IETF Logo Mail Archive

Re: [Masque] Updated proposed charter text

Eric Rescorla <ekr@rtfm.com> Thu, 02 April 2020 14:10 UTC

Return-Path: <ekr@rtfm.com>
X-Original-To: masque@ietfa.amsl.com
Delivered-To: masque@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0BB6F3A13DF for <masque@ietfa.amsl.com>; Thu, 2 Apr 2020 07:10:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PSChvz9kYoEL for <masque@ietfa.amsl.com>; Thu, 2 Apr 2020 07:10:14 -0700 (PDT)
Received: from mail-lj1-x22d.google.com (mail-lj1-x22d.google.com [IPv6:2a00:1450:4864:20::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 86A773A1318 for <masque@ietf.org>; Thu, 2 Apr 2020 07:09:42 -0700 (PDT)
Received: by mail-lj1-x22d.google.com with SMTP id r7so3322746ljg.13 for <masque@ietf.org>; Thu, 02 Apr 2020 07:09:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=V1yaBNylq5DIQaGka4n9Lkl6K/7XPAw3FK2D+scHSQo=; b=TG5cpJhHy8eYSSUp0hprGJRQJ+XTlTJc0RYigVC9KN4HG5E4Yb96HhKDHKqCriCywa w/Vs0hPbFbloEBvABgh9ovQlsjAjweTzXsja96I/BPtn7nyHE7ZT9wDEtiuq/Ly1NMZM FpYv6p47yTb1oP7y60our8UyTG6YpqRFLqFSR/Ux+mwAwrtXb9p/FsR//7ZvYwlZ9N8v c/ghagGSc6zro5SABDh57/B2AvWgnz6M6soM8s8lqIVuoquqKzPm/pxhmiadXTfSbx+h mCqSy/LIcozoXDyK7esKB+Q2TGhzgY/7v5yneXeoWOZ+YzPj9A6ClBrGEptrjv2yNrLX saiA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=V1yaBNylq5DIQaGka4n9Lkl6K/7XPAw3FK2D+scHSQo=; b=nxuUmeMdJUGDuIGsb5YEyuepDeRbfPw43Pa+W26wbqm8j5ed3ej1JxdQIPn6BMVVln BdL2gWg46JZ8TJZUPu46V84cL+EcCfmjxGGywJHZb2f1ukJqrndOi3A0CVxjIBAaURRs AqAMw16FaaGw3731xK9lxG6jfhQ33e6636M0D3aR7xQ2zEcSWhSRYJOd3d+MobBvC4Ql i7DWf4v2YDQMI28RXa66Eu3HEnvOMh61XN/OKht0bAa0crmaKb4/YO8ZnMVJSB0JB4tv n+kaTEWudnYCJUlMIRZnWeQLSCO6uQyhRI4tBRflO2tq655oMCbFiUkv6KcHWDn1Eg6F 1Tnw==
X-Gm-Message-State: AGi0Pua59LlpSVaPXt1KJHQd2eGtA50SJp2nAyzp2tlaInhv4/IEdJn7 EtNNhbVTu82u+9Qt9YObEMym2qdcCZeiEyyLqQE3TcUaFzKMHQ==
X-Google-Smtp-Source: APiQypLNBtUia/mhhOi3qvGN1dAx1sthmptT0ewt+I+yjJRzG+fTAmctlsOtwxRrK45A+G7DwKStm099Y66Z7r9AxoI=
X-Received: by 2002:a2e:780a:: with SMTP id t10mr2157057ljc.83.1585836580539; Thu, 02 Apr 2020 07:09:40 -0700 (PDT)
MIME-Version: 1.0
References: <89136f8b-70bd-40a0-b6d1-0e8a62a50ece@www.fastmail.com> <CAKKJt-dJqTYJPj0u7mZvaJKoiRX7oXeQCSyQV9xN_zkzHY-LXQ@mail.gmail.com> <48dcc4c3-0039-4de4-9028-c2059b34140c@www.fastmail.com>
In-Reply-To: <48dcc4c3-0039-4de4-9028-c2059b34140c@www.fastmail.com>
From: Eric Rescorla <ekr@rtfm.com>
Date: Thu, 02 Apr 2020 07:09:04 -0700
Message-ID: <CABcZeBPiT+gWCV0QZyoUNzyAgQ_5MHgi+uk7aaAQ-t0te3f5tw@mail.gmail.com>
To: Christopher Wood <caw@heapingbits.net>
Cc: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>, MASQUE <masque@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000000e3cd805a24f5aac"
Archived-At: <https://mailarchive.ietf.org/arch/msg/masque/sL71WKwmLbHFFfffMCKJTv7Gqx4>
Subject: Re: [Masque] Updated proposed charter text
X-BeenThere: masque@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiplexed Application Substrate over QUIC Encryption <masque.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/masque>, <mailto:masque-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/masque/>
List-Post: <mailto:masque@ietf.org>
List-Help: <mailto:masque-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/masque>, <mailto:masque-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Apr 2020 14:10:24 -0000

I don't think the diversity of naming here is that useful as a guide to the
diversity of the use cases. For instance, 2817, which defines CONNECT uses
the term both "proxy" and "tunnel" in the same sentence.

"A CONNECT method requests that a proxy establish a tunnel connection on
its behalf."

And yet TURN, which provides a similar service, calls itself "Traversal
Using Relays around NAT".

As a practical matter, the TCP and UDP use cases focus on establishing an
association with the server in which packets are forwarded to and from a
given destination and the IP use case seems to focus on forwarding IP
datagrams from the client to and from arbitrary destinations (this last
might use some fleshing out, I suppose).

-Ekr





On Thu, Apr 2, 2020 at 7:03 AM Christopher Wood <caw@heapingbits.net> wrote:

> On Tue, Mar 31, 2020, at 4:34 PM, Spencer Dawkins at IETF wrote:
> > Hi, Christopher,
> >
> > Thanks for getting this update out so quickly.
> >
> > I have thoughts, but wanted to start with the first couple of
> paragraphs.
> >
> > On Tue, Mar 31, 2020 at 11:43 AM Christopher Wood <caw@heapingbits.net>
> wrote:
> > > Based on last week's meeting, it seems folks are generally
> enthusiastic about some form of MASQUE moving forward. To help scope that
> particular form, here's an update to the proposed charter.
> > >
> > >  ~~~
> > >  Many network topologies lead to situations where transport protocol
> proxying is beneficial. For example, proxying enables endpoints to
> communicate when end-to-end connectivity is not possible and can apply
> additional encryption where desirable (such as a VPN). Proxying can also
> improve client privacy, e.g., by hiding a client's IP address from a target
> server.
> > >
> > >  Proxying technologies such as SOCKS and HTTP(S) CONNECT exist, albeit
> with their own shortcomings. For example, SOCKS signalling is not encrypted
> and HTTP CONNECT is currently limited to TCP. In contrast, HTTP/3 is a
> viable candidate protocol for proxying arbitrary traffic, as it provides
> secure connectivity, multiplexed streams, and migration for a single
> connection while taking advantage of a unified congestion controller.
> HTTP/3 datagrams provide for unreliable data transmission, which enables
> transporting UDP and other unreliable flows via a proxy without introducing
> potentially redundant or unnecessary recovery mechanisms. Further, HTTP/3
> supports an established request/response semantic that can set up and
> configure flows for different services.
> >
> > If I remember correctly, somewhere between the audio conference and the
> > active jabber conversation, there were people who mentioned
> >  * proxies
> >  * relays
> >  * tunnels
> >  * VPNs
> >  * NATs, and
> >  * now that I look at the second paragraph, maybe even firewalls
> > Is it possible to agree on the functionalities that this community of
> > interest is thinking of, as part of the charter discussion?
> >
> > ISTM that if we're talking about "connect for IP", we're closer to a
> > tunnel than a proxy, and I don't think that's what most of the MASQUE
> > folk were thinking of.
> >
> > Perhaps this will fall out of the use cases people have been collecting?
>
> Yep, I expect that to be the case! While the use cases in the charter are
> not meant to be exhaustive, more specificity would probably help frame the
> rest of the content.
>
> Meta question: are you looking for a specific change in the text, and if
> so, what might that be?
>
> Best,
> Chris
>
> --
> Masque mailing list
> Masque@ietf.org
> https://www.ietf.org/mailman/listinfo/masque
>

v2.23.0 | Report a Bug | By Email