Re: [xmpp] WGLC of draft-ietf-xmpp-websocket-02

[Ben Campbell <ben@nostrum.com>]

On Apr 22, 2014, at 6:29 PM, Lance Stout <lance@andyet.net> wrote:

> 
> On Apr 22, 2014, at 2:49 PM, Ben Campbell <ben@nostrum.com> wrote:
>> 
>> The WGLC has completed. Authors, please let the list know when you believe all feedback has been addressed. (Note: "addressed" does not necessarily mean "accepted".)
> 
> Draft -06 has been published, which I believe addresses all feedback so far.
> 
> 
> I note there is a pending question on connection managers, but I don't believe that the use of a connection manager affects any of the actions prescribed in the latest document. CMs should be transparent.
> 
> 
> We do have Security Considerations listed in XEP-0124 for BOSH connection managers, which amount to 'use TLS from the CM to the backend', and 'use e2e encryption on the client' because guaranteeing anything about a CM's behaviour is beyond scope. I can expand the Security Considerations for this document to do the same, if people deem that necessary.

So here's the basis of all of my connection manager questions. This may be based on a completely wrong understanding of connection managers on my part, so do not hesitate to tell me I am clueless if that's the case. :-)

If an XMPP implementation, especially a server, is behind a connection manager, is it aware of that fact? Is it assumed to implement this draft? Are we requiring special behavior of the server, without the server knowing it needs to do it?

If the answer is yes, then I may have concerns in two areas:

1) Is the connection manager expected to "adapt" server behavior to follow this draft?

2) What is the impact of adding a new TLS intermediary, when the server expects a direct SA with the client? Your comment above _might_ be sufficient, but is there any plain vanilla XMPP server behavior and/or security assumptions that break down? Any concerns from a SASL perspective?