MSC3903: X25519 Elliptic-curve Diffie-Hellman ephemeral for establishing secure channel between two Matrix clients #3903
Conversation
…e channel between two Matrix clients
hughns
changed the title
hughns
changed the title
turt2live
added
proposal
| This proposal introduces yet another key that Matrix client implementations need awareness of. It's also not clear to me | ||
| where exactly this would fit in the spec documents. | ||
|
|
||
| ## Alternatives |
There was a problem hiding this comment.
it sounds like this is duplicating Olm sessions over to-device? Early on in this proposal there should be something to address that.
There was a problem hiding this comment.
Well, no. It's actually that you could achieve this with to-device messaging instead.
There was a problem hiding this comment.
I concur that the feasibility of Olm over MSC3886 should be assessed.
proposals/3903-x25519-ecdhe.md
Outdated
|
|
||
| This means that for AES-GCM implementations that require the authentication tag to be explicitly processed (e.g. CryptoKit on iOS) that it can be sourced from the last 16 bytes of the base64-decoded `ciphertext`. | ||
|
|
||
| **7.** The user should confirm that the established channel is secure by means of a checksum derived from the shared key. |
There was a problem hiding this comment.
This is CRAPPY, HORRIBLE UX! WHY? Why another visual comparison, another “I don't get what should I do now.” moment for users? Matrix already has too much visual comparison in its UX.
You already have a secure channel by means of QR code. Utilize it well, so users don't have to compare checksums.
There was a problem hiding this comment.
The QR code is only secure in the sense that you can be sure that its contents were generated by the device that you're trying to communicate with. But it is not secret, as it is sometimes possible that someone else can scan the QR code as well. So unless you have another step (in this case, a visual comparison) to verify that the other public key was transmitted correctly, you cannot be sure that the channel is secure.
turt2live
added this to Needs idea feedback / initial review
in Spec Core Team Backlog
via automation
turt2live
moved this from Needs idea feedback / initial review
to Proposed for FCP readiness
in Spec Core Team Backlog
|
Like in #3886 (comment) , the author believes this is ready for FCP. The MSC appears to have conflicts with toDevice messaging though, so to get a slightly different review tone I'm putting this in technical review needed. This doesn't mean the MSC isn't ready for FCP, just that the review given should be more useful to handle. @matrix-org/spec-core-team please review this for technical design. |
turt2live
moved this from Proposed for FCP readiness
to Needs idea feedback / initial review
in Spec Core Team Backlog
|
There has been more engagement in the topic of to-device messaging in #3886 so I have consolidated the notes and discussion onto that proposal so that they can be worked through more easily. |
| displayed on both devices for the user to visually verify. | ||
|
|
||
| The checksum should be derived in a similar manner to step **4** above, however | ||
| only 40 bit should be derived this time. The salt and info are the same as before. |
There was a problem hiding this comment.
The info should be different, otherwise the checksum will leak bits of the encryption key. You can prepend the info with checksum|.
There was a problem hiding this comment.
Yep. As it stands, this looks like a gaping hole.
| **1b.** The initiator derives the public key from `privateA` as | ||
| `publicA = scalarMult(privateA, 9)` | ||
|
|
||
| **1c.** The initiator shares it's key with the recipient via a trusted medium |
There was a problem hiding this comment.
| **1c.** The initiator shares it's key with the recipient via a trusted medium | |
| **1c.** The initiator shares its key with the recipient via a trusted medium |
| This proposal introduces yet another key that Matrix client implementations need awareness of. It's also not clear to me | ||
| where exactly this would fit in the spec documents. | ||
|
|
||
| ## Alternatives |
| ## Security considerations | ||
|
|
||
| Algorithm selection and implementation are crucial. | ||
|
|
There was a problem hiding this comment.
I don't think that this protects against replay attacks. That might be OK if the thing built on top of it can detect if a message is replayed (e.g. if messages have a definite order, so a replayed message would be flagged as being out of place), but I think it should be mentioned.
richvdh
removed this from Needs idea feedback / initial review
in Spec Core Team Backlog
| This proposal introduces yet another key that Matrix client implementations need awareness of. It's also not clear to me | ||
| where exactly this would fit in the spec documents. | ||
|
|
||
| ## Alternatives |
| As Diffie-Hellman key agreement is a non-authenticated key-agreement protocol, | ||
| this proposal makes use of a checksum for the user to authenticate the key agreement. | ||
|
|
||
| **1a.** The initiator generates a ephemeral Curve25519 private key `privateA`. |
There was a problem hiding this comment.
nit: please use markdown's built-in numbering/bullet system
| In [MSC3906](https://github.com/matrix-org/matrix-spec-proposals/pull/3906) a | ||
| proposal is made to allow a user to login on a new device using an existing | ||
| device by means of scanning a QR code. | ||
|
|
||
| [MSC3886](https://github.com/matrix-org/matrix-spec-proposals/pull/3886) already | ||
| proposes a simple unsecured rendezvous protocol. | ||
|
|
||
| In this proposal we build a secure layer on top of MSC3886 to allow for trusted | ||
| out-of-bands communication between two Matrix clients. |
There was a problem hiding this comment.
The reference to MSC3906 should be clarified by stating what kind of relationship it has with this MSC.
| In [MSC3906](https://github.com/matrix-org/matrix-spec-proposals/pull/3906) a | |
| proposal is made to allow a user to login on a new device using an existing | |
| device by means of scanning a QR code. | |
| [MSC3886](https://github.com/matrix-org/matrix-spec-proposals/pull/3886) already | |
| proposes a simple unsecured rendezvous protocol. | |
| In this proposal we build a secure layer on top of MSC3886 to allow for trusted | |
| out-of-bands communication between two Matrix clients. | |
| In [MSC3906](https://github.com/matrix-org/matrix-spec-proposals/pull/3906) a | |
| proposal is made to allow a user to login on a new device using an existing | |
| device by means of scanning a QR code, followed by exchanging some messages over | |
| a secure channel. | |
| [MSC3886](https://github.com/matrix-org/matrix-spec-proposals/pull/3886) already | |
| proposes a simple unsecured rendezvous protocol. | |
| In this proposal we build a secure layer on top of MSC3886 to allow for trusted | |
| out-of-bands communication between two Matrix clients, which satisfies the | |
| requirements of MSC3906. |
| The proposal is to use X25519 to agree a shared secret that is then used to | ||
| perform AES. |
There was a problem hiding this comment.
| The proposal is to use X25519 to agree a shared secret that is then used to | |
| perform AES. | |
| The proposal is to use X25519 to agree on a shared secret that is then used to | |
| perform AES. |
| As Diffie-Hellman key agreement is a non-authenticated key-agreement protocol, | ||
| this proposal makes use of a checksum for the user to authenticate the key agreement. | ||
|
|
||
| **1a.** The initiator generates a ephemeral Curve25519 private key `privateA`. |
There was a problem hiding this comment.
| **1a.** The initiator generates a ephemeral Curve25519 private key `privateA`. | |
| **1a.** The initiator generates an ephemeral Curve25519 private key `privateA`. |
| of the curve). | ||
|
|
||
| **2.** The recipient similarly generates a private key `privateB`, derives the | ||
| public key `publicB` and shares is using the same structure of payload: |
There was a problem hiding this comment.
| public key `publicB` and shares is using the same structure of payload: | |
| public key `publicB` and shares it using the same structure of payload: |
| @@ -0,0 +1,157 @@ | |||
| # MSC3903: X25519 Elliptic-curve Diffie-Hellman ephemeral for establishing secure channel between two Matrix clients | |||
| secure by means of a checksum that is shown on both devices. | ||
|
|
||
| If the checksum shown is not the same on both defives then it means that the | ||
| devices have not directly exchanged keys with one another and are subject to a man-in-the-middle. |
There was a problem hiding this comment.
| devices have not directly exchanged keys with one another and are subject to a man-in-the-middle. | |
| devices have not directly exchanged keys with one another and are subject to a | |
| man-in-the-middle attack. |
| displayed on both devices for the user to visually verify. | ||
|
|
||
| The checksum should be derived in a similar manner to step **4** above, however | ||
| only 40 bit should be derived this time. The salt and info are the same as before. |
There was a problem hiding this comment.
Yep. As it stands, this looks like a gaping hole.
|
It is proposed that MSC4108 supersedes this MSC. |
|
Closing this PR as #4108 is now ready for review. |
turt2live
added
the
obsolete
Rendered