IETF Logo Mail Archive

Re: [Uta] ALPN recommendations in draft-ietf-uta-rfc7525bis-01

John R Levine <johnl@taugh.com> Sun, 01 August 2021 17:28 UTC

Return-Path: <johnl@taugh.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 661923A0BEB for <uta@ietfa.amsl.com>; Sun, 1 Aug 2021 10:28:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=iecc.com header.b=smTl3yfp; dkim=pass (2048-bit key) header.d=taugh.com header.b=URzKRdwt
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k5Ei1Yl3FGkw for <uta@ietfa.amsl.com>; Sun, 1 Aug 2021 10:27:55 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3FE763A0BED for <uta@ietf.org>; Sun, 1 Aug 2021 10:27:54 -0700 (PDT)
Received: (qmail 80228 invoked from network); 1 Aug 2021 17:27:52 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=13962.6106d998.k2108; bh=2vt+M+bK3YJI3rc3EKUsJaiF4P3YhMY93GP5SK9n8GE=; b=smTl3yfp/QZW38T7NXi1vKpEUaEn5p+Ec3m++RSv/W+xhGGiECIFsnwaeg9JfuxWP8L29HW6I6LAgYnCTH2SAZJ912Bgd10MxL+/R0LZl42s9wm1su1vM3Xg0bvEHQxomxKJM9KEn+0UgVY2Ga1pIadn1GL5/Xyas4ozIn8whY8vdk0NzJFjatQ5A6/fEweJQCHOMWKSwB9Qw5OAh7GupDXZBBztmq/+sJWz4AIYuewoodLAdr5HXtZZF3zGrZp8/UZIugj49Jv6wjEyJF6rSlLW9kzGyxA0EuBVV6xDfNFZ2PgIqN9Cee/uTcZspRCRjNDbIfyevPCVKHliPf5ySw==
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:subject:in-reply-to:references:mime-version:content-type; s=13962.6106d998.k2108; bh=2vt+M+bK3YJI3rc3EKUsJaiF4P3YhMY93GP5SK9n8GE=; b=URzKRdwt8CUEE6ZukOJ8mthO3goJFp56Ixs2TaxvCh3kFj9i74YbD9suibOaFUGt5vPQ98bh0BRjin63x+JwVplVTLZw3F2ci69FlInbnq/vvXB1eaXOEyrpC7BrHTaaWa07Kgf+yDojGbPGlj5Dk9carkSEeag5+WfjxrLKNfyjVPiApa+wUOoYP53Hf3+olx3mXzLDD5C/VsgrOzNss7qL9FnRUb/npvAbvooLm/vHRpdd8KjZ6/s2RNRGLweHEdUdSvDR4geaAasP2nWP7gGcuz+gMArdczZx8BGCDRubK2IEJwwkF5JuCwzrnv2jaTswznzA3dAFUPv44i58Pg==
Received: from ary.qy ([IPv6:2001:470:1f07:1126::78:696d:6170]) by imap.iecc.com ([IPv6:2001:470:1f07:1126::78:696d:6170]) with ESMTPS (TLS1.2 ECDHE-RSA AES-256-GCM AEAD) via TCP6; 01 Aug 2021 17:27:51 -0000
Received: by ary.qy (Postfix, from userid 501) id E6595256FAB3; Sun, 1 Aug 2021 13:27:50 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1]) by ary.qy (Postfix) with ESMTP id 8990D256FA95; Sun, 1 Aug 2021 13:27:50 -0400 (EDT)
Date: Sun, 01 Aug 2021 13:27:50 -0400
Message-ID: <a12f7ad1-61c8-a6ef-da91-77c86766822c@taugh.com>
From: John R Levine <johnl@taugh.com>
To: Yaron Sheffer <yaronf.ietf@gmail.com>, uta@ietf.org
X-X-Sender: johnl@ary.qy
In-Reply-To: <48B82EAB-D059-4C81-B14D-8D1D10EBB78B@gmail.com>
References: <b7abf0eb-0ba9-4ab9-90df-910a3391a830@beta.fastmail.com> <20210801005846.190B82568BF1@ary.qy> <48B82EAB-D059-4C81-B14D-8D1D10EBB78B@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/cakMdAPWan5GRO_skoS6vX8M3wQ>
Subject: Re: [Uta] ALPN recommendations in draft-ietf-uta-rfc7525bis-01
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 01 Aug 2021 17:28:02 -0000

> This is one way to frame the problem. Another is that TLS is (1) 
> typically only authenticated on the server side and (2) not 
> cryptographically bound to the IP or port, the combination resulting in 
> potential cross-protocol attacks. We as a community (inclusive of all 
> protocols) are trying to mitigate this issue with whatever tools we 
> have.

Noting that as far as I can tell 100% of the targets of ALPACA attacks are 
web browsers, this is a somewhat strained version of community.  I suppose 
it possible someone might concoct an attack on a mail or FTP server but 
since they don't execute the stuff they receive, it'd be a whole lot 
harder.

> Unfortunately I don't think your HTTP-only proposal can work, because in order to "expect" ALPN coming back from the server, a client would need to keep a long-term cache of ALPN-friendly servers. This is much more logic than just checking a received ALPN, either in HTTP or SMTP - which, as far as I can tell, is mostly done inside the TLS library.

Sure it can, you treat any responses from a server without an http ALPN 
with great scepticism.  I realize this will be hard on the long tail of 
web servers, but it does give them an incentive to upgrade, like it did 
when we stopped accepting SSLv3.

To put it another way, why is the solution for every non-web server to 
upgrade, rather than for every web server to upgrade?  I'm not opposed to 
adding ALPNs to other servers when we do routine upgrades, but "you 
urgently have to solve our problem" is not a compelling arguent.

R's,
John

v2.23.0 | Report a Bug | By Email