Re: [Masque] MASQUE and Tor "pluggable transports"

"Martin Thomson" <mt@lowentropy.net> Thu, 08 August 2019 01:06 UTC

Return-Path: <mt@lowentropy.net>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C193D120116 for <masque@ietfa.amsl.com>; Wed, 7 Aug 2019 18:06:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=ncOcq1KN; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=TxOEegKo
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4GCdZbWKayA5 for <masque@ietfa.amsl.com>; Wed, 7 Aug 2019 18:06:42 -0700 (PDT)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8EB59120033 for <masque@ietf.org>; Wed, 7 Aug 2019 18:06:42 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.west.internal (Postfix) with ESMTP id CC71439F for <masque@ietf.org>; Wed, 7 Aug 2019 21:06:41 -0400 (EDT)
Received: from imap2 ([10.202.2.52]) by compute1.internal (MEProxy); Wed, 07 Aug 2019 21:06:41 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :subject:content-type; s=fm2; bh=At4lpnMY/TILadNzIkymm4lIZGLVPg3 IBpvq4w1GJz4=; b=ncOcq1KN+KVj6u1CSQd6WeKL2s/3SOOv0c3HIwPvejA0l0K gXa95Tqlp0L1Niw6oloz1drZH+e7hXACNytjW0DbI/j1/3cJttKIyi9s4wQuzoyq Gmg/vAq1q+viStofKAmQd+l1tERBJxPHhLZlfoonjTFuADgdXWHHVZrJzH+hvreg TiJyTUlfnrTjB0HXGzVOY/8cd6FKZMh5bjZzNLillBc7xCkKQC9e3SuEguHuNYBG BAm7OJyNeVXUyCftKASQXctvjG2FkhgC53d+sND8i7EHDGJ6yblc5hXtOlUcm7vA wUSMIqTDnnnG/miH4/0Wx/p1DbGG63X+P7Hankw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm3; bh=At4lpn MY/TILadNzIkymm4lIZGLVPg3IBpvq4w1GJz4=; b=TxOEegKobvUv0PeOuliP7x zszaoJA+UDKRWkrSCL2q+j5Qh8NZAWR56VAl4rSsuwvwZWfVfHd1zi7+P83/Qjt8 ltuXA5Uq0b1uLr7BBm0rb5kOAtPuaoG0l2JykSVvStX1glyN57DGWRY/S16/xsZ2 nxF7ThnJbQYa5ZJtPGjKDM6D767zrciVDr25I389+/iah1n1uqcPbH7VOD+gAr76 1sfCvU8CzlyO0hWfQtq/9qkZjZgIuDNMCoUZxDZPh8U1aWyJnO49V27TsH8twex1 634ja0c0j1Oa1R1U4UKWVZxSPnfC0paHFlWqvUdrxMBvlVuW8c+lMR7/2GT3yVDg ==
X-ME-Sender: <xms:oXVLXa4QMKdHZ0Jb1zlMXoSOdKFgL9515zX056ja2ARhZOLvDAd8Nw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeduvddruddugedgudehucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucenucfjughrpefofgggkfgjfhffhffvufgtsehttd ertderredtnecuhfhrohhmpedfofgrrhhtihhnucfvhhhomhhsohhnfdcuoehmtheslhho figvnhhtrhhophihrdhnvghtqeenucfrrghrrghmpehmrghilhhfrhhomhepmhhtsehloh ifvghnthhrohhphidrnhgvthenucevlhhushhtvghrufhiiigvpedt
X-ME-Proxy: <xmx:oXVLXSYDPOHknzbI_D5P6zN4ivpQMn4FXfROJC_71tpmkUVrMxk_kg> <xmx:oXVLXfqzWkjN8AlmQM0-B8GLgFc7aGPg2msn9MF_JE13sLi8N8oyVA> <xmx:oXVLXb7pDQD-abMj72nXyzzlKny1CDGwFgB1HkN2vPYYsHIIRirq3w> <xmx:oXVLXau46PStWP5UO2DV5Z2ly1z4H4R3KO6vzHGjJujNyX-SxxzIzw>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 1ABDEE00A4; Wed, 7 Aug 2019 21:06:41 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.1.6-808-g930a1a1-fmstable-20190805v2
Mime-Version: 1.0
Message-Id: <506ee224-ba19-4c60-abca-8090538377c3@www.fastmail.com>
In-Reply-To: <CAPDSy+4UjFSHHF9P2TJ09YJsdpNfu6t2eBZanwKVmzAjRp-Kkg@mail.gmail.com>
References: <20190806162044.etph52mdghi6mtlb@nymity.ch> <CAHbrMsDCGzVeCj3v0CX6Q-zDNi_beEymA_Z0eKfyWYY933yBWw@mail.gmail.com> <CAG3f7MgynP7+fTYA_uojWxvzbMvbgrqfkZPFL4MvatAXNKF1WQ@mail.gmail.com> <CAPDSy+7JLSpNMfSH8520sbFDmd2=Ec+1sV92c3-QUi0r_-tkhA@mail.gmail.com> <20190807220514.6e4h5hkzrnkqpfpx@nymity.ch> <CAPDSy+4UjFSHHF9P2TJ09YJsdpNfu6t2eBZanwKVmzAjRp-Kkg@mail.gmail.com>
Date: Thu, 08 Aug 2019 11:06:41 +1000
From: "Martin Thomson" <mt@lowentropy.net>
To: masque@ietf.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/ofpHTJEnTnw85JFlKQDRX78YCf0>
Subject: Re: [Masque] MASQUE and Tor "pluggable transports"
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Aug 2019 01:06:44 -0000

On Thu, Aug 8, 2019, at 10:59, David Schinazi wrote:
> The first thought that comes to mind is that we could use QUIC 
> encryption
> between relays (instead of DTLS) and even for the layered onion 
> encryption.

That seems reasonable.  There are some MTU concerns here, but nothing a little engineering can't fix.

> That would require changing how QUIC authenticates, 

How so?  QUIC doesn't really dictate how you authenticate.  Maybe some implementations would have to change, but they would need to do that for tunneling anyway (as they already do for proxying).