnD1ZYOTtr=oW+1BjquFxyagtMt+wgCgC_PD0PE-g@mail.gmail.com> <CABrd9SQd2RETKQWe9-_KCHufAWjBhs2k008vEz-5cyM_gbY4Qw@mail.gmail.com> <E1812BE0-BD94-4050-95DB-C0483303AFF2@isoc.org> <CABEqWMC=pJUMEn8DxxTn6VTBs9hpayC-ZVUwcGdvg=PEw-Q=Rg@mail.gmail.com> <CALzYgEfsEOyuo9Ez2JqoMJ=WzZ3mFY+eTe6L2F6ZSLJEiVJAJQ@mail.gmail.com> <CA+cU71=YMq3jJhdnv_CqmteUhRnnxYmbpjQ=hN0DhFbBoy+ERg@mail.gmail.com>
Date: Tue, 20 Oct 2015 16:32:28 +0100
Message-ID: <CALzYgEcnW-Gm5jjv3cGj-MTPO9TA2u8sVpuJU8ML8dPi-ynKRA@mail.gmail.com>
From: Eran Messeri <eranm@google.com>
To: Tom Ritter <tom@ritter.vg>
Content-Type: multipart/alternative; boundary="001a114037aa3988e805228af87e"
Archived-At: <http://mailarchive.ietf.org/arch/msg/trans/VelmWyKivq-PG_D2Azv945hoNbQ>
Cc: Katriel Cohn-Gordon <me@katriel.co.uk>, Robin Wilton <wilton@isoc.org>, "trans@ietf.org" <trans@ietf.org>
Subject: Re: [Trans] Gossip: Unsticking a client caught with potential evidence of log misbehavior
X-BeenThere: trans@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Public Notary Transparency working group discussion list <trans.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/trans>, <mailto:trans-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/trans/>
List-Post: <mailto:trans@ietf.org>
List-Help: <mailto:trans-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/trans>, <mailto:trans-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 20 Oct 2015 15:34:36 -0000
On Tue, Oct 20, 2015 at 4:22 PM, Tom Ritter <tom@ritter.vg> wrote: > On 20 October 2015 at 08:46, Eran Messeri <eranm@google.com> wrote: > > +1 for reporting it backed to the alleged origin - the problem Tom > describes > > is significant as the client would want to hold onto these suspicious > pieces > > of information until it is confident it has been reported, but has no > way of > > knowing if the report has been acknowledged by the 'genuine' origin. > > > > One option is to not prescribe when clients drop such pieces of > information, > > so clients are free to re-send it multiple times or even forever, until > an > > out-of-band signal (i.e. a client software update) is received to > indicate > > to the client that this information has been received and acted upon. > > So reporting it back to the origin is an appropriate solution for a > subset of situations. If I have an SCT+certificate I want to resolve > to a STH, but can't, I can report it up to the origin via SCT > Feedback. We also (or will) have guidelines for submitting it > multiple times, and ensuring that it's reported on a connection that > 'looks okay' (we have some notes in 7.1.1) > > There are (at least) two cases that aren't covered by "report it to > the origin". (Maybe more, but I can only think of two right now.) > > - The origin doesn't implement SCT Feedback. > This is a hard one - if a domain operator isn't interested in learning about attacks against their domain, can anything be done about that? My suggestion for this case is to make it easy to delegate SCT Feedback - so domain owners can allow other domains which operate SCT Feedback to receive SCTs on their behalf. How does that sound? > - The data I have is an older STH, which is not tied to any specific > origin. > I think this case is less sensitive from a privacy perspective and so could be gossiped with any servers that do implement SCT Feedback? > > -tom >
- [Trans] Gossip: Unsticking a client caught with p… Tom Ritter
- Re: [Trans] Gossip: Unsticking a client caught wi… Ben Laurie
- Re: [Trans] Gossip: Unsticking a client caught wi… Robin Wilton
- Re: [Trans] Gossip: Unsticking a client caught wi… Katriel Cohn-Gordon
- Re: [Trans] Gossip: Unsticking a client caught wi… Eran Messeri
- Re: [Trans] Gossip: Unsticking a client caught wi… Tom Ritter
- Re: [Trans] Gossip: Unsticking a client caught wi… Eran Messeri
- Re: [Trans] Gossip: Unsticking a client caught wi… Ben Laurie
- Re: [Trans] Gossip: Unsticking a client caught wi… Linus Nordberg
- Re: [Trans] Gossip: Unsticking a client caught wi… Tom Ritter
- Re: [Trans] Gossip: Unsticking a client caught wi… Ben Laurie
- Re: [Trans] Gossip: Unsticking a client caught wi… Ben Laurie
- Re: [Trans] Gossip: Unsticking a client caught wi… Daniel Kahn Gillmor
- Re: [Trans] Gossip: Unsticking a client caught wi… Tom Ritter
- Re: [Trans] Gossip: Unsticking a client caught wi… Ben Laurie
- Re: [Trans] Gossip: Unsticking a client caught wi… Ben Laurie