Re: bohe and delta experimentation... from Roberto Peon on 2013-01-18 (ietf-http-wg@w3.org from January to March 2013)

From: Roberto Peon <grmocg@gmail.com>
Date: Fri, 18 Jan 2013 11:22:51 -0800
To: Willy Tarreau <w@1wt.eu>
Cc: RUELLAN Herve <Herve.Ruellan@crf.canon.fr>, Nico Williams <nico@cryptonector.com>, Martin J. Dürst <duerst@it.aoyama.ac.jp>, Mark Nottingham <mnot@mnot.net>, James M Snell <jasnell@gmail.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Message-ID: <CAP+FsNfaaA0-eNOn-KiqbFfvQAmqCwUTL7ExA388N8f+WiGk8Q@mail.gmail.com>

Heh. We have more information about what is safe and what is not safe than
that!

Things we have fairly high confidence about w.r.t. CRIME:
  Partial-text matches are unsafe for any potentially sensitive field.
  Full-atom matches are safe for any field, including those with
potentially sensitive information.
  Dynamic entropy-coding, where the code-tables change based on input is
unsafe
  Static entropy-coding, where the code-tables have no relation to user
input is safe.

-=R

On Fri, Jan 18, 2013 at 10:18 AM, Willy Tarreau <w@1wt.eu> wrote:

> Hi Roberto,
>
> On Fri, Jan 18, 2013 at 09:22:11AM -0800, Roberto Peon wrote:
> > This makes URLs vulnerable to the CRIME attack, and URLs definitely do
> > contain sensitive information often :(
> >
> > This is true for anything which allows partial matches (I just can't
> figure
> > out how date could be sensitive, but if it could, even the encoding
> > suggested earlier by me would be dangerous).
> >
> > I dropped exactly this (prefix match) functionality from delta early on
> > because of this.
>
> If we consider that anything is sensible to the CRIME attack, then we need
> to go fully stateless I guess, otherwise it will be too hard to find out
> what is safe to reuse and what is risky :-/
>
> Willy
>
>

Received on Friday, 18 January 2013 19:23:19 UTC