IETF Logo Mail Archive

Re: [quicwg/base-drafts] Change Packet Number Gap to Packet Number Offset (#1307)

Christian Huitema <notifications@github.com> Fri, 20 April 2018 02:00 UTC

Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2BB9A127076 for <quic-issues@ietfa.amsl.com>; Thu, 19 Apr 2018 19:00:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -8.009
X-Spam-Level:
X-Spam-Status: No, score=-8.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_32=0.001, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kvr_SX2IFeXc for <quic-issues@ietfa.amsl.com>; Thu, 19 Apr 2018 19:00:52 -0700 (PDT)
Received: from out-5.smtp.github.com (out-5.smtp.github.com [192.30.252.196]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4E34B1270A0 for <quic-issues@ietf.org>; Thu, 19 Apr 2018 19:00:51 -0700 (PDT)
Date: Thu, 19 Apr 2018 19:00:50 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1524189650; bh=yQyOXOalowVTrgPIoc8lxFkZlDO74hWKsnHKyXA3UhA=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:List-ID: List-Archive:List-Post:List-Unsubscribe:From; b=m8Kmhllc4nkwPpn944jdpQenZqP0zgafbdujK8RXv6jyFdBoP3BCsrkdfEEmowzP5 GU7cJLLQ1SxGm3c5PCAmCOvguvNC211NZyXGYhVSSJk5s1ymnbr1pIUcE1EdDY7ffJ QRCuA5mbj6qm021e473bjwzdjggr4xf+QnK/p6Ew=
From: Christian Huitema <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+0166e4ab8817f6f3dbd642dbc5eded002ec07907f37bd4fa92cf0000000116f10bd292a169ce12d68139@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/1307/c382941999@github.com>
In-Reply-To: <quicwg/base-drafts/pull/1307@github.com>
References: <quicwg/base-drafts/pull/1307@github.com>
Subject: Re: [quicwg/base-drafts] Change Packet Number Gap to Packet Number Offset (#1307)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5ad949d248a11_48ae3faca04d4f7c855ae"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: huitema
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/3czg9jET3zUoUPhofyHHDFZghfg>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.22
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Apr 2018 02:00:54 -0000

I think that's a terrible idea. It perpetuates the fallacy that offsetting packet numbers provides privacy. We have established that it doesn't in an important case, when there is overlap between two connections. The matching pattern of holes and sequence number increment is more that sufficient to establish correlation in these cases.

We would be much better off just getting rid of the gaps altogether. They force complex synchronization between sender and receiver, effectively the same management cost as managing encryption keys, but they do not provide nearly as much benefit as encryption.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/1307#issuecomment-382941999

v2.39.1 | Report a Bug | By Email | System Status