IETF Logo Mail Archive

Re: New Version Notification for draft-kuhn-quic-0rtt-bdp-07.txt

Ian Swett <ianswett@google.com> Tue, 27 October 2020 13:39 UTC

Return-Path: <ianswett@google.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38FF63A0A24 for <quic@ietfa.amsl.com>; Tue, 27 Oct 2020 06:39:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.599
X-Spam-Level:
X-Spam-Status: No, score=-17.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0NasFustMKZa for <quic@ietfa.amsl.com>; Tue, 27 Oct 2020 06:39:20 -0700 (PDT)
Received: from mail-yb1-xb2a.google.com (mail-yb1-xb2a.google.com [IPv6:2607:f8b0:4864:20::b2a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 886913A0A4E for <quic@ietf.org>; Tue, 27 Oct 2020 06:39:20 -0700 (PDT)
Received: by mail-yb1-xb2a.google.com with SMTP id b138so1267800yba.5 for <quic@ietf.org>; Tue, 27 Oct 2020 06:39:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=W1u3ZOQrYk+79U3zUSVrwCQ2NMf+/G65IiomtMWFZBc=; b=qY1moa1g1Aq+GAcboLxhSlzgm8CRd/1t6wGePLYrRlUb0g8ECuy90bmWO66ESV36sA t1aOHbpUovg4bvWH7euWMMHjtOtcjXUSIexfmEMx6MlQqONWqix6TMnXcm3XO+Uf0lJk cLzuUT4BgAAEaY4Q+pmI/Ac8kq2kXqhdomRSe75FxP4jhptybZ+XtffSQQElaew9loxZ 7uo39BbY/th9lNgr14CWJDYE/HBVE1Hg65y/qn4CoaMuzsJIUzLFhiRPFUHhhjiTAQIK 5ldT9BPg7WEzLU+oqUUp2eJV0VRebVdFoI2kPOiwSK5a5+TeZ8L7Jw031fuwEXflC9jZ kgJg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=W1u3ZOQrYk+79U3zUSVrwCQ2NMf+/G65IiomtMWFZBc=; b=njMp2zrSWZck7eBcRbBJl60Yd59ZyOr2Hdw393R2UEts5E7vLGVIJ8YaEu7Eg9zBxC nuGaJ3v2GOtkHGqaqzhQUawGqYIkdhytxRXeX37+hvPuxlG67708H8F7swUm5F259LSr 7O3NdigwX/k+wcb53H2nMGfCNObbsdum3xcBj0R33UZsYAhOBag2nObgnZkg7jGuT+fs Ue1ZjSGvQPE2hzlZhPQN0jnJMHiQka5pZBpEgB0kje4sx/bSuNKdUSSqEkdB9J7XWBaJ qrlqKl/rTiLmM0YUSiXA5eyu+zGRceHdwEMGyhAcpFSUeoZcix2h284ZnBly5knD5QAq J+Uw==
X-Gm-Message-State: AOAM5310K4v88APC7/AC0LDqjDpQEGdIG0ciJ6d1baOt2jFjtlTpJSih Q2InW1uE9bD1kiIuhA/qVClE52a1tnOywOxKOFpYHQ==
X-Google-Smtp-Source: ABdhPJwe+gMNJ8/skX/ndplp19e0kMC75Btt79hVWHtwfdCbvuMQ5n0jkTeF+b1MzOUATPrFN4fKImMuu9fv3Y249EA=
X-Received: by 2002:a25:b6c7:: with SMTP id f7mr3144937ybm.119.1603805959438; Tue, 27 Oct 2020 06:39:19 -0700 (PDT)
MIME-Version: 1.0
References: <158978951893.22751.4814113172992555805@ietfa.amsl.com> <F3B0A07CFD358240926B78A680E166FF1EDAB042@TW-MBX-P03.cnesnet.ad.cnes.fr> <CANatvzw8+tUG2NjO2OoN1FgsE5mZdzTVZ05ACSTR2zseDdasBg@mail.gmail.com> <55494829-b0eb-43c3-2717-fcae429c8b04@huitema.net> <CANatvzzkD3+R6qWbpwoxyh4neq2+c_WwRU7eNKuDuYmu1a1Yhw@mail.gmail.com> <CADdTf+i20uC9LBdp0X+FVHtkbq-WEKGUCvZZ2QXoxKDiNvyMcg@mail.gmail.com> <CALGR9oaTS_7vwLroR6beKB5A2gq_q4-cj8qdnnrbY+Gh-_ixng@mail.gmail.com> <CADdTf+gFS+5C_FuKX0KddkO5_y7PVZ=V91CN-_V2WSHh4zAcYA@mail.gmail.com> <CALGR9oa1a1=hDfD8J-WnUOtoK2HXzBq=bkQSZOpDT1qzcr7Yhg@mail.gmail.com> <623bb830-5939-e08d-05e7-9b1459034a16@huitema.net> <CANatvzzoS6nW8r1hDfc1GW_0BY2zA_jNYxyjR7Un1mEzQm_J8g@mail.gmail.com>
In-Reply-To: <CANatvzzoS6nW8r1hDfc1GW_0BY2zA_jNYxyjR7Un1mEzQm_J8g@mail.gmail.com>
From: Ian Swett <ianswett@google.com>
Date: Tue, 27 Oct 2020 09:39:08 -0400
Message-ID: <CAKcm_gMjmvKrSSV-gp+gU_+q2ERWEPL2VdmP9g6cyrzTAGbrkA@mail.gmail.com>
Subject: Re: New Version Notification for draft-kuhn-quic-0rtt-bdp-07.txt
To: Kazuho Oku <kazuhooku@gmail.com>
Cc: Christian Huitema <huitema@huitema.net>, Kuhn Nicolas <nicolas.kuhn@cnes.fr>, IETF QUIC WG <quic@ietf.org>, Matt Joras <matt.joras@gmail.com>, Lucas Pardue <lucaspardue.24.7@gmail.com>
Content-Type: multipart/alternative; boundary="00000000000080d0de05b2a72c74"
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/UcyYdkt_bL8OvZ9HHYjQnUD6FQs>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Oct 2020 13:39:22 -0000

I agree with most of the points made by Kazuho and Christian.

In particular, I think relying on information the client repeats back to
the server which is not encrypted by the server is potentially quite
dangerous.  Even with that, there's real potential for abuse, particularly
when combined with 0-RTT, so if we're going to document something, I
believe we need a lot of MUST NOTs to prevent that abuse.  Using the same
token across many connections seems particularly concerning.

On Mon, Oct 26, 2020 at 10:30 PM Kazuho Oku <kazuhooku@gmail.com> wrote:

>
>
> 2020年10月27日(火) 11:14 Christian Huitema <huitema@huitema.net>:
>
>>
>> On 10/26/2020 6:20 PM, Lucas Pardue wrote:
>>
>>
>>
>> On Tue, 27 Oct 2020, 01:12 Matt Joras, <matt.joras@gmail.com> wrote:
>>
>>> Indeed, but as much as I love HTTP it's not the only protocol we have on
>>> top of QUIC. A consistency argument can also be made for having a
>>> connection-level metric tied to a connection-level semantic (i.e. a QUIC
>>> frame) rather than the transactional-level semantic (HTTP header).
>>>
>>
>> I agree! A QUIC-level frame could be the most appropriate thing in this
>> case. I think this will be an interesting space for innovation. And let's
>> not forget all the other datagram-oriented protocols that have preceeded -
>> so perhaps there will be some re-innovation.
>>
>>
>> I am glad that we agree. Now, we have an issue regarding security.
>> Nicolas Kuhn and his coauthors have pursued a design in which the server
>> sends an encrypted blob to the client, and then client echoes it in the new
>> connection. This is largely based on concerns about potential attacks.
>> Suppose the client said "I received at 1Gbps last time", when in fact it
>> can only absorb 10 Mbps. Some bad stuff might well be happening along the
>> way. But then, Matt is looking at passing statistics from server to client,
>> so the client can debug issues, display statistics in the app, and
>> potentially also reuse the statistics to inform server that the last
>> connection had an RTT of 600 ms and a data-rate of 100 Mbps, and maybe we
>> should shortcut initial congestion control in order to gain lots of time.
>> How do we reconcile these multiple goals?
>>
>
> I think that the answer is simple.
>
> Loss recovery and CC states are properties maintained by an endpoint. The
> peer should not be given the right to change them (e.g., CWND, RTT).
> Servers might offload the state to the client, but that state has to be
> encrypted and integrity-protected. NEW_TOKEN tokens cover this purpose.
>
> OTOH, servers can expose any information to the client regarding the
> quality of the connection. It is totally reasonable to give the client the
> bandwidth information that the server retains, so that the client could
> choose a good bandwidth. There are no security concerns providing such
> information, regardless of the medium being a QUIC frame or a HTTP header.
> And that's because it does not affect loss recovery or CC.
>
> -- Christian Huitema
>>
>
>
> --
> Kazuho Oku
>

v2.23.0 | Report a Bug | By Email