Re: [Tsv-art] [dns-privacy] Tsvart last call review of draft-ietf-dprive-dnsoquic-08
Daniel Kahn Gillmor <dkg@fifthhorseman.net> Thu, 27 January 2022 19:03 UTC
Return-Path: <dkg@fifthhorseman.net>
X-Original-To: tsv-art@ietfa.amsl.com
Delivered-To: tsv-art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 09B5F3A0D48; Thu, 27 Jan 2022 11:03:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.306
X-Spam-Level:
X-Spam-Status: No, score=-1.306 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RDNS_NONE=0.793, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=fifthhorseman.net header.b=rmNrjlGB; dkim=pass (2048-bit key) header.d=fifthhorseman.net header.b=EsAOrqou
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ddj98KbuJe-4; Thu, 27 Jan 2022 11:03:19 -0800 (PST)
Received: from che.mayfirst.org (unknown [162.247.75.117]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D9E9D3A03F7; Thu, 27 Jan 2022 11:03:18 -0800 (PST)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019; t=1643310195; h=from : to : cc : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=Kxp9ihpE2MYZJVOX67tovz7licqYLlDtSJjYRZovjqE=; b=rmNrjlGBPXmojc5Mo/oWupgAKP5h7K4WcZGDh8ISJdabHMgNu/q/MoRGL/ZX6lFPLEiYh WCF0Cr90JqnVEjwAw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019rsa; t=1643310195; h=from : to : cc : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=Kxp9ihpE2MYZJVOX67tovz7licqYLlDtSJjYRZovjqE=; b=EsAOrqouIRVU5cLcg6qKAiILQZbJmsvVXfOhpqTwDGoH+CW0Ius2w/mZNRa4+bzYKucN8 MKjSc9oMPm0qTUgCLYxHXrNHwWu+KFXtaOdkpH6ftfCa7ikpfpdJIdO+yd/1OFdJMzqSGoR zVTNDy2wlDfRW3rF93yX7yI+hQ7p4Q82nl68XLrCT78QzgqgwugXkf7PT+p9ON+wmgdJ06H qaMOrkxV0Ui3OJfDyTw92XHxhLlB0h+kaO55unrCxyFqDPi+X7y/2kysa/yPi5HKE/ncBWw zoSNjqO0IBG6cNqgn6cVbYsg7U61GjJFTjCP30dVDMtBUqB9A2uUFTvmi6gw==
Received: from fifthhorseman.net (lair.fifthhorseman.net [108.58.6.98]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by che.mayfirst.org (Postfix) with ESMTPSA id 2B401F9AA; Thu, 27 Jan 2022 14:03:14 -0500 (EST)
Received: by fifthhorseman.net (Postfix, from userid 1000) id AC1D2205AB; Thu, 27 Jan 2022 14:03:10 -0500 (EST)
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: Sara Dickinson <sara@sinodun.com>, Brian Trammell <ietf@trammell.ch>
Cc: draft-ietf-dprive-dnsoquic.all@ietf.org, tsv-art@ietf.org, DNS Privacy Working Group <dns-privacy@ietf.org>, Christian Huitema <huitema@huitema.net>, last-call@ietf.org
In-Reply-To: <E131CF24-A64B-481A-A856-11B83886B154@sinodun.com>
References: <164303671825.29006.13435316265266313857@ietfa.amsl.com> <e81b7117-126a-4557-b020-eb5dbffa775b@huitema.net> <E131CF24-A64B-481A-A856-11B83886B154@sinodun.com>
Autocrypt: addr=dkg@fifthhorseman.net; prefer-encrypt=mutual; keydata= mDMEX+i03xYJKwYBBAHaRw8BAQdACA4xvL/xI5dHedcnkfViyq84doe8zFRid9jW7CC9XBiI0QQf FgoAgwWCX+i03wWJBZ+mAAMLCQcJEOCS6zpcoQ26RxQAAAAAAB4AIHNhbHRAbm90YXRpb25zLnNl cXVvaWEtcGdwLm9yZ/tr8E9NA10HvcAVlSxnox6z62KXCInWjZaiBIlgX6O5AxUKCAKbAQIeARYh BMKfigwB81402BaqXOCS6zpcoQ26AADZHQD/Zx9nc3N2kj13AUsKMr/7zekBtgfSIGB3hRCU74Su G44A/34Yp6IAkndewLxb1WdRSokycnaCVyrk0nb4imeAYyoPtBc8ZGtnQGZpZnRoaG9yc2VtYW4u bmV0PojRBBMWCgCDBYJf6LTfBYkFn6YAAwsJBwkQ4JLrOlyhDbpHFAAAAAAAHgAgc2FsdEBub3Rh dGlvbnMuc2VxdW9pYS1wZ3Aub3JnL0Gwxvypz2tu1IPG+yu1zPjkiZwpscsitwrVvzN3bbADFQoI ApsBAh4BFiEEwp+KDAHzXjTYFqpc4JLrOlyhDboAAPkXAP0Z29z7jW+YzLzPTQML4EQLMbkHOfU4 +s+ki81Czt0WqgD/SJ8RyrqDCtEP8+E4ZSR01ysKqh+MUAsTaJlzZjehiQ24MwRf6LTfFgkrBgEE AdpHDwEBB0DkKHOW2kmqfAK461+acQ49gc2Z6VoXMChRqobGP0ubb4kBiAQYFgoBOgWCX+i03wWJ BZ+mAAkQ4JLrOlyhDbpHFAAAAAAAHgAgc2FsdEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3Jnfvo+ nHoxDwaLaJD8XZuXiaqBNZtIGXIypF1udBBRoc0CmwICHgG+oAQZFgoAbwWCX+i03wkQPp1xc3He VlxHFAAAAAAAHgAgc2FsdEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3JnaheiqE7Pfi3Atb3GGTw+ jFcBGOaobgzEJrhEuFpXREEWIQQttUkcnfDcj0MoY88+nXFzcd5WXAAAvrsBAIJ5sBg8Udocv25N stN/zWOiYpnjjvOjVMLH4fV3pWE1AP9T6hzHz7hRnAA8d01vqoxOlQ3O6cb/kFYAjqx3oMXSBhYh BMKfigwB81402BaqXOCS6zpcoQ26AADX7gD/b83VObe14xrNP8xcltRrBZF5OE1rQSPkMNy+eWpk eCwA/1hxiS8ZxL5/elNjXiWuHXEvUGnRoVj745Vl48sZPVYMuDgEX+i03xIKKwYBBAGXVQEFAQEH QIGex1WZbH6xhUBve5mblScGYU+Y8QJOomXH+rr5tMsMAwEICYjJBBgWCgB7BYJf6LTfBYkFn6YA CRDgkus6XKENukcUAAAAAAAeACBzYWx0QG5vdGF0aW9ucy5zZXF1b2lhLXBncC5vcmcEAx9vTD3b J0SXkhvcRcCr6uIDJwic3KFKxkH1m4QW0QKbDAIeARYhBMKfigwB81402BaqXOCS6zpcoQ26AAAX mwD8CWmukxwskU82RZLMk5fm1wCgMB5z8dA50KLw3rgsCykBAKg1w/Y7XpBS3SlXEegIg1K1e6dR fRxL7Z37WZXoH8AH
Date: Thu, 27 Jan 2022 14:03:09 -0500
Message-ID: <87r18tovbm.fsf@fifthhorseman.net>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsv-art/HfRnP3dm-gbZ7ZmXCoyJ5FhWLR4>
Subject: Re: [Tsv-art] [dns-privacy] Tsvart last call review of draft-ietf-dprive-dnsoquic-08
X-BeenThere: tsv-art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Transport Area Review Team <tsv-art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsv-art/>
List-Post: <mailto:tsv-art@ietf.org>
List-Help: <mailto:tsv-art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsv-art>, <mailto:tsv-art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Jan 2022 19:03:24 -0000
On Thu 2022-01-27 13:17:39 +0000, Sara Dickinson wrote: > I’ve had a first pass at a PR making RFC8467 normative here: > https://github.com/huitema/dnsoquic/pull/143 Modulo a few minor editorial nits (which i've noted on this PR), i support this change as well. Padding defenses are simple, cheap, and a bare minimum for defending the privacy of encrypted DNS queries. > preventing traffic analysis from identifying DoQ is a much longer term > goal (and requires ECH). I also agree that this kind of defense is currently out of reach; we don't only need ECH, we would need to think about the IANA UDP port number registration (853 ≠ 443). We will at some point need to tackle these issues so that the network intermediary isn't able to distinguish categories of network service, but we shouldn't delay this document for that fix. On 1/24/2022 5:05 AM, Brian Trammell via Datatracker wrote: > Further, traffic analysis threats are not limited to packet lengths, > as section 9.5 acknowledges. Is there any equivalent MUST guidance > regarding stream frame timing for traffic analysis resistance that > could be given here? This is a great question, and i am unaware of any work that this draft could point to that would address temporal traffic analysis in a DNS resolution context. I think the first order traffic analysis concerns that would be worth tackling are largely from the responder (server) side -- it gets even more complex if want to address *when* a DNS client should make a given request. In particular, if DoQ is used in authoritative deployments, i'd expect most server responses (served locally from an ingested zonefile) to have roughly the same temporal delay. I could imagine some noticeable temporal differences between "popular" and unpopular records for authoritative servers that do live DNSSEC signing or NSEC5-style proof-of-nonexistence that requires cryptographic work on behalf of the authoritative. From the client side of authoritative DoQ, it's conceivable that some temporal traffic analysis resistance could be gained by thinking about how recursive resolvers can best prefetch to keep their cache hot. But I suspect this is in the realm of "more research needed", and isn't appropriate for this draft. If anyone has any informative pointers that they think are worth including as a nod toward temporal traffic analysis, i'd be interested in reviewing them, but I don't think they should block this draft's progress. --dkg
- [Tsv-art] Tsvart last call review of draft-ietf-d… Brian Trammell via Datatracker
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Christian Huitema
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Sara Dickinson
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Allison Mankin
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Brian Haberman
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Daniel Kahn Gillmor
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Brian Trammell (IETF)
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Allison Mankin
- Re: [Tsv-art] [dns-privacy] Tsvart last call revi… Sara Dickinson