Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Enhance worker connection security #1641

Merged
merged 4 commits into from
Oct 28, 2021
Merged

Enhance worker connection security #1641

merged 4 commits into from
Oct 28, 2021

Conversation

jefferai
Copy link
Member

This stores worker connection nonces within the database to ensure
uniqueness of connections. Prior the connection required any attacker to
be able to decrypt the incoming encrypted authentication message in
order to replay (and if the attacker has access to the KMS you have
bigger problems), but with this change even if an attacker does have
access to the KMS key, they cannot reuse the same message. (If they're
able to encrypt against the KMS key, they can still act as a worker with
a new message, so this only really helps if they only have decryption
capabilities.)

@jefferai jefferai added this to the 0.6.3 milestone Oct 26, 2021
@jefferai
Enhance worker connection security
b99a0f6 
This stores worker connection nonces within the database to ensure
uniqueness of connections. Prior the connection required any attacker to
be able to decrypt the incoming encrypted authentication message in
order to replay (and if the attacker has access to the KMS you have
bigger problems), but with this change even if an attacker does have
access to the KMS key, they cannot reuse the same message. (If they're
able to encrypt against the KMS key, they can still act as a worker with
a new message, so this only really helps if they only have decryption
capabilities.)
@jefferai jefferai force-pushed the jeff-enhance-worker-replay-prevention branch from 554c674 to b99a0f6 Compare October 26, 2021 20:26
@jefferai @mgaffney
Update internal/db/schema/migrations/oss/postgres/18/01_nonce.up.sql
1e1d1e5 
Co-authored-by: Michael Gaffney <mgaffney@users.noreply.github.com>
@jefferai jefferai merged commit 1782f6a into main Oct 28, 2021
@jefferai jefferai deleted the jeff-enhance-worker-replay-prevention branch October 28, 2021 00:32
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@mgaffney mgaffney mgaffney approved these changes

@jimlambrt jimlambrt jimlambrt approved these changes

Assignees
No one assigned
Labels
core/db core/servers core/sql core docs/concepts website
Projects
None yet
Milestone
0.6.3
Development

Successfully merging this pull request may close these issues.
3 participants
@jefferai @mgaffney @jimlambrt