IETF Logo Mail Archive

Re: [Mimi] Metadata Minimal MIMI (MIMIMI)

Brendan McMillion <brendanmcmillion@gmail.com> Sun, 07 April 2024 19:47 UTC

Return-Path: <brendanmcmillion@gmail.com>
X-Original-To: mimi@ietfa.amsl.com
Delivered-To: mimi@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1D1EFC14F614 for <mimi@ietfa.amsl.com>; Sun, 7 Apr 2024 12:47:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.094
X-Spam-Level:
X-Spam-Status: No, score=-7.094 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bB0MKS9C3Ub9 for <mimi@ietfa.amsl.com>; Sun, 7 Apr 2024 12:47:55 -0700 (PDT)
Received: from mail-ua1-x92a.google.com (mail-ua1-x92a.google.com [IPv6:2607:f8b0:4864:20::92a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4909FC14F600 for <mimi@ietf.org>; Sun, 7 Apr 2024 12:47:55 -0700 (PDT)
Received: by mail-ua1-x92a.google.com with SMTP id a1e0cc1a2514c-7e6b9c1f4a4so171128241.0 for <mimi@ietf.org>; Sun, 07 Apr 2024 12:47:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1712519274; x=1713124074; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=qNN3bv9R/vEfC4I6DljyQ7mkREyGfH4+CQreqPINSLk=; b=KBXbbtLfxW+GJDbh0ZJV7XZstCh4TMMJYdiabtn1Kc/6Pq1i2l/WC4K4/iJkCDevCE NzWr3jsnVhLMcJ/0xXuETE7pD1ZCCPyImvpx8HLEMC8Z2WVM6WGODzilw+OxIBAiR5yI Q2CcYBzM/ontUCN0Y8FSQq1pIARPl3Be4fsgFKeoarbBgXKUChxmYqhKtLZ+klkrKOnz JXK1k7Osta72SJ0/MyAFlDyJnK8+reXp8WFBn7eTLDRCxYot5tSzIgil4dWeSIHzPde/ XF8mdb7ZxLv8gAtmRQDDedEadQDZ6fzk1ztzJBqax6eRfDotE7EO1RC+6VKB7NVOa4z+ l3GQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712519274; x=1713124074; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=qNN3bv9R/vEfC4I6DljyQ7mkREyGfH4+CQreqPINSLk=; b=n1Vz7tymhWvtqB1TIFboHRC1XEmGp5qNomQJwQEtrJDXRBWezrM61C8itKR2fjqvMX fre1vxgKiBuXBqaNQ1ssT6ik/8srLHt/N2ThvjHUn5peF8fuyc6T/kLH0FbWAM1Ix4VH OEIIqrNBDXCJ5pUqJ7O0E/F/rhXiXwlltLdhU0pXvB8H87KPSqiyh5MTKbOTnY7dO1oa N50f1rG/Y4N86KepUPxfrWUGY/IJrmwhhSHXZqN232LZCfZRQd95ptbE/1VsD5VpocRe tB9yAnGY+dW1hNKG3bF85XgsLbZD7qUkN4PYq+Q53AW5Kxso7aMbqU/ZLJRv4nHkER7K qbwQ==
X-Forwarded-Encrypted: i=1; AJvYcCVGqkulj3/NUZmdRnZTR9+wavPNMmhrk9BEwXgfI0MDe6T3w3Fs/WsPQeZzE1dZm4SFY7XCQauIniaRUacD
X-Gm-Message-State: AOJu0Yxs2HwbMvClWwiZC4mitAWr/mzSL2zbZipE+CtxUqwzSQI8o246 GAAp1XTz254GcELrz02mq2I9p8RegES0v2gP24w2gfE63031DGBFTTqUu5NXeiEQDh4SqBqzbZA z3y6Tb+Tn2QxCxmk1b16Y1ZOErpb0P6zdt78=
X-Google-Smtp-Source: AGHT+IHU63htARtJfjkpVEJJZSXGt82yoTtrfRa3wwSsux1sgdG6emGhy/tGkeP7vpgvYxtPj0iSHHAuMbhP8GER9bU=
X-Received: by 2002:a67:fc4f:0:b0:479:ea7e:c0c4 with SMTP id p15-20020a67fc4f000000b00479ea7ec0c4mr2321824vsq.1.1712519273856; Sun, 07 Apr 2024 12:47:53 -0700 (PDT)
MIME-Version: 1.0
References: <8381F4BA-4E8E-4CE0-9FEF-20CEDD30A2CC@datashrine.de> <CAJTd26KqjV1BKq9Vtar4QQ4KnPhm=dF7WbysuR-MRsM4mNOkVA@mail.gmail.com> <0E12AA02-1656-4C49-8473-3A85DC51E9C3@raphaelrobert.com>
In-Reply-To: <0E12AA02-1656-4C49-8473-3A85DC51E9C3@raphaelrobert.com>
From: Brendan McMillion <brendanmcmillion@gmail.com>
Date: Sun, 07 Apr 2024 12:47:42 -0700
Message-ID: <CAJTd26LY4n2tnOOEhX4hS-fCEwkNwvXvY6YYA_2fyW6DU+4uZw@mail.gmail.com>
To: Raphael Robert <ietf@raphaelrobert.com>
Cc: Konrad Kohbrok <konrad.kohbrok@datashrine.de>, mimi@ietf.org
Content-Type: multipart/alternative; boundary="000000000000fd44a4061586f687"
Archived-At: <https://mailarchive.ietf.org/arch/msg/mimi/Dnascp6KEvdwm2Tsph4NZ1yWTKk>
Subject: Re: [Mimi] Metadata Minimal MIMI (MIMIMI)
X-BeenThere: mimi@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: More Instant Messaging Interoperability <mimi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mimi>, <mailto:mimi-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mimi/>
List-Post: <mailto:mimi@ietf.org>
List-Help: <mailto:mimi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mimi>, <mailto:mimi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Apr 2024 19:47:59 -0000

>
> On the contrary, the proposal is to use public messages so that the DS can
> do what it would normally do without pseudonyms: Parse the public messages
> and keep a copy of the GroupInfo/ Public tree on the server to maximise
> efficiency. In other words, adding a new member to a groups only requires
> the sender to send a Commit and a Welcome. The invited member can then
> fetch the ratchet tree from the server. Conversely, when using External
> Commits, new joiners can fetch the ratchet tree from the server.
>

 The document says, "For the new user(s), the key material can be
transported along with the Welcome, e.g. via a GroupInfo extension." I
understood this to mean that the connection key for each member of the
group must be shared with joining users, encrypted in the GroupInfo. There
is one connection key per member, so the encrypted portion of the Welcome
scales linearly with the number of members. What am I missing here?


On Sun, Apr 7, 2024 at 10:37 AM Raphael Robert <ietf@raphaelrobert.com>
wrote:

> Hi Brendan,
>
> Thanks for the feedback, I’ll address your points inline:
>
> At first glance, it seems this approach has the same efficiency as using
> encrypted handshake messages. That is, when I add a user to a group, I need
> to upload an encrypted blob whose size scales linearly with the number of
> members in the group. Is that right?
>
>
> On the contrary, the proposal is to use public messages so that the DS can
> do what it would normally do without pseudonyms: Parse the public messages
> and keep a copy of the GroupInfo/ Public tree on the server to maximise
> efficiency. In other words, adding a new member to a groups only requires
> the sender to send a Commit and a Welcome. The invited member can then
> fetch the ratchet tree from the server. Conversely, when using External
> Commits, new joiners can fetch the ratchet tree from the server.
>
> I'm also concerned about the property that, if I'm ever added to even one
> group with a user, then I learn their connection key. Then I can use their
> connection key to de-anonymize them in any other group, regardless of
> whether I've been in that group or not.
>
>
> It's a valid concern, just ending up in a group with another member
> shouldn’t give that member access to you beyond that group. That’s why
> connection keys must only be shared in 1:1 connections and not in other
> groups. Obviously the draft is not specific enough in that regard at this
> point. We need to flesh this out some more.
>
> Raphael
>
>
>
> On Fri, Apr 5, 2024 at 5:34 AM Konrad Kohbrok <
> konrad.kohbrok@datashrine.de> wrote:
>
>> Hi folks,
>>
>> Raphael and I just uploaded an I-D with a proposal that sketches a
>> pseudonym-based MIMI variant that aims to reduce MIMI’s metadata footprint.
>> You can find it here:
>> https://datatracker.ietf.org/doc/draft-kohbrok-mimi-metadata-minimalization/
>>
>> We have been working on this approach for a while now and have already
>> implemented and run a variant of what’s described in the I-D.
>>
>> The I-D is quite high-level for now to make the concepts easier to grasp.
>> If people are interested we can fill in gaps and add details in the next
>> iterations.
>>
>> Looking forward to continuing the discussion around metadata in the
>> context of MIMI and any questions regarding our I-D!
>>
>> Cheers,
>> Konrad
>>
>> --
>> Mimi mailing list
>> Mimi@ietf.org
>> https://www.ietf.org/mailman/listinfo/mimi
>>
> --
> Mimi mailing list
> Mimi@ietf.org
> https://www.ietf.org/mailman/listinfo/mimi
>
>
>

v2.23.0 | Report a Bug | By Email