[ippm] Side meeting for PDMv2 and HPKE

Tommy Pauly <tpauly@apple.com> Wed, 07 July 2021 03:22 UTC

Return-Path: <tpauly@apple.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 55ECC3A1C7E for <ippm@ietfa.amsl.com>; Tue, 6 Jul 2021 20:22:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.294
X-Spam-Level:
X-Spam-Status: No, score=-2.294 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.198, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bL0hg_IjC3km for <ippm@ietfa.amsl.com>; Tue, 6 Jul 2021 20:22:11 -0700 (PDT)
Received: from rn-mailsvcp-ppex-lapp44.apple.com (rn-mailsvcp-ppex-lapp44.rno.apple.com [17.179.253.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 67D143A1C77 for <ippm@ietf.org>; Tue, 6 Jul 2021 20:22:11 -0700 (PDT)
Received: from pps.filterd (rn-mailsvcp-ppex-lapp44.rno.apple.com [127.0.0.1]) by rn-mailsvcp-ppex-lapp44.rno.apple.com (8.16.1.2/8.16.1.2) with SMTP id 1673CkvB002257; Tue, 6 Jul 2021 20:22:10 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : message-id : content-type : mime-version : subject : date : in-reply-to : cc : to : references; s=20180706; bh=rdb22yIHU0wWRN19e9jfwv9reYw6tM63gVyb+KO2IiQ=; b=wh9V+3WhJ3QbsW+iVIVbODgHab6F/92nh0M1gMqEcCWOQAf+fmsiWLaFx7h9vrfQWzLn 1EdXSFiCLdJSPJIN9g4ZbWkkktLBmEq/MXgu70rMU8Seov+eSZ5Uu5lxYzB4lkQbLbeH 6n7l5YpDQnQ41N/ECkkkt2uWYSGACBRsNaZaTDovwOOEQ8XUMBpm450GGbO/xHUJpjaX J+b1q+K0nBljp8qz6ErNuYDSREBJjpoooZd27WiT/+txUKYYonxkDgJHlmO5Hv9wQwMK EhzTDk9xkdfs+J9qfLXi+QXplnv+OSSw39Ds4v1ckSH3QbLHyR79R84RBoImy6LPGJ9D Qg==
Received: from rn-mailsvcp-mta-lapp01.rno.apple.com (rn-mailsvcp-mta-lapp01.rno.apple.com [10.225.203.149]) by rn-mailsvcp-ppex-lapp44.rno.apple.com with ESMTP id 39jkd9yhp5-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Tue, 06 Jul 2021 20:22:10 -0700
Received: from rn-mailsvcp-mmp-lapp03.rno.apple.com (rn-mailsvcp-mmp-lapp03.rno.apple.com [17.179.253.16]) by rn-mailsvcp-mta-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.9.20210415 64bit (built Apr 15 2021)) with ESMTPS id <0QVU00Q2OUOY7S00@rn-mailsvcp-mta-lapp01.rno.apple.com>; Tue, 06 Jul 2021 20:22:10 -0700 (PDT)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp03.rno.apple.com by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.9.20210415 64bit (built Apr 15 2021)) id <0QVU00300U4N5O00@rn-mailsvcp-mmp-lapp03.rno.apple.com>; Tue, 06 Jul 2021 20:22:10 -0700 (PDT)
X-Va-A:
X-Va-T-CD: 723948813aed79c947a23a6f942d2d0e
X-Va-E-CD: 62cfeceedf4bcf884d39145abe49a6e8
X-Va-R-CD: f48bd95f3f8f5839e164c711917f271c
X-Va-CD: 0
X-Va-ID: 8ce4c7eb-6f74-4320-b0e0-68a8844cc0ec
X-V-A:
X-V-T-CD: 723948813aed79c947a23a6f942d2d0e
X-V-E-CD: 62cfeceedf4bcf884d39145abe49a6e8
X-V-R-CD: f48bd95f3f8f5839e164c711917f271c
X-V-CD: 0
X-V-ID: a5733e12-450a-43a5-8906-6b67c2364ccf
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-07-07_01:2021-07-06, 2021-07-07 signatures=0
Received: from smtpclient.apple (unknown [17.234.32.9]) by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.9.20210415 64bit (built Apr 15 2021)) with ESMTPSA id <0QVU007E2UOVVV00@rn-mailsvcp-mmp-lapp03.rno.apple.com>; Tue, 06 Jul 2021 20:22:10 -0700 (PDT)
From: Tommy Pauly <tpauly@apple.com>
Message-id: <E1DB314E-ABC3-4FB4-9539-446B26A11C53@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_B5972905-E147-40B4-A277-5C849C5C962C"
MIME-version: 1.0 (Mac OS X Mail 15.0 \(3681.0.2.1.2\))
Date: Tue, 06 Jul 2021 20:22:06 -0700
In-reply-to: <721002155.671981.1625161479360@mail.yahoo.com>
To: IETF IPPM WG <ippm@ietf.org>
References: <162256330634.19677.3885804345914692467@ietfa.amsl.com> <28584824.2341925.1622563579715@mail.yahoo.com> <721002155.671981.1625161479360@mail.yahoo.com>
X-Mailer: Apple Mail (2.3681.0.2.1.2)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-07-07_01:2021-07-06, 2021-07-07 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/-oyfJFO8HCGSzHEDXQVFW-4qPYI>
Subject: [ippm] Side meeting for PDMv2 and HPKE
X-BeenThere: ippm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ippm>, <mailto:ippm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm/>
List-Post: <mailto:ippm@ietf.org>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ippm>, <mailto:ippm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Jul 2021 03:22:16 -0000

Hi IPPM,

To help discuss the PDMv2 proposal, and clarify the use of HPKE, Nalini has set up a side meeting during the IETF 111 week on Wednesday July 28 at 18:00 UTC.

Details are here:

https://trac.ietf.org/trac/ietf/meeting/wiki/111sidemeetings <https://trac.ietf.org/trac/ietf/meeting/wiki/111sidemeetings>

If you’re interested or have been engaging so far, I encourage you to show up!

Best,
Tommy (as IPPM co-chair)

> On Jul 1, 2021, at 10:44 AM, nalini.elkins@insidethestack.com wrote:
> 
> IPPM,
> 
> Please do take a look at this draft.
> 
> I think that iOAM will need encryption as well.   We have spent quite a bit of time thinking over these issues.  We even have 2 cryptographers from Italy involved as co-authors.   I want to do a side meeting where we can have quite a bit more time to discuss this but would love to have comments from the group on the list.
> 
> I am very reluctant to push PDM out to the wider world without encryption.  I feel that we will become the attacker's best friend.
> We have modified the Linux kernel to include PDM but as I say, without encryption, we do not wish to release.
> 
> 
> Thanks,
> 
> Nalini Elkins
> CEO and Founder
> Inside Products, Inc.
> www.insidethestack.com
> (831) 659-8360
> 
> 
> 
> 
> 
> 
> On Tuesday, June 1, 2021, 09:06:39 AM PDT, nalini.elkins@insidethestack.com <nalini.elkins@insidethestack.com> wrote: 
> 
> 
> 
> 
> 
> Hello IPPMers!
> 
> We have just posted a new draft to encrypt PDM data.   We feel that this is an important feature to add before promoting widespread adoption of PDM.
> 
> We would appreciate any thoughts or comments from the group.
> 
> Thanks,
> 
> Nalini Elkins
> CEO and Founder
> Inside Products, Inc.
> www.insidethestack.com
> (831) 659-8360
> 
> 
> 
> 
> 
> 
> ----- Forwarded Message -----
> 
> From: "internet-drafts@ietf.org" <internet-drafts@ietf.org>
> To: mackermann@bcbsm.com <mackermann@bcbsm.com>om>; Adnan Rashid <adnan.rashid@unifi.it>it>; Ameya Deshpande <ameyanrd@gmail.com>om>; Michael Ackermann <mackermann@bcbsm.com>om>; Nalini Elkins <nalini.elkins@insidethestack.com>om>; Tommaso Pecorella <tommaso.pecorella@unifi.it>
> Sent: Tuesday, June 1, 2021, 12:01:47 PM EDT
> Subject: New Version Notification for draft-elkins-ippm-encrypted-pdmv2-00.txt
> 
> 
> 
> A new version of I-D, draft-elkins-ippm-encrypted-pdmv2-00.txt
> has been successfully submitted by Nalini Elkins and posted to the
> IETF repository.
> 
> Name:        draft-elkins-ippm-encrypted-pdmv2
> Revision:    00
> Title:        Encrypted IPv6 Performance and Diagnostic Metrics Version 2 (EPDMv2) Destination Option
> Document date:    2021-06-01
> Group:        Individual Submission
> Pages:        16
> URL:            https://www.ietf.org/archive/id/draft-elkins-ippm-encrypted-pdmv2-00.txt
> Status:        https://datatracker.ietf.org/doc/draft-elkins-ippm-encrypted-pdmv2/
> Htmlized:      https://datatracker.ietf.org/doc/html/draft-elkins-ippm-encrypted-pdmv2
> 
> 
> Abstract:
>   RFC8250 describes an optional Destination Option (DO) header embedded
>   in each packet to provide sequence numbers and timing information as
>   a basis for measurements.  As this data is sent in clear- text, this
>   may create an opportunity for malicious actors to get information for
>   subsequent attacks.  This document defines PDMv2 which has a
>   lightweight handshake (registration procedure) and encryption to
>   secure this data.  Additional performance metrics which may be of use
>   are also defined.
> 
>                                                                                   
> 
> 
> The IETF Secretariat
> 
> 
> 
> 
> _______________________________________________
> ippm mailing list
> ippm@ietf.org
> https://www.ietf.org/mailman/listinfo/ippm
> 
> _______________________________________________
> ippm mailing list
> ippm@ietf.org
> https://www.ietf.org/mailman/listinfo/ippm