Re: FYI: Oblivious HTTP
Toerless Eckert <tte@cs.fau.de> Thu, 28 January 2021 18:01 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52FE53A0C2A for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 28 Jan 2021 10:01:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.671
X-Spam-Level:
X-Spam-Status: No, score=-2.671 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gIsigZGoHcOA for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 28 Jan 2021 10:01:40 -0800 (PST)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8F3343A0C32 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 28 Jan 2021 10:01:40 -0800 (PST)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1l5BZN-0007v6-7m for ietf-http-wg-dist@listhub.w3.org; Thu, 28 Jan 2021 17:59:01 +0000
Resent-Date: Thu, 28 Jan 2021 17:59:01 +0000
Resent-Message-Id: <E1l5BZN-0007v6-7m@lyra.w3.org>
Received: from www-data by lyra.w3.org with local (Exim 4.92) (envelope-from <eckert@i4.informatik.uni-erlangen.de>) id 1l5BZL-0007uH-Os for ietf-http-wg@listhub.w3.org; Thu, 28 Jan 2021 17:58:59 +0000
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <eckert@i4.informatik.uni-erlangen.de>) id 1l5BVg-0007iY-Q6 for ietf-http-wg@listhub.w3.org; Thu, 28 Jan 2021 17:55:12 +0000
Received: from faui40.informatik.uni-erlangen.de ([131.188.34.40]) by mimas.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <eckert@i4.informatik.uni-erlangen.de>) id 1l5BVe-0001g1-DI for ietf-http-wg@w3.org; Thu, 28 Jan 2021 17:55:12 +0000
Received: from faui48f.informatik.uni-erlangen.de (faui48f.informatik.uni-erlangen.de [131.188.34.52]) by faui40.informatik.uni-erlangen.de (Postfix) with ESMTP id 9AFDB548027; Thu, 28 Jan 2021 18:54:53 +0100 (CET)
Received: by faui48f.informatik.uni-erlangen.de (Postfix, from userid 10463) id 9483E440163; Thu, 28 Jan 2021 18:54:53 +0100 (CET)
Date: Thu, 28 Jan 2021 18:54:53 +0100
From: Toerless Eckert <tte@cs.fau.de>
To: Martin Thomson <mt@lowentropy.net>
Cc: ietf-http-wg@w3.org
Message-ID: <20210128175453.GF35983@faui48f.informatik.uni-erlangen.de>
References: <ef91fafb-1586-4076-baa9-033326162eb1@www.fastmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <ef91fafb-1586-4076-baa9-033326162eb1@www.fastmail.com>
User-Agent: Mutt/1.10.1 (2018-07-13)
Received-SPF: pass client-ip=131.188.34.40; envelope-from=eckert@i4.informatik.uni-erlangen.de; helo=faui40.informatik.uni-erlangen.de
X-W3C-Hub-Spam-Status: No, score=-6.0
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.25, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1l5BVe-0001g1-DI 516e6df2c4ce529b8a7cd603ac430aae
X-caa-id: 566fec551f
X-Original-To: ietf-http-wg@w3.org
Subject: Re: FYI: Oblivious HTTP
Archived-At: <https://www.w3.org/mid/20210128175453.GF35983@faui48f.informatik.uni-erlangen.de>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/38411
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Hi Martin
Thanks for the work. Very interesting.
Some questions/concerns/suggestions:
a) "oblivious" (non-technical comment)
a.1) I can not find text in the document that motivates the choice of the
name 'oblivious' for this mechanism.
Who/what is exactly oblivious of what in this solution ? I guess that
the network to the right of the proxy resource (in figure 1), including
the target resource is "forced to be 'oblivious' of the client network layer identity" ?
Aka: add explicit text explaining the exact semantic of 'oblivious' in the
context of this doc.
a.2) I fear the word oblivious does not even well characterize the
core value proposition of this mechanism:
Any existing (thor,...) solution would be quite similarily providing
"obliviousness" in this sense, so 'oblivious' is not rally the unique
new value proposition. And every existing network/http-server that
does not examine the client network-layer identity is already oblivious
of it as well.
Secure and initiator-identity opaque (HTTP) transaction routing ?
Yeah, "oblivious" sounds a lot cooler, just not logical...
b) Performance (non-technical comment)
The real value proposition seems to be performance of what i would describe
as HTTP transaction routing in this solution vs. single-transaction
connection setup through proxies. Correct ?
It would be great to have a persuasive example quantified comparison in the
text in terms of likely difference in performance. For example number of
messages/roundtrips crypto oprations, amount of state in proxy, etc. pp.
(this mechanism vs. a TLS setup).
Also of course and i think quite importantly: How big would the difference
still be if HTTPs (with TLS) was replaced by QUIC - which i think values itself
for minimizing rtts/messages.
c) Figure 1 (minor):
Is it possible to have two or more proxy resources ? I assume
it is, but it would be very good to make this explicit in the picture
by visualizing e.g.: 2 of them and saying "one or more" in the text.
d) Generationalization (technical comment)
It seems to me as if the mechanism at its core is really a new brand
of transaction routing based on URL for rquest and HPKE context for reply
if i understand right. I wonder why this is being defined only for HTTP.
Would it not be more easily reuseable across a lot of different transaction
protocols if it came with its own message type header and a demux for the
transaction protocol ? Might be possible then to support HTTP, CoAP, MQTT
and what else theree might be flying around (especially in the IoT world)
with a single mechanism, and avoiding a lot of duplicate specs. Or even if
starting with HTTP maybe at least look for easy extension points and avoiding
any unnecessary HTTP overhead/complexities if the messages routed are not
HTTP but from an extension point...
In fact (IMHO), the value of this mechanism is likely going to be higher for
higher layer transaction systems built from the ground up and not
encumbered in all the entrenched tracking mechanisms we have in HTML/"Web-Apps"
these days, so offering extension points to leverage the infrastructure
for new, less intrusive higher layers might be quite beneficial to the success
of this mechanism.
Cheers
Toerless
On Thu, Jan 28, 2021 at 12:27:38PM +1100, Martin Thomson wrote:
> Just an announcement for a new draft that proposes a use of HTTP that this group might be interested in. I've started a discussion on the SECDISPATCH list about it [1]. Please, if you are interested in this topic, join that conversation.
>
> The draft:
>
> https://www.ietf.org/archive/id/draft-thomson-http-oblivious-00.html
>
> What this group might be more interested in is whether the ecosystem is well-served by a binary message format. That work currently has a dependency on another proposal:
>
> https://www.ietf.org/archive/id/draft-thomson-http-binary-message-00.html
>
> It doesn't strictly need to take this dependency, as message/http is in some ways adequate. However, I think that it might be beneficial to have a discussion about this idea here.
>
> Cheers,
> Martin
>
> [1] https://mailarchive.ietf.org/arch/msg/secdispatch/VmFQCZGKlukgfnmgPh8ufQt_5Fo/
--
---
tte@cs.fau.de
- FYI: Oblivious HTTP Martin Thomson
- Re: FYI: Oblivious HTTP Amos Jeffries
- Re: FYI: Oblivious HTTP Martin Thomson
- Re: FYI: Oblivious HTTP Toerless Eckert
- Re: FYI: Oblivious HTTP Roy T. Fielding
- Re: FYI: Oblivious HTTP Martin Thomson
- Re: FYI: Oblivious HTTP Martin Thomson
- Re: FYI: Oblivious HTTP Poul-Henning Kamp
- Re: FYI: Oblivious HTTP Greg Wilkins
- Re: FYI: Oblivious HTTP Toerless Eckert
- Re: FYI: Oblivious HTTP Roy T. Fielding
- Re: FYI: Oblivious HTTP David Benjamin
- Re: FYI: Oblivious HTTP Soni L.
- Re: FYI: Oblivious HTTP Eric Rescorla
- Re: FYI: Oblivious HTTP Martin Thomson
- Re: FYI: Oblivious HTTP Martin Thomson
- Re: FYI: Oblivious HTTP Ben Schwartz
- Re: FYI: Oblivious HTTP Martin Thomson