IETF Logo Mail Archive

Re: [Ohai] The OHAI WG has placed draft-ohai-chunked-ohttp in state "Call For Adoption By WG Issued"

Eric Rosenberg <eric_rosenberg@apple.com> Thu, 25 January 2024 16:05 UTC

Return-Path: <eric_rosenberg@apple.com>
X-Original-To: ohai@ietfa.amsl.com
Delivered-To: ohai@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1038EC14F69A for <ohai@ietfa.amsl.com>; Thu, 25 Jan 2024 08:05:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.103
X-Spam-Level:
X-Spam-Status: No, score=-7.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N04hfure9enO for <ohai@ietfa.amsl.com>; Thu, 25 Jan 2024 08:05:29 -0800 (PST)
Received: from rn-mailsvcp-mx-lapp02.apple.com (rn-mailsvcp-mx-lapp02.apple.com [17.179.253.23]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6B893C14F697 for <ohai@ietf.org>; Thu, 25 Jan 2024 08:05:29 -0800 (PST)
Received: from rn-mailsvcp-mta-lapp02.rno.apple.com (rn-mailsvcp-mta-lapp02.rno.apple.com [10.225.203.150]) by rn-mailsvcp-mx-lapp02.rno.apple.com (Oracle Communications Messaging Server 8.1.0.23.20230328 64bit (built Mar 28 2023)) with ESMTPS id <0S7T009XLRCPAH20@rn-mailsvcp-mx-lapp02.rno.apple.com> for ohai@ietf.org; Thu, 25 Jan 2024 08:05:27 -0800 (PST)
X-Proofpoint-GUID: MKT9U_cSHaIUCuWqOJ0mK-KTsoK_UDvD
X-Proofpoint-ORIG-GUID: MKT9U_cSHaIUCuWqOJ0mK-KTsoK_UDvD
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.619, 18.0.1011 definitions=2024-01-25_10:2024-01-25, 2024-01-25 signatures=0
X-Proofpoint-Spam-Details: rule=interactive_user_notspam policy=interactive_user score=0 bulkscore=0 suspectscore=0 mlxscore=0 phishscore=0 spamscore=0 malwarescore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2311290000 definitions=main-2401250113
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : message-id : content-type : mime-version : subject : date : in-reply-to : cc : to : references; s=20180706; bh=gQH39yuvzZGFuLmL+/fgPRP807Wfa1xY9n4tPgg/StY=; b=rkIcJTPrGrsa0vcrzkZPsxBZ3+Agh2tf7XVnPCAIdRoQ3jNheWnOA/vSZOGv1bNzqcIZ 2IcF5WsBvvMsZy6NoipoH6bgHQWwSa0jt2ZX/mNYIARpILkuKj4MU7kYxaRcJaEFdjqG d/2rZoMAeuXU1gAM4oiH4zLlNnQ+AWYUhRVNZmj5mNyOQTuHDmfR/FSXfJxMUGC4dDqF LrN7U/15X0+B26ocQ6jL5aVP0ocMFvpDD96Ub24jz9t6Oh8kZimmWOSMeJAfSgJ7UViL dS6Axv/o8MLs3njYKXbBSH3AuewMBANg/Yvvp0NUyvjLiOmIGw6JvD9eVbm7HfqXY+Eo NQ==
Received: from rn-mailsvcp-mmp-lapp01.rno.apple.com (rn-mailsvcp-mmp-lapp01.rno.apple.com [17.179.253.14]) by rn-mailsvcp-mta-lapp02.rno.apple.com (Oracle Communications Messaging Server 8.1.0.23.20230328 64bit (built Mar 28 2023)) with ESMTPS id <0S7T003XSRD0SL90@rn-mailsvcp-mta-lapp02.rno.apple.com>; Thu, 25 Jan 2024 08:05:24 -0800 (PST)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp01.rno.apple.com by rn-mailsvcp-mmp-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.23.20230328 64bit (built Mar 28 2023)) id <0S7T00O00R5A4S00@rn-mailsvcp-mmp-lapp01.rno.apple.com>; Thu, 25 Jan 2024 08:05:24 -0800 (PST)
X-Va-A:
X-Va-T-CD: 7c41845d202abaa5133654699ccc487a
X-Va-E-CD: 01a5231de190f7b765fcca52a3cf9a4b
X-Va-R-CD: 9f7d4b91cc51fb981b2258123bc9d1e0
X-Va-ID: 14a599d0-97d9-4cf4-b127-43462d7dc29a
X-Va-CD: 0
X-V-A:
X-V-T-CD: 7c41845d202abaa5133654699ccc487a
X-V-E-CD: 01a5231de190f7b765fcca52a3cf9a4b
X-V-R-CD: 9f7d4b91cc51fb981b2258123bc9d1e0
X-V-ID: 7d48879b-e270-4b6c-8003-a69f0d135981
X-V-CD: 0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.619, 18.0.1011 definitions=2024-01-25_10:2024-01-25, 2024-01-25 signatures=0
Received: from smtpclient.apple (unknown [17.230.197.240]) by rn-mailsvcp-mmp-lapp01.rno.apple.com (Oracle Communications Messaging Server 8.1.0.23.20230328 64bit (built Mar 28 2023)) with ESMTPSA id <0S7T00W31RCZFR00@rn-mailsvcp-mmp-lapp01.rno.apple.com>; Thu, 25 Jan 2024 08:05:24 -0800 (PST)
From: Eric Rosenberg <eric_rosenberg@apple.com>
Message-id: <CE2BA14A-DC1C-490C-AD3F-3010EFD0FEB2@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_A8499736-7665-4BA3-B46C-5F82C9791267"
MIME-version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\))
Date: Thu, 25 Jan 2024 08:05:13 -0800
In-reply-to: <c9838443-902b-4974-8d83-4f270f954d30@app.fastmail.com>
Cc: David Schinazi <dschinazi.ietf@gmail.com>, ohai@ietf.org, Shivan Kaul Sahib <shivankaulsahib@gmail.com>
To: Lucas Pardue <lucaspardue.24.7@gmail.com>
References: <170605229077.32114.14133160573475368161@ietfa.amsl.com> <CAG3f7MgroSwXa=QpTU-vxx4fXRs3+-PyUxMtEsJXwncoD3v7pQ@mail.gmail.com> <2534E21A-7B9A-46E0-AE88-D1F6BD70F2C2@mnot.net> <CAPDSy+5T6shZm9B0BC6gEB6uAckJHEGD8veeOyrFka3O3f366Q@mail.gmail.com> <c9838443-902b-4974-8d83-4f270f954d30@app.fastmail.com>
X-Mailer: Apple Mail (2.3774.300.61.1.2)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ohai/QtfIxQU9b4b8ldQms339bErJJkU>
Subject: Re: [Ohai] The OHAI WG has placed draft-ohai-chunked-ohttp in state "Call For Adoption By WG Issued"
X-BeenThere: ohai@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Oblivious HTTP Application Intermediation <ohai.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ohai>, <mailto:ohai-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ohai/>
List-Post: <mailto:ohai@ietf.org>
List-Help: <mailto:ohai-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ohai>, <mailto:ohai-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jan 2024 16:05:33 -0000

I support adoption.

While I agree CONNECT+TLS should be preferred to OHTTP for large/slow messages, there are cases where the response message size and expected latency is unknown to the client. In these cases, if 99% of the time the response size is small/fast and 1% of the time the response is large/slow, it would be advantageous to still be able to take advantage of OHTTP as an optimization - biasing towards the 99% case.

Thanks,
Eric Rosenberg

> On Jan 24, 2024, at 19:11, Lucas Pardue <lucaspardue.24.7@gmail.com> wrote:
> 
> 
> 
> On Thu, Jan 25, 2024, at 02:00, David Schinazi wrote:
>> I'm opposed to adoption.
>> 
>> This mechanism appears to be geared at use cases that would be better served by single-HTTP-request-over-TLS-over-CONNECT (which I'll conveniently abbreviate to SHROTOC for the rest of this email). The reason that OHTTP itself exists is that it provides better performance than SHROTOC for small requests and responses, because the TLS handshake overhead is quite noticeable when the application data is small. This performance win justified the weaker security that OHTTP provides compared to SHROTOC. In particular, OHTTP lacks perfect forward secrecy and is vulnerable to replay attacks. Extending OHTTP to large messages creates something that has performance similar to SHROTOC but with much weaker security. If early data is considered useful, SHROTOC can leverage TLS 0-RTT with much better security properties: only the early data lacks PFS and replay-protection, any data exchanged after the client first's flights gets those protections. I'm opposed to creating a new mechanism when there is already an available solution with better security.
>> 
>> Apologies if this was covered in yesterday's meeting, I was unable to attend and did not find minutes or recordings for it.
> The recording of the meeting is up at https://m.youtube.com/watch?v=TB_NH2QIr08
> 
>> 
>> Thanks,
>> David
>> 
>> On Wed, Jan 24, 2024 at 2:10 PM Mark Nottingham <mnot=40mnot.net@dmarc.ietf.org <mailto:40mnot.net@dmarc.ietf.org>> wrote:
>> I support adoption.
>> 
>> > On 24 Jan 2024, at 10:27 am, Shivan Kaul Sahib <shivankaulsahib@gmail.com <mailto:shivankaulsahib@gmail.com>> wrote:
>> > 
>> > ohai all, 
>> > 
>> > Thanks to folks who attended the interim today to discuss https://www.ietf.org/archive/id/draft-ohai-chunked-ohttp-01.html. Overall, there was interest in adopting and working on the document. 
>> > 
>> > This email starts a 2 week call for adoption for https://datatracker.ietf.org/doc/draft-ohai-chunked-ohttp/. Please let us know what you think about OHAI adopting this document by February 6.
>> > 
>> > Thanks,
>> > Shivan & Richard
>> > 
>> > On Tue, 23 Jan 2024 at 15:24, IETF Secretariat <ietf-secretariat-reply@ietf.org <mailto:ietf-secretariat-reply@ietf.org>> wrote:
>> > 
>> > The OHAI WG has placed draft-ohai-chunked-ohttp in state
>> > Call For Adoption By WG Issued (entered by Shivan Sahib)
>> > 
>> > The document is available at
>> > https://datatracker.ietf.org/doc/draft-ohai-chunked-ohttp/
>> > 
>> > 
>> > -- 
>> > Ohai mailing list
>> > Ohai@ietf.org <mailto:Ohai@ietf.org>
>> > https://www.ietf.org/mailman/listinfo/ohai
>> 
>> --
>> Mark Nottingham   https://www.mnot.net/
>> 
>> -- 
>> Ohai mailing list
>> Ohai@ietf.org <mailto:Ohai@ietf.org>
>> https://www.ietf.org/mailman/listinfo/ohai
>> -- 
>> Ohai mailing list
>> Ohai@ietf.org <mailto:Ohai@ietf.org>
>> https://www.ietf.org/mailman/listinfo/ohai
>> 
> 
> -- 
> Ohai mailing list
> Ohai@ietf.org <mailto:Ohai@ietf.org>
> https://www.ietf.org/mailman/listinfo/ohai

v2.23.0 | Report a Bug | By Email