IETF Logo Mail Archive

RE: On the passive measurability of QUIC

Mike Bishop <Michael.Bishop@microsoft.com> Tue, 06 June 2017 09:19 UTC

Return-Path: <Michael.Bishop@microsoft.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 291CE12426E for <quic@ietfa.amsl.com>; Tue, 6 Jun 2017 02:19:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.812
X-Spam-Level:
X-Spam-Status: No, score=-2.812 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K4Lbd6zQ-vAb for <quic@ietfa.amsl.com>; Tue, 6 Jun 2017 02:19:21 -0700 (PDT)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (mail-bn3nam01on0104.outbound.protection.outlook.com [104.47.33.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ADD83124217 for <quic@ietf.org>; Tue, 6 Jun 2017 02:19:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=RGnBPrTTtUBJRuz72P3Vj5tcdfuK+70g8fSZP9VGSeg=; b=IJrKaexgz6C1GTH9Mv6TM9Et/ZAqF63H08XDjiq16TzDVSpDssz7VFhh1sYGVh0b4xnlnOvxDltEDDtK6dUsaZDIonTexegknycKiOK5QZ8c6Y/KsvwZAJSS39oYyMZVnL+Sglg3MVam2wthsMRYia1x5+2j+EAUJHod3gWH9VM=
Received: from MWHPR03MB2944.namprd03.prod.outlook.com (10.175.136.137) by MWHPR03MB2944.namprd03.prod.outlook.com (10.175.136.137) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1143.10; Tue, 6 Jun 2017 09:19:17 +0000
Received: from MWHPR03MB2944.namprd03.prod.outlook.com ([10.175.136.137]) by MWHPR03MB2944.namprd03.prod.outlook.com ([10.175.136.137]) with mapi id 15.01.1143.018; Tue, 6 Jun 2017 09:19:17 +0000
From: Mike Bishop <Michael.Bishop@microsoft.com>
To: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>, Brian Trammell <ietf@trammell.ch>
CC: Eric Rescorla <ekr@rtfm.com>, IETF QUIC WG <quic@ietf.org>
Subject: RE: On the passive measurability of QUIC
Thread-Topic: On the passive measurability of QUIC
Thread-Index: AQHS2tzplifpxin9rE2RC1WTo3MLQqIQB6QAgAAUGoCAByp4AIAATp1A
Date: Tue, 06 Jun 2017 09:19:16 +0000
Message-ID: <MWHPR03MB2944F8F742286CFB0C9979E487CB0@MWHPR03MB2944.namprd03.prod.outlook.com>
References: <FCCAC281-BC7B-4E4B-AC34-9517FD336A65@trammell.ch> <CABcZeBPZR2+YjN6TGP=GJqGqJS4p9-LVi=-KWkSA8+USkJ1VfA@mail.gmail.com> <ADD9E4FC-C337-42F4-A5DD-517B4BCF15BF@trammell.ch> <CAKKJt-cDUOkcGVshxv9930comdue0FA2=jS23rg1L0Q50T5bSQ@mail.gmail.com>
In-Reply-To: <CAKKJt-cDUOkcGVshxv9930comdue0FA2=jS23rg1L0Q50T5bSQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=microsoft.com;
x-originating-ip: [2001:450:1e:232:3df2:793b:6da5:6ca2]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; MWHPR03MB2944; 7:NNnvTFSzIgcAqBAP2z3nkhJJGVDLwU9eyGFCNtdrDL3L8HhKVpkJ3nf3q+G6vNeVpCIEAgo5SCOPTSCWlH4zfbaA3+QVce55XPqFJcrGTRBYGpCfNrWmUxB8jyR/eESPjoM5jQMs6Ih41Sa/nFJhBLZEDlQDAPa4zL/639kOU4vIVsXNPTcp3nAEs2zw9M+RzJ3LQ/UcDqf4eKbOKUEE5x48jxBqLNXHpzdLlA748jnmQ51GCwP76xMRoVdLFngaq+J1VHiXzYBY6898qaAq9Mxf1/TafWeDgz3KuKq16nx0UTjcueJXrWC2g5J8uu2WPP7oTz8tlDNFZ6N1CzUGlLwtM3FPV9IXUjSEaZegZaI=
x-ms-traffictypediagnostic: MWHPR03MB2944:
x-ms-office365-filtering-correlation-id: 1af5637d-5d37-4527-4326-08d4acbd1b48
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(2017030254075)(48565401081)(201703131423075)(201703031133081); SRVR:MWHPR03MB2944;
x-microsoft-antispam-prvs: <MWHPR03MB294408A9B1481A99786E5FCF87CB0@MWHPR03MB2944.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(278428928389397)(72170088055959)(166708455590820)(192374486261705)(189930954265078)(219752817060721)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(61425038)(6040450)(601004)(2401047)(8121501046)(5005006)(93006095)(93001095)(3002001)(10201501046)(100000703101)(100105400095)(6055026)(61426038)(61427038)(6041248)(20161123560025)(20161123555025)(20161123558100)(20161123564025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123562025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:MWHPR03MB2944; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:MWHPR03MB2944;
x-forefront-prvs: 033054F29A
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(39400400002)(39410400002)(39450400003)(39850400002)(39840400002)(39860400002)(377454003)(24454002)(53546009)(478600001)(86612001)(25786009)(6306002)(54896002)(9686003)(74316002)(99286003)(53936002)(236005)(4326008)(7696004)(39060400002)(86362001)(54906002)(55016002)(189998001)(3660700001)(3280700002)(8990500004)(50986999)(54356999)(5660300001)(10090500001)(7906003)(7736002)(6436002)(6506006)(606005)(5005710100001)(77096006)(2906002)(76176999)(33656002)(72206003)(229853002)(93886004)(38730400002)(81166006)(10290500003)(966005)(122556002)(19609705001)(6116002)(8936002)(790700001)(8676002)(102836003)(14454004)(2950100002)(6246003)(2900100001); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR03MB2944; H:MWHPR03MB2944.namprd03.prod.outlook.com; FPR:; SPF:None; MLV:ovrnspm; PTR:InfoNoRecords; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_MWHPR03MB2944F8F742286CFB0C9979E487CB0MWHPR03MB2944namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Jun 2017 09:19:17.0637 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR03MB2944
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/-Tatd-xKlJX6Ak_wnomWC62i80U>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Jun 2017 09:19:24 -0000

Regarding the billing question….  For mobile devices, I believe the major OSes support pushing policies to the clients that differently-billed traffic should be sent over a different APN.  We’re doing work in RS3 to enable more apps to hook into these policies and have their traffic correctly routed to the right APN.  (In previous versions, it was implemented in our HTTP stack and required extra work if you were using your own stack.) This might just be a problem that gets solved at a different layer, rather than via traffic inspection, and not something we need to cater to in QUIC (or TLS).

From: QUIC [mailto:quic-bounces@ietf.org] On Behalf Of Spencer Dawkins at IETF
Sent: Tuesday, June 6, 2017 6:33 AM
To: Brian Trammell <ietf@trammell.ch>
Cc: Eric Rescorla <ekr@rtfm.com>; IETF QUIC WG <quic@ietf.org>
Subject: Re: On the passive measurability of QUIC

So a couple of things, while wearing a couple of hats.

On Jun 1, 2017 10:07, "Brian Trammell (IETF)" <ietf@trammell.ch<mailto:ietf@trammell.ch>> wrote:
hi ekr,

> On 01 Jun 2017, at 15:55, Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>> wrote:
>
> I like the general framing of these questions, but it's pretty hard to address them in
> the abstract. Rather, I think it would be more useful to start not with the specific properties
> but rather with the *services* that collecting these measurements is intended to facilitate
> and then work forward to the various baskets of measurements you would need to
> support said services and from that try to make a cost/benefit analysis [0]. Do you or
> someone else have such a list of services?
Sure. Here are the ones I know about off the top of my head. Note here, for "services", I understand "higher-level measurement activities", or what would be called "solutions" on the marketing-heavy websites of the vendors who build these boxes. Please correct me if I'm wrong here. "Service" is unfortunately so overloaded a term as to be unclear in many cases, even with context.

As AD: this thread, like the spoofing thread, is the type of discussion on the management deliverable I was hoping the working group would have, when I agreed to approve the QUIC charter. Thank you.

I know this conversation isn't easy, and so does the rest of the IESG, and so does the IAB. We had high level discussions in this space on the joint IAB-IESG day of our retreat a couple of weeks ago, and the ADs continued that discussion during both days of the IESG retreat.

1. Access network performance measurement. This is largely the problem the LMAP WG is chartered to address, using IPPM metrics. Here, peak achievable throughput (of an access link), loss, latency, and (sometimes) jitter are the metrics of interest, both in controlled testing (active measurement) as well as passive measurement of user traffic, on the theory both that accidental and intentional differential treatment of measurement traffic will make active measurement unreliable, as well as to reduce network load due to unproductive active measurement traffic. Loss/congestion and latency are the primary passively measurable metrics of interest here. This measurement activity is used by network operators for capacity planning and troubleshooting purposes, as well as by national and supranational regulatory agencies to hold network operators within their jurisdictions accountable. The deployment location changes depending on who's performing the measurements, but it's generally run as close as possible to the access link (for broadband access) or on the handset itself (for mobile measurements).


2. Interdomain troubleshooting of network performance issues. See https://github.com/quicwg/base-drafts/issues/166<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Fquicwg%2Fbase-drafts%2Fissues%2F166&data=02%7C01%7Cmichael.bishop%40microsoft.com%7C88ec89b10e6644f53c1908d4ac952076%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636323203891635662&sdata=NzTkpTK%2FUwRJx695JPDH4WY6C7%2FEY0ikKVz2OD5Sd6Q%3D&reserved=0>. Though it proposes a mechanism, it clearly calls out the key metrics as packet loss and congestion, with the ability to localize congestion using multi-observation-point measurement as important.


3. Service performance monitoring (my example here was Boundary, which is apparently called bmc TrueSight Pulse (tm) now) uses passive network-level latency and throughput measurements to augment information collected by agents running on servers themselves to isolate performance issues on those servers.


4. Perimeter security monitoring of access and enterprise networks. Related to work in the DOTS WG, which focuses specifically on the DDoS mitigation aspect of this broad topic. This is largely concerned with detecting and blocking attack traffic. Most of the measurement task in this case is classifying traffic as benign or not, and it uses any input available to make that determination. None of the metrics I talk about in the previous message are really relevant here, though -- spoofed traffic detection is more useful in this context than latency. It's relevant to QUIC, though, in that one of the inputs to this classification is whether traffic is TCP or not: the more likely QUIC traffic is to be classified as default-benign, the better its deployability on networks employing this monitoring.

As a possibly helpful individual, this list seems to include implicitly what Erik mentioned explicitly in the spoofing thread - thinking about what trusts what, and what controls what. I thought that explictness would be helpful.

The obvious one mentioned in our charter, for completeness:

-1. Billing, both for metered consumer-grade access as well as transit contracts. This is -1 because it's not really relevant to transport protocol design, as it generally doesn't require anything beyond byte/packet count per billable user, where the billable user is usually associated with something that happens below layer 3, zero-rating and other such practices notwithstanding.

As AD: this would be an especially useful assertion to converge on (after the interim, of course).

If QUIC isn't able to help with billing(*), that needs to not be a Late Surprise (tm).

Spencer

(*) Back to speaking as an individual, one of the responses that would not surprise me is "applications using QUIC aren't much harder to bill for than applications using TLS or TCPINC, so, whatever you do for those, do it for QUIC". If something like that turns out to be the answer, people who care about billing need to be figuring out what Plan B is ...

> -Ekr
>
> [0] Where the cost clearly has to include future unknown privacy risk.
Evaluating an unknown risk is a pretty cool trick. ;)

Seriously, though, I'd really appreciate any suggestions you would have as to how to concretely evaluate this risk, at least for purposes of comparison of proposals. Information theoretic metrics seem to me to be not very useful here, since they make the implicit (and false) assumption that all bits of entropy are equally potentially dangerous to privacy.

Thanks, cheers,

Brian

v2.23.0 | Report a Bug | By Email