IETF Logo Mail Archive

Re: New Version Notification for draft-duke-quic-version-aliasing-01.txt

Martin Duke <martin.h.duke@gmail.com> Sun, 26 April 2020 16:02 UTC

Return-Path: <martin.h.duke@gmail.com>
X-Original-To: quic@ietfa.amsl.com
Delivered-To: quic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CBC13A0A07 for <quic@ietfa.amsl.com>; Sun, 26 Apr 2020 09:02:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Jf9l_EGwDo8j for <quic@ietfa.amsl.com>; Sun, 26 Apr 2020 09:02:41 -0700 (PDT)
Received: from mail-io1-xd35.google.com (mail-io1-xd35.google.com [IPv6:2607:f8b0:4864:20::d35]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4E333A0A03 for <quic@ietf.org>; Sun, 26 Apr 2020 09:02:36 -0700 (PDT)
Received: by mail-io1-xd35.google.com with SMTP id k23so916760ios.5 for <quic@ietf.org>; Sun, 26 Apr 2020 09:02:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ORgZgNnW+2qb6zCdhuab+jI0n1TTFM0q4TxgVY8ErOk=; b=ltTGpBYJi+MhfQx9e08C1Sr/lzbfzfno42gRF9TThnxp908kkI8wysTo12AUQUnwZP itMhTTpKmh38WGIih0wv3HvuD6gIopPsBeHlgppkdWASITGBg8cBRN08F0Sjq6IoLeJD L9tDOve8gx9tU/nZXbMp0gYP1EaLxvSuMIBzYhtA7/pr/B5dbQmINYgb1Cgh6Tfx9akJ vrymUIb1eq8xvfh9oQfCV0ySixdraajVe0rREY7PY0ps0vh9fx+SzsUf/xaRbQKXCQ86 WERKORsqbCb7vS6APPkYwAseAYSYKlqerzrV4CCdzbNX2aPsSCHqq9pX1pJ3x7ITEwZd sP6w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ORgZgNnW+2qb6zCdhuab+jI0n1TTFM0q4TxgVY8ErOk=; b=Sq65Kn+ZpCChT60radpfwhP8gHSsOlUBtIQMSMZ34AKPsLb0GYcWCs3E71/2Dq3Lzg VEiE6rYdBXW1zQdiGuZomHjX1Y1X2qYQzzKLdWfZ1FAYurMTlSHa4HmZbUHhTVKMhV9F aDsIr/RMWHoJVHTD9KJs8RgrOujeUwilDDv+btqmxp+3WA1NxBQOW07pxI6Wb4JWfOkb 2XXI7OYufUIlUqeXAMgHlliCANt8EM+lqficDupmAWJIDJCm4jY/VmP7DYeJjnZ/djXV Qkfoycichk0OYzE6VyT+zeAtwdnLEvq2IHMi4TWm6OYh4Kba47uYLbJh1Keicv3IgbB3 3J7w==
X-Gm-Message-State: AGi0PuYSlgoOvv0DZGtm0bVlIYyjwVyfwiXpVCJ/lO2oWIvamWQ1D+B9 oIhzAWmxXoiCdyjFchiIcymZgsNa01lU1UXnmic=
X-Google-Smtp-Source: APiQypKrnzdxlvK8atDjzx62G5SpdfX0lnk+oy3xONTuMHupY6jjLI9GP/sgtIpWpaRr7ghAfzgBg15WSGkrcfkOH9M=
X-Received: by 2002:a02:3351:: with SMTP id k17mr16930025jak.31.1587916955841; Sun, 26 Apr 2020 09:02:35 -0700 (PDT)
MIME-Version: 1.0
References: <158768580975.15102.13320878640394434826@ietfa.amsl.com> <CAM4esxSzU_Knn-ACwxJvjwNs6LO-q_H+8Y4pjCbrS1u6kCwCAQ@mail.gmail.com> <CAKDhxQpgbeKa0kAOFeQyRaCmgW_315OTuzP87xEb1m_A_N4o=A@mail.gmail.com> <CAKcm_gOexahkCt9Djyre+_ciRsaiE+1Jknwtvo99jjANkmkMsg@mail.gmail.com>
In-Reply-To: <CAKcm_gOexahkCt9Djyre+_ciRsaiE+1Jknwtvo99jjANkmkMsg@mail.gmail.com>
From: Martin Duke <martin.h.duke@gmail.com>
Date: Sun, 26 Apr 2020 09:02:24 -0700
Message-ID: <CAM4esxQOJhBU_7MV_5kRMJWJGeU-XHnOPbt_1Q6Aa4Z7Wft9eQ@mail.gmail.com>
Subject: Re: New Version Notification for draft-duke-quic-version-aliasing-01.txt
To: Ian Swett <ianswett@google.com>
Cc: Ryan Hamilton <ryan@optimism.cc>, IETF QUIC WG <quic@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000015f91605a433ba0b"
Archived-At: <https://mailarchive.ietf.org/arch/msg/quic/vTApYjTKkvjWGGQHZl9JFPNNwvk>
X-BeenThere: quic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Main mailing list of the IETF QUIC working group <quic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/quic>, <mailto:quic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/quic/>
List-Post: <mailto:quic@ietf.org>
List-Help: <mailto:quic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/quic>, <mailto:quic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 26 Apr 2020 16:02:43 -0000

Alt-svc is a great idea. I might restructure the draft to cover multiple
delivery systems besides transport parameters.

The difficulty with DNS is that the DNS server has to have the keys to
securely generate salts. I would love to have an internet where that was
easy, but someone who knows more than me about DNS will have to tell me if
it can be.

Thanks for reading!

On Sun, Apr 26, 2020, 08:06 Ian Swett <ianswett@google.com> wrote:

> That would also allow this to be placed in DNS via the HTTPSVC draft.
>
> On Fri, Apr 24, 2020 at 9:51 PM Ryan Hamilton <ryan@optimism.cc> wrote:
>
>> I love this and think it is a net positive for QUIC. Would it also be
>> worth specifying an Alt-Svc embedding for this information? This would
>> allow HTTP/3 client to use the aliased version on their *first* connection
>> to a new server.
>>
>> On Thu, Apr 23, 2020 at 4:56 PM Martin Duke <martin.h.duke@gmail.com>
>> wrote:
>>
>>> Based on some great feedback from the list, I substantially revised this
>>> draft:
>>> https://www.ietf.org/id/draft-duke-quic-version-aliasing-01.html
>>>
>>> Key changes:
>>> - Added "Initial Token Extensions" to increase salt entropy and make
>>> seed polling attacks impractical.
>>> - Allowed servers to store a mapping of version number and ITE to seed
>>> instead of a crypto function.
>>> - Made standard version encoding mandatory. This dramatically simplifies
>>> the new Retry logic and changes the security model.
>>>
>>> Martin
>>>
>>> ---------- Forwarded message ---------
>>> From: <internet-drafts@ietf.org>
>>> Date: Thu, Apr 23, 2020 at 4:50 PM
>>> Subject: New Version Notification for
>>> draft-duke-quic-version-aliasing-01.txt
>>> To: Martin Duke <martin.h.duke@gmail.com>
>>>
>>>
>>>
>>> A new version of I-D, draft-duke-quic-version-aliasing-01.txt
>>> has been successfully submitted by Martin Duke and posted to the
>>> IETF repository.
>>>
>>> Name:           draft-duke-quic-version-aliasing
>>> Revision:       01
>>> Title:          QUIC Version Aliasing
>>> Document date:  2020-04-23
>>> Group:          Individual Submission
>>> Pages:          14
>>> URL:
>>> https://www.ietf.org/internet-drafts/draft-duke-quic-version-aliasing-01.txt
>>> Status:
>>> https://datatracker.ietf.org/doc/draft-duke-quic-version-aliasing/
>>> Htmlized:
>>> https://tools.ietf.org/html/draft-duke-quic-version-aliasing-01
>>> Htmlized:
>>> https://datatracker.ietf.org/doc/html/draft-duke-quic-version-aliasing
>>> Diff:
>>> https://www.ietf.org/rfcdiff?url2=draft-duke-quic-version-aliasing-01
>>>
>>> Abstract:
>>>    The QUIC transport protocol [QUIC-TRANSPORT] preserves its future
>>>    extensibility partly by specifying its version number.  There will be
>>>    a relatively small number of published version numbers for the
>>>    foreseeable future.  This document provides a method for clients and
>>>    servers to negotiate the use of other version numbers in subsequent
>>>    connections and encrypts Initial Packets using secret keys instead of
>>>    standard ones.  If a sizeable subset of QUIC connections use this
>>>    mechanism, this should prevent middlebox ossification around the
>>>    current set of published version numbers and the contents of QUIC
>>>    Initial packets, as well as improving the protocol's privacy
>>>    properties.
>>>
>>>
>>>
>>>
>>> Please note that it may take a couple of minutes from the time of
>>> submission
>>> until the htmlized version and diff are available at tools.ietf.org.
>>>
>>> The IETF Secretariat
>>>
>>>
>>>

v2.23.0 | Report a Bug | By Email