Page MenuHomePhabricator

Security model for session storage service
Open, NormalPublic

Description

We need to establish the security features that make sense for a session storage service, and implement them accordingly (i.e. encryption, access lists, client/server certification verification).

Event Timeline

Eevans created this task.Nov 8 2018, 8:48 PM
Eevans triaged this task as Normal priority.
Eevans added a subscriber: Joe.Feb 11 2019, 7:23 PM

To summarize a (IRC) discussion w/ @Joe today:

  • We most definitely need to TLS encrypt HTTP connections
  • With TLS encryption in place, a certificate trust chain would likely suffice for authentication
  • The use of HTTP basic auth could also work, so long as the Authorization header is encrypted over the wire (see above)
  • A certificate trust chain would technically be more secure, but imposes a significant maintenance burden (maintaining a CA, and (re)issuing signed certs)

Any input from the Security-Team here would be appreciated.

sbassett added a subscriber: sbassett.EditedFeb 12 2019, 4:35 PM

@Eevans, @Clarakosi - just booked a quick hangout with the Security-Team for this Friday (2/15) to discuss potential security concerns for this service.

Change 490106 had a related patch set uploaded (by Eevans; owner: Eevans):
[mediawiki/services/kask@master] Cassandra client encryption

https://gerrit.wikimedia.org/r/490106

Change 490106 merged by Clarakosi:
[mediawiki/services/kask@master] Cassandra client encryption

https://gerrit.wikimedia.org/r/490106

Change 490332 had a related patch set uploaded (by Eevans; owner: Eevans):
[mediawiki/services/kask@master] Cassandra client authentication

https://gerrit.wikimedia.org/r/490332

Change 490332 merged by Clarakosi:
[mediawiki/services/kask@master] Cassandra client authentication

https://gerrit.wikimedia.org/r/490332

Change 491862 had a related patch set uploaded (by Clarakosi; owner: Clarakosi):
[mediawiki/services/kask@master] Kask TLS configuration

https://gerrit.wikimedia.org/r/491862

Change 491862 merged by Eevans:
[mediawiki/services/kask@master] Kask TLS configuration

https://gerrit.wikimedia.org/r/491862