Re: [Pearg] IRTF Chair review of draft-irtf-pearg-censorship-06
Eric Rescorla <ekr@rtfm.com> Sun, 18 December 2022 00:55 UTC
Return-Path: <ekr@rtfm.com>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AFDF6C1522BC for <pearg@ietfa.amsl.com>; Sat, 17 Dec 2022 16:55:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.896
X-Spam-Level:
X-Spam-Status: No, score=-6.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rtfm-com.20210112.gappssmtp.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4n8QWJhy0ouo for <pearg@ietfa.amsl.com>; Sat, 17 Dec 2022 16:55:16 -0800 (PST)
Received: from mail-pl1-x62b.google.com (mail-pl1-x62b.google.com [IPv6:2607:f8b0:4864:20::62b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF94DC1522B9 for <pearg@irtf.org>; Sat, 17 Dec 2022 16:55:16 -0800 (PST)
Received: by mail-pl1-x62b.google.com with SMTP id 4so5820944plj.3 for <pearg@irtf.org>; Sat, 17 Dec 2022 16:55:16 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rtfm-com.20210112.gappssmtp.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=XbcBeijhbZ0/Hft0fVpu31ef48b1Yev49FXdTUd04xo=; b=ep0FZPAG5/11EZnS5qLMqY4KeyQsCfsdTPBZbaGRHh1X5WUkm+sgHgWwePjrPgOcBP NqaHv6z9/2q8xqXnKTQiB22WFN3oxwM5ezvCQfiGpjTmPAMDXBRAK7MEO94A8VMw3UaQ iqN4FIHDv0/qVDeTfW6ZmQ5759oltsgvdbVkdLKwGVKZgYUrpOz8U5lx1U98qyBPW+0o l0EUHSydKsfs3Wdyri+HYyzbbivIIsgUF66lBJEU7T+CnMUF4rlh9Qwns9Otg3zMhHtn 9xf3wogPMDC8Q1w0TNX6SKQLnQYQpE5BLLivtH02iZScGaADpPtzdsr11/2iAdPahA9o e3ew==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=XbcBeijhbZ0/Hft0fVpu31ef48b1Yev49FXdTUd04xo=; b=UBW/aJ32zffpjteUlLcsJ0dlnegU6biwzCpsqxOBOrKs4YsPmNpw1NnWrn1n3ebRmP DE/tj9Kfgc1DCTVJFktsr31ckN17uncgr5Fa4ApXqjSDtHDYkDGeAletKoi3IGC6/RHH 9EXpBiVlELDMr1WVUAbEiqEy76LQIPYdFJVnLHF9JYjPOWrWlT/h7/HiRixPySxLVork Qv6j+NZaGmfpLQ+ezpUXwVm5GBIh9t3pfq1uk8J1k1PoSsfyhB+6ILwuhFEZUMIHy8oP fpkqURuaXB14NBp6AhoNtGEZLEp9rESIwlTTQmrhYxv/zoSAu99ZX5fQYTGRVUP2roTU pUVA==
X-Gm-Message-State: AFqh2kpljDS8k7Wr6fq3OqmLYhdnfLEEKlZLyZAb47f9ugDaIHpPdfbb ijXT/eEXIX6snYNz6GwYsuXS56DkSfLCg7eXpImYL9XIRQkSlQ==
X-Google-Smtp-Source: AMrXdXuiKur+iTVpdUX37ZxK95wuA6x4VYst7/f9EO6WFAaEH3UIbgvAo02inrzEC+XMZAPdggrNsPC/Hiod03gEsq0=
X-Received: by 2002:a17:902:d589:b0:190:e293:e18b with SMTP id k9-20020a170902d58900b00190e293e18bmr999763plh.23.1671324915834; Sat, 17 Dec 2022 16:55:15 -0800 (PST)
MIME-Version: 1.0
References: <EEB94C0D-88B8-4AE2-BF71-93E370D4A3C8@csperkins.org> <3e99a9e7-bf20-dada-d04f-8341217fdb01@cdt.org> <036B4FCA-71C5-4C7E-9007-C5CC24BAB491@csperkins.org>
In-Reply-To: <036B4FCA-71C5-4C7E-9007-C5CC24BAB491@csperkins.org>
From: Eric Rescorla <ekr@rtfm.com>
Date: Sat, 17 Dec 2022 16:54:40 -0800
Message-ID: <CABcZeBP9QFnfOO-r8zqugPNGtjJ3ieTDAbXMv6B2LnyhpYF==g@mail.gmail.com>
To: Colin Perkins <csp@csperkins.org>
Cc: Mallory Knodel <mknodel@cdt.org>, pearg@irtf.org, pearg-chairs@ietf.org, draft-irtf-pearg-censorship@ietf.org
Content-Type: multipart/alternative; boundary="000000000000e9bb5305f00fa7b5"
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/_9xlLNr2IJnlpBVDWgkBC9ePjyo>
Subject: Re: [Pearg] IRTF Chair review of draft-irtf-pearg-censorship-06
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Dec 2022 00:55:17 -0000
On Sat, Dec 17, 2022 at 12:03 PM Colin Perkins <csp@csperkins.org> wrote: > Hi Mallory, > > > On 15 Dec 2022, at 17:40, Mallory Knodel wrote: > > > Hi Colin and all, > > > > I made some changes in the new version thusly: > > > > On 12/2/22 12:29 PM, Colin Perkins wrote: > >> RFC 5743 compliance: The draft does not follow the guidelines in RFC > 5743 > > Fixed. > > Thanks - but I think a little more is needed. The draft doesn’t state the > breadth of review undertaken by the RG, and doesn’t include an explicit > statement that the draft is not an IETF product and is not a standard. > > >> There are two places where specific censorship products are mentioned, > along with citations of their use (SmartFilter in §3 and §4.2.1, NetSweeper > in §4.2.1). Given that the set of such products changes over time, and is > likely to become rapidly obsolete, I wonder if the draft might better just > list the classes of products and leave the specifics to the cited sources? > > Agree-- and since those sections included enough description of those > technologies it was easy to remove them. However I did have to change the > citation for NarusInsight because the former citation (directly to the EFF > blog post about the AT&T lawsuit) didn't mention it. I use the Wikipedia > article about the lawsuit instead, which gives a better overview of the > techniques in question. > > This is good, thanks. > > >> §4.2.3: “Note that TLS 1.3 acts as a security component of QUIC” – do > the differences in the way TLS integrates with QUIC affect censorship as > described in this draft? > > > > My interpretation of the intention of this sentence is to point out that > various parts of TLS 1.3 are used for blocking, but that each of these > parts then can be used to block QUIC in the same way. So rather than having > a QUIC subsection, they are combined. I checked the subsequent sections and > have confirmed that the subsections where relevant indicate where QUIC can > be blocked or where QUIC cannot be blocked with the same method given that > it is, still, different from TLS. > > I was asking a slightly different question that was maybe not well phrased. > > TLS when used over TCP formats the TLS handshake in a particular way onto > the TCP connection and exposes certain information in the clear (the SNI, > for example). QUIC does this differently, sending the TLS handshake in > CRYPTO frames as part of Initial packets that have some limited protection > applied to them. Do these differences change the information that’s exposed > in a way that affects the censorship described in this draft? > I don't believe it meaningfully does. Although it is encrypted, it uses a deterministic key that can be computed from the data in the packet. You really need ECH if you want to conceal this information. -Ekr
- [Pearg] IRTF Chair review of draft-irtf-pearg-cen… Colin Perkins
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Dr. Joseph Lorenzo Hall
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Colin Perkins
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Dr. Joseph Lorenzo Hall
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Mallory Knodel
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Colin Perkins
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Eric Rescorla
- Re: [Pearg] IRTF Chair review of draft-irtf-pearg… Colin Perkins