Re: Benjamin Kaduk's Discuss on draft-ietf-quic-transport-33: (with DISCUSS and COMMENT)
Martin Thomson <mt@lowentropy.net> Thu, 07 January 2021 04:52 UTC
Return-Path: <mt@lowentropy.net>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 099CA3A0E80; Wed, 6 Jan 2021 20:52:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.12
X-Spam-Level:
X-Spam-Status: No, score=-2.12 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=lowentropy.net header.b=h732ZSFc; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=WX9RynHC
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tOiCGbguTG4D; Wed, 6 Jan 2021 20:52:22 -0800 (PST)
Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 311BF3A1526; Wed, 6 Jan 2021 20:52:22 -0800 (PST)
Received: from compute1.internal (compute1.nyi.internal [10.202.2.41]) by mailout.nyi.internal (Postfix) with ESMTP id 6C84F5C00C6; Wed, 6 Jan 2021 23:52:21 -0500 (EST)
Received: from imap10 ([10.202.2.60]) by compute1.internal (MEProxy); Wed, 06 Jan 2021 23:52:21 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=lowentropy.net; h=mime-version:message-id:in-reply-to:references:date:from:to :cc:subject:content-type; s=fm1; bh=k34iNiEPbicQJY34B4E/ZzuZtf4o +pVRETk/5xKBsP0=; b=h732ZSFcohlls38JFqQ2UmB1JECkHfF9lF9Eb8VXlps6 kVrNIUvZ3Pdn0X+pek+BHJvFw57A80oRu1mwEhbrA5GUOpcQUbTzPigoy/x5W8U4 6R6uMLpssFrxB17zpTADDsfox5kSx7rxb9LeUDWMsC4DZMl4wIUw5tgjos1bZuqH vRBoj4R99w1zwNoFgZe1pz1QAbS5C6H/ShDtxwsEASJ/sGr5F3B/y/klmAL+jljF uukspJaCxQYiYKOryTHK8+1j/R0R+zjV1TGl/s4etyciJlQjAD4wGX15ISgFkZjZ mLjQbIURSOtfTJlquYGuSnFFbzj3OLazcJIcUFI3/A==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=k34iNi EPbicQJY34B4E/ZzuZtf4o+pVRETk/5xKBsP0=; b=WX9RynHCm7OmdIRufRrgYg agEVxAyjJzZJOcPQ/exHbUy7CZDLOKl+47VYh9TV/XNtIFa01+u6ZFPParxzC2Bb fYKoftcJ9T+/MhfyN6vCoWlrWg8KBCk98dR8H3WWrngNTN0O4txeYuX4TSRPk8iI MKdD7txYq2/uUoIl+BTYHNDZ9kNZ1dtlgN1LjN41I4I4/BXfQQ3wJ+se2ZlIeiFw LIQKFL2ULSPA6KonulRHIEdRnNSpHkCCZZmmWJZ6tGCOl+/7Y/AiMk6Iw2sN9jrP 1vgN8vz1CzpT8R9/2YeA0/m6n0x5VsoKcbQdinfHj4TcrL1y5D2Tikh8VV24PP3w ==
X-ME-Sender: <xms:hZP2X7ioGtkllEJhuTwytlOp-3zqqvYKz5rAyE-sLeUJGmjAkS7Xtg> <xme:hZP2X4BChcUXEHfeBDUWYb5MWLeFt05eSuvpFiHkIsftduOG-XwMBPx41Qn_jkT1M aauAVoE5DRgOno5Geg>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedujedrvdegtddgudeghecutefuodetggdotefrod ftvfcurfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfgh necuuegrihhlohhuthemuceftddtnecusecvtfgvtghiphhivghnthhsucdlqddutddtmd enucfjughrpefofgggkfgjfhffhffvufgtsehttdertderreejnecuhfhrohhmpedfofgr rhhtihhnucfvhhhomhhsohhnfdcuoehmtheslhhofigvnhhtrhhophihrdhnvghtqeenuc ggtffrrghtthgvrhhnpeehfeetudduudehtdekhfdvhfetleffudejgeejffehffevkedu iefgueevkeefleenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfh hrohhmpehmtheslhhofigvnhhtrhhophihrdhnvght
X-ME-Proxy: <xmx:hZP2X7Go3BggbMTXVcI4azBEhY54cOZ5CtDgxglcWNaV2CO8mD2VaQ> <xmx:hZP2X4RFkhtA3en9wktBeDwr49__ue2vWXeLITHZRh8ktHd5gr-lLA> <xmx:hZP2X4z1r_EXiBitEV0ilPij82GguL73JqiSEFdYiuipgaUZWs482w> <xmx:hZP2X09G7pZEeBuXIw5H2XbAxrtOIyMjxeVIE7nKtHzNjtCF0O_Btg>
Received: by mailuser.nyi.internal (Postfix, from userid 501) id 150E82014F; Wed, 6 Jan 2021 23:52:21 -0500 (EST)
X-Mailer: MessagingEngine.com Webmail Interface
User-Agent: Cyrus-JMAP/3.3.1-61-gb52c239-fm-20201210.001-gb52c2396
Mime-Version: 1.0
Message-Id: <39c24306-42dc-454a-8a60-cfbd86ab6c64@www.fastmail.com>
In-Reply-To: <160996950953.25754.14270013028683006869@ietfa.amsl.com>
References: <160996950953.25754.14270013028683006869@ietfa.amsl.com>
Date: Thu, 07 Jan 2021 15:52:00 +1100
From: Martin Thomson <mt@lowentropy.net>
To: 'Benjamin Kaduk' <kaduk@mit.edu>, The IESG <iesg@ietf.org>
Cc: draft-ietf-quic-transport@ietf.org, WG Chairs <quic-chairs@ietf.org>, quic@ietf.org, Lars Eggert <lars@eggert.org>
Subject: Re: Benjamin Kaduk's Discuss on draft-ietf-quic-transport-33: (with DISCUSS and COMMENT)
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/t3BgisTVFCR9S3G3kHowAXYAaBE>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jan 2021 04:52:24 -0000
Responding to the DISCUSS point only: On Thu, Jan 7, 2021, at 08:45, Benjamin Kaduk via Datatracker wrote: > This is very much a "discuss discuss", and I am not strongly convinced > that there is a problem here, but if there is a problem it is a fairly big > one. > [... many words on version negotiation removed...] > > I'd love to hear more about how the WG decided to proceed > with the current formulation, especially with regard to what > consideration was given to non-standards-track new versions. I think that this is the key ask here. I don't think that this is an appropriate use of DISCUSS, I believe that the working group consensus is clear and clearly documented, but I'll attempt to answer faithfully nonetheless. The working group came to the conclusion around half way though the design process that we did not have a firm understanding of what it meant to authenticate the choice of QUIC version. We had mechanisms proposed, but we found either operational issues or ways to circumvent the protections in those proposals. Given those discoveries, we made a decision to defer protections for version negotiation until after version 1 was deployed. This comes with risks, though I don't think that uncoordinated development of mechanisms is the primary one. The primary risk is that we never publish a workable design. It is a hard problem, after all. Other relevant points made in that discussion: * You don't need to rely on version negotiation to deploy a new version, in the extreme case where we fail to secure it. We have Alt-Svc, for instance, which is secure enough for HTTP (though I will concede that SVCB isn't good enough). Indeed, we want to avoid the performance hit of version negotiation for those applications anyway, so we're unlikely to be affected. * The problem only exists if you have both clients and servers willing to support two different versions and the least preferred (or worst) doesn't provide any downgrade protection. Non-standards track versions that have no intent of coexisting with version 1 are therefore not a downgrade risk. * Addressing version downgrade in QUIC doesn't address the problem of downgrade from QUIC to TCP (or vice versa if you prefer the other order). That said, we probably have to tolerate that sort of downgrade, at least for the moment. Ultimately, the working group is committed to solving the problem. There is adopted draft on defining a form of version negotiation. I've also recently updated draft-thomson-tls-snip which attempts to solve the problem more generally, including addressing the question of TCP/QUIC downgrade, which nothing this working group does will ever address. Not a lot of engagement on that, but I think what it reveals - in addition to this being HARD - is how the problem is not necessarily limited to QUIC. There has been a lot more discussion on this point than the above, and I have likely missed other key points, but I hope that this will suffice and we can get back to the YES position promptly. > The above notwithstanding, I support this protocol and I expect to > change my position to Yes once this point is resolved in some manner. Cheers, Martin
- Benjamin Kaduk's Discuss on draft-ietf-quic-trans… Benjamin Kaduk via Datatracker
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Lucas Pardue
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Martin Thomson
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Benjamin Kaduk
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Martin Thomson
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Jana Iyengar
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Mikkel Fahnøe Jørgensen
- RE: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Mike Bishop
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Eric Rescorla
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Benjamin Kaduk
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Eric Rescorla
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Spencer Dawkins at IETF
- Re: Benjamin Kaduk's Discuss on draft-ietf-quic-t… Martin Duke