Re: [Ppm] Interim topic: Shall DAP support heavy hitters?
Christopher Patton <cpatton@cloudflare.com> Thu, 11 April 2024 22:37 UTC
Return-Path: <cpatton@cloudflare.com>
X-Original-To: ppm@ietfa.amsl.com
Delivered-To: ppm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B2FEFC14F5FC for <ppm@ietfa.amsl.com>; Thu, 11 Apr 2024 15:37:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cloudflare.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EFEXWT7YbpT6 for <ppm@ietfa.amsl.com>; Thu, 11 Apr 2024 15:37:55 -0700 (PDT)
Received: from mail-oi1-x230.google.com (mail-oi1-x230.google.com [IPv6:2607:f8b0:4864:20::230]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3AC1C14F61F for <ppm@ietf.org>; Thu, 11 Apr 2024 15:37:55 -0700 (PDT)
Received: by mail-oi1-x230.google.com with SMTP id 5614622812f47-3c5f91cc169so170154b6e.0 for <ppm@ietf.org>; Thu, 11 Apr 2024 15:37:55 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cloudflare.com; s=google09082023; t=1712875075; x=1713479875; darn=ietf.org; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :from:to:cc:subject:date:message-id:reply-to; bh=VIhJYsraswqu0Q3nqJH1KE3+dFAL7+x++MC0+fOf6A8=; b=CuVArLoH0c/F6dOIMFVt1Ol+bli2YbSiyz06D8zWdPvlaF+ZQ/qb0Cz/gkkY+zNuDa DILLlFx5WMne4IFQRodlvUIGR8qRvQ1EYjiggaaY6ojfcJ5TdZ5AqxcFRtNQwj3eooRO EF21uE6Am5ORWuYg2Lf9kBLHimKDTY4aD8ZeeumLLLJbpyM9DvF9opmW26U3Tz6fBmy+ 2r9qt4fcyNEdWBat+Ke3/V+63v0HaHRnPjJpBU63EYSGnsXR1IPDwJ4Dkbc+J/KYezU0 8nbWvT0IZoJSWdwJlfCEr4QR+CxvaNUb2IVYUg++9O6sk5B4LdBg+V7uRw1IW4PDixdZ pLaw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1712875075; x=1713479875; h=to:subject:message-id:date:from:in-reply-to:references:mime-version :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=VIhJYsraswqu0Q3nqJH1KE3+dFAL7+x++MC0+fOf6A8=; b=S/Iju0OL1KYwA3e4nMa+KG1VYa4Mh/HRF2ZS1EKWpGbmysR/XVRzE0UarUYapDb8aO Bids2gOntZ7z6+Gs/buNzpPJIKn0Cmft4XkXdG6TPUZ9BaZadpaDkuBG71R2X/oROlNP Wf3AalK5XQyMsjyJnr28b55JorsFQeloFclBkRRN37f6fPtiuo6WGsp09U8Svd7PEb2S fs2USTIqOrec9jQ3P1ZazoVAxFqbcMnGmYoNoyV3Jiw6nDSYY7Hp29xSVuyo4068XrTL 0WGDBQGsvpyuZ6uAgV1VeE+LKxZgXVffYttOHPjwe909Cn3tt/Q+ELUjA+2oa6muN1cW 6o9Q==
X-Gm-Message-State: AOJu0YyOhdR6yzRAn7pl4j5JCdR4zXaDcz8guewa6Sj2Ml9AUvwhrm3b v1KGyvGaq4X9Hvn12fOhy5tGXvsIY6ORrGTyWmScHe7jq4l0J3Z0bUoKgovz+8CGzhap1Z6D1hA CwlJ0lUH06LyHvAnoSssfYDiBGGD916yWKeYwnJq8BIwKBJjd
X-Google-Smtp-Source: AGHT+IEPsukKCl0pvLVE5Rq9n9xjb2erqIqzLOHqddDGxZZgdFBX00acxf/33s1F0y+As0QDRKYCZBRjyxsk2TO+zRo=
X-Received: by 2002:a05:6808:19a5:b0:3c6:f20c:e2a8 with SMTP id bj37-20020a05680819a500b003c6f20ce2a8mr737315oib.18.1712875074701; Thu, 11 Apr 2024 15:37:54 -0700 (PDT)
MIME-Version: 1.0
References: <CAG2Zi21sjDQ31S7MpKL92ZL9o9_OnqsYe_33RPvW3eMDh2Wzeg@mail.gmail.com>
In-Reply-To: <CAG2Zi21sjDQ31S7MpKL92ZL9o9_OnqsYe_33RPvW3eMDh2Wzeg@mail.gmail.com>
From: Christopher Patton <cpatton@cloudflare.com>
Date: Thu, 11 Apr 2024 15:37:44 -0700
Message-ID: <CAG2Zi23xe03ahKSE1=ZZiuZrsop9yviWOUWzJfeYMA2YtWBRAQ@mail.gmail.com>
To: ppm <ppm@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000005f6a3d0615d9ce41"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ppm/DunuPYSGoQxu8Y9ivJXuYgbybFc>
Subject: Re: [Ppm] Interim topic: Shall DAP support heavy hitters?
X-BeenThere: ppm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Preserving Measurement technologies <ppm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ppm>, <mailto:ppm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ppm/>
List-Post: <mailto:ppm@ietf.org>
List-Help: <mailto:ppm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ppm>, <mailto:ppm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2024 22:37:59 -0000
Hi everyone, I've prototyped most of the changes for Proposal #1 in Daphne: https://github.com/cloudflare/daphne/pull/575 Lots of this would be reusable for #2. I hope this gives folks a sense of the scope of changes required for supporting heavy hitters. Chris P. On Mon, Apr 8, 2024 at 4:18 PM Christopher Patton <cpatton@cloudflare.com> wrote: > Hi folks, > > As noted at IETF 118, there are a number of issues for the DAP spec > related to supporting heavy hitters via Poplar1: > > https://datatracker.ietf.org/meeting/118/materials/slides-118-ppm-dap-open-issues > > We'd like to spend a significant chunk of time during the interim on > resolving these issues. To that end, Tim G. and I have been leading a small > design team over the last couple of months towards identifying a set > protocol changes to support this important use case. We need your help > deciding between three different options: > > - Proposal #0: Don't support heavy hitters in DAP (punt to a future > protocol spec) > - Proposal #1: Support heavy hitters with minimal changes to DAP > - Proposal #2: Support heavy hitters, but amend the collection > sub-protocol to minimize the amount of information revealed to the Collector > > Each proposal is detailed in the following google doc: > > https://docs.google.com/document/d/1ZjXz-1kGsTDf2Vn2u-fwYqR8BSc3tOYlELVHAYvAfjk/edit?usp=sharing > > It would be helpful if folks could spend some time ahead of the interim > (22 April, two weeks from now) digesting these options, providing feedback, > and figuring out what information you need, if any, to form an opinion. My > hope is that we'll be prepared to make a decision during the interim on the > questions enumerated in Section 6. > > Relatedly: If we decide to support heavy hitters, then we'll also need to > decide how to deal with a class of attacks against DAP/Poplar1 articulated > by Simon Friedberger and Phillipp Schoppmann. We call these "steering > attacks", as they exploit the fact that the attacker in our threat model > has partial control of the protocol execution that is not considered the > original Poplar paper (https://ia.cr/2021/017). There are a few > mitigations in the google doc that we'd like folks to mull over. > > I'm looking forward to seeing folks online in a couple of weeks. > > Thanks, > Chris P. >
- [Ppm] Interim topic: Shall DAP support heavy hitt… Christopher Patton
- Re: [Ppm] Interim topic: Shall DAP support heavy … Christopher Patton
- Re: [Ppm] Interim topic: Shall DAP support heavy … Christopher Patton