Skip to content

Enable stateless reset token key rotation #1720

New issue
New issue
Closed
Task
Closed
Enable stateless reset token key rotation#1720
Task
Labels
Area: CoreRelated to the shared, core protocol logicArea: SecurityRelated to security or quality testing
Milestone
Future
@anrossi

Description

@anrossi
anrossi
opened on Jun 15, 2021

The stateless reset token key is used for the lifetime of the MsQuic server process. It would be better security hygiene if the stateless reset token key were rotated on an interval (hourly?). One complication with this is it forces all connections active on the server to need a new CID with the new stateless reset token key.
One potential design could encode which stateless reset token key to use in a given CID and then generate the stateless reset token key from a base key and the identifying number in the CID. Either with iterations of a hash function over the base key, or concatenation.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Area: CoreRelated to the shared, core protocol logicArea: SecurityRelated to security or quality testing

    Type

    Task

    Projects

    MsQuic Walkthroughs

    Status

    Should be written
    DPT Iteration Tracker

    Status

    Done

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions