IETF Logo Mail Archive

[quicwg/base-drafts] token-based greasing (#3166)

Kazuho Oku <notifications@github.com> Tue, 29 October 2019 04:10 UTC

Return-Path: <noreply@github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0BC3F12008C for <quic-issues@ietfa.amsl.com>; Mon, 28 Oct 2019 21:10:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.999
X-Spam-Level:
X-Spam-Status: No, score=-7.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gqk6ahS0FsZP for <quic-issues@ietfa.amsl.com>; Mon, 28 Oct 2019 21:10:28 -0700 (PDT)
Received: from out-3.smtp.github.com (out-3.smtp.github.com [192.30.252.194]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D017120046 for <quic-issues@ietf.org>; Mon, 28 Oct 2019 21:10:28 -0700 (PDT)
Received: from github-lowworker-56fcc46.va3-iad.github.net (github-lowworker-56fcc46.va3-iad.github.net [10.48.102.32]) by smtp.github.com (Postfix) with ESMTP id 6F2D62C00A2 for <quic-issues@ietf.org>; Mon, 28 Oct 2019 21:10:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1572322227; bh=BqG5m5WQOAAuC/mUxkM2CmoZUNwE6CXU7akGCchBPV4=; h=Date:From:Reply-To:To:Cc:Subject:List-ID:List-Archive:List-Post: List-Unsubscribe:From; b=Kz+AsUVBOG/73Sg/62nL0E6Wp/MhYiKMJ/guKVPhlQ0D6fY+0/+sGMOlA7UewQwI3 lyyhxS8+4LetNH/iX7OmLSQXQcoEm0PHs18nnoKbY+tlMVQ8AoU/yUPPWS9GSBKMGh dJqdR+I2w1w6scirVCiLltJPBLgnSfgMkE3UOA1Y=
Date: Mon, 28 Oct 2019 21:10:27 -0700
From: Kazuho Oku <notifications@github.com>
Reply-To: quicwg/base-drafts <reply+AFTOJKZGPZ6JIYW5V2NIRW53YTXDHEVBNHHB5HRKFQ@reply.github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <quicwg/base-drafts/pull/3166@github.com>
Subject: [quicwg/base-drafts] token-based greasing (#3166)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5db7bbb360740_7133fe6746cd960682e4"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: kazuho
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/QZaNE8obQwDqr2j9x8u8yZwU14A>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Oct 2019 04:10:30 -0000

Based on the discussion in #3111, this PR implements greasing using the NEW_TOKEN frame as the conveyor.

It defines defines three properties: Alternative Version Number, Packet Type Modifier, Initial Salt, for obfuscating the version number field and the long header packet type, as well as encrypting the Initial packet payload.

Those three properties are carried by a NEW_TOKEN frame, and a client uses those &quot;alternative initial sets&quot; when resuming a connection using a NEW_TOKEN token. A server that is not interested in greasing or encrypting the Initial packets can advertise the values defined in the specification as the &quot;alternative initial sets,&quot; and the client behavior would be the same as it is now (with the only difference being that the format of NEW_TOKEN frame has changed).

Closes #2496, closes #3111, an alternative to #2573.
You can view, comment on, or merge this pull request online at:

  https://github.com/quicwg/base-drafts/pull/3166

-- Commit Summary --

  * first cut

-- File Changes --

    M draft-ietf-quic-transport.md (81)

-- Patch Links --

https://github.com/quicwg/base-drafts/pull/3166.patch
https://github.com/quicwg/base-drafts/pull/3166.diff

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/pull/3166

v2.14.0 | Report a Bug | By Email