Re: [dnssd] Web Proxy Discovery on IoT/Matter
Ted Lemon <mellon@fugue.com> Fri, 01 December 2023 19:47 UTC
Return-Path: <mellon@fugue.com>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8CFFAC14F5EF for <dnssd@ietfa.amsl.com>; Fri, 1 Dec 2023 11:47:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.905
X-Spam-Level:
X-Spam-Status: No, score=-6.905 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20230601.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wSrRFisquFYt for <dnssd@ietfa.amsl.com>; Fri, 1 Dec 2023 11:47:32 -0800 (PST)
Received: from mail-qv1-xf2e.google.com (mail-qv1-xf2e.google.com [IPv6:2607:f8b0:4864:20::f2e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4E715C14F5EC for <dnssd@ietf.org>; Fri, 1 Dec 2023 11:47:31 -0800 (PST)
Received: by mail-qv1-xf2e.google.com with SMTP id 6a1803df08f44-67a894ccb4eso10824356d6.3 for <dnssd@ietf.org>; Fri, 01 Dec 2023 11:47:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20230601.gappssmtp.com; s=20230601; t=1701460051; x=1702064851; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=KOi3oW4N2AlSeNuxGADKMgC/vtVmJNSPv1GOvLNsum8=; b=rvfJC4tGGVCJvRwEiYg68qYzX0MW6EFjsUt4leMJK+0eEtURukjfnzsbC1ijhFVo3u PpQVmWjPddn7beZVZV0t0ad/ASaoBqpTdQ0oh2uPPXFy9CnmsgxkuWt9BhGING9o04TQ eCdiMsJDNSkJ6fbi6cfenOhujbV4EpQ+PUHp1QIJoCl2Gb84Mn62myp71ZjgXo8R+xiI CwM4Zl+C7rww1/sbC99kYaJuMq/KMRi7zCAN5iisCK9vivRt14qMnsnj9Pa+ztSV9OAF 5AZmVs3ssedfZsWS+0MD7BmAsjQWmM3aakgsVDZgVWflH4tQ1Yk1uXQ8CnVYLXDym8fb YVVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1701460051; x=1702064851; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=KOi3oW4N2AlSeNuxGADKMgC/vtVmJNSPv1GOvLNsum8=; b=YAkPQw/ZhBHVzc5zGs6HsxnGmAZmwx9jV2bo9QxEaLARXJ5QTSUZmC7dLUzRn66qg/ KwROtjZHdp3h2Yjf/l/0yB12OUkVsqYA3vMntrBKTuKBRTLjfKOF7ZnY254SKzXkbPLa 8qwGc/f9GCIhYDz4ZMPjzZ7VxXYJSUA9TokUpDdM4wtJEwYIsDFtipQ+hT8L+gGZMQ0l AMH+pPJqp1fpDlUA0hvmHO2pXMQ8CMooIlEazyQ/prqmHEnUoK8vOQJ4m8GBTrtBc6+Y 9HyhW+yGGLpNkmYQr/TKbCGiO/fEW2ZZrBYECbvKIwguqmf5ao6RmOzij85Tz52rlZT2 U5JQ==
X-Gm-Message-State: AOJu0Yyei47eoRcJz54TJ+KoRMvAf9sneR7gTkuQC6CK3iUFR+iSzLj1 ZimiLonqbRjDQIEMx0Baf7Bxe5k2An4yivofpj3pHg==
X-Google-Smtp-Source: AGHT+IG7e2jx+voWR54RGt2XX6KA54nlR1v+NDjL38vmz60jlcYrCM2kQKpribcZtZ8kau2N0fXZIb/PNp2a4zwqRR4=
X-Received: by 2002:a05:6214:21ec:b0:67a:4a8f:945d with SMTP id p12-20020a05621421ec00b0067a4a8f945dmr46859qvj.46.1701460050741; Fri, 01 Dec 2023 11:47:30 -0800 (PST)
MIME-Version: 1.0
References: <CAF3KT4Sg7Ky8h4tMqm3bLvOV485R-wRs=2zVTDqaPM6g-77dDw@mail.gmail.com>
In-Reply-To: <CAF3KT4Sg7Ky8h4tMqm3bLvOV485R-wRs=2zVTDqaPM6g-77dDw@mail.gmail.com>
From: Ted Lemon <mellon@fugue.com>
Date: Fri, 01 Dec 2023 14:46:54 -0500
Message-ID: <CAPt1N1mODYxC3H9GCrNfZu9+SjtQnyozneQ6ux5M=c3TKaLO3Q@mail.gmail.com>
To: Josh Cohen <joshco@gmail.com>
Cc: dnssd@ietf.org
Content-Type: multipart/alternative; boundary="000000000000eca232060b7809f3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnssd/wiAdnyyfcL03R1efhfH55MOw7TA>
Subject: Re: [dnssd] Web Proxy Discovery on IoT/Matter
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Discussion of extensions to DNS-based service discovery for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Dec 2023 19:47:34 -0000
Right now the assumption is that if an IoT device needs to talk to a cloud service, it will be pre-configured with whatever information it needs to do so. I don't actually know if Matter defines any proxy capability—I think you'd have to participate in that SDO to find out about that. I work for a company that participates, but I don't participate directly. Possibly Stuart knows more. Thread doesn't do anything like this at all—it's just an IP layer 2 and layer 3. We specify DNSSD because service discovery is required, and so in principle a device on Thread could discover a WPAD service on infrastructure, but I don't really understand how trust would be established—if you wanted to provide some kind of trust mechanism, you might be able to leverage DNSSD, but it's not something that's directly done in DNSSD, nor is there any sort of proxy of the type you are talking about on the border router as part of Thread. Of course, the border router is a totally reasonable place to put something like that—it just wouldn't be done under the Thread rubric. On Fri, Dec 1, 2023 at 1:34 PM Josh Cohen <joshco@gmail.com> wrote: > Hi Stuart, Ted, and WG members, > > > > During the dnssd meeting at ietf118, the discussion touched on > IoT/matter, and I mentioned the WPAD discussions and the origins of WPAD > post sent to intarea.[1][2] > > > > Is it fair to asset that it is conceivable that IoT devices will be > connected to networks where a proxy server must be used to access their > respective cloud services, but must go direct to their local controller > hubs, or something similar? > > > > I am curious what, if any, solution is being used by matter to discover > web proxy servers, or if that is a TBD? > > > > For discovery, what would be the preferred solutions dnssd/svrloc, dhcp, > or other on these devices? > > > > I am putting together an update of the WPAD draft to modernize the > discovery schemes, and am interested in learning more about the relevant > scenarios in the IoT space. > > > > From a config file format POV, running a JavaScript function may be > infeasible, especially if the device needs resources for whatever the > functional purpose of the device is. > > > > So, the JSON PVD format might be easier to swallow than the JavaScript PAC > file. > > > > When dealing with Thread, is this scenario somehow handled by the border > router? > > > > WPAD origins Email: > https://mailarchive.ietf.org/arch/msg/int-area/IHzF0V7nPNlfgQjiU7utUo85ngU/ > > PDF: > https://mailarchive.ietf.org/arch/msg/int-area/IHzF0V7nPNlfgQjiU7utUo85ngU/2/ > > --- > *Josh Co*hen > > _______________________________________________ > dnssd mailing list > dnssd@ietf.org > https://www.ietf.org/mailman/listinfo/dnssd >
- [dnssd] Web Proxy Discovery on IoT/Matter Josh Cohen
- Re: [dnssd] Web Proxy Discovery on IoT/Matter Ted Lemon