IETF Logo Mail Archive

Re: [Masque] WGLC for "Requirements for a MASQUE Protocol to Proxy IP Traffic"

Eric Kinnear <ekinnear@apple.com> Thu, 01 July 2021 21:56 UTC

Return-Path: <ekinnear@apple.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90F603A0901 for <masque@ietfa.amsl.com>; Thu, 1 Jul 2021 14:56:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.297
X-Spam-Level:
X-Spam-Status: No, score=-2.297 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.198, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rV_0SOnGPOXp for <masque@ietfa.amsl.com>; Thu, 1 Jul 2021 14:55:57 -0700 (PDT)
Received: from rn-mailsvcp-ppex-lapp35.apple.com (rn-mailsvcp-ppex-lapp35.rno.apple.com [17.179.253.44]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7E3E43A08F8 for <masque@ietf.org>; Thu, 1 Jul 2021 14:55:57 -0700 (PDT)
Received: from pps.filterd (rn-mailsvcp-ppex-lapp35.rno.apple.com [127.0.0.1]) by rn-mailsvcp-ppex-lapp35.rno.apple.com (8.16.1.2/8.16.1.2) with SMTP id 161LlfoA005711; Thu, 1 Jul 2021 14:55:54 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : message-id : content-type : mime-version : subject : date : in-reply-to : cc : to : references; s=20180706; bh=zyd38wrnPK8WtDuQcJHcJ3t/NW1R4IGy0HaW6mS4048=; b=bCmqOmuhXwqVDGLl5HnySVvyq5tqlA/yc/fbivBLt/DWg1ftAjlPG1xppIuYUh340tPw VoN6bc6ikvF7Otmh7hVwYNPw3uVg3vqOzXIWQLKdZVXyqKJkEa/Bmrldegqv4PYg8OBc Va2eXH2GscH0VQIHggMnUURj8RCxBihr/7h8CmvYfB09jRkosC0OBasDyE5qLHu1egXF FxYTBtI4Iw89Sxo9GFpb3GRozfspbzfwrzsV0SIZDt4g5kI2/KV3QaCR0Y+Vl70kCNqH Q039tBWveXsS5nlXYnmOPL3q6cRqrh35DzoKYHyflAO649lwYQqv+DnknG7mLZJG4my6 yA==
Received: from ma-mailsvcp-mta-lapp03.corp.apple.com (ma-mailsvcp-mta-lapp03.corp.apple.com [10.226.18.135]) by rn-mailsvcp-ppex-lapp35.rno.apple.com with ESMTP id 39dys7ukdv-2 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Thu, 01 Jul 2021 14:55:54 -0700
Received: from ma-mailsvcp-mmp-lapp04.apple.com (ma-mailsvcp-mmp-lapp04.apple.com [17.32.222.17]) by ma-mailsvcp-mta-lapp03.corp.apple.com (Oracle Communications Messaging Server 8.1.0.9.20210415 64bit (built Apr 15 2021)) with ESMTPS id <0QVL00DKR695BH10@ma-mailsvcp-mta-lapp03.corp.apple.com>; Thu, 01 Jul 2021 14:55:53 -0700 (PDT)
Received: from process_milters-daemon.ma-mailsvcp-mmp-lapp04.apple.com by ma-mailsvcp-mmp-lapp04.apple.com (Oracle Communications Messaging Server 8.1.0.9.20210415 64bit (built Apr 15 2021)) id <0QVL00X00658RX00@ma-mailsvcp-mmp-lapp04.apple.com>; Thu, 01 Jul 2021 14:55:53 -0700 (PDT)
X-Va-A:
X-Va-T-CD: e400c3fca44d6a91d2a8abbcc83a4dcd
X-Va-E-CD: 7e0e98a1813130099466771718502563
X-Va-R-CD: a4ae65a9cf51a1b0b577f56b5eae8317
X-Va-CD: 0
X-Va-ID: 3f46469d-be4c-404f-8ab8-5d10c7b81230
X-V-A:
X-V-T-CD: e400c3fca44d6a91d2a8abbcc83a4dcd
X-V-E-CD: 7e0e98a1813130099466771718502563
X-V-R-CD: a4ae65a9cf51a1b0b577f56b5eae8317
X-V-CD: 0
X-V-ID: 42238f96-1803-4080-ab13-9b140aa8dfc1
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-07-01_12:2021-07-01, 2021-07-01 signatures=0
Received: from smtpclient.apple (unknown [17.235.119.170]) by ma-mailsvcp-mmp-lapp04.apple.com (Oracle Communications Messaging Server 8.1.0.9.20210415 64bit (built Apr 15 2021)) with ESMTPSA id <0QVL008HS68VIX00@ma-mailsvcp-mmp-lapp04.apple.com>; Thu, 01 Jul 2021 14:55:53 -0700 (PDT)
From: Eric Kinnear <ekinnear@apple.com>
Message-id: <8EFC4872-0D32-4FCF-B073-170E34365648@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_8D2FEF5B-9EA6-482E-A4D0-04D4AFDEECF5"
MIME-version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\))
Date: Thu, 01 Jul 2021 14:55:29 -0700
In-reply-to: <d314198b-6c01-4b15-84d8-9896b5fdee80@www.fastmail.com>
Cc: Chris Wood <caw@heapingbits.net>
To: MASQUE <masque@ietf.org>
References: <d314198b-6c01-4b15-84d8-9896b5fdee80@www.fastmail.com>
X-Mailer: Apple Mail (2.3654.120.0.1.13)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.391, 18.0.790 definitions=2021-07-01_12:2021-07-01, 2021-07-01 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/qJOpkMo6RUyza6arLDOqqY3xzOo>
Subject: Re: [Masque] WGLC for "Requirements for a MASQUE Protocol to Proxy IP Traffic"
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Jul 2021 21:56:02 -0000

The working group last call for "Requirements for a MASQUE Protocol to Proxy IP Traffic <https://datatracker.ietf.org/doc/draft-ietf-masque-ip-proxy-reqs/>" has concluded. Thank you all for your comments and the resulting discussion. 

It is worth noting that there is very strong consensus within the working group to move on to concrete solutions, and we are eager to do so at IETF 111. However, the last call and corresponding reviews did raise a number of questions and comments that we believe to be worth addressing, many of them editorial in nature. We will work with the editors to make sure all of these are tracked in GitHub <https://github.com/ietf-wg-masque/draft-ietf-masque-ip-proxy-reqs> and will post the resulting pull requests to the list.

It is clear that most aspects of the document are non-contentious, whereas others do not have clear rough consensus. In particular, it is our assessment that the use case in Section 2.4 (network to network connectivity) does not have rough consensus, though it does have clear pockets of support both to include and to omit it. Additionally, we are unable to declare rough consensus on the related requirement in Section 3.5 (route negotiation).

Section 2.4 is an optional feature and Section 3.5 is mostly related to that use case. Additionally, trust and threat model details that would influence the solution for this use case are not discussed (and may certainly evolve as the solution is defined). While the rest of the document and the other use cases do have rough consensus, it is unclear that we need to strongly define this optional use case beyond ensuring that the remaining requirements do not preclude it.

For this reason, the chairs believe the best path forward is to update the document to best match that outcome while the other comments are addressed. In particular, this means removing use case 2.4 and punting requirement 3.5.

Keeping in mind the desire to proceed with concrete solutions, we recognize that leaving open these points for later discussion brings the potential to consume additional working group time re-litigating some of the same conversations that have already taken place. We would like to ask that working group members keep this in mind and focus on new information discovered through the process of defining options for concrete solutions as a guide to help constrain those discussions.

Thanks,
Eric and Chris



> On May 26, 2021, at 7:33 AM, Christopher Wood <caw@heapingbits.net> wrote:
> 
> This email starts the working group last call for "Requirements for a MASQUE Protocol to Proxy IP Traffic", located here:
> 
>    https://datatracker.ietf.org/doc/draft-ietf-masque-ip-proxy-reqs/
> 
> This last call serves to solidify requirements for subsequent work on CONNECT-IP solutions, as discussed in [1].
> 
> Please review the document and send your comments to the list by June 11.
> 
> Note the the GitHub repository for this draft can be found here: 
> 
>    https://github.com/ietf-wg-masque/draft-ietf-masque-ip-proxy-reqs
> 
> Thanks,
> Chris and Eric
> 
> [1] https://mailarchive.ietf.org/arch/msg/masque/LXObvy1DDuxLs-3dndyNKY0W4Gs/
> 
> -- 
> Masque mailing list
> Masque@ietf.org
> https://www.ietf.org/mailman/listinfo/masque

v2.23.0 | Report a Bug | By Email