Re: [arch-d] Call for Comment: <draft-trammell-wire-image-04> (The Wire Image of a Network Protocol)
Brian E Carpenter <brian.e.carpenter@gmail.com> Tue, 11 September 2018 02:16 UTC
Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA5FA130DCF; Mon, 10 Sep 2018 19:16:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UUmwI0lAa62h; Mon, 10 Sep 2018 19:16:34 -0700 (PDT)
Received: from mail-pl1-x644.google.com (mail-pl1-x644.google.com [IPv6:2607:f8b0:4864:20::644]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6F678130E58; Mon, 10 Sep 2018 19:16:34 -0700 (PDT)
Received: by mail-pl1-x644.google.com with SMTP id b30-v6so8308475pla.0; Mon, 10 Sep 2018 19:16:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=JLQMx+slGjvQMYL4EB+8PD84C2hJEDgCBPJRe2/N2t4=; b=s/dP/DbZRlY8tLtTj4gBUEj6GlUP3/udzOPIT8PrPpUxuHtKrFD6oPOGcPaeJ5/ERz kFfLuQqRn6ubZjMnMjyuKVytzlN1g6ivw3cKB50TwdfZX3IHAze1ipR4AGiH5Cw5OTId 3eTOhS3q9oO+I9WSg3CbxQpEUm1bH6CFeUJqtwD1irtHf1bwEjtyQnHH2AvOkuVJmVMO r3bOfAPt42bHcLd6Bup1ggEyGKbIxRVLaM5/oUTjRTpq4qc1unFukt9jKqDtjA9AxK4q QEXZZwKSD1bUcBOKEXTeD5kht0nD35dAezH97CRg4/DAF4/7HDzodvNKwgzJZpK9p+Dy iQHA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=JLQMx+slGjvQMYL4EB+8PD84C2hJEDgCBPJRe2/N2t4=; b=ZLkuFiZTPHTxj4hNTXphCp/YQngQTz9EDSYRjaI1PMzFUp4kYTShC70eMGlLS9Atl2 zaneTDxVO9L8GyVYPoAx2bgbx/PcPj1r9Jh1jSZ/0Ag1A6+AF5dUcTrBGNFv6acbEBJ5 rfxcge9WUi66x4Px1PEy+k9WVKKKMyoF2iQL5o4lst7e33b7IvwtdqrI2W3XFxngmEgy CMnWXZSpAWMDjxGnDtG3lLvRJ8/HwfzWBooUS/QyMMgPb3mb5fhuACOlPHG6lpb+e6B1 zJefzwnBaVp5JbjAGIgcdx5cpobwg/A4fLXvmR7NWDTQYBPWu+Lee7JhC2LZatFeuQtM 73lg==
X-Gm-Message-State: APzg51Chg1Y8oxsj7PY3j99x+3l6bBqgaedTcqNDpILZ/NoIvcf1WvOS R/3WKdN0kHvm6xU3iBZVppNeQxNU
X-Google-Smtp-Source: ANB0VdaFL4BF/kx4ZZlmZ/zYtBSNrFnv/26/iKIfrrlalGGRumSbefHvzQH8xpvLW+GN9GL8Tzm5fw==
X-Received: by 2002:a17:902:aa05:: with SMTP id be5-v6mr24739099plb.313.1536632193594; Mon, 10 Sep 2018 19:16:33 -0700 (PDT)
Received: from [130.216.38.157] (sc-cs-567-laptop.uoa.auckland.ac.nz. [130.216.38.157]) by smtp.gmail.com with ESMTPSA id d24-v6sm20535540pgv.23.2018.09.10.19.16.30 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 10 Sep 2018 19:16:32 -0700 (PDT)
Subject: Re: [arch-d] Call for Comment: <draft-trammell-wire-image-04> (The Wire Image of a Network Protocol)
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, architecture-discuss@ietf.org, iab@iab.org, IETF-Discussion <ietf@ietf.org>
References: <153619287953.19753.5995314701986579146.idtracker@ietfa.amsl.com> <8b52dce5-1ee4-b40b-e1ba-e7c9b241dd82@cs.tcd.ie>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Message-ID: <5a48ea24-0f09-1fe2-34ca-6478e25a1ddf@gmail.com>
Date: Tue, 11 Sep 2018 14:16:28 +1200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1
MIME-Version: 1.0
In-Reply-To: <8b52dce5-1ee4-b40b-e1ba-e7c9b241dd82@cs.tcd.ie>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/3SKAhCE-GB7ARRW36Nsj8aU0PNI>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Sep 2018 02:16:37 -0000
On 2018-09-06 14:01, Stephen Farrell wrote: > > Hiya, > > (cc'ing ietf@ietf.org - I'm not keen that discussion of such > IAB drafts be banished to architecture-discuss@ietf.org:-) I haven't changed the Cc list, but I respectfully disagree. I don't see that list as banishment; anyone can join and it's archived, but it doesn't suffer the noise level of ietf@ietf.org As a technical comment, I'd like to mention an extreme version of wire image. The only thing needed to deliver an IP packet to its destination is the destination address. So the minimal wire image of a packet is the destination address followed by some number of encrypted bits. [Not my invention: Jon Crowcroft's unpublished article on Sourceless Network Architecture points out that the IP source address is redundant for the delivery of packets.] Now this has some minor disadvantages (no diffserv field, no flow label, no intermediate ICMP replies, etc.) but from the privacy point of view, it's hard to do better at the single packet level. You can still do some temporal analysis, but most of the normal clues are missing since you have no tuple to track, so it will be extremely hard to assign packets to flows. Also, with the message body being pseudorandom, you cannot deduce anything about the protocol, ports, or payload size, or even whether the packet is just noise to confuse temporal analysis. I think this sets a baseline for discussion of wire images: you can't have *less* of an image than this. How much do we sacrifice of this baseline privacy by not encrypting other parts of the IP header, for example? (I do wonder about this as RFC material. Somehow it seems a bit more like a CCR paper to me.) Brian
- Re: Call for Comment: <draft-trammell-wire-image-… Stephen Farrell
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Brian Trammell (IETF)
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Brian E Carpenter
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Stephen Farrell
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Randy Bush
- Re: [arch-d] Call for Comment: <draft-trammell-wi… John C Klensin
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Brian Trammell (IETF)
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Randy Bush
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Christian Huitema
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Spencer Dawkins at IETF
- Re: [arch-d] Call for Comment: <draft-trammell-wi… Stephen Farrell