Re: [multipathtcp] draft minutes for montreal meeting

Olivier Bonaventure <> Wed, 21 August 2019 15:31 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 3EEA9120B37 for <>; Wed, 21 Aug 2019 08:31:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id DUkemHpDF8kO for <>; Wed, 21 Aug 2019 08:31:55 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id DB119120B36 for <>; Wed, 21 Aug 2019 08:31:54 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901;; cv=none; b=G8ee+9mfCymlvYwI5969jZKk2yZPbeHcXjw+RUrKH5V3cnvuzmDeOkmyek/1XvlGQY7lkmX0BkMNBl1/SjYf2+jFXIG97WB0XLA3HEvTgS1AnZKtl+GFqwa23FNKT+JlCMtPrdPoPKCk0ciPIAgtdIgBMMdRRoHivZyjYeXbl3lgjzl36kPjCRV1GKwJJcmaD5kIvrnFID8pOY2XxUCoLXLEY5Ulq093ziLFSmYTFA6dkdpL7DRiKwOePkrOhJbze7+ITQTZmHSN+lUdzMo0BDlD4odBFHqEYOf373ycR+q4K7iWqHGrVvJU1v7Tt6cLnO2ryCwYIv2dQ91nNh3Xhw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed;; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0JyQVd2SyZdhpFs+UBWrN7uEUksXMfWMs8yzrwYwJcI=; b=Udc5+wUhHyFVFTHuglkBL2xnkpF+ZdE8v/BMrmGXTHiXScG8Sg/4BXRCSQ4vH/eCeBDQ8VovcehZirJ2iIv2WazkRb8psu0nr59A5ExSREPqlwiezppt4Ir0Ht8fz1mAju1j+69ua5RkEwq8XqOS427b7E6hgQSJrmSkPGCcrgRKsRZaVMAM9GxiXwX4rzna8vxkAaS5LmO35D8TtKpZ86Rzc93BozyyPvNcCIsAmpLMXLXz1dKNwev/ub5FLycvK+t4OJevYvJMN9BCZX6dmafVVrLLvJoRnL8fJjWnZR1O3pnfQ+y0EUMoKjihcIP3wWzxajcvBtgB1L/xJFLPwQ==
ARC-Authentication-Results: i=1; 1; spf=pass; dmarc=pass action=none; dkim=pass; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0JyQVd2SyZdhpFs+UBWrN7uEUksXMfWMs8yzrwYwJcI=; b=v2wOBTXp45uCkxRwkssKCwW8DjhUYvRq8vm6MaB1TnYVlCtohs9ZfrT235zXQCtH+ibCFQAFWMdAw7REnDxUs/miri/GjytrnKbKAeefXVUZsUIR9endhHx0oQAaXGm5HY480YmAVz13tra/vVdKkc9V+aq2ICoRmZ2SKdrWalo=
Received: from ( by ( with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2178.16; Wed, 21 Aug 2019 15:31:52 +0000
Received: from ([fe80::256d:9d8a:8df:96fb]) by ([fe80::256d:9d8a:8df:96fb%7]) with mapi id 15.20.2178.018; Wed, 21 Aug 2019 15:31:52 +0000
From: Olivier Bonaventure <>
To: Yoshifumi Nishida <>, multipathtcp <>, Mathieu Jadin <>
Thread-Topic: [multipathtcp] draft minutes for montreal meeting
Thread-Index: AQHVU6m8GPHNNa5q7kK1lksknJZnXacFw8YA
Date: Wed, 21 Aug 2019 15:31:52 +0000
Message-ID: <>
References: <>
In-Reply-To: <>
Reply-To: Olivier Bonaventure <>
Accept-Language: en-US
Content-Language: en-US
x-clientproxiedby: PR0P264CA0226.FRAP264.PROD.OUTLOOK.COM (2603:10a6:100:1e::22) To (2603:10a6:5:4::29)
authentication-results: spf=none (sender IP is );
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [2001:6a8:308f:2:18fd:55b7:3c93:1ab5]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 44e747b2-edd2-4a2f-41e5-08d7264cb0a6
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:DB7PR03MB4009;
x-ms-traffictypediagnostic: DB7PR03MB4009:
x-ms-exchange-purlcount: 2
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0136C1DDA4
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(39860400002)(396003)(346002)(366004)(136003)(376002)(189003)(199004)(36756003)(110136005)(53936002)(6246003)(86362001)(25786009)(786003)(31696002)(316002)(486006)(31686004)(99286004)(966005)(446003)(43066004)(478600001)(8676002)(81156014)(81166006)(2616005)(561944003)(476003)(8936002)(46003)(14454004)(11346002)(256004)(6436002)(102836004)(3450700001)(6306002)(76176011)(386003)(6506007)(6636002)(6512007)(64756008)(6486002)(71200400001)(71190400001)(66446008)(66556008)(66476007)(66946007)(305945005)(7736002)(2906002)(229853002)(5660300002)(6116002)(14444005)(52116002)(186003); DIR:OUT; SFP:1102; SCL:1; SRVR:DB7PR03MB4009;; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None ( does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 82aCFASqXQ9Lf792IMP8HUSvm5XjBgKdGxAC9nFbnrASpNWOYRwgKkyQTY8My9MtTJ4sGr9lC1M97bxcsBmh267Xp6YXbjXRl+Vd0hpo1cEkj+xKPOph8F8coX+o7ILU+od4M1sjNcEmHkrwjqMR0xpHM/C5rFjZaP+PxpeOl6YXWNMMFsBa3A1AwUG/NlbsJHVyhLMlPtfbWXSjzs2hyBCcV9B3mso4tHbyNhSEAb2Lpx4d17X3kLhVtWb8m3P796BDKZppZPZu3zN0uwsHPqsqxs0EPfrjvT3MlQyAWBV9wg5kZlTBXQyhPQs/bQNbVlUV5CxSNqfWM+KWJR2zFFaGT7MeStKRLgpUGVFA1t/S9ZVXvivdisgZgPBUiX0+xFpyaYznmLtTeb4ZhN4Tdkli9ktyrr/F3jEl9+9daGU=
Content-Type: text/plain; charset="utf-8"
Content-ID: <>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 44e747b2-edd2-4a2f-41e5-08d7264cb0a6
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Aug 2019 15:31:52.0649 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 7ab090d4-fa2e-4ecf-bc7c-4127b4d582ec
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: neI7tit1Qwr49QsBv+D+JWjlH04E7UrNuIHoiGPcdY2QCg6UQBSL9HUssU67A7JCz/QHvFh0gL32EsmcMAqQcIVgHcjELgcI3srE9+2phuTFtrDigRxO/GMWbxQBt/4b
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR03MB4009
Archived-At: <>
Subject: Re: [multipathtcp] draft minutes for montreal meeting
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multi-path extensions for TCP <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 21 Aug 2019 15:31:58 -0000


> Sorry for the delay. I uploaded a draft minutesĀ for montreal meeting.
> You can take a look at the URL below.
> Please let the chairs know if you have corrections, suggestions or 
> questions.

Thanks for sharing these detailed minutes. I have some comments after 
having read them.

>    Keith Moore:
>        Is there support in the room for working on a secure (encrypted) version
>        of MPTCP?
>    Chairs:
>        Show of hands: How many would be willing to work on an encrypted version.

We proposed such a design in an infocom paper, see
There was running code on Linux but we have not maintained it since 
>    Mirja (as individual):
>        If you want encryption, use QUIC.
>    Chairs:
>        Would work on be a bad idea?
>        (a couple) and why?
>    Nicolas P:
>        I think it's too heavy. Would require encryption of options. >
>    Yoshi:
>        TCPINC was oribinally intended to be used for MPTCP. But, it does not
>        encrypt options. Do we want to create an updated version?
>    Mirja:
>        There is zero deployment of TCPINC. I would suggest to first get
>        deployment experience.

If people want to experiment with our implementation, this should be 
possible. My personal viewpoint is that adding full security to MPTCP is 
probably too difficult at this stage if the objective is to have a 
deployable solution.
>    Markus:
>        Will there be another meeting at IETF 106?
>    Chairs:
>        No decision has been made so far.
>    Alan Ford (on Jabber):
>        MPTCP + TLS was proposed some time ago.
>    Yoshi:
>        Someone wants to revive this?
>    Alan Ford (on Jabber):
>        If someone is interested, I would contribute. The proposal was to use
>        TLS key extraction for the session security. It was only a 4 page draft
>        in -00. If there was interest in encryption at transport level, I would
>        suggest to use this as a starting point.
>    Mirja:
>        If there is interest, bring it to the TLS working group.
>    Marcelo:
>        TLS is used as it is.
>    Mirja:
>        TLS may not be happy about an interface to expose the keys.

We also had an implementation of this approach. If would probably need 
to be updated now that TLS 1.3 has been published and that kTLS is 
available in the Linux kernel. In a nutshell, the idea was to derive two 
additional TLS keys (i.e. different keys than the ones used to 
authenticate and encrypt data) and give them to MPTCP to replace the 
keys that are exchanged during the handshake. This improves the security 
of the addition of new subflows but does not counter attacks where an 
attacker modifies encrypted payloads.

I can participate in the discussion on this if there is interest.