[00:00:06] <Ryan_Lane>	 yep
[00:01:00] <Ryan_Lane>	 we have an open issue for generating random values in the interface: https://github.com/lyft/confidant/issues/3
[00:01:22] <pnathan>	 So the client above: that's a basic tool to pull out a secret then?
[00:01:29] <Ryan_Lane>	 the most basic use-case right now is: I have a secret my service needs. I put it into confidant, an the client pulls the secret from confidant.
[00:01:55] <pnathan>	 Gotcha. Can you elucidate a bit about token lifetimes?
[00:01:59] <Ryan_Lane>	 sure
[00:02:06] <Ryan_Lane>	 we're using KMS for auth
[00:02:27] <pnathan>	 I'm mildly ignorant about KMS, I stared at the docs a while ago and got the basic idea
[00:02:28] <Ryan_Lane>	 KMS lets you encrypt and decrypt. it restricts these actions via IAM policy.
[00:02:44] <pnathan>	 I don't know the nits and grits tho'
[00:02:46] <Ryan_Lane>	 it specifically uses something called encryption context to restrict access
[00:03:02] <Ryan_Lane>	 confidant manages the grants on the auth KMS key for your IAM roles
[00:03:29] <Ryan_Lane>	 it allows each role to use encrypt if the "from" encryption context value matches the IAM role name
[00:03:50] <Ryan_Lane>	 it also allows each role to decrypt if the "to" encryption context value matches its IAM role name
[00:04:19] <Ryan_Lane>	 let's say you have a service, in an autoscale group with iam role: example-production
[00:04:50] <Ryan_Lane>	 it would be able to encrypt something with {"from":"example-production","to":"confidant-production"}
[00:04:57] <Ryan_Lane>	 we'll assume confidant's IAM role is confidant-production
[00:05:23] <Ryan_Lane>	 what it'll encrypt is a validity period. valid_from: x, valid_to: y
[00:05:27] <Ryan_Lane>	 that's the token lifetime
[00:05:50] <pnathan>	 Mhmm
[00:06:01] <Ryan_Lane>	 confidant gets the encrypted payload, decrypts it (passing in the encryption context), and checks the validity period
[00:06:18] <Ryan_Lane>	 if the period is too long it rejects the token
[00:06:26] <Ryan_Lane>	 that's a config option on the server side
[00:06:37] <Ryan_Lane>	 its default is 60 minutes
[00:06:58] <pnathan>	 Ah, this limits replay attack surface, I see.
[00:07:01] <Ryan_Lane>	 yes
[00:07:17] <pnathan>	 OK, so it's not *secret* lifetime, it's *request* token lifetime.
[00:07:18] <Ryan_Lane>	 we have plans on making replay basically impossible, too
[00:07:25] <Ryan_Lane>	 indeed
[00:07:30] <Ryan_Lane>	 the secrets never expire
[00:07:39] <pnathan>	 I was really confused about why the secrets were rotating, it didn't make sense.
[00:08:05] <Ryan_Lane>	 https://github.com/lyft/confidant/issues/5 <-- that's how we can make replay impossible
[00:08:14] <Ryan_Lane>	 you'd be able to replay, but you'd get back encrypted content
[00:08:21] <Ryan_Lane>	 which you wouldn't be able to decrypt
[00:08:47] <Ryan_Lane>	 so, as for security... we're in the middle of getting an external audit
[00:09:04] <Ryan_Lane>	 cryptography.io is relatively new, but it implements the Fernet spec
[00:09:32] <Ryan_Lane>	 we use the implementation without using any primitives
[00:09:57] <Ryan_Lane>	 otherwise confidant itself is relatively simple. it's been reviewed internally by a number of people
[00:10:14] <Ryan_Lane>	 I got feedback from AWS about the use of KMS
[00:10:26] <Ryan_Lane>	 I haven't received any negative feedback security-wise so far from them :)
[00:10:32] <pnathan>	 So... what is Fernet: https://github.com/fernet/spec/blob/master/Spec.md is super unclear about where it came from
[00:10:51] <Ryan_Lane>	 it's an opinionated implementation of AES with HMAC
[00:10:54] <Ryan_Lane>	 and AAD
[00:11:33] <Ryan_Lane>	 the basic idea is that it's a standard way to use AES that's considered safe, without the need to use primitives
[00:11:39] <Ryan_Lane>	 kind of like libnacl
[00:12:12] <pnathan>	 Sure, I see it's a construction of crypto primitives... it just is kind of bare of "and has been reviewed by xyz experts. ;) "
[00:12:13] <Ryan_Lane>	 if you're more comfortable with libnacl, changing out the cipher code is relatively trivial
[00:12:13] <Ryan_Lane>	 :)
[00:12:52] <pnathan>	 (iow, a lack of social proof exists around fernat afaict, despite whether it's mathematically correct)
[00:12:59] <Ryan_Lane>	 ideally we could support both and offer end-users a choice of which to use
[00:13:03] * Ryan_Lane nods
[00:13:17] <Ryan_Lane>	 yeah, it's an issue.
[00:13:27] <pnathan>	 Cryto runs on social proofs, ironically, given the mathematics.
[00:13:27] <Ryan_Lane>	 but it's way better than implementing the crypto directly
[00:13:49] <pnathan>	 Sure, no gripe on that
[00:14:06] <Ryan_Lane>	 I'm surely not opposed to adding support for other cipher suites, though
[00:14:08] <pnathan>	 so the other unpleasant question is "how committed is Lyft to keeping this codebase alive"
[00:14:23] <pnathan>	 some companies dump and run, some companies garden their codebases
[00:14:23] <Ryan_Lane>	 pretty committed. we're using it extensively internally
[00:14:56] <Ryan_Lane>	 I've actually been pushing code into the open source release and backporting into our private version :D
[00:15:10] <pnathan>	 Nice!
[00:15:19] <pnathan>	 I notice there's a CLA around PR acceptance.
[00:15:31] <Ryan_Lane>	 I've run a bunch of open source projects and am pretty opposed to dumping code over the fence
[00:15:56] <Ryan_Lane>	 yeah.... I'm trying to get that changed to a DCO
[00:16:33] <Ryan_Lane>	 permissive licensed projects need either a CLA or a DCO for legal protection
[00:16:46] <Ryan_Lane>	 it's a pain in the ass, but that's life.
[00:17:09] <Ryan_Lane>	 http://elinux.org/Developer_Certificate_Of_Origin (if you aren't familiar with DCOs)
[00:17:17] <pnathan>	 google helped me out there. :)
[00:17:38] <pnathan>	 I was thinking, it'd be nice if I didn't have to go find the VP and get a waiver for a CLA.
[00:18:09] <pnathan>	 So this is extremely useful to know
[00:18:21] <Ryan_Lane>	 well, for now we require a CLA
[00:18:31] <pnathan>	 I'm evaluating secret storage systems and Confidant maps really neatly into the needs we have.
[00:18:36] <Ryan_Lane>	 cool
[00:18:49] <pnathan>	 and also I like Lyft's service! :-)
[00:18:56] <Ryan_Lane>	 even better :)
[18:56:17] <Ryan_Lane>	 @logging-off
[18:56:52] <Ryan_Lane>	 @logoff