Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Talk about padding-by-reserved-streams a little more #4233

Merged
merged 1 commit into from Oct 20, 2020
Merged

Talk about padding-by-reserved-streams a little more #4233

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
25 changes: 17 additions & 8 deletions draft-ietf-quic-http.md
View file
Open in desktop
Expand Up @@ -1916,19 +1916,28 @@ in {{frame-reserved}} and {{stream-grease}}. These methods of padding produce
different results in terms of the granularity of padding, how padding is
arranged in relation to the information that is being protected, whether padding
is applied in the case of packet loss, and how an implementation might control
padding. Redundant padding could even be counterproductive.
padding.

Reserved stream types can be used to give the appearance of sending traffic even
when the connection is idle. Because HTTP traffic often occurs in bursts,
apparent traffic can be used to obscure the timing or duration of such bursts,
even to the point of appearing to send a constant stream of data. However, as
such traffic is still flow controlled by the receiver, a failure to promptly
drain such streams and provide additional flow control credit can limit the
sender's ability to send real traffic.

To mitigate attacks that rely on compression, disabling or limiting compression
might be preferable to padding as a countermeasure.

Use of padding can result in less protection than might seem immediately
MikeBishop marked this conversation as resolved.
Show resolved Hide resolved
obvious. At best, padding only makes it more difficult for an attacker to infer
length information by increasing the number of frames an attacker has to
observe. Incorrectly implemented padding schemes can be easily defeated. In
particular, randomized padding with a predictable distribution provides very
little protection; similarly, padding payloads to a fixed size exposes
information as payload sizes cross the fixed-sized boundary, which could be
possible if an attacker can control plaintext.
obvious. Redundant padding could even be counterproductive. At best, padding
only makes it more difficult for an attacker to infer length information by
increasing the number of frames an attacker has to observe. Incorrectly
implemented padding schemes can be easily defeated. In particular, randomized
padding with a predictable distribution provides very little protection;
similarly, padding payloads to a fixed size exposes information as payload sizes
cross the fixed-sized boundary, which could be possible if an attacker can
control plaintext.

## Frame Parsing

Expand Down