Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-transport-encrypt-08.txt

Tom Herbert <tom@herbertland.com> Tue, 05 November 2019 15:10 UTC

MIME-Version: 1.0
References: <CABcZeBPajzuEdw8=M1g1i-TAniJ9O+H5dEMxv8c6N3tD=7mSvw@mail.gmail.com> <CALx6S35bSAa_zq=HsF-3e9qC-vRNFRu6dn+O4ak4Hi+c=Tmz5A@mail.gmail.com> <bbb870cd-033b-4a99-ba0c-fbd9c965660b@www.fastmail.com> <CALx6S36YQSX2yGaqpK7cVrGdKg1JqBpwuYPD9YxeDy3Dd_Gk8w@mail.gmail.com> <8b26fae5-0db0-48b0-859e-1a5faf6310ea@www.fastmail.com>
In-Reply-To: <8b26fae5-0db0-48b0-859e-1a5faf6310ea@www.fastmail.com>
From: Tom Herbert <tom@herbertland.com>
Date: Tue, 05 Nov 2019 07:10:44 -0800
Message-ID: <CALx6S37ooC+aVm82umcvUPnxev6qidMi27RwupajJBTTMJbqEw@mail.gmail.com>
To: Martin Thomson <mt@lowentropy.net>
Cc: saag@ietf.org, tsvwg <tsvwg@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/YJNs6Aznb5Zi_KCbe0EwgtDRPVA>
Subject: Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-transport-encrypt-08.txt
Precedence: list

On Mon, Nov 4, 2019 at 9:09 PM Martin Thomson <mt@lowentropy.net> wrote:
>
> On Tue, Nov 5, 2019, at 15:36, Tom Herbert wrote:
> > > Please refer to draft-ietf-quic-manageability for that discussion.
> >
> > I looked at that draft. While it does mention RFC7605, the explanation
> > for how non-QUIC packets that match port 443 aren't misinterpreted
> > isn't particularly satisfying. Other than assuming port number match
> > is sufficient, the recommended approach seems to be for middleboxes to
> > track flows by handshake. But, that then requires state to be
> > maintained and implies that packets for the flow must be consistently
> > be routed through the same device (a common problem for any stateful
> > device in the network). I don't think the QUIC spin bit serves as an
> > exemplar for reliably exposing transport layer information in a
> > transport protocol that is otherwise encrypted.
>
> Yeah, not saying that this is ideal, but it's what we're handing out.  Well, some of us might, I don't think that our implementation has any intention of leaking anything at this stage.
>
> Note also that QUIC allows for migration where the new path will not see the handshake.
>
> I don't think that there is a lack of interest in this subject, just that there is no real drive toward finding e2m and m2e signaling that will be deployed.  Personally, my interests are aligned more with removing signals, not adding them.

That is happening in IPPM WG and others. Options are being defined in
extension headers for the purposes of host to network signaling.

[saag] Comments on draft-ietf-tsvwg-transport-enc… Eric Rescorla
Re: [saag] Comments on draft-ietf-tsvwg-transport… Bernard Aboba
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Martin Thomson
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Eric Rescorla
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Kathleen Moriarty
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Christian Huitema
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Christian Huitema
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Bernard Aboba
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Gorry Fairhurst
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Gorry Fairhurst
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Bernard Aboba
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Martin Thomson
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Eric Rescorla
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Gorry Fairhurst
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Eric Rescorla
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Joe Touch
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Christopher Wood
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… David Schinazi
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Martin Thomson
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Mirja Kuehlewind
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Frode Kileng
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Colin Perkins
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Peter Gutmann
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Stephen Farrell
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… David Schinazi
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Martin Thomson
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Peter Gutmann
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Colin Perkins
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… David Schinazi
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Bernard Aboba
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Gorry Fairhurst
Re: [saag] Comments on draft-ietf-tsvwg-transport… Phillip Hallam-Baker
Re: [saag] Comments on draft-ietf-tsvwg-transport… Phillip Hallam-Baker
Re: [saag] Comments on draft-ietf-tsvwg-transport… Michael Richardson
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Peter Gutmann
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Kathleen Moriarty
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Eric Rescorla
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Tom Herbert
Re: [saag] [tsvwg] Comments on draft-ietf-tsvwg-t… Peter Gutmann