- From: Mike Bishop <Michael.Bishop@microsoft.com>
- Date: Mon, 18 Jul 2016 08:51:16 +0000
- To: Martin Thomson <martin.thomson@gmail.com>, Eric Rescorla <ekr@rtfm.com>
- CC: HTTP Working Group <ietf-http-wg@w3.org>
If you clear the cache, it's simple. If you want to keep your cache intact but only discard tracking properties, that's more complicated. At that point, you either have to tag resources in the cache so that they're excluded from the digest (pretending you don't have the resource), or change properties such that the server can't identify the resources from before. I understand EKR's point to be that the latter option doesn't really work, because the server can necessarily recalculate around any change the client can make. Are you proposing that the cache be cleared whenever cookies are cleared? -----Original Message----- From: Martin Thomson [mailto:martin.thomson@gmail.com] Sent: Monday, July 18, 2016 10:30 AM To: Eric Rescorla <ekr@rtfm.com> Cc: HTTP Working Group <ietf-http-wg@w3.org> Subject: Re: Clearing cache digests Why are we concerned about this at all? Can't we put this stuff into the same bucket as cookies? On 18 July 2016 at 08:31, Eric Rescorla <ekr@rtfm.com> wrote: > The draft says: > > As a result, clients MUST mitigate for this threat when the user > attempts to remove identifiers (e.g., "clearing cookies"). This > could be achieved in a number of ways; for example: by clearing the > cache, by changing one or both of N and P, or by adding new, > synthetic entries to the digest to change its contents. > > TODO: discuss how effective the suggested mitigations actually would > be. > > Except for "clearing the cache", my initial impression is that the > answer to "how effective" is "not very", except for very naive uses of > the cache as an identifier. > > Consider that the general structure of this mechanism is that the > client gives the server an oracle which answers the question "do you > have document X" with false positive rate 2^-P. This implies that the > server can use the cache as a cookie B of length N bits by creating N resources R_1, R_1 ... > R_N and then to store the cookie: > > - If B_i == 1 then store R_i > - Otherwise don't > > You then query for the cookie in the cache the same way. This has an > epsilon error probability but you can correct for that by storing N + > delta bits and using an error correcting code. > > So, my claim is that any mechanism that retains the information in the > cache digest will allow for tracking, even if you change the way it is > encoded (e.g., changing N, P). > > -Ekr > >
Received on Monday, 18 July 2016 08:51:46 UTC