IETF Logo Mail Archive

Re: [Masque] Updated proposed charter text

Alex Chernyakhovsky <achernya@google.com> Thu, 02 April 2020 19:41 UTC

Return-Path: <achernya@google.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E09A93A10B2 for <masque@ietfa.amsl.com>; Thu, 2 Apr 2020 12:41:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.599
X-Spam-Level:
X-Spam-Status: No, score=-17.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9y4KHTqYpBLO for <masque@ietfa.amsl.com>; Thu, 2 Apr 2020 12:40:59 -0700 (PDT)
Received: from mail-ot1-x32d.google.com (mail-ot1-x32d.google.com [IPv6:2607:f8b0:4864:20::32d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E69EA3A10AC for <masque@ietf.org>; Thu, 2 Apr 2020 12:40:58 -0700 (PDT)
Received: by mail-ot1-x32d.google.com with SMTP id t28so4764681ott.5 for <masque@ietf.org>; Thu, 02 Apr 2020 12:40:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=XlXfnQ5AMdfVKQ8Kv+4iuHumt0ovxZXrkF3M/3ELPwQ=; b=GDkL2xwah3rt3cGecCNJjzOHJh5ooyTr+yK5YLq9I4U/AKpcyvc+XIPIe2IMn0iZHN rK//ulIWGo2JyIdH51Mcc4duvn2HiJd/2Pzf3+z6fflxuY/fjSsMuQtWhNu9xHzjprBi IffOrn61zES6PQduh3SWmvppoOZqoL8S13WuTDs6NNNx1gPctogCMT7vNXLHP3+S4TBB 9XFGnbhJadyZ6l7xQZhEI3xOYsb76V5thm00S8LUZRdJ95/JYg1X8ksrX6KesJZp2+wh VD/7QprfReIi6VRb7CSJs47a0Qkc5M77cYux8uQQ90BfM95fLI/DunCieWlOOcn3UBeF cimg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=XlXfnQ5AMdfVKQ8Kv+4iuHumt0ovxZXrkF3M/3ELPwQ=; b=uFnGvc5PzgYQKEp0l0EqXZ6u+2l8LgUJG7NQLaZOBzuZxiG6DIZhiaMwbfPr03rVRZ 7+koJlArXp1/l4QOOzWRPj8ajlgYXakRpVChLYM06ISJms4OghlrnkWkEI3Mrbx8al0T sT/SiPTu7tfR6kc+s2w4944BMHwtptkHIFuXjKsVH92SHVOZ+nJmFqSEt5BRumAcNr8J Ov6kK7DmRwHB+W2Vl06boWSmR2teU64w+u1WbxP/356BwVAFZr3NlSttbjRgO5b8YPZC QxIbmk/CQiCh3lI/tpcjKYbSil5ba2DpBjv8yZSofkO9OovfQtxaAVjrFyzj0rQ7tWuQ xTsQ==
X-Gm-Message-State: AGi0Pua3fqbkRibSrOmzlnLGx0yvhNDmvUHS+8gBWNe7rH7zT/vxVbgH unhu1InVQAHwyOMdB6GM9lLDzrWaZetlq4eOELlXOA==
X-Google-Smtp-Source: APiQypKb6m7LJ58C7/sUzDYgmpzFG++k6faXO3ST2mMB77PjoVLpracxuzDFd0r0n+4Ldr69tJKrX7wOYqE+vt8rg5k=
X-Received: by 2002:a4a:3f19:: with SMTP id e25mr4132253ooa.67.1585856457778; Thu, 02 Apr 2020 12:40:57 -0700 (PDT)
MIME-Version: 1.0
References: <89136f8b-70bd-40a0-b6d1-0e8a62a50ece@www.fastmail.com> <CAKKJt-dJqTYJPj0u7mZvaJKoiRX7oXeQCSyQV9xN_zkzHY-LXQ@mail.gmail.com> <48dcc4c3-0039-4de4-9028-c2059b34140c@www.fastmail.com> <CABcZeBPiT+gWCV0QZyoUNzyAgQ_5MHgi+uk7aaAQ-t0te3f5tw@mail.gmail.com> <CAKKJt-fWC_6Cy-tB=chKUaECC1wXsbzArxK27E1AuvnaUUS9Qw@mail.gmail.com>
In-Reply-To: <CAKKJt-fWC_6Cy-tB=chKUaECC1wXsbzArxK27E1AuvnaUUS9Qw@mail.gmail.com>
From: Alex Chernyakhovsky <achernya@google.com>
Date: Thu, 02 Apr 2020 15:40:46 -0400
Message-ID: <CAHbWFkTfUBbgeEMwMP_Gshp2MH2QFQ4fvBc3EHTu7gtRXWJpxg@mail.gmail.com>
To: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>
Cc: Eric Rescorla <ekr@rtfm.com>, Christopher Wood <caw@heapingbits.net>, MASQUE <masque@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000d55eb105a253fa89"
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/haiYXUPtWit-SpPzPEM7fai21PE>
Subject: Re: [Masque] Updated proposed charter text
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Apr 2020 19:41:02 -0000

On Thu, Apr 2, 2020 at 11:36 AM Spencer Dawkins at IETF <
spencerdawkins.ietf@gmail.com> wrote:

> Replying to Chris via Ekr's reply to me :-)
>
> On Thu, Apr 2, 2020 at 9:09 AM Eric Rescorla <ekr@rtfm.com> wrote:
>
>> I don't think the diversity of naming here is that useful as a guide to
>> the diversity of the use cases. For instance, 2817, which defines CONNECT
>> uses the term both "proxy" and "tunnel" in the same sentence.
>>
>> "A CONNECT method requests that a proxy establish a tunnel connection on
>> its behalf."
>>
>> And yet TURN, which provides a similar service, calls itself "Traversal
>> Using Relays around NAT".
>>
>> As a practical matter, the TCP and UDP use cases focus on establishing an
>> association with the server in which packets are forwarded to and from a
>> given destination and the IP use case seems to focus on forwarding IP
>> datagrams from the client to and from arbitrary destinations (this last
>> might use some fleshing out, I suppose).
>>
>
> This is the kind of thing I was also thinking about - not that we weren't
> using the right terms, but that we were vague enough that people during the
> BOF were guessing at what MASQUE would be most like (
> https://en.wikipedia.org/wiki/Blind_men_and_an_elephant). So, yes,
> fleshing out what we expect to happen, and not to happen, makes sense to
> me.
>
> Just to start where Ekr started, do people think we're forwarding to
> arbitrary destinations, or only to destinations that were explicitly set up?
>
> What does "arbitrary destinations" mean here? For QBONE, we have built the
ability to route between networks, including setting a default that can be
for reaching the public internet. Is that arbitrary, or is that a
destination that was explicitly set up because a route was configured? I'm
not sure I understand the implication of the distinction.

Sincerely,
-Alex

Best,
>
> Spencer
>
>
>> -Ekr
>>
>>
>>
>>
>>
>> On Thu, Apr 2, 2020 at 7:03 AM Christopher Wood <caw@heapingbits.net>
>> wrote:
>>
>>> On Tue, Mar 31, 2020, at 4:34 PM, Spencer Dawkins at IETF wrote:
>>> > Hi, Christopher,
>>> >
>>> > Thanks for getting this update out so quickly.
>>> >
>>> > I have thoughts, but wanted to start with the first couple of
>>> paragraphs.
>>> >
>>> > On Tue, Mar 31, 2020 at 11:43 AM Christopher Wood <caw@heapingbits.net>
>>> wrote:
>>> > > Based on last week's meeting, it seems folks are generally
>>> enthusiastic about some form of MASQUE moving forward. To help scope that
>>> particular form, here's an update to the proposed charter.
>>> > >
>>> > >  ~~~
>>> > >  Many network topologies lead to situations where transport protocol
>>> proxying is beneficial. For example, proxying enables endpoints to
>>> communicate when end-to-end connectivity is not possible and can apply
>>> additional encryption where desirable (such as a VPN). Proxying can also
>>> improve client privacy, e.g., by hiding a client's IP address from a target
>>> server.
>>> > >
>>> > >  Proxying technologies such as SOCKS and HTTP(S) CONNECT exist,
>>> albeit with their own shortcomings. For example, SOCKS signalling is not
>>> encrypted and HTTP CONNECT is currently limited to TCP. In contrast, HTTP/3
>>> is a viable candidate protocol for proxying arbitrary traffic, as it
>>> provides secure connectivity, multiplexed streams, and migration for a
>>> single connection while taking advantage of a unified congestion
>>> controller. HTTP/3 datagrams provide for unreliable data transmission,
>>> which enables transporting UDP and other unreliable flows via a proxy
>>> without introducing potentially redundant or unnecessary recovery
>>> mechanisms. Further, HTTP/3 supports an established request/response
>>> semantic that can set up and configure flows for different services.
>>> >
>>> > If I remember correctly, somewhere between the audio conference and
>>> the
>>> > active jabber conversation, there were people who mentioned
>>> >  * proxies
>>> >  * relays
>>> >  * tunnels
>>> >  * VPNs
>>> >  * NATs, and
>>> >  * now that I look at the second paragraph, maybe even firewalls
>>> > Is it possible to agree on the functionalities that this community of
>>> > interest is thinking of, as part of the charter discussion?
>>> >
>>> > ISTM that if we're talking about "connect for IP", we're closer to a
>>> > tunnel than a proxy, and I don't think that's what most of the MASQUE
>>> > folk were thinking of.
>>> >
>>> > Perhaps this will fall out of the use cases people have been
>>> collecting?
>>>
>>> Yep, I expect that to be the case! While the use cases in the charter
>>> are not meant to be exhaustive, more specificity would probably help frame
>>> the rest of the content.
>>>
>>> Meta question: are you looking for a specific change in the text, and if
>>> so, what might that be?
>>>
>>> Best,
>>> Chris
>>>
>>> --
>>> Masque mailing list
>>> Masque@ietf.org
>>> https://www.ietf.org/mailman/listinfo/masque
>>>
>> --
> Masque mailing list
> Masque@ietf.org
> https://www.ietf.org/mailman/listinfo/masque
>

v2.23.0 | Report a Bug | By Email