IETF Logo Mail Archive

Re: [Privacy-pass] Call for Adoption of Key Consistency and Discovery Draft

Tommy Pauly <tpauly@apple.com> Thu, 06 October 2022 02:15 UTC

Return-Path: <tpauly@apple.com>
X-Original-To: privacy-pass@ietfa.amsl.com
Delivered-To: privacy-pass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 91455C1522AD; Wed, 5 Oct 2022 19:15:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.676
X-Spam-Level:
X-Spam-Status: No, score=-7.676 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.571, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=apple.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Y6Rs4LNjfjq8; Wed, 5 Oct 2022 19:14:56 -0700 (PDT)
Received: from rn-mailsvcp-ppex-lapp45.apple.com (rn-mailsvcp-ppex-lapp45.rno.apple.com [17.179.253.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C6C60C14CE31; Wed, 5 Oct 2022 19:14:56 -0700 (PDT)
Received: from pps.filterd (rn-mailsvcp-ppex-lapp45.rno.apple.com [127.0.0.1]) by rn-mailsvcp-ppex-lapp45.rno.apple.com (8.16.1.2/8.16.1.2) with SMTP id 29629Sxc003924; Wed, 5 Oct 2022 19:14:53 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=apple.com; h=from : message-id : content-type : mime-version : subject : date : in-reply-to : cc : to : references; s=20180706; bh=x/5UFqq1DG/8254zr58i8vrkP68zISwSaa4TcvQMAok=; b=aVjIvb8sjdn7tbs97miLQuo4A4MC6cbL+fcz+g452s4G+7LKuqy7+DXNbV09gxDvFSYV ssaZqkDqiFM6qbYqp5xX9IUw+outgWvFwVShSazZ8XY0EL6ts2oM8gMjnGC5Qqk9FmTp FvSqOgmpyZ2TNbpNZ2ooNORLcHlAf1jR7cdQaMsbPjDSUUlUDMrfokbsFC60+obaTo4S 56mdcl+9Nc9pcGoih8fdvN8DlRfj1Dwy8fCoTxSZDphFZrn6BPGhr4Na1dJ6xdkDy+jG QaMklVbg6gvIZjFTyzx2aVM2ms+eaj64Yo0YBuUvEwlnmJ4jRx11iqm79QYoJPfhn3yD IA==
Received: from rn-mailsvcp-mta-lapp02.rno.apple.com (rn-mailsvcp-mta-lapp02.rno.apple.com [10.225.203.150]) by rn-mailsvcp-ppex-lapp45.rno.apple.com with ESMTP id 3k1df80vw4-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Wed, 05 Oct 2022 19:14:53 -0700
Received: from rn-mailsvcp-mmp-lapp03.rno.apple.com (rn-mailsvcp-mmp-lapp03.rno.apple.com [17.179.253.16]) by rn-mailsvcp-mta-lapp02.rno.apple.com (Oracle Communications Messaging Server 8.1.0.19.20220711 64bit (built Jul 11 2022)) with ESMTPS id <0RJB00ZQD7KTBT50@rn-mailsvcp-mta-lapp02.rno.apple.com>; Wed, 05 Oct 2022 19:14:53 -0700 (PDT)
Received: from process_milters-daemon.rn-mailsvcp-mmp-lapp03.rno.apple.com by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.19.20220711 64bit (built Jul 11 2022)) id <0RJB00E0079IXW00@rn-mailsvcp-mmp-lapp03.rno.apple.com>; Wed, 05 Oct 2022 19:14:53 -0700 (PDT)
X-Va-A:
X-Va-T-CD: dd7269c49f48ec91b1249f385c7ea2dc
X-Va-E-CD: b1982c4ee0c210eace443be4b2ad67b2
X-Va-R-CD: f5822bc24b9604623c1bd3303d0b9709
X-Va-CD: 0
X-Va-ID: 1a7b3fc0-7b08-4280-8f59-79082133fab0
X-V-A:
X-V-T-CD: dd7269c49f48ec91b1249f385c7ea2dc
X-V-E-CD: b1982c4ee0c210eace443be4b2ad67b2
X-V-R-CD: f5822bc24b9604623c1bd3303d0b9709
X-V-CD: 0
X-V-ID: 9ce43bd1-d736-4cbb-98c7-43c834aa8bd2
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.528, 18.0.895 definitions=2022-10-05_05:2022-10-05, 2022-10-05 signatures=0
Received: from smtpclient.apple (unknown [17.11.165.120]) by rn-mailsvcp-mmp-lapp03.rno.apple.com (Oracle Communications Messaging Server 8.1.0.19.20220711 64bit (built Jul 11 2022)) with ESMTPSA id <0RJB001K67KSSK00@rn-mailsvcp-mmp-lapp03.rno.apple.com>; Wed, 05 Oct 2022 19:14:53 -0700 (PDT)
From: Tommy Pauly <tpauly@apple.com>
Message-id: <04AE996B-E459-4868-948E-752BE730DA13@apple.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_7E77B9C0-F569-4361-9900-B989DC8EA58C"
MIME-version: 1.0 (Mac OS X Mail 16.0 \(3730.0.21\))
Date: Wed, 05 Oct 2022 19:14:41 -0700
In-reply-to: <CAMOjQcH6n=DzX0Mh-ufLJ9srqxP+zt6kuQgrjYs4mic6K6Wg=g@mail.gmail.com>
Cc: privacy-pass@ietf.org
To: Eric Orth <ericorth=40google.com@dmarc.ietf.org>
References: <CAMOjQcH6n=DzX0Mh-ufLJ9srqxP+zt6kuQgrjYs4mic6K6Wg=g@mail.gmail.com>
X-Mailer: Apple Mail (2.3730.0.21)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.528, 18.0.895 definitions=2022-10-05_05:2022-10-05, 2022-10-05 signatures=0
Archived-At: <https://mailarchive.ietf.org/arch/msg/privacy-pass/AF9i_ep8cvENAuspO3fM68FdZrw>
Subject: Re: [Privacy-pass] Call for Adoption of Key Consistency and Discovery Draft
X-BeenThere: privacy-pass@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Pass Protocol <privacy-pass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privacy-pass/>
List-Post: <mailto:privacy-pass@ietf.org>
List-Help: <mailto:privacy-pass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Oct 2022 02:15:00 -0000


> On Oct 5, 2022, at 3:17 PM, Eric Orth <ericorth=40google.com@dmarc.ietf.org> wrote:
> 
> I think this is an important draft, useful for a couple different protocols, and I support adoption.
> 
> On Mon, 26 September 2022 20:49 UTC, Tommy Pauly <tpauly@apple.com <mailto:tpauly@apple.com>> wrote:
>> I think this is useful work, and important discussion to have in this working group. To that end, I support adoption.
>> 
>> I have a bit of a broad question as to the specific venue for the work, since the document explicitly has relevance for PRIVACYPASS and OHAI (and could apply to other protocols). If we do this here, we would of course want cross-group discussion. Is there a rationale for one or the other? I also note that draft-schwartz-ohai-consistency-doublecheck is targeted at OHAI, and it really seems like these efforts should be in the same place.
> 
> Overall, I agree.  We should pick one WG (PRIVACYPASS seems fine), unless somebody can think of a better, more general WG, and adopt all such consistency drafts there.

Yes, to that end, PRIVACYPASS seems fine.
> 
> One specific minor concern is that I recall draft-schwartz-ohai-consistency-doublecheck had a payload format specific to use for OHAI.  I suggested at IETF 114 that the draft be split into two, one for the general protocol, and one for the OHAI-specific payload and any other OHAI-specific details (which could maybe be merged with other similar OHAI drafts for payload specs).
>  
>> I’m also of the opinion that the double-checking technique could be merged into draft-wood-key-consistency overall.
> 
> If you mean add a general description of techniques more similar to the double-checking technique, I agree.
> 
> If you mean merge the two drafts completely, I disagree.  One is an informational draft with a general overview of possible techniques.  The other is a standards draft laying out a specific protocol to implement a specific technique.  They should stay separate, and I believe having both drafts would be very valuable.  Although there's probably good room for both drafts to do more to reference the other.

My suggestion is that the general technique of double checking like draft-schwartz-ohai-consistency-doublecheck does — in that case once with a GET request to a reverse proxy and once with a CONNECT request to a forward proxy, followed by a GET — could be described in the main key consistency document. I think really it boils down to “do a lookup with two different proxies, or do one lookup directly and another lookup with a proxy”.

Personally, I don’t think the specific protocol proposal in the doublecheck draft is necessary or makes sense to use, so I’d suggest not trying to include any such normative language. That draft requires the use of a GET request through something that is otherwise an oblivious HTTP relay, and also a CONNECT-UDP request through something that is otherwise an oblivious HTTP relay to a target server that MUST be HTTP/3. While that’s certainly one possible deployment, I don’t think there’s any benefit to key consistency checks to insist that this proxy being used for key lookups also performs standard OHTTP relaying, nor that the target server MUST use HTTP/3 (and not HTTP/2, or some future HTTP/4). Just letting clients use whatever proxies they have to reach out over whatever protocol they need (as long as they meet certain bars for encryption and security) should be enough.

It is in that light that I was suggesting collapsing the work into only one draft.

Thanks,
Tommy

>  
>> 
>> Thanks,
>> Tommy
>> 
>> > On Sep 18, 2022, at 12:42 PM, Joseph Salowey <joe@salowey.net <mailto:joe@salowey.net>> wrote:
>> > 
>> > This is a call for adoption of the Key Consistency and Discovery Draft - draft-wood-key-consistency-03 [1]. Please respond to the list and indicate if you think the PrivacyPass working group should adopt this work or not.  Also please indicate if you are willing to contribute text or review the document. The call will end on October 6, 2022.
>> > 
>> > Thanks,
>> > 
>> > Ben and Joe
>> > 
>> > [1] https://datatracker.ietf.org/doc/draft-wood-key-consistency/
>> > -- 
>> > Privacy-pass mailing list
>> > Privacy-pass@ietf.org <mailto:Privacy-pass@ietf.org>
>> > https://www.ietf.org/mailman/listinfo/privacy-pass
> -- 
> Privacy-pass mailing list
> Privacy-pass@ietf.org
> https://www.ietf.org/mailman/listinfo/privacy-pass

v2.23.0 | Report a Bug | By Email