Re: [Spud] updated draft PLUS charter, rev. 1 June
Aaron Falk <aaron.falk@gmail.com> Tue, 07 June 2016 17:44 UTC
Return-Path: <aaron.falk@gmail.com>
X-Original-To: spud@ietfa.amsl.com
Delivered-To: spud@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 386FC12D191 for <spud@ietfa.amsl.com>; Tue, 7 Jun 2016 10:44:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uBu7a6GzdBXC for <spud@ietfa.amsl.com>; Tue, 7 Jun 2016 10:44:29 -0700 (PDT)
Received: from mail-vk0-x22e.google.com (mail-vk0-x22e.google.com [IPv6:2607:f8b0:400c:c05::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8193B12B00B for <spud@ietf.org>; Tue, 7 Jun 2016 10:44:29 -0700 (PDT)
Received: by mail-vk0-x22e.google.com with SMTP id c66so99515092vkb.3 for <spud@ietf.org>; Tue, 07 Jun 2016 10:44:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=jVH/gAoR5GPHiEK292Z35UCkQzrkxjZwVFLJsczCNNE=; b=bawFksyslb18Cn3yHCL1fCjtft7jSchbMGeRlXnkyCz1jqCjDIZ95pbcYhbh2aaKub SZjWVse2zQVMqKJUHg0hqS99vivUuwWFH+nZn7v8UM9uXK2oF5XniNeSMhAsVw89Poll XKtydSsz63nokvAowkIs401wmV2DybwNTXTQCIaq23rzBprQHqRQFlVzwPANcBs23Pbo HnTM3vuJIbUxsTdECKOjt6kJCGa3pPhavUkodFVpd01zNjbNgCG2KgMoeCXllrtAZOoH n0qncQ9o5fbUrCnVkLUIbQaUvAzrvvJvLHW35IdRIPuAuugsSdq6T3BETf9ptn8KKGQd 7NUA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=jVH/gAoR5GPHiEK292Z35UCkQzrkxjZwVFLJsczCNNE=; b=bVG1gANy62yo5dB3fLzw5A51FQ6iwJsP7WVDJBzlxIa1WDKC5Bv6JIVEIsxZFEqyT8 cleRl5fzZAqL/c36Uy7r4r/Vs0bvL2Jwc5wwW9xaWfHVQcwPyLQQcoElJcoGmos3Qq0z WBzLx285C/D09Bfwz/JE/rrlIKn4NAYb+0OcAOadxPrlP57y3a4YvzViG2ktZ/LWmcAc a3N/KfFQtjBeIQSXSTL6z+ZuJ8ymmlzrjwbVNeQSzGsb8HA/ywaI0bWIFAzJfRsPDwT6 SEL4kGZ4Wm/G3Jl+bXp6l7dsS6csy7VkGSP0PQ6t7DeG1/om660+84AS3Bnc36iq8un7 qxxA==
X-Gm-Message-State: ALyK8tIVZzmngqXStjA4O5OvCY48yTzmodIWxlfQgbeYCyLV0GPpiIOb0gSsGbCGO7eYrekHZ5i07loXbwG5sw==
X-Received: by 10.159.36.108 with SMTP id 99mr318527uaq.110.1465321468608; Tue, 07 Jun 2016 10:44:28 -0700 (PDT)
MIME-Version: 1.0
References: <85E24D9D-F666-49C3-A022-2F207227A153@trammell.ch> <CAD62q9UiLi1ffGPm=xEXOSH=sqZPv7hYiNBTGvAX52a9dhV8yg@mail.gmail.com>
In-Reply-To: <CAD62q9UiLi1ffGPm=xEXOSH=sqZPv7hYiNBTGvAX52a9dhV8yg@mail.gmail.com>
From: Aaron Falk <aaron.falk@gmail.com>
Date: Tue, 07 Jun 2016 17:44:19 +0000
Message-ID: <CAD62q9U7XL8hDqY1VdzuvUvoz0Ec5DDLAS6=kaLxRExu7FY0Kg@mail.gmail.com>
To: Brian Trammell <ietf@trammell.ch>, spud <spud@ietf.org>
Content-Type: multipart/alternative; boundary="001a113d12689e48be0534b3bde2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/spud/gGv8LIu_HaLeclO8Jh-QZVDN8JY>
Subject: Re: [Spud] updated draft PLUS charter, rev. 1 June
X-BeenThere: spud@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Session Protocol Underneath Datagrams <spud.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spud>, <mailto:spud-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spud/>
List-Post: <mailto:spud@ietf.org>
List-Help: <mailto:spud-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spud>, <mailto:spud-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jun 2016 17:44:32 -0000
Oh, and there should be some draft deliverables so we can have a fight about the realism of the associated dates. On Tue, Jun 7, 2016 at 1:40 PM Aaron Falk <aaron.falk@gmail.com> wrote: > Apologies for being behind on the list and maybe repeating points that > have been made. A few comments based on my review of the BoF proposal & > charter: > > > - 1st para of the charter says “The working group will not specify any > new transport protocols.” and the 5th para says “The PLUS working group > will specify a new protocol”. I think the latter statement is correct. > - I’d like to see a comment on PLUS re-enabling ICMP functionality > - There’s the obvious & unaddressed question about the relation to QUIC > - The PLUS Bof description should start something like “This BoF is to > discuss the proposed PLUS working group. The wg’s goal is to…” > - No discussion of wg anti-goals. I had heard some interest in ruling > middlebox to middlebox signaling as out of scope. > - (To ADs:) Would like to see the QUIC and PLUS BoFs scheduled > back-to-back. While I think the topics are mostly separable, if the > discussion gets out of sync it will be a headache. > > HTH, > > --aaron > > > On Wed, Jun 1, 2016 at 6:45 AM Brian Trammell <ietf@trammell.ch> wrote: > >> Greetings, all, >> >> We've taken another editing pass to tighten the charter; results inline >> below at on GitHub (https://github.com/ietf-plus/charter). We think this >> is getting close to something it would be useful to discuss and wordsmith >> at a BoF. >> >> Further comments welcome. >> >> Thanks, cheers, >> >> Brian and Mirja >> >> >> Path Layer UDP Substrate (PLUS) >> =============================== >> >> The PLUS working group's goal is to define a common shim layer atop the >> User >> Datagram Protocol (UDP) to provide a transport-independent method to >> signal >> flow semantics under transport and application control, necessary to >> enable >> the deployment of new, encrypted transport protocols within the existing >> Internet. UDP provides compatibility with currently deployed middleboxes >> as >> well as ubiquitous support in endpoints, and supports userspace >> implementation >> of new transport protocols. The working group will not specify any new >> transport protocols. >> >> The current Internet protocol stack does not provide explicit, in-band, >> transport-independent signaling to on-path network devices. This has led >> to >> the deployment of devices which perform implicit discovery of transport >> semantics and traffic characteristics via inspection of protocol headers >> and >> payload, a practice made possible when these are sent in the clear. >> >> In order to support more ubiquitous deployment of encryption, and the >> encryption of transport headers to allow deployment of new transport >> protocols, explicit in-band signaling must be added to the stack. This >> signaling must be transport protocol independent, and the types of >> information >> signaled must be based on characteristics that can be independently >> verified >> by devices on path, or that can be usefully applied without requiring a >> trust >> relationship between endpoints and the path. Further, a feedback channel >> that >> provides information from on-path devices back to endpoints and >> applications, >> e.g. for error handling, is essential for the deployment and success of an >> explicit cooperation approach. >> >> While IP would seem to be the natural home for this facility, both IPv4 >> and >> IPv6 options and extensions have deployment problems on their own, which >> makes >> it hard to include any additional information in these protocols. >> >> The PLUS working group will specify a new protocol as a Path Layer >> UDP Substrate (PLUS), to support experimental deployment of >> explicit cooperation between endpoints and devices on path, with the >> following goals: >> >> - enable ubiquitous deployment of encrypted higher layer protocols >> by providing exposure of basic TCP-like semantics (e.g. SYN, FIN, >> RST flags) to devices on path (e.g. NATs and firewalls). >> >> - allow applications and transport protocols to explicitly provide >> limited information with integrity protection to devices on path >> >> - allow devices on path to provide unencrypted feedback and information >> about the path directly to sending endpoints, under sending endpoint >> control >> >> - allow devices on path to provide unencrypted information about the >> path to receiving endpoints, with encrypted feedback to the >> sending endpoint, under sending endpoint control >> >> This approach explicitly gives the control of information exposure back >> the >> application and/or transport layer protocol on the end host. It is the >> goal of >> PLUS to minimize the information exposed, to make information exposure >> transparent, and to limit the level of detail to that useful for network >> treatment, while encrypting everything else. Endpoint verification of >> signaling integrity, careful design of minimal data structures, and >> restrictive policies for registration of signals can help to meet this >> goal. >> This is important to avoid future implicit treatment and resulting >> ossification, as well as to minimize the privacy risks presented by >> explicit >> cooperation. >> >> Given that the primary goal of PLUS is to enable the deployment of >> transport >> protocols with encrypted headers, we assume that the higher-layer >> protocol can >> provide an encryption context that can be used by PLUS to provide >> authentication, integrity, and encryption where needed. The primary threat >> model to defend against will be modification or deletion of exposed >> information by middleboxes and other devices on path, by allowing a remote >> endpoint to detect modifications. >> >> The working group will start with an initial set of use cases (see draft- >> kuehlewind-spud-use-cases) and requirements (see draft-trammell-spud-req), >> taken from experience with the Substrate Protocol for User Datagrams >> (SPUD) >> prototype. The working group's main output will be an experimental >> protocol >> specification, together with an initial registry of types of information >> that >> can be exposed using PLUS, clearly aligned to the use cases determined by >> the >> working group. The working group will close if it is not able to come to >> consensus on a protocol design to meet these requirements. >> >> The working group will additionally aim to identify and work with other >> working groups that could address parts of these requirements within >> existing >> protocols, e.g. by specifying new protocol extensions, or as input for on- >> going standardization work. It will aim to work with working groups >> defining >> encryption protocols (e.g. DTLS) which could be used for encryption of >> transport protocols running over PLUS. >> >> _______________________________________________ >> Spud mailing list >> Spud@ietf.org >> https://www.ietf.org/mailman/listinfo/spud >> > -- --aaron =====Short message from my phone=====
- Re: [Spud] updated draft PLUS charter, rev. 1 June 🔓Dan Wing
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Ca By
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Yoav Nir
- Re: [Spud] updated draft PLUS charter, rev. 1 June Christian Huitema
- [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
- Re: [Spud] updated draft PLUS charter, rev. 1 June Ca By
- Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
- Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
- Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
- Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
- Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
- Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
- Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Aaron Falk
- Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
- Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Mirja Kühlewind
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Ted Hardie
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Christian Huitema
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch
- Re: [Spud] updated draft PLUS charter, rev. 1 June Brian Trammell
- Re: [Spud] updated draft PLUS charter, rev. 1 June Tom Herbert
- Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
- Re: [Spud] updated draft PLUS charter, rev. 1 June Szilveszter Nadas
- Re: [Spud] updated draft PLUS charter, rev. 1 June Joe Touch