IETF Logo Mail Archive

Re: [websec] Comments on draft-ietf-websec-key-pinning-06

Chris Palmer <palmer@google.com> Mon, 24 June 2013 21:21 UTC

Return-Path: <palmer@google.com>
X-Original-To: websec@ietfa.amsl.com
Delivered-To: websec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB52921E815B for <websec@ietfa.amsl.com>; Mon, 24 Jun 2013 14:21:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AyVc8tIkpmXL for <websec@ietfa.amsl.com>; Mon, 24 Jun 2013 14:21:34 -0700 (PDT)
Received: from mail-vb0-x22b.google.com (mail-vb0-x22b.google.com [IPv6:2607:f8b0:400c:c02::22b]) by ietfa.amsl.com (Postfix) with ESMTP id 8E35511E8143 for <websec@ietf.org>; Mon, 24 Jun 2013 14:21:33 -0700 (PDT)
Received: by mail-vb0-f43.google.com with SMTP id e12so8744491vbg.16 for <websec@ietf.org>; Mon, 24 Jun 2013 14:21:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=gtVW4vCEVcRW2wBmGLbLgSv2msSNjRYmirp4n+cJSDY=; b=AiMmUy1sN1joMRdxqjMYfpYBIJttE18lIGXYBp5nVipK1QYOgAQsnfe9SeA/B/34Tr Q/VIsEt0OYai4e+lVQ/XJTg8yMXjBH75lubIDMXuL3Uq22SKAU1rab9cCQbNdd6mzqFP KwC5ttvpspuucE7KgnipmBc9AouyokyYulsMxoX1iZGLnfirJg5BKpXUvAPYU5y3zplb btPa+z+nxyU19Sa3sO8YE5sjqVy2SLrtqeSaw3hueUp1rloUtAo3SXeSo4dobIEO4pHs gj8ccHVW9yEn5bodiagHZWktVlnOaLs7T6hSqBWL0SGYEV/gsRZhf/nB0e8KYXiSwR6H eDxw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:x-gm-message-state; bh=gtVW4vCEVcRW2wBmGLbLgSv2msSNjRYmirp4n+cJSDY=; b=ive3MABq3ZwU36Axhwx5HngoFlje8uVwB2oyccVLBoLBXPFmKygso3Yrpo7pPpPn9I S/LZaLdtHr4b6F+2TDC+67VdqVHwvqC7fRH2FutyP1fCsJItZr3n5jvRCUqD43AScG8d Lu/uyU6lQ4rlU7dG9gNROq25OIB3JqHx5pQ45pOZssnOkjNoBztyQzwlXa/AUFY1/JeU V6VRMrgJIRw2bQdlFWO33/eknbnMJ+YeRdLCdv07lF9NNKI3kpnTp8bxsxaE5xfix4Ws KNswCCmfX5rix7dcPraUZvbWHFlSe5ZdGROqg19QTwegXJW6Q1atPiQgvw6m5CKYDYt1 wTKw==
MIME-Version: 1.0
X-Received: by 10.52.228.226 with SMTP id sl2mr10687672vdc.52.1372108889906; Mon, 24 Jun 2013 14:21:29 -0700 (PDT)
Received: by 10.220.3.73 with HTTP; Mon, 24 Jun 2013 14:21:29 -0700 (PDT)
In-Reply-To: <6F2FE5F2-D02C-4B09-A6CA-7C3B63722E34@checkpoint.com>
References: <8c03997da80b4e8da7100491011b8c12@BN1PR03MB039.namprd03.prod.outlook.com> <6F2FE5F2-D02C-4B09-A6CA-7C3B63722E34@checkpoint.com>
Date: Mon, 24 Jun 2013 14:21:29 -0700
Message-ID: <CAOuvq203V8LNjkimfd2m+aTX7-gKr=J62jmUqz-PDQEN6O9Lvg@mail.gmail.com>
From: Chris Palmer <palmer@google.com>
To: Yoav Nir <ynir@checkpoint.com>
Content-Type: text/plain; charset="UTF-8"
X-Gm-Message-State: ALoCoQmpzGY6r/eKbPQUDpORy0l+k6EBAH8JdQmGFuYLqZSn2qFWQUTDEVdIJZQ3oWIX7GkdfhGqyX4/5cJMe4qxDFUoGAGbMnSpMOxkqtGGH2sqBAFqN2VITJANH8zmamfeZEnICEgT2auV+UY2iHJMtYuazazL8oc2U2JuGyeq+kwt/h3SQ2q52pnWUHswRrnrxKxiswzP
Cc: David Matson <dmatson@microsoft.com>, "websec@ietf.org" <websec@ietf.org>
Subject: Re: [websec] Comments on draft-ietf-websec-key-pinning-06
X-BeenThere: websec@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Web Application Security Minus Authentication and Transport <websec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/websec>, <mailto:websec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/websec>
List-Post: <mailto:websec@ietf.org>
List-Help: <mailto:websec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/websec>, <mailto:websec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Jun 2013 21:21:35 -0000

On Sun, Jun 23, 2013 at 12:25 AM, Yoav Nir <ynir@checkpoint.com> wrote:

> As far as I know, this idea was not discussed before. If we were to do this,
> the proper URI for this would be some kind of RFC 5785 URI like
> "/.well-known/pins" or "/.well-known/hpkp".

I think it has been brought up in another forum; Ryan Sleevi will know
better than I.

> Looking at the examples in the key-pinning draft, an HPKP header using SHA-1
> takes just under 120 bytes. Compared to some of the stuff that gets sent in
> HTTP headers (I'm looking at you, user-agent) this is pretty tame.

Not to mention the body. :)

> Moreover,
> the key-pinning header does not have to be sent in every response - it's
> enough to send it once per full TLS handshake.

Actually, we ended up changing that, a while back now. From the current draft:

"""
2.2.1. HTTP-over-Secure-Transport Request Type

   When replying to an HTTP request that was conveyed over a secure
   transport, a Pinned Host SHOULD include in its response exactly one
   PKP header field that MUST satisfy the grammar specified above in
   Section 2.1.  If the Pinned Host does not include the PKP header
   field, and if the connection passed Pin Validation, UAs MUST treat
   the host as if it had set its max-age to 0 (see Section 2.3.1).
"""

In most realistic web application scenarios, even sending an HPKP
header on every response is likely to have negligible impact on
overall application performance. Almost every web application I have
seen has much lower-hanging fruit for performance optimization.

v2.30.2 | Report a Bug | By Email | System Status