IETF Logo Mail Archive

Re: [MSEC] QUIC multicast

"Holland, Jake" <jholland@akamai.com> Wed, 29 June 2022 15:08 UTC

Return-Path: <jholland@akamai.com>
X-Original-To: msec@ietfa.amsl.com
Delivered-To: msec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F13E9C157B3A for <msec@ietfa.amsl.com>; Wed, 29 Jun 2022 08:08:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.849
X-Spam-Level:
X-Spam-Status: No, score=-7.849 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=akamai.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TlY3V9W6VOzO for <msec@ietfa.amsl.com>; Wed, 29 Jun 2022 08:08:40 -0700 (PDT)
Received: from mx0b-00190b01.pphosted.com (mx0b-00190b01.pphosted.com [IPv6:2620:100:9005:57f::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B1E0C14F726 for <msec@ietf.org>; Wed, 29 Jun 2022 08:08:40 -0700 (PDT)
Received: from pps.filterd (m0050096.ppops.net [127.0.0.1]) by m0050096.ppops.net-00190b01. (8.17.1.5/8.17.1.5) with ESMTP id 25TCnLAG001171; Wed, 29 Jun 2022 16:08:36 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-id : content-transfer-encoding : mime-version; s=jan2016.eng; bh=WT3abCOWXUlJAj49JP3YGg0Y+g0Tx4WxzcJhJdBOyl0=; b=UGSYZCbdzMVMB1OCXgNPKt1AMMKIfU1uCI6ufHC24fzhnZHiOzKQI5AKE8P5yPL7yNhB mA3V6B+9agOZWHkEJ2XCVO3GVJKGMgcM0emsYDsXFi9sRU9Uss+CVJ2mWYzd52HwWE0d TVYc2rpsxVdKyfty4gzo0cuxFo5m13wd8E5I8XHrgICuza6xrqoW14tIqHDlYk4Z20q9 DaxxVp2UOWgM4Q+qG6GHP6IZumd+TRCjlegs2e890MUV9GJx1clWIDdjGI+2CINxB3AW CHFv/L+tj/oRzCF1DuKXANqArXefnsMrnVb2YuvDGSiJklWYpqzXJbdmwhhP9pBh1192 uw==
Received: from prod-mail-ppoint2 (prod-mail-ppoint2.akamai.com [184.51.33.19] (may be forged)) by m0050096.ppops.net-00190b01. (PPS) with ESMTPS id 3gynjars3c-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 29 Jun 2022 16:08:36 +0100
Received: from pps.filterd (prod-mail-ppoint2.akamai.com [127.0.0.1]) by prod-mail-ppoint2.akamai.com (8.17.1.5/8.17.1.5) with ESMTP id 25TE7Vvb007511; Wed, 29 Jun 2022 11:08:35 -0400
Received: from email.msg.corp.akamai.com ([172.27.123.32]) by prod-mail-ppoint2.akamai.com (PPS) with ESMTPS id 3gyt87dwak-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 29 Jun 2022 11:08:35 -0400
Received: from usma1ex-dag3mb6.msg.corp.akamai.com (172.27.123.54) by usma1ex-dag4mb7.msg.corp.akamai.com (172.27.91.26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.2.986.26; Wed, 29 Jun 2022 11:08:35 -0400
Received: from usma1ex-dag3mb5.msg.corp.akamai.com (172.27.123.55) by usma1ex-dag3mb6.msg.corp.akamai.com (172.27.123.54) with Microsoft SMTP Server (TLS) id 15.0.1497.36; Wed, 29 Jun 2022 11:08:35 -0400
Received: from usma1ex-dag3mb5.msg.corp.akamai.com ([172.27.123.55]) by usma1ex-dag3mb5.msg.corp.akamai.com ([172.27.123.55]) with mapi id 15.00.1497.036; Wed, 29 Jun 2022 11:08:34 -0400
From: "Holland, Jake" <jholland@akamai.com>
To: "sarikaya@ieee.org" <sarikaya@ieee.org>
CC: "msec@ietf.org" <msec@ietf.org>
Thread-Topic: [MSEC] QUIC multicast
Thread-Index: AQHYij1gcuY29HGYmk+y8BxGzr0uNK1lPOgA//+nWoCAAdQOgP//lR2A
Date: Wed, 29 Jun 2022 15:08:34 +0000
Message-ID: <C8C85975-E448-449D-90D5-0FCB46664183@akamai.com>
References: <367D7BA3-4883-49C3-9C9A-B0ACF82AB144@akamai.com> <CAC8QAccDoV=29qoxJUQLbp2qD3XNBboURmwR4eju-FFyYQYJxw@mail.gmail.com> <4F4CB186-40E9-4CC6-9DA5-F63F157BD9F8@akamai.com> <CAC8QAcd2gPO8Kn83wgp_LmgHwxjEspM6h-dfgwDgi8aBVfCLpw@mail.gmail.com>
In-Reply-To: <CAC8QAcd2gPO8Kn83wgp_LmgHwxjEspM6h-dfgwDgi8aBVfCLpw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.27.164.43]
Content-Type: text/plain; charset="utf-8"
Content-ID: <3889F5DDE6F7F249B4BBB29B896679A8@akamai.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-06-29_17,2022-06-28_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 bulkscore=0 mlxscore=0 spamscore=0 mlxlogscore=687 suspectscore=0 malwarescore=0 phishscore=0 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206290055
X-Proofpoint-ORIG-GUID: OafxpwdRB4v7TSkNX7H6CNEmDC_VeIV4
X-Proofpoint-GUID: OafxpwdRB4v7TSkNX7H6CNEmDC_VeIV4
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.883,Hydra:6.0.517,FMLib:17.11.122.1 definitions=2022-06-29_17,2022-06-28_01,2022-06-22_01
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 mlxlogscore=627 spamscore=0 phishscore=0 mlxscore=0 lowpriorityscore=0 clxscore=1015 bulkscore=0 suspectscore=0 malwarescore=0 impostorscore=0 priorityscore=1501 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2204290000 definitions=main-2206290055
Archived-At: <https://mailarchive.ietf.org/arch/msg/msec/n3yj4ZjzdYJMauxaQ17r87Bf_oI>
Subject: Re: [MSEC] QUIC multicast
X-BeenThere: msec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Multicast Security List <msec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/msec>, <mailto:msec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/msec/>
List-Post: <mailto:msec@ietf.org>
List-Help: <mailto:msec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/msec>, <mailto:msec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Jun 2022 15:08:45 -0000

From: Behcet Sarikaya <sarikaya2012@gmail.com>
>> Those packets have a channel id instead of a connection
>> id, as well as secrets that are generated and distributed
>> differently than the unicast secrets (with the in-depth
>> examination of the security consequences of this covered
>> in our earlier draft-krose-multicast-security doc), but
>> the handling is otherwise very similar to handling for
>> QUIC multipath packets.
>
> It sounds like a lot of stretch  to me, multipath is
> basically for mobility, here you don't have the same thing.

Of course the purpose is different from multipath, but the
mechanics of handling packets is similar in that there's an
ack for multiple independent packet number spaces.

(Also: connection migration from RFC 9000 is for mobility,
but multipath as described in draft-ietf-quic-multipath with
multiple paths actively in use is for performance as well as
mobility.)

Maybe the point I should have made in answer to your original
question is that every packet received is processed in the
context of a connection, so there's no conflict with the
connection-oriented nature of QUIC as far as I'm aware.

Anyway, in case that hasn't clarified things enough:

I'm confused whether you're saying you think there's a reason
the extensions in draft-jholland-quic-multicast won't work?

Or can you more concretely explain what exactly seems like a
stretch and why it seems that way to you?

HTH.

-Jake

v2.23.0 | Report a Bug | By Email