Re: Roman Danyliw's No Objection on draft-ietf-quic-manageability-16: (with COMMENT)
Mirja Kuehlewind <mirja.kuehlewind@ericsson.com> Tue, 05 July 2022 11:18 UTC
Return-Path: <mirja.kuehlewind@ericsson.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F660C159498; Tue, 5 Jul 2022 04:18:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.853
X-Spam-Level:
X-Spam-Status: No, score=-7.853 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Non6KUifswc4; Tue, 5 Jul 2022 04:18:50 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2055.outbound.protection.outlook.com [40.107.21.55]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C6852C157B58; Tue, 5 Jul 2022 04:18:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=PuwrAuJ/ha/1szNoaxit3re+jfQiUstcdWrUVnRZidatZFsGcvrC3FXFi4EJ3HDULhH++8LKq8gAXtV7+6mejz1DuSnj+rPoKCfFkmYdmify8ICpI1WgXHPGPwRpZpNs8fZ0oB1NwiU+WQolbCl9Jr9zLwdIsUoeXMc6xgHAh+3Z2CR8+Yb81iLmfJetltsLIrtcFutqFE44IHxZYjs1mYAkCG0a8ymD8zJCmyZy/Khjg9vhtxMphrIZDwRG01cfjwt3mX5WmaMLIY85bnFo2IqKoEniMDC1Fc7m9RHpmTanJMBpFRUt8ZTr2bovwZP0cqAXci4ntIAEkxpHAYP3mw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=GeNwfieVkQdC0nIWtTPHPufLhl29PuAAHAVzxX1fTCY=; b=obawzyowWa7ZkGGXMTrUecMD8qKkKh6XIWRX+IkkXfA1j2y3CoCdgnOXUe/QvOwqwditrAgYog1wWmCUlxqwr1qHowddoWYTFzXGJQtg8DB4l5z17UcG9JSEAqi4lQINEuJBJQlGxlZ1ej7Vs0PveLVQhUALA74+3LqAVbV0TXJP42lSwcGeplCKHLO4dXKhTdh9/ajfnaqqpNvRxM9OeirWUZc7rm6QVNO8/U7GlrvCkD2uzwSmQqEDRC0KTWgw6WpExAqg3zOSkYG/MTV1B39IsJ28m0dkvM7MaOTQHyjdk6+i/2AjGvgQs2nkVPGPIfy4qPJz4f/tcKLtvxWf7Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=GeNwfieVkQdC0nIWtTPHPufLhl29PuAAHAVzxX1fTCY=; b=et+TVXJf6OZZuqVuob/asATJkFDCY8VgdErVHt93qX2SvOWh9CSHOJ5isF4JgKnRo3T6nO+U1og7uK3rhbR8p3kFosOQpvEdKf/qF5vTPMOwxRXGkf0SmNcTu9BZq1TXrXnHUgb4K77kIfoCPJbumPb41pvcrIZkCv74Vqf1UWc=
Received: from PAXPR07MB7806.eurprd07.prod.outlook.com (2603:10a6:102:13a::19) by DB7PR07MB6202.eurprd07.prod.outlook.com (2603:10a6:10:66::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5417.12; Tue, 5 Jul 2022 11:18:44 +0000
Received: from PAXPR07MB7806.eurprd07.prod.outlook.com ([fe80::29b2:6744:1f9f:fc9f]) by PAXPR07MB7806.eurprd07.prod.outlook.com ([fe80::29b2:6744:1f9f:fc9f%7]) with mapi id 15.20.5417.014; Tue, 5 Jul 2022 11:18:44 +0000
From: Mirja Kuehlewind <mirja.kuehlewind@ericsson.com>
To: Christian Huitema <huitema@huitema.net>, Mirja Kuehlewind <mirja.kuehlewind=40ericsson.com@dmarc.ietf.org>, Roman Danyliw <rdd@cert.org>, The IESG <iesg@ietf.org>
CC: "draft-ietf-quic-manageability@ietf.org" <draft-ietf-quic-manageability@ietf.org>, "quic-chairs@ietf.org" <quic-chairs@ietf.org>, "quic@ietf.org" <quic@ietf.org>, "matt.joras@gmail.com" <matt.joras@gmail.com>
Subject: Re: Roman Danyliw's No Objection on draft-ietf-quic-manageability-16: (with COMMENT)
Thread-Topic: Roman Danyliw's No Objection on draft-ietf-quic-manageability-16: (with COMMENT)
Thread-Index: AQHYU5w89qLH286zPkiRmpx5A6+rwa065ugAgAUldQCAMC/qgA==
Date: Tue, 05 Jul 2022 11:18:44 +0000
Message-ID: <82D90B52-05BE-48B2-AC88-1F0E781BE808@ericsson.com>
References: <165033833728.2600.15767815172481167436@ietfa.amsl.com> <62B1FC14-9094-45F5-B4EA-60FC29D1BB27@ericsson.com> <9c96e922-41d3-efa8-d433-c400387c9dc1@huitema.net>
In-Reply-To: <9c96e922-41d3-efa8-d433-c400387c9dc1@huitema.net>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d5f5a5fb-8712-4197-089b-08da5e781f7a
x-ms-traffictypediagnostic: DB7PR07MB6202:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PAXPR07MB7806.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(346002)(366004)(39860400002)(396003)(136003)(376002)(4326008)(478600001)(5660300002)(122000001)(66946007)(44832011)(110136005)(6486002)(54906003)(82960400001)(38070700005)(8936002)(316002)(76116006)(86362001)(8676002)(66476007)(71200400001)(91956017)(33656002)(64756008)(66446008)(66556008)(966005)(6506007)(26005)(2616005)(83380400001)(186003)(2906002)(41300700001)(38100700002)(36756003)(53546011)(6512007)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <F4E351B4C67A934384DDD10536BF1C41@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PAXPR07MB7806.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d5f5a5fb-8712-4197-089b-08da5e781f7a
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Jul 2022 11:18:44.3211 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: yJ4mmkU6aZGVIjqFLN4ETWmSA6M7uh+sfU4Pck0qTlEgzc3/A3XzPGaXrfs+Wyr8fs+kAIPEi+FOzHRtszm8f7NQZowauGPtYexUOWVSAY0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR07MB6202
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/KDZcje3F9rPByJCBHPfetrQbYlM>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jul 2022 11:18:54 -0000
Hi Roman, hi Christian, not sure if we can say anything more or anything different about not using the version number for identifying. I anyway opened any issue to check if we want to mention the risk of fingerprinting, however, that would probably rather belong into the applicability statement. Mirja On 04.06.22, 23:27, "Christian Huitema" <huitema@huitema.net> wrote: On 6/1/2022 5:51 AM, Mirja Kuehlewind wrote: > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > Thank you to Barry Leiba for the SECDIR review. > > Thank you for this companion document considering the operational view of the > wire image. It is a model to pattern for other protocols. > > ** Section 2.8 > Using a particular version number to recognize valid QUIC > traffic is likely to persistently miss a fraction of QUIC flows, and > completely fail in the near future. Reliance on the version number > field for the purposes of admission control is similarly likely to > rapidly lead to unintended failure modes. Admission of QUIC traffic > regardless of version avoids these failure modes, avoids unnecessary > deployment delays, and supports continuous version-based evolution. > > -- True, but this guidance seems a bit too strong. Operators may choose to > explicitly exclude traffic from particular “experimental versions" and should > likely be curating their ACLs/admission control practices. > > [MK] This was discussed quite heavily and last revised during IETF LC based on the opsdir review, see here: > https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-bd43009f16b77b9d&q=1&e=78e60507-a28b-4f5f-bf4d-dfb958f8b6dc&u=https%3A%2F%2Fgithub.com%2Fquicwg%2Fops-drafts%2Fpull%2F467%2Ffiles > > [MK] The comment from the opsdir review was basically say that this document should not try "tell operators what to do". (Sorry if I paraphrasing this to strongly). So we tried to rather explain than givng concrete guidance. However, the whole point is that using version is a problem and we have a strong that is should not be done. Yes, we understand that operator have a desire to distinguish "valid" QUIC traffic (whatever) that means, but QUIC has been designed to reveal as little information as possible and trying to (mis-)use any of the existing exposed information for that purpose has problems. Given this was just revised and discussed extensively, I rather not change the text again. Please let me know if you feel strong that some more adaption is required here. > > -- Consider if the text "... likely to rapidly lead to unintended failure > modes” will age well. > > [MK] I don't think this is specific tot eh current version but rather the general design principle that version are expected to change quickly. > > -- Would there be an opportunity to fingerprint a unique application using a > specific experimental version number (in an ecosystem of continuous evolution > and experimentation suggested above)? > > [MK] I guess that is the whole point here and I think the answer is no. You might see new experimental version that come and go quickly and are deployed only by one vendor but I don't think that will give you necessarily much insights about the application within the encrypted payload. Also experimental version are expected to be around for short times only and change quickly, thus you would be very busy to adapt your fingerprinting continuously. That's why the recommendation is to not do it. Application developers will try to evolve the version number. If that cause the packets to be somehow discarded, this will have a very predictable result: all QUIC implementations will set the version number to 1 in the clear text header, while the "real" version number will be negotiated as part of the encrypted payload. If we follow that path, the network managers will not have any usable signal about the QUIC version, and the application developers will have to use more complex software and carry four useless bytes in the initial packets. Truth is, this is most likely what will happen, given natural trends. I don't know whether the text in the applicability statement will be enough to avoid that fate. -- Christian Huitema
- Roman Danyliw's No Objection on draft-ietf-quic-m… Roman Danyliw via Datatracker
- Re: Roman Danyliw's No Objection on draft-ietf-qu… Mirja Kuehlewind
- Re: Roman Danyliw's No Objection on draft-ietf-qu… Christian Huitema
- Re: Roman Danyliw's No Objection on draft-ietf-qu… Mirja Kuehlewind