IETF Logo Mail Archive

Update on geo-hint header

Tommy Pauly <tpauly@apple.com> Wed, 06 July 2022 23:19 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3100BC15A750 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 6 Jul 2022 16:19:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.501
X-Spam-Level:
X-Spam-Status: No, score=-3.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BVLduBV3L4Vf for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 6 Jul 2022 16:19:09 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D623C15A747 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 6 Jul 2022 16:19:09 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1o9EFf-002yp7-Au for ietf-http-wg-dist@listhub.w3.org; Wed, 06 Jul 2022 23:16:11 +0000
Resent-Date: Wed, 06 Jul 2022 23:16:11 +0000
Resent-Message-Id: <E1o9EFf-002yp7-Au@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <tpauly@apple.com>) id 1o9EFe-002yoA-Cu for ietf-http-wg@listhub.w3.org; Wed, 06 Jul 2022 23:16:10 +0000
Received: from rn-mailsvcp-ppex-lapp35.rno.apple.com ([17.179.253.44] helo=rn-mailsvcp-ppex-lapp35.apple.com) by titan.w3.org with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <tpauly@apple.com>) id 1o9EFc-00AxYw-Mn for ietf-http-wg@w3.org; Wed, 06 Jul 2022 23:16:10 +0000
Received: from pps.filterd (rn-mailsvcp-ppex-lapp35.rno.apple.com [127.0.0.1]) by rn-mailsvcp-ppex-lapp35.rno.apple.com (8.16.1.2/8.16.1.2) with SMTP id 266NAXEI004776 for <ietf-http-wg@w3.org>; Wed, 6 Jul 2022 16:15:57 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : content-type : mime-version : subject : message-id : date : to; s=20180706; bh=rS+GaoFvh0kq2N7h0V+KBGYnqbWDUmXc34+Sf5aFT3o=; b=L5sO8KT6j36Vn7lc6rZ3VsBbg8Vgz8aF5CigoeByohg+VcREGEsnm+FdFK4qsAqySEQ8 VEJ4+SV8fznMEK/ZjuMOg2jWBN7o6oe7aWhpTzwUbPRP1aMESUmpq3zKH0RrLy0a/AWF FnmqrRY4ulK6VL6xqRtl+qVEdkxZJGZUBjhDH7mqW21Iuj9I86gn8bLaImKptLLxUTPR BIt6agv0kcMnmyqB5DOehuCFsYFRqWuQxl9g6YRjMMVybPOutMhs5U3blOusdQUXeRgR ji580EbpwJRvKyJpF60aVIhle7i6ZhiiGKGztapoyXrV8FUlr82XltxRk0HGIU48vZ16 Ag==
Received: from rn-mailsvcp-mta-lapp03.rno.apple.com (rn-mailsvcp-mta-lapp03.rno.apple.com [10.225.203.151]) by rn-mailsvcp-ppex-lapp35.rno.apple.com with ESMTP id 3h5feb2g8p-3 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <ietf-http-wg@w3.org>; Wed, 06 Jul 2022 16:15:57 -0700
Received: from rn-mailsvcp-mmp-lapp03.rno.apple.com (rn-mailsvcp-mmp-lapp03.rno.apple.com [17.179.253.16]) by rn-mailsvcp-mta-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.18.20220407 64bit (built Apr 7 2022)) with ESMTPS id <0REM00QHQGML4QK0@rn-mailsvcp-mta-lapp03.rno.apple.com> for ietf-http-wg@w3.org; Wed, 06 Jul 2022 16:15:57 -0700 (PDT)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp03.rno.apple.com by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.18.20220407 64bit (built Apr 7 2022)) id <0REM00R00G94LE00@rn-mailsvcp-mmp-lapp03.rno.apple.com> for ietf-http-wg@w3.org; Wed, 06 Jul 2022 16:15:57 -0700 (PDT)
X-Va-A:
X-Va-T-CD: aeebd4fdd5963ddcce0b17227227efb6
X-Va-E-CD: 633a94cc7b8805656790421cd6f2042b
X-Va-R-CD: 617d2bd6c701fc29d198d94c8fd540b7
X-Va-CD: 0
X-Va-ID: cf5f6d76-acb7-42de-8680-5f8083bc2dba
X-V-A:
X-V-T-CD: aeebd4fdd5963ddcce0b17227227efb6
X-V-E-CD: 633a94cc7b8805656790421cd6f2042b
X-V-R-CD: 617d2bd6c701fc29d198d94c8fd540b7
X-V-CD: 0
X-V-ID: 41915524-6531-45c5-aad4-268ae0206742
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.517,18.0.883 definitions=2022-07-06_12:2022-06-28,2022-07-06 signatures=0
Received: from smtpclient.apple (unknown [17.11.64.254]) by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.18.20220407 64bit (built Apr 7 2022)) with ESMTPSA id <0REM00RBEGMKVG00@rn-mailsvcp-mmp-lapp03.rno.apple.com> for ietf-http-wg@w3.org; Wed, 06 Jul 2022 16:15:57 -0700 (PDT)
From: Tommy Pauly <tpauly@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_8B167B14-CD99-4758-911E-251F9D2CDFD0"
MIME-version: 1.0 (Mac OS X Mail 16.0 \(3696.120.31\))
Message-id: <B9DB502E-B907-4B64-A639-24E5A1CCD526@apple.com>
Date: Wed, 06 Jul 2022 16:15:56 -0700
To: HTTP Working Group <ietf-http-wg@w3.org>
X-Mailer: Apple Mail (2.3696.120.31)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.517,18.0.883 definitions=2022-07-06_12:2022-06-28,2022-07-06 signatures=0
Received-SPF: pass client-ip=17.179.253.44; envelope-from=tpauly@apple.com; helo=rn-mailsvcp-ppex-lapp35.apple.com
X-W3C-Hub-DKIM-Status: validation passed: (address=tpauly@apple.com domain=apple.com), signature is good
X-W3C-Hub-Spam-Status: No, score=-8.1
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.729, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, W3C_AA=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1o9EFc-00AxYw-Mn d79587a316b6d4b597128239a7b7218a
X-Original-To: ietf-http-wg@w3.org
Subject: Update on geo-hint header
Archived-At: <https://www.w3.org/mid/B9DB502E-B907-4B64-A639-24E5A1CCD526@apple.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40247
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Hello HTTP WG,

At our February interim <https://httpwg.org/wg-materials/interim-22-02/agenda.html>, I shared a proposal to share a geolocation hint in HTTP headers as a geohash. During the meeting, we got a lot of useful feedback for how this could be misused and abused.

The motivating use case was more about ensuring that a server understands the “correct” geo-location mapping for an IP address that it already is seeing, as opposed to trying to reveal new information about location. This is specifically useful when going through a VPN / privacy proxy service where the client is aware of its IP selection. Specifically, this works around cases where geo-IP databases are out of date, or have the incorrect granularity (for example, some intermediate databases try to place every IP in a city, so they’ll incorrectly map country-wide IPs to a city in the center of the country).

As such, we’ve revised the proposal to instead provide a header that contains the geo IP database entry that corresponds to the client’s IP, along information in the parameters that points to the authoritative database.

https://www.ietf.org/archive/id/draft-pauly-httpbis-geoip-hint-00.html <https://www.ietf.org/archive/id/draft-pauly-httpbis-geoip-hint-00.html>

Happy to hear thoughts on this direction, and have further discussion at IETF 114.

Best,
Tommy & David

v2.23.0 | Report a Bug | By Email