IETF Logo Mail Archive

Re: [MLS] Recommendation for encrypted group operations

Brendan McMillion <brendanmcmillion@gmail.com> Tue, 30 January 2024 22:40 UTC

Return-Path: <brendanmcmillion@gmail.com>
X-Original-To: mls@ietfa.amsl.com
Delivered-To: mls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81227C14CE2E for <mls@ietfa.amsl.com>; Tue, 30 Jan 2024 14:40:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MGK22IWYhByG for <mls@ietfa.amsl.com>; Tue, 30 Jan 2024 14:40:07 -0800 (PST)
Received: from mail-ed1-x52b.google.com (mail-ed1-x52b.google.com [IPv6:2a00:1450:4864:20::52b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EE437C151082 for <mls@ietf.org>; Tue, 30 Jan 2024 14:40:05 -0800 (PST)
Received: by mail-ed1-x52b.google.com with SMTP id 4fb4d7f45d1cf-55f03ede12cso3365604a12.0 for <mls@ietf.org>; Tue, 30 Jan 2024 14:40:05 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1706654404; x=1707259204; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=H3CRiO4kBhTHGbbZ+WkhnQrrsWGlOeOoS+vYIWdHYdo=; b=frCxdt8uhkPixR3YS+B8m6SqHsaSzbrS7u+wV2njQytAhDVeobLEbGyHO4Jvcl0Tpp gRqfYIZxAnJZjmEFmduRqLGmNU/DVequpbU4Iwk6WA/OgLzyzrrRF/SdemAcwvhoubP/ 4vlak0FR3gUcdeDPW5P27zzUey7wRfeDBSX9y5RGfZwFce3gq9Ry+88jn4vwBAmnarcT zA58ajdWKbRFnbZBSVY49J7hkmTt6hHcDDymznVNxg0yPV+uGj1nuwIpOeaGnGbgGwhe tyiR2NKfYANEAFXv4m2ifhAXfHaARFpz4RF7HWeHYzESISr9pW+bDKlnKeGJL7NJ9h8v VbyA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1706654404; x=1707259204; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=H3CRiO4kBhTHGbbZ+WkhnQrrsWGlOeOoS+vYIWdHYdo=; b=spSzf3athIYraUm986PGVsYDP58ko8QDxVvtPahqXpntmagWvyZ8H6amCCS3r26dAH vD6OFAgz0hG7gsZ6oCLRy8sX/+zPkp79JCjS8ZaUeIrk8aJFaTgP5539D5rScxBtVMI/ GG3vKsDOsZ/hOp7mGA2yiuseb3e9wrDHwp2FIdTbTtQE1M2uTWczMnkfq8wiSzbFyadt yA60kmA0cbZJ7K57MfgcdOAZaBwf4asBcO947xdLePIGNDrtGuGeyy6FsFPn5rS6S8F8 aZxzrY4ztppzfrKjFrnisnKVoa2nYSrTvUy+e/m77NBROIaMYrUFcRUHwV7LP2+L+0aB WDIw==
X-Gm-Message-State: AOJu0YxkubP+jQW6h3FfnBoPvXztkjnCpEbzEZkP5iFTQIBpjbTqvBGU 8LDzTRmJyTIDyqH4dlXmVujLe39Znter9zH30TXrLzEqDzs7WlWh9WlbbjZqcxlIIZwmp8k1mju icU8gLWlUMlix9ITQbCK6LXRiFRk+5EqGNXLadQ==
X-Google-Smtp-Source: AGHT+IFvqHux0t1V+wNn47dtWAzbk8s6zSQhfAZXB51TJOnOW7mJxiRIBQvhTwOLBiEMVzcp9wuQ8tvadoxip7Ds4t4=
X-Received: by 2002:aa7:d30c:0:b0:55e:e9f3:4f64 with SMTP id p12-20020aa7d30c000000b0055ee9f34f64mr4996263edq.0.1706654403612; Tue, 30 Jan 2024 14:40:03 -0800 (PST)
MIME-Version: 1.0
References: <CAJTd26+hJjKaZZenN3bQuVaifJotVhbpQoYEBLBaN7KiOw2_Qg@mail.gmail.com> <CABcZeBNT=EBMrmOJ1pBpaThs6BcVuajXYt+ziXzEMZU0LKjfjg@mail.gmail.com> <CAL02cgQkOxg6f1U-GwAWTOBDv96yvV1bEFZ=F7ES+Qhs7vDJLA@mail.gmail.com> <CAJTd26L-ROx_T5RaDU9cZscTzOZGM9zGmgwN=_iAtGWw2jgJUA@mail.gmail.com> <CAL02cgR03wgwLFARPPwx1ROCsvPUk0xR83FSudjv0b7aR21yzg@mail.gmail.com> <CAJTd26L_AVPwnm+5-H2nA_x4j2tLZZOKHykBNmvk0PO9oUL4Ww@mail.gmail.com> <CABcZeBPOGtFu=UXyqV-ftiMYx1rXJYbxRNE+Hfggsws8bZ2zwA@mail.gmail.com> <CAJTd26JXHjqVbHs91g+oUbuBrX88geOjbGqz1EW-7TUOLgAQWg@mail.gmail.com> <CACsn0cniLJgCmMOmW9NVvf4X7H3DimKcwrjNe5rNiHDgf7bbsw@mail.gmail.com> <CAL02cgRG_q_+o-7jhVDHYQ8dPLw8tzhRzuty64eP1vArYRjWzQ@mail.gmail.com>
In-Reply-To: <CAL02cgRG_q_+o-7jhVDHYQ8dPLw8tzhRzuty64eP1vArYRjWzQ@mail.gmail.com>
From: Brendan McMillion <brendanmcmillion@gmail.com>
Date: Tue, 30 Jan 2024 14:39:52 -0800
Message-ID: <CAJTd26LwWZfkCtCsy80pq-jL8+HSFfBkjKxCRjuPEoXNr80rHg@mail.gmail.com>
To: Richard Barnes <rlb@ipv.sx>
Cc: Watson Ladd <watsonbladd@gmail.com>, Eric Rescorla <ekr@rtfm.com>, MLS List <mls@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000007b57a906103171a0"
Archived-At: <https://mailarchive.ietf.org/arch/msg/mls/exdTBIzztM1OhV38ojHzqAxlFiY>
Subject: Re: [MLS] Recommendation for encrypted group operations
X-BeenThere: mls@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Messaging Layer Security <mls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mls>, <mailto:mls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mls/>
List-Post: <mailto:mls@ietf.org>
List-Help: <mailto:mls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mls>, <mailto:mls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jan 2024 22:40:11 -0000

>
> Groups can be extremely large: there are telegram channels of tens of
> thousands of people. The credentials in cross-domain environments can
> rapidly swell. At the same time spam can be an issue, and having
> server visibility into group joining I think can be a very useful clue
> here.


MMS has a max group size of 10, iMessage of 32, Messenger of 250, Signal of
1000, WhatsApp of 1024. At these sizes, it does seriously warrant
considering whether the efficiency arguments hold water. Spam concerns
don't really resonate with me either, as Signal (the only major messenger
to use Sealed Sender) seems to have no issue with it. Given that these are
consumer apps, they also don't have the enterprise policy-enforcement
constraints Richard described.

I understand why the efficiency arguments apply to something like WebEx or
Zoom, where several thousand people may pop in and out of a meeting in an
hour. But like I said, that's a very specific type of app in the space

Unfortunately I do not.  Honestly, I think the need was so obvious to folks
> involved, who are working on real messaging systems, that there wasn't much
> discussion.  Even the privacy-focused folks who had designed a very
> privacy-preserving DS [draft-robert-mimi-delivery-service] have come to
> agree that PublicMessage is the right answer as the default.


I am curious how we got from "has already been discussed pretty
extensively" to "so obvious... that there wasn't much discussion." :)

On Tue, Jan 30, 2024 at 1:22 PM Richard Barnes <rlb@ipv.sx> wrote:

> On Tue, Jan 30, 2024 at 11:15 AM Watson Ladd <watsonbladd@gmail.com>
> wrote:
>
>> On Tue, Jan 30, 2024 at 1:11 PM Brendan McMillion
>>
>> > I personally have not followed the mimi wg very closely and I can not
>> say why they made this decision.
>>
>> Even as someone subscribed I'm not sure I'm aware of this particular
>> conversation. Anyone got handly links?
>>
>
> I knew someone was going to ask :)
>
> Unfortunately I do not.  Honestly, I think the need was so obvious to
> folks involved, who are working on real messaging systems, that there
> wasn't much discussion.  Even the privacy-focused folks who had designed a
> very privacy-preserving DS [draft-robert-mimi-delivery-service] have come
> to agree that PublicMessage is the right answer as the default.
>
> --RLB
>
>

v2.23.0 | Report a Bug | By Email