IETF Logo Mail Archive

Re: [hybi] New port and Tunneling?

Salvatore Loreto <salvatore.loreto@ericsson.com> Wed, 18 August 2010 09:46 UTC

Return-Path: <salvatore.loreto@ericsson.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1E3D33A6885 for <hybi@core3.amsl.com>; Wed, 18 Aug 2010 02:46:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -105.901
X-Spam-Level:
X-Spam-Status: No, score=-105.901 tagged_above=-999 required=5 tests=[AWL=0.698, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vFPk85tW9nBe for <hybi@core3.amsl.com>; Wed, 18 Aug 2010 02:46:29 -0700 (PDT)
Received: from mailgw10.se.ericsson.net (mailgw10.se.ericsson.net [193.180.251.61]) by core3.amsl.com (Postfix) with ESMTP id 9F2AE3A6822 for <hybi@ietf.org>; Wed, 18 Aug 2010 02:46:28 -0700 (PDT)
X-AuditID: c1b4fb3d-b7b90ae00000278d-af-4c6bac166eea
Received: from esealmw126.eemea.ericsson.se (Unknown_Domain [153.88.253.124]) by mailgw10.se.ericsson.net (Symantec Mail Security) with SMTP id B9.AC.10125.61CAB6C4; Wed, 18 Aug 2010 11:47:02 +0200 (CEST)
Received: from esealmw128.eemea.ericsson.se ([153.88.254.172]) by esealmw126.eemea.ericsson.se with Microsoft SMTPSVC(6.0.3790.3959); Wed, 18 Aug 2010 11:46:42 +0200
Received: from mail.lmf.ericsson.se ([131.160.11.50]) by esealmw128.eemea.ericsson.se with Microsoft SMTPSVC(6.0.3790.3959); Wed, 18 Aug 2010 11:46:42 +0200
Received: from nomadiclab.lmf.ericsson.se (nomadiclab.lmf.ericsson.se [131.160.33.3]) by mail.lmf.ericsson.se (Postfix) with ESMTP id 02F0325EE for <hybi@ietf.org>; Wed, 18 Aug 2010 12:46:42 +0300 (EEST)
Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id BDE904FCE4 for <hybi@ietf.org>; Wed, 18 Aug 2010 12:46:41 +0300 (EEST)
Received: from Salvatore-Loretos-MacBook-Pro.local (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id 46F064FC6D for <hybi@ietf.org>; Wed, 18 Aug 2010 12:46:41 +0300 (EEST)
Message-ID: <4C6BABFF.4070202@ericsson.com>
Date: Wed, 18 Aug 2010 11:46:39 +0200
From: Salvatore Loreto <salvatore.loreto@ericsson.com>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.1.11) Gecko/20100711 Thunderbird/3.0.6
MIME-Version: 1.0
To: hybi@ietf.org
References: <9e3c9de9b6d6278aa26921f4b22963ad.squirrel@sm.webmail.pair.com> <b5f838a87561f318ae6c3958a058b057.squirrel@sm.webmail.pair.com> <657f148a719e31c1699dccfe3e6e63c4.squirrel@sm.webmail.pair.com> <AANLkTimV77PKU3pTAgfBMu5XvzKX7ovHdE6xBCh9o-dx@mail.gmail.com> <340466c936045003a3930a65610df597.squirrel@sm.webmail.pair.com> <19abc4caa904ecc7371926db9a711cdb.squirrel@sm.webmail.pair.com> <2276.1282119618.010687@puncture> <948240ae68778daedf01f136342ab039.squirrel@sm.webmail.pair.com>
In-Reply-To: <948240ae68778daedf01f136342ab039.squirrel@sm.webmail.pair.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: ClamAV using ClamSMTP
X-OriginalArrivalTime: 18 Aug 2010 09:46:42.0367 (UTC) FILETIME=[4345ACF0:01CB3EBA]
X-Brightmail-Tracker: AAAAAA==
Subject: Re: [hybi] New port and Tunneling?
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Aug 2010 09:46:30 -0000

Hi Shelby,

this thread has been quite intense (45 mails, quite long mail, in less 
three days)


as chair I want to clarify that

- a P2P approach is not in scope of this wg (pleae read the charter and 
check what is really the focus of this wg: 
http://tools.ietf.org/wg/hybi/charters )

- the HTTP Upgrade handshake has been in the protocol proposal since the 
first version of the spec (before it become a wg item for HyBi wg),
   this wg has then decided that if the Handshake is based on Upgrade 
and then looks like HTTP, it needs to be HTTP but at same time have to take
   in consideration the security problem higlighted in the discussion.
   Instead of continuing to discuss theoretically about it, I have asked 
people to provide text for an HTTP Upgrade handshake that reflect the 
decision
   and the concerns of the wg.

- a TLS NPN approach as been proposed and several people, in the ml, 
have showed support for it.
   I have asked Adam to provide text describing/proposing an handshake 
solution using TLS/NPN
   he has kindly provided it in 
http://www.ietf.org/mail-archive/web/hybi/current/msg03228.html


I haven't seen any people in favor of your proposal, if you want still 
push for it then I suggest you
to write down a design of how your solution would work, with a full and 
complete technical description of the handshake:
describing what kind of NAT/Firewall you have in mind, how they are 
supposed to interact etc. etc.
(as Adam has provided for TLS/NPN)
so that people can eventually read your technical proposal and comment 
on the solution you are proposing.
You can send the solution in a mail or write down in a draft and submit 
it to the IETF and then advertise it
in this mailing list and then patiently wait for people to comment it if 
they are interested.


Note also that this is not the right place to discuss the Security 
issues academically;
this wg is to discuss and solve Security issues that can be generate 
from technical solutions within the current version of the 
WebSocketProtocol draft
or from alternative design solutions proposed.


regards
/Sal


-- 
Salvatore Loreto
www.sloreto.com

v2.23.0 | Report a Bug | By Email