Re: [Doh] New Version Notification for draft-dickinson-doh-dohpe-00.txt
Patrick McManus <pmcmanus@mozilla.com> Fri, 20 July 2018 13:55 UTC
Return-Path: <pmcmanus@mozilla.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2326131179 for <doh@ietfa.amsl.com>; Fri, 20 Jul 2018 06:55:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.233
X-Spam-Level:
X-Spam-Status: No, score=-1.233 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kfpGLzt0pChw for <doh@ietfa.amsl.com>; Fri, 20 Jul 2018 06:55:05 -0700 (PDT)
Received: from linode64.ducksong.com (www.ducksong.com [192.155.95.102]) by ietfa.amsl.com (Postfix) with ESMTP id A2000130F49 for <doh@ietf.org>; Fri, 20 Jul 2018 06:55:05 -0700 (PDT)
Received: from mail-oi0-f48.google.com (mail-oi0-f48.google.com [209.85.218.48]) by linode64.ducksong.com (Postfix) with ESMTPSA id BFBD13A03D for <doh@ietf.org>; Fri, 20 Jul 2018 09:55:02 -0400 (EDT)
Received: by mail-oi0-f48.google.com with SMTP id l10-v6so21496576oii.0 for <doh@ietf.org>; Fri, 20 Jul 2018 06:55:02 -0700 (PDT)
X-Gm-Message-State: AOUpUlEzbYMtT1YFVkpHDfWNsqD17E+PjLHlBVRX+4f6iuehEYhDfKPV xKYrmLX6FsZAL9s7SXRm201ET3K9JwlRfHl2zp4=
X-Google-Smtp-Source: AAOMgpf8/16klbcY+IdNJvry3sfY/qIk6XoIVi49v6yIMToNMjutCcSqGoNQnA9FKwCBwnvzOKbpg7R2YKLhQ/tQdeQ=
X-Received: by 2002:aca:e80c:: with SMTP id f12-v6mr2357606oih.38.1532094902454; Fri, 20 Jul 2018 06:55:02 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a4a:8a22:0:0:0:0:0 with HTTP; Fri, 20 Jul 2018 06:55:01 -0700 (PDT)
In-Reply-To: <F3B9C552-D38B-48E2-B592-E817ECFD6DF4@sinodun.com>
References: <153192232867.2882.433616342941784102.idtracker@ietfa.amsl.com> <F3B9C552-D38B-48E2-B592-E817ECFD6DF4@sinodun.com>
From: Patrick McManus <pmcmanus@mozilla.com>
Date: Fri, 20 Jul 2018 09:55:01 -0400
X-Gmail-Original-Message-ID: <CAOdDvNqeKS2MC3wpv8nbE5OZvSJGauqOPJ9V=p6JdcYZQKA0nA@mail.gmail.com>
Message-ID: <CAOdDvNqeKS2MC3wpv8nbE5OZvSJGauqOPJ9V=p6JdcYZQKA0nA@mail.gmail.com>
To: Sara Dickinson <sara@sinodun.com>
Cc: DoH WG <doh@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000006c5bd305716ea42b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/A4MDSIi_msv7ICc4GK-pTyORWt8>
Subject: Re: [Doh] New Version Notification for draft-dickinson-doh-dohpe-00.txt
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Jul 2018 13:55:10 -0000
Hi Sara, Willem, interesting draft. I have two, perhaps slightly inconsistent, high level thoughts and then a bunch of routine technical comments. 1] The draft is pretty honest that what it really wants in its heart is an HTTP tunnel to carry 7858 in. Implementations that desire that should probably just do that via CONNECT - the procedure is well specified already. Even the reason offered up for not doing so (Content-Negotiation) cannot be done in a way consistent with the rest of the document (it requires incremental deployment of Accept request headers as new formats are deployed). 2] I think HTTPbis should consider this work right now. We added some text to BCP56bis based on our previous discussions, but something directly in the http-core work (which is a bis effort for 723x) could be much more detailed and helpful. http-core is an adopted work item of HTTPbis that is already a suite of documents, so whether it was a new document as part of that or text within an existing one is pretty much just editorial. Obviously the content of that output is determined by the WG (and eventually the whole IETF), but I think it would be well received. The content of your draft (perhaps modulo the padding issue) is equally relevant to any use of web services as it is to doh, so relevant review by the HTTP community seems paramount. I would be happy to work with you on it in that forum. OK - the smaller stuff: 3.1. this requirement doesn't really consider the possibility that resolver choices are not equal - even from a privacy standpoint 3.2 this requirement may, as martin noted, result in weaker defense against traffic analysis, and it might also result in more connections (for either doh or for regular web) which probably have secondary leaks in the form of sni or ocsp. this may not actually be a good idea if you are trading off endpoint privacy against network privacy when the endpoiint can already do correlation at the transport layer. 3.3 bcp56bis says don't enforce a minimum version so you run afoul of that (core-doh makes this a should and lays out the reasons).. but if a doc says >= h2, rather than == h2 it won't succeed in normalizing things for very long anyhow as new versions come along. 3.5.1 normalizing user-agent to anything other than null is probably a bad idea. The use of that field is for debugging and working around implementation bugs - so if different implementations claim to be the same thing it won't be effective. Empty is ok from that pov though you obviously lose that feature of the ecosystem (which is widely used). but there is so much else to think about in fingerprinting an h2 implementation. I'm not optimistic its solvable. * priority schemes * flow control crediting behavior * settings values: max streams, windows, push, extensions * stream id selection * header encoding (hpack) choices -- I 'm sure there are many more. I know I can easily play a game of "name that implementation" when looking at most traces. Focusing on the user fingerprinting problem instead of the implementation may be a more tractable thing. I suppose the doc could just declare things below the semantic layer out of scope, as it seems to have done for tls, tcp, and ip, but it runs the risk of defining something that can't be deployed to gain its intended benefit. I actually think that line has already been crossed by not addressing layers below http. In any event, even this scope is 95% http rather than doh imo. Cheerfully, -P On Wed, Jul 18, 2018 at 10:02 AM, Sara Dickinson <sara@sinodun.com> wrote: > Hi All, > > We’ve just submitted a very short draft outlining a privacy profile for > DoH called DoHPE. > > It is very basic at the moment but it would be great to get some feedback > on the idea here and to see if the WG sees this as something that should go > through this group or head somewhere else. Since the guidelines are purely > HTTP related, this does feel like the right audience to review the document > at least in the first instance. > > Sara. > > > Begin forwarded message: > > *From: *internet-drafts@ietf.org > *Subject: **New Version Notification for draft-dickinson-doh-dohpe-00.txt* > *Date: *18 July 2018 at 09:58:48 GMT-4 > *To: *"Sara Dickinson" <sara@sinodun.com>, "Willem Toorop" < > willem@nlnetlabs.nl> > > > A new version of I-D, draft-dickinson-doh-dohpe-00.txt > has been successfully submitted by Sara Dickinson and posted to the > IETF repository. > > Name: draft-dickinson-doh-dohpe > Revision: 00 > Title: DoHPE: DoH with Privacy Enhancements > Document date: 2018-07-18 > Group: Individual Submission > Pages: 8 > URL: https://www.ietf.org/internet-drafts/draft- > dickinson-doh-dohpe-00.txt > Status: https://datatracker.ietf.org/doc/draft-dickinson- > doh-dohpe/ > Htmlized: https://tools.ietf.org/html/draft-dickinson-doh-dohpe-00 > Htmlized: https://datatracker.ietf.org/doc/html/draft- > dickinson-doh-dohpe > > > Abstract: > This document describes DoHPE (DoH with Privacy Enhancements) - a > privacy and anonymity profile for DoH [I-D.ietf-doh-dns-over-https] > clients. The profile provides guidelines on the composition of DoH > messages, designed to minimize disclosure of identifying information. > > > > > Please note that it may take a couple of minutes from the time of > submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > > > _______________________________________________ > Doh mailing list > Doh@ietf.org > https://www.ietf.org/mailman/listinfo/doh > >
- [Doh] New Version Notification for draft-dickinso… Sara Dickinson
- Re: [Doh] New Version Notification for draft-dick… Ben Schwartz
- Re: [Doh] New Version Notification for draft-dick… Sara Dickinson
- Re: [Doh] New Version Notification for draft-dick… Martin Thomson
- Re: [Doh] New Version Notification for draft-dick… Ben Schwartz
- Re: [Doh] New Version Notification for draft-dick… Patrick McManus