IETF Logo Mail Archive

Re: [Masque] Proposed draft charter

Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com> Tue, 11 February 2020 00:31 UTC

Return-Path: <spencerdawkins.ietf@gmail.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7B33A1208A4 for <masque@ietfa.amsl.com>; Mon, 10 Feb 2020 16:31:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hE4BBqLCLzzA for <masque@ietfa.amsl.com>; Mon, 10 Feb 2020 16:31:30 -0800 (PST)
Received: from mail-lf1-x136.google.com (mail-lf1-x136.google.com [IPv6:2a00:1450:4864:20::136]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4A81F12089D for <masque@ietf.org>; Mon, 10 Feb 2020 16:31:30 -0800 (PST)
Received: by mail-lf1-x136.google.com with SMTP id z18so5694023lfe.2 for <masque@ietf.org>; Mon, 10 Feb 2020 16:31:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=0rb3OHxpVAmz+5bsU3+qNr0ad9ojems/9JumYtc6OHo=; b=ltBqwnuaRuz+IEyywvIz/0vYJtPV+LlY2+65ZKAgsOgfX/KzvNCa6F7a8Cey44wBKb PsjUo7xsLZpPRDvBWkmS9kK34UOYx8t3NmpcRhLdol88vxAi66nov1V51K2ZN2y6Mndx zFPy6Hhv/hNtx6i1QlFpKU7mlIyMWe81scjPTkwZV4F/p3MtRliY71M4iD6UZwzplq9i k/uQamUZORhLAbL8kx6L0jVeaCfoZJnAhxKLwyXvQ8jT3HYIfNggPWeGy9tPST+x9GkH MDX2SHTM5VypvfqT3EBH41tXfuvrjGZaXPHyJ6ViN52Nr3JBwTI7ZUynNOBJnZF7eaV7 ooYQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=0rb3OHxpVAmz+5bsU3+qNr0ad9ojems/9JumYtc6OHo=; b=uMHb1zViIysMy3G1xT5SRmDJficQ5DJyt2rxWd2hqMMgXcWXap2HEVlSeGv6VA1Xd9 NLcnuTo0LGI2Pm6y5C+IKv0JDE75r5CULBCsVVB6ZTq0Vq5wVfNxHFiTdxiTwiqaW3N3 /U5tRsYUY8nMeRHOHmDrTc+8GCTdDmm4dZkd4jn7DPJKqLHOVCDpJ7ZxljMueA4Ch64p vZpjrfJTaIJ9AWt1TG/RF4Vz1aXL8ZFFLXwiyqzEiZGLRQkgUj/hUXYsLvHwUXmpQb26 2YvbQcfrhVBtayH2EhPPDmNMZ/a4OpgblKQvpGI+o+L+foZhN/5ews/0WoCnIWTQFpPD +lCQ==
X-Gm-Message-State: APjAAAVDFFrnl+M3SHMWpfEfFVaZhEWT94Pz0v/oa4yZSLXS7UplMdla 5o5KeklO5/pyLfDpkqArG18gHpzTiu7GU4AnONChHtiOlxs=
X-Google-Smtp-Source: APXvYqyphReRie6n6CPJcPqgeGnOICZAo7lHVulJxC1mvKZXAi6S7SdrvPgG7+T3cMZlTg1ISFWXkW84jU7Ej7QRHMQ=
X-Received: by 2002:a19:ca59:: with SMTP id h25mr2046524lfj.27.1581381088437; Mon, 10 Feb 2020 16:31:28 -0800 (PST)
MIME-Version: 1.0
References: <845946C2-EB98-4F3A-966E-968AE349302C@ericsson.com> <CABcZeBOJtyaa+J9PqoEZ7n8QahFy4n8nbBaCwUd0W+1BoMNnZQ@mail.gmail.com> <E68FB662-F6E5-49EE-AD92-AFCCCEA0CCE9@ericsson.com> <CABcZeBNEekD6GivQUvg8Gmz=_0EB1T_7PAeK=MNR_7+ObWJuTA@mail.gmail.com> <AE645E8F-6E17-4844-B8CC-373EB0909775@apple.com> <C58665A7-8550-4828-A7CD-603E3A64CFAF@ericsson.com> <1E734838-6F8E-4F13-AEEE-0A00F3E0C04C@apple.com>
In-Reply-To: <1E734838-6F8E-4F13-AEEE-0A00F3E0C04C@apple.com>
From: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>
Date: Mon, 10 Feb 2020 18:31:02 -0600
Message-ID: <CAKKJt-dFrVvcWUAVjAWMJHxk2BOhX+-y1R65i9KFLmB4SHDncA@mail.gmail.com>
To: Eric Kinnear <ekinnear=40apple.com@dmarc.ietf.org>
Cc: Mirja Kuehlewind <mirja.kuehlewind=40ericsson.com@dmarc.ietf.org>, "masque@ietf.org" <masque@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000007e9ec059e41fa34"
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/lqBkaaKGi_FQWyMIU2n4FnREwGw>
Subject: Re: [Masque] Proposed draft charter
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Feb 2020 00:31:34 -0000

I'm finally reading this charter, as opposed to looking at the words ...
mostly, this looks fine to me.

A couple of things inline.

On Thu, Feb 6, 2020 at 6:05 AM Eric Kinnear <ekinnear=
40apple.com@dmarc.ietf.org> wrote:

> Awesome, thanks all for the feedback!
>
> Updating with the changes proposed by Ekr and Lucas, thanks for the great
> suggestions.
>
> ===============
>
> Many network topologies lead to situations where transport protocol
> proxying is
> beneficial. For example, proxying enables endpoints to communicate when
> end-to-end connectivity is not possible and can apply additional encryption
> where desirable (such as a VPN).
>
> QUIC is a good candidate protocol for tunneling these types of traffic, as
> QUIC
> provides secure connectivity, multiplexed streams, and connection
> migration.
> Further, HTTP/3 supports an established request/response semantic that can
> be
> used to set up and configure services.
>

The definition of QUIC as practiced in 2020 is "HTTP/3 over QUIC", although
we certainly see proposals for other application protocols over something
QUIC-like. Would something like

"HTTP/3, carried over QUIC, is a good candidate protocol for tunneling
these types of traffic, as QUIC
provides secure connectivity, multiplexed streams, and connection migration.
Further, HTTP/3 supports an established request/response semantic that can
be
used to set up and configure services."

make that clearer?


> Using QUIC as a tunneling technology allows for proxying of both reliable
> stream
> (TCP) and unreliable datagram (UDP) flows. For stream flows, QUIC streams
>

I'm a little confused here, about whether (HTTP/3-)QUIC is also in scope as
a proxied protocol. Does everyone else know whether it is, and I'm just
catching up?

Best,

Spencer


> provide reliable in-order delivery across the client-proxy link. QUIC
> datagrams
> provide for unreliable data transmission, which allows for transporting
> UDP and
> other unreliable flows via a proxy without introducing potentially
> redundant or
> unnecessary recovery mechanisms. In addition, QUIC can carry both types of
> flows
> over the same connection while taking advantage of a unified congestion
> controller.
>
> This working group will work on MASQUE (Multiplexed Application Substrate
> over
> QUIC Encryption), a framework that allows concurrently running multiple
> proxied
> flows inside a QUIC connection. The MASQUE framework will specify a
> signaling
> protocol that is used between the endpoint(s) and the MASQUE server to
> negotiate
> proxy services that establish tunneled connectivity. The initial
> functionality
> will be limited to client-initiated proxy tunnels. The WG may subsequently
> recharter to consider other applications.
>
> Proxy services that extend the signaling of the base MASQUE protocol can be
> adopted by the group by creating a new milestone with AD review.
>
> If MASQUE requires any extensions to existing protocols, the group will
> coordinate closely with the respective group responsible for maintaining
> that
> protocol, such as the HTTPBIS, QUIC, or TLS working groups.
>
> ===============
>
>
> Thanks,
> Eric
>
>
>
> On Feb 4, 2020, at 5:23 PM, Mirja Kuehlewind <
> mirja.kuehlewind=40ericsson.com@dmarc.ietf.org> wrote:
>
> Hi Eric,
>
> thanks for narrowing this down. The proposed text below looks like a good
> starting point for a working group!
>
> Mirja
>
>
> *From: *Masque <masque-bounces@ietf.org> on behalf of Eric Kinnear <
> ekinnear=40apple.com@dmarc.ietf.org>
> *Date: *Tuesday, 4. February 2020 at 16:30
> *To: *"masque@ietf.org" <masque@ietf.org>
> *Subject: *Re: [Masque] Proposed draft charter
>
> Hi all,
>
> There’s been some good discussion on this thread, which has led to some
> potential improvements in the draft charter.
>
> Here’s some proposed text which tightens things up quite a bit and tries
> to clarify many of the parts that caused concern. Thoughts and feedback
> welcome!
>
> Thanks,
> Eric
>
>
>
> ==================
>
> Many network topologies lead to situations where transport protocol
> proxying is
> beneficial. For example, proxying enables endpoints to communicate when
> end-to-end connectivity is not possible and can apply additional encryption
> where desirable (such as a VPN).
>
> QUIC is a good candidate protocol for tunneling these types of traffic, as
> QUIC
> provides secure connection establishment, multiplexed streams, and
> connection
> migration. Further, HTTP/3 provides an existing request/response syntax
> that can
> be used to set up and configure services.
>
> Using QUIC as a tunneling technology allows for proxying of both reliable
> stream
> (TCP) and unreliable datagram (UDP) flows. For stream flows, QUIC streams
> provide reliable in-order delivery across the client-proxy link. QUIC
> datagrams
> provide for unreliable data transmission, which allows for transporting
> UDP and
> other unreliable flows via a proxy without introducing potentially
> redundant or
> unnecessary recovery mechanisms. In addition, QUIC can carry both types of
> streams over the same connection while taking advantage of a unified
> congestion
> controller.
>
> This working group will work on MASQUE (Multiplexed Application Substrate
> over
> QUIC Encryption), a framework that allows concurrently running multiple
> proxied
> flows inside a QUIC connection. The MASQUE framework will specify a
> signaling
> protocol that is used between the endpoint(s) and the MASQUE server to
> negotiate
> proxy services that establish tunneled connectivity. The initial
> functionality
> will be limited to client-initiated proxy tunnels. The WG may subsequently
> recharter to consider other applications.
>
> Proxy services that extend the signaling of the base MASQUE protocol can be
> adopted by the group by creating a new milestone with AD review.
>
> If MASQUE requires any extensions to existing protocols, the group will
> coordinate closely with the respective group responsible for maintaining
> that
> protocol, such as the HTTPBIS, QUIC, or TLS working groups.
>
> ==================
>
>
> --
> Masque mailing list
> Masque@ietf.org
> https://www.ietf.org/mailman/listinfo/masque
>

v2.23.0 | Report a Bug | By Email