IETF Logo Mail Archive

Re: [Masque] Updated proposed charter text

Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com> Thu, 02 April 2020 15:35 UTC

Return-Path: <spencerdawkins.ietf@gmail.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 84D543A15C1 for <masque@ietfa.amsl.com>; Thu, 2 Apr 2020 08:35:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QKTELXICVaBE for <masque@ietfa.amsl.com>; Thu, 2 Apr 2020 08:35:29 -0700 (PDT)
Received: from mail-lf1-x129.google.com (mail-lf1-x129.google.com [IPv6:2a00:1450:4864:20::129]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E48CC3A1746 for <masque@ietf.org>; Thu, 2 Apr 2020 08:34:52 -0700 (PDT)
Received: by mail-lf1-x129.google.com with SMTP id j17so3086333lfe.7 for <masque@ietf.org>; Thu, 02 Apr 2020 08:34:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=CpwVxmMOQHOY/Li8PN0cCdJOgb4j/Vd3cRKVV6JB6ss=; b=QZ00gPWJjkay9ZwdEZu9Ya8I+URq3d47dI6pUD4CHIqDyuxwLh7BNbC1k3BD594lUQ f9Cadgq12tikshtIYf1KE4PI4Ak5G1KrjzwvvQrdA7iYnxF8S6XX5Kl1d3wXitdkFW+0 kWYYUpA+QjcHq9DxXH7+Bu4OqgfQ+ij0MCxcTV7FgolkFWSEFk1XgusDoF3g1GKF9Pnt AV1MXwndtYUUv/LVAeHGoKqdi+9F0CNTPFObliSxXQCvksKP9JQRBkuXvafMf5F/oXZW xDINPZlcuLt92jTPqImoXLF0PJgfS2z9C695nP56T2dVKKiuXtMJTJmwziEXEqiD00p+ mONw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=CpwVxmMOQHOY/Li8PN0cCdJOgb4j/Vd3cRKVV6JB6ss=; b=RK7FR02vQ1zmwI2SeUMc7M/H/SNNaPX8PeBFXfsWbYP668Hp54m9cS5qq6Die5CdAY bRJ0wdqTAPv9eb4URARqcNHn+4RrZ4X1+oFMut0+9oCc5IfGL75krxSaqChS2yjP4AlX HQKpjZR/MgLVy+mgn7NCunNJl/Z0/6zCFeL/MhSRNc+O3+pVArcxvU5I1OU1X8V/Y/e5 SXV2uQa1uzrPm0QqZ0B4HL/qlfFFy31zJRRYuhHGSYwppSptMfp27jxJOwI8uQUmLeuj nhL5cZuZvi2EjywyipJsgCRSGTqsdm8NI0BxZQWyMqIwsT4U+f9zpgmV3vaUuKGVPRH8 RwFg==
X-Gm-Message-State: AGi0PuZVklK+6/i6+3S4kxxUUyewwV7APLszGbp0cfBUFxeiYukvrMzT jeR+2nwXKCHHYbnIX8YuU/Yg8eXl5gOQV/YBV6c=
X-Google-Smtp-Source: APiQypKNorTFKQsuoP9Cv8X7z4nza7KZeV9PZ5WPrygwUztmeyqcwkxrLYt89A5QQ02xW89fqF827IaDLZ3iKm6zXO8=
X-Received: by 2002:ac2:5ede:: with SMTP id d30mr2460484lfq.157.1585841690995; Thu, 02 Apr 2020 08:34:50 -0700 (PDT)
MIME-Version: 1.0
References: <89136f8b-70bd-40a0-b6d1-0e8a62a50ece@www.fastmail.com> <CAKKJt-dJqTYJPj0u7mZvaJKoiRX7oXeQCSyQV9xN_zkzHY-LXQ@mail.gmail.com> <48dcc4c3-0039-4de4-9028-c2059b34140c@www.fastmail.com> <CABcZeBPiT+gWCV0QZyoUNzyAgQ_5MHgi+uk7aaAQ-t0te3f5tw@mail.gmail.com>
In-Reply-To: <CABcZeBPiT+gWCV0QZyoUNzyAgQ_5MHgi+uk7aaAQ-t0te3f5tw@mail.gmail.com>
From: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>
Date: Thu, 02 Apr 2020 10:34:25 -0500
Message-ID: <CAKKJt-fWC_6Cy-tB=chKUaECC1wXsbzArxK27E1AuvnaUUS9Qw@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
Cc: Christopher Wood <caw@heapingbits.net>, MASQUE <masque@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000a970e005a2508ae5"
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/N1eL0v9hWdeVfpIQ1CGYQ5gWV4M>
Subject: Re: [Masque] Updated proposed charter text
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Apr 2020 15:35:32 -0000

Replying to Chris via Ekr's reply to me :-)

On Thu, Apr 2, 2020 at 9:09 AM Eric Rescorla <ekr@rtfm.com> wrote:

> I don't think the diversity of naming here is that useful as a guide to
> the diversity of the use cases. For instance, 2817, which defines CONNECT
> uses the term both "proxy" and "tunnel" in the same sentence.
>
> "A CONNECT method requests that a proxy establish a tunnel connection on
> its behalf."
>
> And yet TURN, which provides a similar service, calls itself "Traversal
> Using Relays around NAT".
>
> As a practical matter, the TCP and UDP use cases focus on establishing an
> association with the server in which packets are forwarded to and from a
> given destination and the IP use case seems to focus on forwarding IP
> datagrams from the client to and from arbitrary destinations (this last
> might use some fleshing out, I suppose).
>

This is the kind of thing I was also thinking about - not that we weren't
using the right terms, but that we were vague enough that people during the
BOF were guessing at what MASQUE would be most like (
https://en.wikipedia.org/wiki/Blind_men_and_an_elephant). So, yes, fleshing
out what we expect to happen, and not to happen, makes sense to me.

Just to start where Ekr started, do people think we're forwarding to
arbitrary destinations, or only to destinations that were explicitly set up?

Best,

Spencer


> -Ekr
>
>
>
>
>
> On Thu, Apr 2, 2020 at 7:03 AM Christopher Wood <caw@heapingbits.net>
> wrote:
>
>> On Tue, Mar 31, 2020, at 4:34 PM, Spencer Dawkins at IETF wrote:
>> > Hi, Christopher,
>> >
>> > Thanks for getting this update out so quickly.
>> >
>> > I have thoughts, but wanted to start with the first couple of
>> paragraphs.
>> >
>> > On Tue, Mar 31, 2020 at 11:43 AM Christopher Wood <caw@heapingbits.net>
>> wrote:
>> > > Based on last week's meeting, it seems folks are generally
>> enthusiastic about some form of MASQUE moving forward. To help scope that
>> particular form, here's an update to the proposed charter.
>> > >
>> > >  ~~~
>> > >  Many network topologies lead to situations where transport protocol
>> proxying is beneficial. For example, proxying enables endpoints to
>> communicate when end-to-end connectivity is not possible and can apply
>> additional encryption where desirable (such as a VPN). Proxying can also
>> improve client privacy, e.g., by hiding a client's IP address from a target
>> server.
>> > >
>> > >  Proxying technologies such as SOCKS and HTTP(S) CONNECT exist,
>> albeit with their own shortcomings. For example, SOCKS signalling is not
>> encrypted and HTTP CONNECT is currently limited to TCP. In contrast, HTTP/3
>> is a viable candidate protocol for proxying arbitrary traffic, as it
>> provides secure connectivity, multiplexed streams, and migration for a
>> single connection while taking advantage of a unified congestion
>> controller. HTTP/3 datagrams provide for unreliable data transmission,
>> which enables transporting UDP and other unreliable flows via a proxy
>> without introducing potentially redundant or unnecessary recovery
>> mechanisms. Further, HTTP/3 supports an established request/response
>> semantic that can set up and configure flows for different services.
>> >
>> > If I remember correctly, somewhere between the audio conference and the
>> > active jabber conversation, there were people who mentioned
>> >  * proxies
>> >  * relays
>> >  * tunnels
>> >  * VPNs
>> >  * NATs, and
>> >  * now that I look at the second paragraph, maybe even firewalls
>> > Is it possible to agree on the functionalities that this community of
>> > interest is thinking of, as part of the charter discussion?
>> >
>> > ISTM that if we're talking about "connect for IP", we're closer to a
>> > tunnel than a proxy, and I don't think that's what most of the MASQUE
>> > folk were thinking of.
>> >
>> > Perhaps this will fall out of the use cases people have been collecting?
>>
>> Yep, I expect that to be the case! While the use cases in the charter are
>> not meant to be exhaustive, more specificity would probably help frame the
>> rest of the content.
>>
>> Meta question: are you looking for a specific change in the text, and if
>> so, what might that be?
>>
>> Best,
>> Chris
>>
>> --
>> Masque mailing list
>> Masque@ietf.org
>> https://www.ietf.org/mailman/listinfo/masque
>>
>

v2.23.0 | Report a Bug | By Email