TAXONOMY: Security considerations

• Next message: William Maggs: "Re: TAXONOMY: Security considerations"
• Previous message: Patrick McManus: "ANNOUNCE: Passive Proximate Mirror Selection - Squid Patches"
• Next in thread: William Maggs: "Re: TAXONOMY: Security considerations"
• Reply: William Maggs: "Re: TAXONOMY: Security considerations"
• Maybe reply: Joe Touch: "Re: TAXONOMY: Security considerations"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

A first outline of security considerations is appended. '
I welcome comments, please cc the list.

As most of the security considerations for HTTP traffic is
covered in HTTP/1.1bis, I do not intend to copy those, but rather to
point to them and emphasis the proxy and replication specific issues.

Ingrid

9. Security Considerations

   [Ed note: more information needed]

   Information on security in each protocol is provided in the
   description of the protocol, and in the accompanying RFC for each
   protocol.

   Refer to section 15 in HTTP/1.1bis
      draft-ietf-http-v11-spec-rev-06.txt

 Man in the middle attacks

   Refer to HTTP/1.1bis, chapter 15.7

   HTTP proxies are men-in-the-middle, the perfect place for a man-in-
   the-middle-attack.

 Denial of service

 Individual protocols

   See documentation for each protocol for discussion of security
   issues.

 Trusted parties

   You need to trust your proxy.

 Stupid configuration

   It is quite easy to have a stupid configuration which will harm
   service for end users.

 Privacy

   Logs from proxies need to be kept secure, as they provide information
   about users and end user patterns. A proxy log is even more
   sensitive than a web server log, as all requests from the user
   population goes through the proxy. Logs from replication servers may
   need to be amalgated to get aggregated statistics from a service,
   transporting logs across borders may have legal implications. Log
   handling is restricted by law in some countries.

   Requirements for object security and privacy are the same in a web
   replication and caching system as it is in the Internet at large.
   The only reliable solution is strong cryptograpy. End to end
   encryption does not neccessarily make objects cacheable, as is the
   case of SSL encrypted web sessions.

   Communication [to be completed]

 Transient copies

   The legislative forces of the world are still out on the question of
   transient copies, like those kept in replication and caching system,
   being legal. Legal implications of replication and caching is
   subject to local law.

• Next message: William Maggs: "Re: TAXONOMY: Security considerations"
• Previous message: Patrick McManus: "ANNOUNCE: Passive Proximate Mirror Selection - Squid Patches"
• Next in thread: William Maggs: "Re: TAXONOMY: Security considerations"
• Reply: William Maggs: "Re: TAXONOMY: Security considerations"
• Maybe reply: Joe Touch: "Re: TAXONOMY: Security considerations"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Nov 18 2004 - 11:21:25 MST