Re: Structuring the BKK spin bit discussion

Kazuho Oku <kazuhooku@gmail.com> Wed, 31 October 2018 03:22 UTC

Return-Path: <kazuhooku@gmail.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 633BE127332 for <quic@ietfa.amsl.com>; Tue, 30 Oct 2018 20:22:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yGL23tIswHcO for <quic@ietfa.amsl.com>; Tue, 30 Oct 2018 20:22:36 -0700 (PDT)
Received: from mail-lj1-x244.google.com (mail-lj1-x244.google.com [IPv6:2a00:1450:4864:20::244]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BAED7124C04 for <quic@ietf.org>; Tue, 30 Oct 2018 20:22:35 -0700 (PDT)
Received: by mail-lj1-x244.google.com with SMTP id g26-v6so12170503lja.10 for <quic@ietf.org>; Tue, 30 Oct 2018 20:22:35 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=79yD4oHBfcWzISnO1PUGjDZeYuf/DtVtzxY0AgNoyIw=; b=G1WCDbClML2UkCly9HjVmQkX7x5pZZS2fv3JYiX/zKogcGUuRqJ3fz8gfeb1Skmdbk MW1SQ7sJPBtepgW6jZzcUezevPRONzZ68Y+DZfyOcNmbzJTnAIiIRlabpe9EzIb6xNeH SDpDqPPpd7WiY2q+r3pIja70On8A22aIrEF2chtn0qdb+U0K2PE0BPe/m1pZE1c63xdx 133yu4ziK4DxbWpMU3J1GdEey06lAdGqf4lIJPVvLO39M5zrSQBOAU96XMzXhosZTsCa gQZSPdPuXhbFFb+i9YxAlMUSl1oJUvviePrNNjgg3H6NG4v3sU1dLsa+ojpavwRJ9Jz1 JGHg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=79yD4oHBfcWzISnO1PUGjDZeYuf/DtVtzxY0AgNoyIw=; b=EODBtdhf6U7qh80MhstaTGnylhSemJ6zMPp+33ckwJwEIBeQFSc2P8jKSe9pVhe6bs UAACtfqDtXCCoL1PywwkEdELVOsMXB+P+PbYAxXAycQmVlcNTmWDBKCoTyIIrXPUtzW5 O8VqtigU1RkYL99JBq8GcLvUj85YLY6cg5ZK1saF48YIU4PkdHuhz0cfE87xJLnIeFGM gN3wgzqTEn4JIz4ogh1SWMEcictoXuNTxbAWON8pPK0p4A3sVjMkCbQop6ab4PFACAGw AtpcAycuxz2PdUAR4MZYdZIu7lLJpUO0rI7hOYBdTDx0cu0iLJo2dqFospr1sw06R6GW ORNw==
X-Gm-Message-State: AGRZ1gIfJnmWhk1LvTBeGir/zAILykMd80TDNHiGok17z/OxJwoyIHDY u5u6ibsz0lZQUV17MZXBa9yUFJY/iZZ1yI9EUPQ=
X-Google-Smtp-Source: AJdET5clt3stQoP9trzUzw0jx/Rjx37CnpVf6f44YUk5XnYlOu4A/sjE7BPufrFtpFrn+J9F88jJDhfgCyu3kxqMkEc=
X-Received: by 2002:a2e:9d50:: with SMTP id y16-v6mr858033ljj.136.1540956153942; Tue, 30 Oct 2018 20:22:33 -0700 (PDT)
MIME-Version: 1.0
References: <18A2F994-0E82-48E4-875D-93C674483D49@eggert.org> <20181029160802.GD7258@ubuntu-dmitri> <8268B90E-F109-424C-91A8-DB7BFE208F53@huitema.net> <CABkgnnU7W-_o_EGZWpJvTGRSm0KiL-hS7q_oQ6kT3LBoNKHGhw@mail.gmail.com> <5E1AB9AC-D24F-4E0D-9925-57816C5314A4@trammell.ch> <a088c411-1acc-8b0f-fc1b-8c79ce6f1cd7@huitema.net> <DB6PR10MB1766E6B29792BB4401FF38F0ACCC0@DB6PR10MB1766.EURPRD10.PROD.OUTLOOK.COM> <HE1PR0701MB23939472CAA7CC7C1CD42BB1E2CC0@HE1PR0701MB2393.eurprd07.prod.outlook.com> <65907d96-a525-dcd0-39cd-678c52d26ab6@huitema.net> <CABkgnnVCveXr2GUsx2ZyKNf08VaCh+Ts-T=5wD3_-8Pqk2xRTQ@mail.gmail.com>
In-Reply-To: <CABkgnnVCveXr2GUsx2ZyKNf08VaCh+Ts-T=5wD3_-8Pqk2xRTQ@mail.gmail.com>
From: Kazuho Oku <kazuhooku@gmail.com>
Date: Wed, 31 Oct 2018 12:22:22 +0900
Message-ID: <CANatvzysY8kh7xGRHnTLFrtRZUfmJAhybN0LCpyZZqVAgX-7xg@mail.gmail.com>
Subject: Re: Structuring the BKK spin bit discussion
To: Martin Thomson <martin.thomson@gmail.com>
Cc: Christian Huitema <huitema@huitema.net>, =?UTF-8?Q?Mikkel_Fahn=C3=B8e_J=C3=B8rgensen?= <mikkelfj@gmail.com>, marcus.ihlar@ericsson.com, IETF QUIC WG <quic@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/u2H7OueZwiTABslgnUdHxCoAyCU>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Oct 2018 03:22:37 -0000

2018年10月31日(水) 7:55 Martin Thomson <martin.thomson@gmail.com>;:
>
> On Wed, Oct 31, 2018 at 5:42 AM Christian Huitema <huitema@huitema.net>; wrote:
> > Mikkel is correct, we may not want a purely random per connection behavior, but rather something "random per destination". This would better mimic the opt-out behavior of a privacy-sensitive endpoint, which would always opt out when contacting a specific destination. If I had to implement it, I would not use a PRNG, but rather something compute the hash of a local secret and either the peer address or the peer name. That way, the client would opt out for all 16 Netflix connections, or for none of them.
>
> Or are we looking for random per-path?
>
> That notion would seem to tilt the balance more in favour of the
> "discretionary" option over the "negotiated" one on the basis that
> spinning/not doesn't become a linkability consideration.

Even though spin-bit is a per-path thing, I am not sure if the
probabilistic opt-out needs to be per-path. This is because what we
need to ensure is having at least some portion of QUIC packets flows
floating on each path not using the spin bit.

That can be achieved either by having QUIC endpoints turning off the
spin-bit for every path at a fixed probability, or by having them
turning off the spin-bit for every connection at a fixed probability.

-- 
Kazuho Oku