IETF Logo Mail Archive

RE: draft-tiesel-quic-unreliable-streams-01 - comments

Ingemar Johansson S <ingemar.s.johansson@ericsson.com> Tue, 07 November 2017 07:40 UTC

Return-Path: <ingemar.s.johansson@ericsson.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF19813FB8A for <quic@ietfa.amsl.com>; Mon, 6 Nov 2017 23:40:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.219
X-Spam-Level:
X-Spam-Status: No, score=-4.219 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9aCdP_6sCark for <quic@ietfa.amsl.com>; Mon, 6 Nov 2017 23:40:49 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A426013FB32 for <quic@ietf.org>; Mon, 6 Nov 2017 23:40:48 -0800 (PST)
X-AuditID: c1b4fb25-1b7d19c000000c94-55-5a01637e0e35
Received: from ESESSHC021.ericsson.se (Unknown_Domain [153.88.183.81]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 27.5D.03220.E73610A5; Tue, 7 Nov 2017 08:40:46 +0100 (CET)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (153.88.183.145) by oa.msg.ericsson.com (153.88.183.81) with Microsoft SMTP Server (TLS) id 14.3.352.0; Tue, 7 Nov 2017 08:40:45 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.onmicrosoft.com; s=selector1-ericsson-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=OLtWAnhl4CM1a4d3lGjKQgUM9trmhGNTpiG9d04XwkI=; b=WSWV6GMvCyesApGEzM0SJoUp9V+O5v09kyCYuG7OEv1uR4BzBiBK9i97YFMUPIi4BghcNrcCsLbfRJyCl1Funb7FjWY8kDaN1T1mgonCPapCPWY2u6pyHy7HT7kCacYsCHU4RNMi4bPaVOqnHbBzVBAgzu1ZEIfXzIn/wbpaf/8=
Received: from DB4PR07MB348.eurprd07.prod.outlook.com (10.141.234.148) by DB4PR07MB345.eurprd07.prod.outlook.com (10.141.234.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.218.6; Tue, 7 Nov 2017 07:40:44 +0000
Received: from DB4PR07MB348.eurprd07.prod.outlook.com ([fe80::d067:33bc:7c46:c8c9]) by DB4PR07MB348.eurprd07.prod.outlook.com ([fe80::d067:33bc:7c46:c8c9%13]) with mapi id 15.20.0218.005; Tue, 7 Nov 2017 07:40:43 +0000
From: Ingemar Johansson S <ingemar.s.johansson@ericsson.com>
To: "Philipp S. Tiesel" <phils@in-panik.de>, Roni Even <roni.even@huawei.com>
CC: QUIC WG <quic@ietf.org>
Subject: RE: draft-tiesel-quic-unreliable-streams-01 - comments
Thread-Topic: draft-tiesel-quic-unreliable-streams-01 - comments
Thread-Index: AQHTVznzaxwXVQFObkG5Q8JOBDTpHqMIg0ww
Date: Tue, 07 Nov 2017 07:40:43 +0000
Message-ID: <DB4PR07MB34899FCFC336AE2F0B72A6CC2510@DB4PR07MB348.eurprd07.prod.outlook.com>
References: <6E58094ECC8D8344914996DAD28F1CCD82A735@DGGEMM506-MBS.china.huawei.com> <FBF9665E-15CE-437B-A575-25AEA7C88073@in-panik.de> <6E58094ECC8D8344914996DAD28F1CCD832288@DGGEMM506-MBX.china.huawei.com> <B814D19D-2FD6-42B6-867E-8A26C7475E0F@in-panik.de>
In-Reply-To: <B814D19D-2FD6-42B6-867E-8A26C7475E0F@in-panik.de>
Accept-Language: sv-SE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [192.176.1.92]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DB4PR07MB345; 6:o71t1OkHNebuQvp/qWazAo4/nSDb5QHw9WYSlzxSsujqMRzVsyarQdYMb4HM2T6Tnq+n2vx3dIypIpCv0/B8urPUw0bHZ3YTRRyYp7ZivDVOi5CxnA27L/MEUuXwocJtRq/gpYaUYsRZ8F8RulCHiHVP+DeE11wltKxDC48l87T4ElDuxuOQ1YH2YwjPX1+Te2b/+AobUNS9OQaQLZxyw2aDb/+FKhOneF7aGCQ8tkBmM587xkP746zPa3eu1o3Fy/yxO3annFrmDXp4Zq2DhsBvukGlIP8HATVHQzPrMiTgqpxII2+p1M639Fn3fAUgWiu5Pl9FnFDZ5+z7TMYjFOzUh3sEZEMNHX7KXp8MFOs=; 5:EM/L8Yimas5dgHDgu7pF5DpbYxN5EsImRJiEPvoPS+WFVDM3J08B7o7gCD9v+rJc88vNYSdaqx1H5n80VyBNswbnZv2DizWyE/gZBojLtaSY4mmOfJPhCRKEhPfsNTKzUBwJ/RWeLETcZEkhrepLVge2JL8vBYCCNiGHPGg43rU=; 24:Fxh10DLYgLHnJ67cLPqEgkF7umafyZlnTBjDxh4HMjzB1Y0NKa+uE4Vd4WnGFF1v7YmMAUSUNdK0Xx9M8x73S+YdvkTjYEtxpD0i8pbIXQA=; 7:tjg56VrgXaHR7yYAF4NVo3VamdmgJwQKrOsxQ+2DxSgQG0BZBTJ0wtc4YCCahtU2GXvBidAzF1q76j4Zv7kdVS3Ng00NwSKietQOijYTUVGHZsDh2fXByt0JhtUIUSkXYzQoQXULMC7WeXoi+qiMQSV3TkP6EpN7DA0c8+pKLqiijfY2UmQbMLovj6tgHogYh5ydQGioQ5CpNJYW3QbN1ZcUfr8JsITo+ZreAYoF3TU//PehajfwkD4Pv7Dwt5dH
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 932d3c92-db76-4c16-c0b2-08d525b2da4a
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(2017052603249); SRVR:DB4PR07MB345;
x-ms-traffictypediagnostic: DB4PR07MB345:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=ingemar.s.johansson@ericsson.com;
x-exchange-antispam-report-test: UriScan:(20558992708506)(278428928389397)(192374486261705)(50582790962513)(21748063052155)(17755550239193);
x-microsoft-antispam-prvs: <DB4PR07MB345607252C8BA73CBD2534EC2510@DB4PR07MB345.eurprd07.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(5005006)(8121501046)(10201501046)(100000703101)(100105400095)(3231021)(3002001)(93006095)(93001095)(6041248)(20161123558100)(20161123555025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123564025)(20161123560025)(20161123562025)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:DB4PR07MB345; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:DB4PR07MB345;
x-forefront-prvs: 0484063412
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(376002)(39860400002)(189002)(24454002)(199003)(74316002)(106356001)(101416001)(14454004)(68736007)(5660300001)(478600001)(55016002)(6506006)(33656002)(6246003)(50986999)(54356999)(2950100002)(230783001)(25786009)(229853002)(6306002)(54896002)(236005)(76176999)(2900100001)(606006)(9686003)(53546010)(7696004)(105586002)(6436002)(8676002)(3660700001)(19609705001)(102836003)(6116002)(790700001)(3846002)(3280700002)(4326008)(81156014)(81166006)(53386004)(86362001)(97736004)(8936002)(99286004)(189998001)(2906002)(110136005)(53936002)(316002)(93886005)(66066001)(5250100002)(7736002); DIR:OUT; SFP:1101; SCL:1; SRVR:DB4PR07MB345; H:DB4PR07MB348.eurprd07.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DB4PR07MB34899FCFC336AE2F0B72A6CC2510DB4PR07MB348eurprd_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 932d3c92-db76-4c16-c0b2-08d525b2da4a
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Nov 2017 07:40:43.7812 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB4PR07MB345
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA02Se0hTYRjG+3bOtqM5+JwT37yErsKS5mUFSohpUQghFfaHjEDnPOm8TNkx UYkS0wSnqKWgw2tIkoiWJqbWyHnXUlMpXKKpq2FplkmahbTtLPC/H+/zPN974aMIYTvXlVKq 0mm1Sp4s5tmTVVFdVyW3FUjmrzN6BxU0tXKCiuoPBm0OTZKhRHjewDo3vLHxNyc8b9bpCiGz D46jk5UZtNovJMY+YWtuEaUZ72TmvdFxc1DLrUJkRwE+DXcNu/xCZE8JcT+CHVMRzyII8TCC gQ+HLQKJiwlYbXiJWFcFB7TfJmyRjwgWJsr5lggPB8Nj/bbZRVEiHAGlrzMtZQK7QW7JvPVV J3wWKrWDXAuLcCi8z58hWZZCnbbb6iHxUWg2dXIsLMAyWJkd4rG9CjgwPjtoDdiZHxrZbSIs jLAHLG4vkGwzFzAY6zjsbhgaX0wSLDvD6soel2VP+Du9zGPZA6brNNbNAPfxoXBMZwv4QmfZ OmI5An7W9tpMlQi6e2ptwglYLt2xTaGAzbliLmsqQjBS9otkTUpYndSQrDDNhf4f72yCOzQM 6/mlSKLdNzrLqbCm3eZrrTdwhNEqI6k1n5UwN2zr8WMtXlCuWeKzfBzyq2v4++v1iN+MnBma iU2Jl57ypdVKBcOkqnxVdHo7Mv+kvmd/jj1HM2theoQpJHYQ6MKRTMiVZzBZKXoEFCEWCbq8 D8iEgjh5VjatTo1W30ymGT1yo0ixiyBMNxUlxPHydDqJptNo9X+VQ9m55qAbbz1U+VPlixek HQdow5OvXoovbVHrTz/7ux/5fp0p2YpJOpldcsm980xStEmUE6iQ3PfSw3mjY2zrfKJPbhfV 0uJ/+VCk5yY9kF0seVVNXTM8eLgReK9mrqM3MfuTy8WK0XVTrqdU4rY3vvRow3nMYSRSE5I2 E2DwkpLnorIixSSTIA/wIdSM/B/UHTuRRQMAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/TH5qLqaICADFaEJ-_Lj0Gd4EXJw>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Nov 2017 07:40:51 -0000

Hi Philip and Roni

I assume that by reception reports is meant the RTCP CCM messages such as TMMBR or ?

So.. unless I misunderstood it completely.
I am not at all convinced that media rate/congestion control in QUIC should rely on TMMBR.
SCReAM for instance, specified in the RMCAT WG for instance does not depend on TMMBR as it is ACK clocked, the media transmission is reduced to a very low rate if the ACKs are discarded by an attacker.

I would say that it is more straightforward to use a multipurpose congestion control in QUIC, this is perhaps based on BBR, but SCReAM style is not excluded. In any case this means that it is not possible to prevent rate adaptation.

/Ingemar


From: Philipp S. Tiesel [mailto:phils@in-panik.de]
Sent: den 6 november 2017 10:15
To: Roni Even <roni.even@huawei.com>
Cc: QUIC WG <quic@ietf.org>
Subject: Re: draft-tiesel-quic-unreliable-streams-01 - comments




On 5. Nov 2017, at 08:32, Roni Even <roni.even@huawei.com<mailto:roni.even@huawei.com>> wrote:
From: Philipp S. Tiesel [mailto:phils@in-panik.de]

On 1. Nov 2017, at 14:03, Roni Even <roni.even@huawei.com<mailto:roni.even@huawei.com>> wrote:
In the security section “ An active, on path attacker can drop selected
frames “ . What does it mean selected frames, the whole payload is
encrypted.
This is a little complicated:
- Assume having “stream-as-a-message” streams with two different kins of
messages sized A,B
- Assume each message fits into one packet, but two messages will not fit
- Assume one doesn't want to split packets to fill packets to MTU due to
latency constrains  => If an attacker know the inside protocol, the attacker
can distinguish from the packet length wether it is an A or B kind message

To avoid this, one has to pad all packets… I should clarify this.
[Roni Even] I understand this case but what does selected frames mean, I assume that the attacker does not know what is in each stream in order to select a specific one, so why will he just drop one and not the other or why not both?

Assuming the attacker _knows the protocol_, the attacker would also know the sizes of all kinds of messages and may use this knowledge to recover protocol state or selectively drop messages.

For a protocol like HTTP, the attack vector is rather small.
If one uses this against video conferencing applications, an attacker could prevent rate adaption  by dropping reception reports (larger than a pure QUIC ACK, smaller than a video frame).
If one uses this on IoT control stuff, an attacker might be able to learn a lot about the system state by observing sizes and timings.

This is nothing we can fix within QUIC without massive scarifies, but application developers must keep in mind.


AVE!
  Philipp S. Tiesel / phils…
--
   {phils}--->---(phils@in-panik.de<mailto:phils@in-panik.de>)--->---(http://phils.in-panik.de)----,
      wenn w eine   aube ist dn      man au dran dre en                   |
           o     Schr        an muss     hc         h   (Kurt Schwitters) |
:wq!  <----(phone: +49-179-6737439)---<---(jabber: phils@in-panik.de<mailto:phils@in-panik.de>)----'

v2.23.0 | Report a Bug | By Email