RE: The first octet

Mike Bishop <mbishop@evequefou.be> Mon, 06 August 2018 19:57 UTC

Return-Path: <mbishop@evequefou.be>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DCE5B130EE1 for <quic@ietfa.amsl.com>; Mon, 6 Aug 2018 12:57:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=evequefou.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RQwIsCtWvtDa for <quic@ietfa.amsl.com>; Mon, 6 Aug 2018 12:57:09 -0700 (PDT)
Received: from NAM01-BN3-obe.outbound.protection.outlook.com (mail-bn3nam01on0124.outbound.protection.outlook.com [104.47.33.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 942EC129AB8 for <quic@ietf.org>; Mon, 6 Aug 2018 12:57:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evequefou.onmicrosoft.com; s=selector1-evequefou-be; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=wbskZvniExX911HR9SKEdvxJHvrIXQAz16qLbyCTqhs=; b=NTc1FAGJUnUM1McwTrbRmkkVdMW59Q62DHI0CkBWwm929A7qCZAlynuKjVBRwaIDsuwU9qi/cB8QQGXFVITSPL0mka1uLZf70aMOSMegLJRYwFqDgzv0aa0qdpcG36rhFQnCbQAmWmn/2VysgiBlFypzdct7IB9SX9Fb7HlVEqA=
Received: from BYAPR08MB3944.namprd08.prod.outlook.com (52.135.194.30) by BYAPR08MB4935.namprd08.prod.outlook.com (20.176.255.144) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1017.15; Mon, 6 Aug 2018 19:57:05 +0000
Received: from BYAPR08MB3944.namprd08.prod.outlook.com ([fe80::694e:1dd9:1406:b83d]) by BYAPR08MB3944.namprd08.prod.outlook.com ([fe80::694e:1dd9:1406:b83d%4]) with mapi id 15.20.1017.019; Mon, 6 Aug 2018 19:57:05 +0000
From: Mike Bishop <mbishop@evequefou.be>
To: Martin Thomson <martin.thomson@gmail.com>, Dirkjan Ochtman <dirkjan@ochtman.nl>
CC: QUIC WG <quic@ietf.org>
Subject: RE: The first octet
Thread-Topic: The first octet
Thread-Index: AQHULUoqhgm5FMamw0+Lhym2pFmicKSyX1WAgAAYVoCAAKzBIA==
Date: Mon, 6 Aug 2018 19:57:05 +0000
Message-ID: <BYAPR08MB3944B68E350A800DE562FC0FDA200@BYAPR08MB3944.namprd08.prod.outlook.com>
References: <CABkgnnVFYMjWDk6zEEA8T_6qg+6qO9yAwVF70foMj4bXEdBaqQ@mail.gmail.com> <CAKmKYaCn298fL0B3zTn1tC9sxwQ9Mg5NNutxJYC8UrP07XJw=A@mail.gmail.com> <CABkgnnVFJG0e_B+aDDXPQHmk68dZdSOU8ju7cJdbL3WD=UnqUw@mail.gmail.com>
In-Reply-To: <CABkgnnVFJG0e_B+aDDXPQHmk68dZdSOU8ju7cJdbL3WD=UnqUw@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=mbishop@evequefou.be;
x-originating-ip: [38.134.241.6]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BYAPR08MB4935; 6:SFPvjdYgKDT30vdG6nN6sIwWZLuq9eUhD5TbN0UI9iBYYA6abxuoYJcqgOnF1Qjlr/eldxg8aESygzF0IltiHKjLxo55tXGhTDzI1qazAbe+wumVMKL246Bp5dlwxUo5puOzapGB13+R5mFjEU5C7HCsZxbA5mlWht1WXOFjstNSuiRUfihpFiqRxwrBVZS1PUfkn+rVLYlobXEE3DWxzPkLSYkzrSplQTpKKiDNu4M3XM2mJAXcInGM0+NkqT23j8Ht7DYWc+tsoYaJPo22AO2kmTImL68VUZtGlpiocv4UKsCUUTvosOxhXRW+IuSZeaeEfpWNG0piN2c1uhvJvOMhF/tqjJ4ADlf88sqTpEl9PAdRG5VJtMS+3DdhKKkryXrKynpxbH43USSDY8E4kM5liLlBKmkxn/kZBVN5UD6w1BPPCQ19Kp/HilppUQ61l5M81Le++0zahhwD/HdL7Q==; 5:KLdbUtZOaysHrgmy31FsSIXQQHpxaCf1iwtmmJvM+9FAK9DRMAem9ZNPIjoqQdMIYshCsBwx/Kr7HQZeO0FpBkskBOLmbJddItExgznXq9M+G9TyvdGzQ+yNsJt6ArvlQpwDs+Z4sNsi1ZOkxsSQlLYpeeBKOPkqeM+zz7jczoU=; 7:ZAMVxadrW7q1gLl1lDeKZK2TCD9pOQM7JJdJFfVR+FNcvKeHx4lqho2GW4Y1DxG5vSFNP7SZnVsl7h13wsMGC6zj/hUoYWq8yMmmxVKO0x4zE+5JWIKPVJ/n2q1nipQ32B3KaMrvce62L1af3BzqpgXhphIFqcuNdt9LUTbcawjKvKa+pCR8vQAtFKszXlWWQ9KBON+ph/6W2ayWxZcd8SquOGxFX7m89WhQu2tA9pJF/i5sDBFF7wuO4w5Tk/OG
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 58d3d0a9-76f0-45fd-1147-08d5fbd6c8c9
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(7021125)(8989117)(4534165)(7022125)(4603075)(4627221)(201702281549075)(8990107)(7048125)(7024125)(7027125)(7028125)(7023125)(5600074)(711020)(2017052603328)(7153060)(7193020); SRVR:BYAPR08MB4935;
x-ms-traffictypediagnostic: BYAPR08MB4935:
x-microsoft-antispam-prvs: <BYAPR08MB4935816B8EED8DA012D8BA3FDA200@BYAPR08MB4935.namprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(85827821059158)(21748063052155);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040522)(2401047)(5005006)(8121501046)(10201501046)(3002001)(3231311)(944501410)(52105095)(93006095)(93001095)(149027)(150027)(6041310)(20161123558120)(20161123562045)(20161123564045)(2016111802025)(20161123560045)(6072148)(6043046)(201708071742011)(7699016); SRVR:BYAPR08MB4935; BCL:0; PCL:0; RULEID:; SRVR:BYAPR08MB4935;
x-forefront-prvs: 07562C22DA
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(136003)(39830400003)(396003)(366004)(376002)(346002)(189003)(199004)(236005)(478600001)(9686003)(25786009)(5660300001)(3480700004)(2906002)(7116003)(5250100002)(86362001)(33656002)(53936002)(7736002)(6436002)(6116002)(790700001)(3846002)(81156014)(229853002)(8676002)(14454004)(55016002)(106356001)(4326008)(105586002)(39060400002)(8936002)(81166006)(54896002)(6306002)(6246003)(110136005)(74316002)(316002)(19609705001)(2900100001)(97736004)(66066001)(6506007)(256004)(26005)(186003)(11346002)(446003)(7696005)(102836004)(99286004)(74482002)(76176011)(476003)(486006)(53546011)(68736007); DIR:OUT; SFP:1102; SCL:1; SRVR:BYAPR08MB4935; H:BYAPR08MB3944.namprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:0;
received-spf: None (protection.outlook.com: evequefou.be does not designate permitted sender hosts)
x-microsoft-antispam-message-info: SwbUeSjc5agAmCVP3gll5RTal/NLuOUEt9bunBO/rkUwc2UNOk5I7U6infRUpk0X0LGrReSkxzDaPC+n9lVcF3arr9KRq/3QpN+FcYaBdoMrGVmFo183bGKcoP1PFiV1xUdXeYg0St6qF+zVSOtfed84dNAXeGy9A6IJy5eokPUQO1dd/skXcDY9J0cn9p2GC/B7vSSK/FJqrtU4ajpsIlV1zToi4HQKrShgB3zwU2Vny6NEoycFYnFFrojgpQz02Rb7i1tGuTXfO0nJs6V1+T04S64Ofbe6C7ASoP/Y5CLSoQGGR/O6+ezX0z+s8juigt5Cx0mNG0H+BUHPQJVMqtGknn3WVbhwS9WafuvkzhU=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BYAPR08MB3944B68E350A800DE562FC0FDA200BYAPR08MB3944namp_"
MIME-Version: 1.0
X-OriginatorOrg: evequefou.be
X-MS-Exchange-CrossTenant-Network-Message-Id: 58d3d0a9-76f0-45fd-1147-08d5fbd6c8c9
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Aug 2018 19:57:05.0214 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 41eaf50b-882d-47eb-8c4c-0b5b76a9da8f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR08MB4935
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/zza7q_MPQdn9wooPxsT_Yn_mGMM>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 06 Aug 2018 19:57:13 -0000

…but the definition of that version could Very Closely Resemble QUIC v1 (or whatever version we wind up calling this) with a different protocol carried in CRYPTO frames / providing keys.

From: QUIC <quic-bounces@ietf.org> On Behalf Of Martin Thomson
Sent: Monday, August 6, 2018 2:38 AM
To: Dirkjan Ochtman <dirkjan@ochtman.nl>
Cc: QUIC WG <quic@ietf.org>
Subject: Re: The first octet


On Mon, 6 Aug. 2018, 18:10 Dirkjan Ochtman, <dirkjan@ochtman.nl<mailto:dirkjan@ochtman.nl>> wrote:
On Mon, Aug 6, 2018 at 7:56 AM Martin Thomson <martin.thomson@gmail.com<mailto:martin.thomson@gmail.com>> wrote:
For those who read this far, if you have opinions on what principles
should drive this design, please respond here.  If you have a proposed
design (or designs) and can explain the principles that are expressed,
that's OK too.  If this gets enough feedback, I might arrange a call
for interested parties.

I haven't dug deeply into this, but I have been wondering about enabling alternatives to TLS for integrity and confidentiality. Notably, I think the Noise protocol variants are looking very interesting into this space. Assuming that the current stream 0 design makes it possible to somewhat generically swap out TLS for something and that Noise provides the right primitives to fit that conceptual API, it seems reserving some bits in the long header packets might help enable this?

QUIC v1 will use TLS. All the questions I am asking relate specifically to that version. I made it clear in my original email that these are version-specific bits.

A protocol that uses a different cryptographic handle has to use a different version number.