Re: [arch-d] Chaff in protocols
Guntur Wiseno Putra <gsenopu@gmail.com> Wed, 17 July 2019 06:31 UTC
Return-Path: <gsenopu@gmail.com>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 95A7F12006D for <architecture-discuss@ietfa.amsl.com>; Tue, 16 Jul 2019 23:31:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.737
X-Spam-Level:
X-Spam-Status: No, score=-1.737 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTML_OBFUSCATE_05_10=0.26, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LHk0jFQDLAp4 for <architecture-discuss@ietfa.amsl.com>; Tue, 16 Jul 2019 23:31:38 -0700 (PDT)
Received: from mail-ot1-x329.google.com (mail-ot1-x329.google.com [IPv6:2607:f8b0:4864:20::329]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 91F23120176 for <architecture-discuss@ietf.org>; Tue, 16 Jul 2019 23:31:34 -0700 (PDT)
Received: by mail-ot1-x329.google.com with SMTP id n5so23852545otk.1 for <architecture-discuss@ietf.org>; Tue, 16 Jul 2019 23:31:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=fi+UQ1BOzlXKj86vTmRM5cI4HgXR5onyesoSYm9q2lM=; b=OoHW5fkE08m156W8KrvaZ6RFJu1qJZe+Udo5U+z8ZfZT05msp6t26+Nte6Z1saUXLl yMaFejZ3ysiH6WKjRIlaFc5k3kvEtteFWodaolonaSUjN0HFRw9LtNDv8wc+vkBiYs9l YSC04NXLU083gOuiRwbW9bsWMx0g4pb5sJwso7cBOOaJeUl5fKSwEOdhHjd8PqYt7hW0 NDt5Pmw0IcbEEVQb33QN75gLe9UFSeV416E/FGM7uHCG31a+ynM4F3L/oZdxG8cdfnBw U1JxEL6miw+xXIlSRNDv+Lf9bCVOtwl1kvV0Mw3dq18JG1EzGTE6671caUC3FhR26XLM nH/Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=fi+UQ1BOzlXKj86vTmRM5cI4HgXR5onyesoSYm9q2lM=; b=rJnMvoN22lWZySA4h0kBHzKykRvqqAo1H3ZdvE2NS/jlHhIosFQzkjMlE67HHuJiRx +PhlOltga8yAuPhnYHG70ni8IdyYwoCjMJyb+/8loMZbXW8CzjyHBaJq8Y1UCQoIP8vO B7oskSSHLW2AZIRR87N1ISNld9AycznPmhmSHYLN+R3hYI9kPIO5WdHQRssCiUnpy/zd xIfD5WwlsvMbsKc/rHvZTdJobYkDJIyhXCCYwlcGhNZaGS/JsQqz5u4CWnkiCfECecez 49/BOQJw1bwuE6LJfiSEwW2X93dS/0WNNQZSNDfKX+9dzMc8nEWEpMAUy+2gTd+F6ZI7 V3hA==
X-Gm-Message-State: APjAAAWLIf5ifhhVIVIwGQqmIR6OG+CX98RCT/kFNe0Ql+DVBkQiY7Fe EE9Kz34+lHitYB+EZ7zRwnO3WjbLi/hnH03pR1k=
X-Google-Smtp-Source: APXvYqxT8SbKsmscVxzZ1BfwNa2v9vNU7kfT3vtSLDrAVUl4RZV7/9GwaW+flM/QjgAW7i2HQcMSqbSlu5Bfk+WUUls=
X-Received: by 2002:a05:6830:12c7:: with SMTP id a7mr27374282otq.284.1563345093956; Tue, 16 Jul 2019 23:31:33 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a9d:30d1:0:0:0:0:0 with HTTP; Tue, 16 Jul 2019 23:31:33 -0700 (PDT)
In-Reply-To: <5d84a5a6-41b7-d302-607b-0b0cd7ec554c@gmail.com>
References: <a33aad56-7ca9-4913-98a7-dd96113815e7@www.fastmail.com> <CANMZLAbfkh+cNanqBExWOe=O6TspnufCnQKt=CF_aK__xDC3Mg@mail.gmail.com> <5d84a5a6-41b7-d302-607b-0b0cd7ec554c@gmail.com>
From: Guntur Wiseno Putra <gsenopu@gmail.com>
Date: Wed, 17 Jul 2019 13:31:33 +0700
Message-ID: <CAKi_AEtkDjLmpd6=bxiX9nCLf6FjaMp-DpdMydONxtMjyHtN8w@mail.gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Cc: Martin Thomson <mt@lowentropy.net>, "architecture-discuss@ietf.org" <architecture-discuss@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000fc9a94058ddaa408"
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/w7lVqDqe9EuLF7oAprLzIIxgbbU>
Subject: Re: [arch-d] Chaff in protocols
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jul 2019 06:31:42 -0000
Dear architecture-disxuss, If it makes an interest: The concept of "grease" mentioned in the earlier messages regarded with situations of protocols --their possibilities, their directions/paths --in relation with extensions, thus with changed systems. In such a matter I find this paper proposed an initiative for situations of protocols --which was about a practice having a potential to generate additional value of systems already operating: 1. arXiv:1011.5739 <https://arxiv.org/abs/1011.5739> cs.IT cs.NI Protocol Coding through Reordering of User Resources: Applications and Capacity Results Authors: Petar Popovski <https://arxiv.org/search/?searchtype=author&query=Popovski%2C+P>, Zoran Utkovski <https://arxiv.org/search/?searchtype=author&query=Utkovski%2C+Z> Abstract: While there are continuous efforts to introduce new communicationsystems and standards, it is legitimate to ask the question: how can one send additional bits by minimally changing the systems that are already operating? This is of a significant practical interest, since it has a potential to generate additional value of the systems through, for example, introduction of new devices and only a software update of the access points or base stations, without incurring additional cost for infrastructure hardware installation. The place to look for such an opportunity is the communication protocol and we use the term *protocol coding* to refer to strategies for sending information by using the degrees of freedom available when one needs to decide the actions taken by a particular communication protocol. In this paper we consider protocol coding that gives a rise to *secondary communication channels*, defined by combinatorial ordering of the user resources (packets, channels) in a primary (legacy) communication system... Submitted 1 February, 2012; v1 submitted 26 November, 2010; originally announced November 2010. Comments: Replaced with a two-part paper Regard, Guntur Wiseno Putra Pada Minggu, 30 Juni 2019, Brian E Carpenter <brian.e.carpenter@gmail.com> menulis: > On 27-Jun-19 16:13, Martin Thomson wrote: > > > Esteemed colleagues, > > > > The IAB is looking for historical examples of deliberate additions to > > a protocol that are added not to enable new behaviour, but to test > > that the ability to do so remains viable. > > > > This comes up in the context of assessing the concept of "grease" (see > > draft-ietf-tls-grease), a practice of adding meaningless extension > > points to messages in the hope that it will reveal, and perhaps > > prevent, intolerance toward real extensions. This is a practice we > > have seen deployed with some success in TLS. That has produced some > > enthusiasm about the practice. I think that it would be fair to say > > that the IAB maintains some reservations about the general > > applicability of the technique. > > > > Are there protocols (in either specification or deployment) that have > > experimented with this sort of thing in the past? > > This isn't exactly what you're describing, but > https://tools.ietf.org/html/rfc7872 (Observations on the Dropping of > Packets with IPv6 Extension Headers in the Real World) seems relevant. > IMHO, IPv6 extension headers are an *unintentional* form of chaff by their > design. > > Recent proposals for piggy-backed OAM options seem to be continue this. > See draft-ioametal-ippm-6man-ioam-ipv6-options, > draft-ioametal-ippm-6man-ioam-ipv6-deployment. > "In order for IOAM to work in IPv6 networks, IOAM MUST be explicitly > enabled per interface on every node within the IOAM domain. Unless a > particular interface is explicitly enabled (i.e. explicitly > configured) for IOAM, a router MUST drop packets which contain > extension headers carrying IOAM data-fields." > > Whoops, there's another limited domain protocol. All limited domain > protocols become potential chaff outside their domain. > > Apart from that, I wonder whether you don't need to dive into the history > of formal OSI conformance testing to find examples. All I recall personally > is a converse example: the anecdote of an OSI TP4 implementation that > passed a conformance test with flying colours because whatever it received, > it sent back a RESET, which according to the standard was allowed at any > time. No doubt it would still have passed even in the presence of undefined > extensions. > > Brian > > > > > The concept of fuzzing software isn't new (see > > https://en.wikipedia.org/wiki/Fuzzing) and testing for resilience to > > unusual behaviour is similarly well-established (e.g., > > https://github.com/Netflix/chaosmonkey). But are there cases of this > > in network protocols prior to its use in TLS? > > > > Regards, > > Martin > > > > _______________________________________________ > > Architecture-discuss mailing list > > Architecture-discuss@ietf.org > > https://www.ietf.org/mailman/listinfo/architecture-discuss > > > > _______________________________________________ > Architecture-discuss mailing list > Architecture-discuss@ietf.org > https://www.ietf.org/mailman/listinfo/architecture-discuss >
- [arch-d] Chaff in protocols Martin Thomson
- Re: [arch-d] Chaff in protocols Brian E Carpenter
- Re: [arch-d] Chaff in protocols Guntur Wiseno Putra
- Re: [arch-d] Chaff in protocols Guntur Wiseno Putra
- [arch-d] Chaff in protocols Guntur Wiseno Putra