docs: specify how caching CMM should handle max plaintext length in Get Encryption Materials #159
Conversation
…t Encryption Materials
alex-chew
requested review from
mattsb42-aws and
lavaleri
and removed request for
mattsb42-aws
alex-chew
force-pushed
the
caching-cmm-max-plaintext-length
branch
2 times, most recently
from
43c69f3 to
7c824aa
Compare
alex-chew
changed the title
| and caches the materials that it receives. | ||
| If a later Get Encryption Materials operation fetches those materials from the cache, | ||
| but has a `max plaintext length` value that exceeds `N`, | ||
| then the caching CMM returns those materials unsafely. |
There was a problem hiding this comment.
What do we mean by "unsafely"? We should say exactly what we mean here. By passing N to the underlying CMM, this CMM is signaling to the underlying CMM that it intends to only use the returned materials to encrypt up to N bytes. By then reusing those materials such that when it reuses the materials it encrypts plaintext with length exceeding N, this CMM is violating it's previous intent. This violation is why this supposed approach is bad.
There was a problem hiding this comment.
Is there an edge case here is 2 CMMs share a CMC (and entries via partitions) but have different max bytes?
If I'm right, is this something to worry about? I don't think that the byte limit passed to the CMM is include in the entry, perhaps it should?
Say:
CMM A max bytes = 100K
CMM B max bytes = 200K
CMM A puts in an entry but then will never touch it again.
CMM B will use the entry to exhaustion.
There was a problem hiding this comment.
@lavaleri thanks, I've incorporated your wording to clarify the explanation.
After a discussion with @lavaleri, @seebees, and @mattsb42-aws offline, we think that the edge case that @seebees described requires more thought to resolve properly, and doing so may require changes to other parts of this PR. So we are moving the PR to a later milestone.
framework/caching-cmm.md
Outdated
| | Python | 0.1.0-preview | 1.3.0 | [materials_managers/caching.py](https://github.com/aws/aws-encryption-sdk-python/blob/master/src/aws_encryption_sdk/materials_managers/caching.py) | | ||
| | Java | 0.1.0-preview | 1.3.0 | [CachingCryptoMaterialsManager.java](https://github.com/aws/aws-encryption-sdk-java/blob/master/src/main/java/com/amazonaws/encryptionsdk/caching/CachingCryptoMaterialsManager.java) | |
There was a problem hiding this comment.
To make sure I understand this, is 1.3.0 the version of the ESDK? So Python and Java are on 1.3.0 while C and JS are both on 0.1.0?
There was a problem hiding this comment.
As I understand it, these lines state that the Python ESDK version 1.3.0 is the minimum version that is confirmed to be compatible with spec version 0.1.0-preview, and likewise for the Java ESDK. Similarly, the C ESDK version 0.1.0 is the minimum version that is confirmed to be compatible with spec 0.1.0-preview, and likewise for the JS ESDKs.
|
Quick follow up. Make sure not-grep and prettier both work. I suspect they're pending because of the force-push. |
| and caches the materials that it receives. | ||
| If a later Get Encryption Materials operation fetches those materials from the cache, | ||
| but has a `max plaintext length` value that exceeds `N`, | ||
| then the caching CMM returns those materials unsafely. |
There was a problem hiding this comment.
Is there an edge case here is 2 CMMs share a CMC (and entries via partitions) but have different max bytes?
If I'm right, is this something to worry about? I don't think that the byte limit passed to the CMM is include in the entry, perhaps it should?
Say:
CMM A max bytes = 100K
CMM B max bytes = 200K
CMM A puts in an entry but then will never touch it again.
CMM B will use the entry to exhaustion.
| This change will break any customer use case | ||
| that depends on the Caching CMM passing no `max plaintext length` parameter | ||
| to the underlying CMM on Get Encryption Materials calls. |
There was a problem hiding this comment.
This is a good call-out, but you don't actually mention anywhere that this is what implementations currently do.
|
|
||
| ## Security Implications | ||
|
|
||
| This change SHOULD NOT have any security implications. |
There was a problem hiding this comment.
Because our current implementations do not pass a max plaintext length value to the underlying CMM, and this is changing to now pass the byte limit value instead, the security implications for the value received from the underlying CMM are changing. This is both a security and operational change, as the underlying CMM could be making security decisions based on the max plaintext length value (or absence); for example if it is another caching CMM.
| ## Guide-level Explanation | ||
|
|
||
| When making a Get Encryption Materials call to the caching CMM, | ||
| the user may optionally specify a value for the `max plaintext length` parameter, |
There was a problem hiding this comment.
| the user may optionally specify a value for the `max plaintext length` parameter, | |
| the user MAY optionally specify a value for the `max plaintext length` parameter, |
| If the user does not specify a `max plaintext length` value, | ||
| then the caching CMM will neither use cached materials | ||
| nor cache materials from its underlying CMM. |
There was a problem hiding this comment.
I think we can simplify this to say something along the lines of "the caching CMM will pass through to the underlying CMM without involving the cache".
| So whenever the user can determine an appropriate upper bound for bytes they will encrypt, | ||
| they should specify the `max plaintext length` value. |
There was a problem hiding this comment.
| So whenever the user can determine an appropriate upper bound for bytes they will encrypt, | |
| they should specify the `max plaintext length` value. | |
| If the user can determine an appropriate upper bound for bytes they will encrypt, | |
| they SHOULD specify the `max plaintext length` value. |
| If the user customizes the underlying CMM of a caching CMM, | ||
| then whenever the caching CMM makes a Get Encryption Materials call | ||
| to the customized underlying CMM, | ||
| the Encryption Materials Request will have a `max plaintext length` value | ||
| equal to the `byte limit` value configured on the caching CMM. |
There was a problem hiding this comment.
What does "customizes the underlying CMM" mean in this case? This statement is true regardless of what underlying CMM you use.
Issue #, if available: #80 and #81
Description of changes:
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.