IETF Logo Mail Archive

Re: [quicwg/base-drafts] Connection migration should be indistinguishable from a new connection (#203)

Lucas Clemente <notifications@github.com> Wed, 25 January 2017 00:29 UTC

Return-Path: <bounces+848413-a050-quic-issues=ietf.org@sgmail.github.com>
X-Original-To: quic-issues@ietfa.amsl.com
Delivered-To: quic-issues@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2AC2A1295D8 for <quic-issues@ietfa.amsl.com>; Tue, 24 Jan 2017 16:29:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.951
X-Spam-Level:
X-Spam-Status: No, score=-4.951 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_IMAGE_ONLY_28=1.404, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-1.156, RP_MATCHES_RCVD=-3.199, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kif81EYQiAp4 for <quic-issues@ietfa.amsl.com>; Tue, 24 Jan 2017 16:29:22 -0800 (PST)
Received: from o8.sgmail.github.com (o8.sgmail.github.com [167.89.101.199]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5497E1295D2 for <quic-issues@ietf.org>; Tue, 24 Jan 2017 16:29:22 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=github.com; h=from:reply-to:to:cc:in-reply-to:references:subject:mime-version:content-type:content-transfer-encoding:list-id:list-archive:list-post:list-unsubscribe; s=s20150108; bh=+cFPdeYkIg0aaEgA9s+aNFoezNc=; b=bhJIDJv0iQ8WscP7 8PqdGiwjWchYUsSz1yCrtILR8zDv329jX6bmMBdfFqkoWnj4UDgn7UEN/CvMCRoC AE47pm37XxAk0+09UNnr291rpCN7BNCaKKDEVxIroKYuDq8gWOlh0zqMlIa7nv94 1m+fHdbAh72rqSgnFPRispPca/I=
Received: by filter0446p1mdw1.sendgrid.net with SMTP id filter0446p1mdw1-5967-5887F15D-2A 2017-01-25 00:29:17.381721853 +0000 UTC
Received: from github-smtp2a-ext-cp1-prd.iad.github.net (github-smtp2a-ext-cp1-prd.iad.github.net [192.30.253.16]) by ismtpd0001p1iad1.sendgrid.net (SG) with ESMTP id PAjVozEIQVKsL1YHx2nxpw for <quic-issues@ietf.org>; Wed, 25 Jan 2017 00:29:17.311 +0000 (UTC)
Date: Tue, 24 Jan 2017 16:29:17 -0800
From: Lucas Clemente <notifications@github.com>
To: quicwg/base-drafts <base-drafts@noreply.github.com>
Message-ID: <quicwg/base-drafts/issues/203/274983700@github.com>
In-Reply-To: <quicwg/base-drafts/issues/203@github.com>
References: <quicwg/base-drafts/issues/203@github.com>
Subject: Re: [quicwg/base-drafts] Connection migration should be indistinguishable from a new connection (#203)
Mime-Version: 1.0
Content-Type: multipart/alternative; boundary="--==_mimepart_5887f15d36fec_2f3553fe164b1d138497221"; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Precedence: list
X-GitHub-Sender: lucas-clemente
X-GitHub-Recipient: quic-issues
X-GitHub-Reason: subscribed
X-Auto-Response-Suppress: All
X-GitHub-Recipient-Address: quic-issues@ietf.org
X-SG-EID: l64QuQ2uJCcEyUykJbxN122A6QRmEpucztpreh3Pak2Yqubl2J1fxNXBHs0LBsE58GHin3zQMH047n HYE31uHPnsKWJKr+mbg3CD+g80JtLd5G2fbusrOq9artI6ggf45FAiSew8NLv7MsAj+nklWjddMitr mPM+1mcywMzc1wrkkGr8A67Euo5Jxws7riI2F7WQo7472y0xKR+sYlUkqbKR5rBEyAscwcFZxdmmrb U=
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic-issues/SGHYJ_Fzf1JA0ko3JU1EvgdfHeE>
Cc: Subscribed <subscribed@noreply.github.com>
X-BeenThere: quic-issues@ietf.org
X-Mailman-Version: 2.1.17
Reply-To: quic@ietf.org
List-Id: Notification list for GitHub issues related to the QUIC WG <quic-issues.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic-issues/>
List-Post: <mailto:quic-issues@ietf.org>
List-Help: <mailto:quic-issues-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic-issues>, <mailto:quic-issues-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Jan 2017 00:29:24 -0000

You're right of course, the client may not know about a network change. 

Then I still think we should think more about making the first packet undistinguishable from the rest of the connection. Of course this will not strictly be possible (since you can always trial-decrypt it), but we can at least make it harder.

Maybe one possibility would be to randomly send public headers similar to the initial packet, e.g. set the version flag and include a greased version list every Nth packet or so.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/quicwg/base-drafts/issues/203#issuecomment-274983700

v2.37.1 | Report a Bug | By Email | System Status