[Model-t] Definition of an intermediary
Martin Thomson <mt@lowentropy.net> Thu, 23 December 2021 06:54 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: model-t@ietfa.amsl.com
Delivered-To: model-t@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EAD803A1205 for <model-t@ietfa.amsl.com>; Wed, 22 Dec 2021 22:54:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=dLAJZRGO; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=Om4lwy0V
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kN2xRPmn7x-s for <model-t@ietfa.amsl.com>; Wed, 22 Dec 2021 22:54:11 -0800 (PST)
Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 491103A1203 for <model-t@iab.org>; Wed, 22 Dec 2021 22:54:11 -0800 (PST)
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id 6BAF832005C1 for <model-t@iab.org>; Thu, 23 Dec 2021 01:54:10 -0500 (EST)
Received: from imap41 ([10.202.2.91]) by compute3.internal (MEProxy); Thu, 23 Dec 2021 01:54:10 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:date:from:to:subject:content-type; s= fm1; bh=808ZbIb6fHBw1kHssaHQbm9DSGW/YHpWRClnYIjojsk=; b=dLAJZRGO XdFigycJPhEmpVe3qn0sV5Sbyyel8dVuuM6rxh8iWJ+YQJvxoLwvbmCz8lae15ko jaiP0/w8XYGPCJxUKf+7yKjgSHvjFY/GaB8tIC4Ew5sbXmTAV0J6WFK4CMhx/zkG YVry8J2DqzA+7BwZYc0tT8QxcSSnriKbIX6oQkvLUmGbJPThHLyFF65AVLuHH88O yQp621TicMErJXyShC0EVWdwwJyFT0WLplznDqGDZDWkerWMuQmdiWK33/QZQd82 TXReY/rIzaAI4/9nMS+tMvdCvxIPG3Fbsjulul6jt2bb8Gu7nwOoPivULmAYsIuP x9UKEaHNU2aXCA==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=content-type:date:from:message-id :mime-version:subject:to:x-me-proxy:x-me-proxy:x-me-sender :x-me-sender:x-sasl-enc; s=fm1; bh=808ZbIb6fHBw1kHssaHQbm9DSGW/Y HpWRClnYIjojsk=; b=Om4lwy0VoH2WNPbBNrjB5OfL4jcByzDFDYmrjDGRchf6b T6GE0E+Ssd37wv1jHAcpnj9eoE0j0Cl8CFIIsCA4yso/B2IFYyz2CMEFAAKm30Na wTNXod11d/i9MkMSI7qbVVlE0LktDXZFAZpSwz0O1B7sQo4il3Mp5qcwMC4qYiID SwJsawI3w0oxT0H9VOAF54nw0uKSoRlzG/Fiis4lpLsoJW/mh3ptsuhVo1HEnBwC DN/mkayWFLeR2gFoR4KiSPoXCEszqptLnhN80PX1/tK1WpkAP2Df/vxb/4BFhCj9 9CAR3OtWgOkVpSmqT9ro5VWgxmgu5lDh08Lr0clgA==
X-ME-Sender: <xms:ER3EYTWoZtqQJwPzNEDUJ53Ccy6P4wTVTuuAmcFFaLnfYsFk2LhlzQ> <xme:ER3EYblYp4crpUJIsqHlMxnK2MHyIt4GsmABEXti_11GtISE2ZgGLx4zkIsKoNFvX 2bE5JlAof55Y6Wy5DI>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvuddruddtjedguddtvdcutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecunecujfgurhepofgfggfkfffhvffutgesthdtre dtreertdenucfhrhhomhepfdforghrthhinhcuvfhhohhmshhonhdfuceomhhtsehlohif vghnthhrohhphidrnhgvtheqnecuggftrfgrthhtvghrnhepfeegieekgeejiedvgfdtfe fhteekffdvvdejhedukefgtdduveejveekgffhgeevnecuffhomhgrihhnpehhthhtphhs hhgrrhgvlhhinhgvrghgvggrnhgushhorghllhhsuhhffhgvrhhfrhhomhhthhhishhtoh hvrghrhihinhhguggvghhrvggvshdrmhihpdhgihhthhhusgdrtghomhenucevlhhushht vghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhrohhmpehmtheslhhofigvnhhtrh hophihrdhnvght
X-ME-Proxy: <xmx:ER3EYfZU40vQnCyxLNZnKTLHUVahN1MX8AmtVQcZCsE30iMj3JV3SA> <xmx:ER3EYeWcy3mfhOUHloHIrZa6pwxBT9b1Gwkq8f0PJ_uCNxkAliWqoA> <xmx:ER3EYdlPB0ClEFIHzG56IiPtsKybUVPISN_FUhkgeM-7htHR623FyA> <xmx:ER3EYZwErrDAh_W5H2AfFUijSyVZfTE-9s57sB6k6pcAAqX87mGUEw>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id A6D503C00CF; Thu, 23 Dec 2021 01:54:09 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.5.0-alpha0-4525-g8883000b21-fm-20211221.001-g8883000b
Mime-Version: 1.0
Message-Id: <aed0b88c-34db-46b3-847c-9a82b60c8a80@www.fastmail.com>
Date: Thu, 23 Dec 2021 17:53:51 +1100
From: Martin Thomson <mt@lowentropy.net>
To: model-t@iab.org
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/model-t/_TQ4NawCplqkjcy0hMaJliJzSWo>
Subject: [Model-t] Definition of an intermediary
X-BeenThere: model-t@iab.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions of changes in Internet deployment patterns and their impact on the Internet threat model <model-t.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/model-t>, <mailto:model-t-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/model-t/>
List-Post: <mailto:model-t@iab.org>
List-Help: <mailto:model-t-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/model-t>, <mailto:model-t-request@iab.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Dec 2021 06:54:17 -0000
One of the pieces of feedback on the -tmi draft was related to how it defines intermediary. I want to explore that a little more, because I think that this is important. The definition I have now concentrates on entities whose participation in the protocol is primarily the receipt and forwarding of messages from others, rather than the origination or termination of messages. This was always my intent, but it's hard to get this right. The more you dig into this, the harder it gets. Firstly, there are functions that require that an intermediary terminate or originate communication in ways that are more sophisticated than mere forwarding. And these are, often, the most useful and interesting functions. Does a video conference bridge that drops video from someone to save bandwidth act as an endpoint when it throws that data away? Is a DNS recursive resolver or CDN node that serves from cache doing more than intermediate? Maybe those can be viewed as simple time-shifting, so they still fit the basic definition. However, is my mail provider doing more than intermediate when it provides me with a search function over my inbox? Second, the potential for an intermediary to modify messages is often key to the operation of a protocol. When does that modification turn the intermediary into a full participant? A SIP B2BUA is often cast as a full protocol participant, which is certainly true from the perspective of how the protocol is engineered, but in the abstract it is indistinguishable from an intermediary, even if it doesn't strictly adhere to the SIP definition of a proxy. Third, the nature of some protocols is that they mix communication with intermediaries with end-to-end messages. SIP, SMTP, and HTTP share lineage and so all suffer from this to varying degrees. My sense is that this is largely OK and that we can rely on some interpretation of intent to clear things up, though we might need to recognize that we might end up disagreeing on the specifics. Are there other wrinkles that I've failed to identify? I've started iterating on a definition here: https://github.com/martinthomson/tmi/pull/5
- [Model-t] Definition of an intermediary Martin Thomson
- Re: [Model-t] Definition of an intermediary Joachim Fabini
- Re: [Model-t] Definition of an intermediary Vittorio Bertola
- Re: [Model-t] Definition of an intermediary Carsten Bormann
- Re: [Model-t] Definition of an intermediary Martin Thomson
- Re: [Model-t] Definition of an intermediary Martin Thomson