Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-forming follow-on to SPUD BoF
Brian Trammell <ietf@trammell.ch> Fri, 20 May 2016 08:46 UTC
Return-Path: <ietf@trammell.ch>
X-Original-To: spud@ietfa.amsl.com
Delivered-To: spud@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7B88612D0B1 for <spud@ietfa.amsl.com>; Fri, 20 May 2016 01:46:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.328
X-Spam-Level:
X-Spam-Status: No, score=-3.328 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-1.426, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n-S-LWU5B_vH for <spud@ietfa.amsl.com>; Fri, 20 May 2016 01:46:14 -0700 (PDT)
Received: from trammell.ch (trammell.ch [5.148.172.66]) by ietfa.amsl.com (Postfix) with ESMTP id D971612D0B0 for <spud@ietf.org>; Fri, 20 May 2016 01:46:13 -0700 (PDT)
Received: from [IPv6:2001:67c:10ec:2a49:8000::10d6] (unknown [IPv6:2001:67c:10ec:2a49:8000::10d6]) by trammell.ch (Postfix) with ESMTPSA id 308C91A03C3; Fri, 20 May 2016 10:46:11 +0200 (CEST)
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
Content-Type: multipart/signed; boundary="Apple-Mail=_6E180729-66C2-4EB0-9456-F5A3DE61001C"; protocol="application/pgp-signature"; micalg="pgp-sha512"
X-Pgp-Agent: GPGMail 2.6b2
From: Brian Trammell <ietf@trammell.ch>
In-Reply-To: <655C07320163294895BBADA28372AF5D4885CF80@FR712WXCHMBA15.zeu.alcatel-lucent.com>
Date: Fri, 20 May 2016 10:46:10 +0200
Message-Id: <B06CA1C2-9E96-4BD2-B697-0CB0F1ACE396@trammell.ch>
References: <7EE2C4F8-98D4-493A-9778-FB6697B4A4DF@trammell.ch> <825141DA-F346-412A-A52C-53BF81EC6502@trammell.ch> <655C07320163294895BBADA28372AF5D4885CF80@FR712WXCHMBA15.zeu.alcatel-lucent.com>
To: "Scharf, Michael (Nokia - DE)" <michael.scharf@nokia.com>
X-Mailer: Apple Mail (2.3124)
Archived-At: <http://mailarchive.ietf.org/arch/msg/spud/jVFch26eGihRdkis4_YSTUd6GQc>
Cc: "spud@ietf.org" <spud@ietf.org>
Subject: Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-forming follow-on to SPUD BoF
X-BeenThere: spud@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Session Protocol Underneath Datagrams <spud.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spud>, <mailto:spud-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spud/>
List-Post: <mailto:spud@ietf.org>
List-Help: <mailto:spud-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spud>, <mailto:spud-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 May 2016 08:46:16 -0000
hi Michael, > On 19 May 2016, at 19:12, Scharf, Michael (Nokia - DE) <michael.scharf@nokia.com> wrote: > > Does the sentence ... > > The current Internet protocol stack has no layer for explicit signaling of flow semantics and characteristics to network elements ... > > actually wants to say something like > > The current Internet protocol stack has no layer for explicit *in-band* signaling of flow semantics and characteristics ... ? Yes. One could make the argument that DSCP is an in-band signaling mechanism at the network layer, but as designed really does work at the network layer (i.e., it is explicitly applied per hop). > I may be wrong, but there is no shortage of IETF and non-IETF protocols that can signal flow semantics and characteristics out-of-band, either path-coupled or path-decoupled, e.g., in the control or management plane. As a result, there are protocol "layers" for that signaling, but they are not in-band. There may also be other ways to fix this problem (e.g., by adding "end-to-end" or "inter-domain" instead of "in-band"). "Interdomain, in-band" would work for me here and be more accurate. "End-to-end" would imply to my ears that we only want the endpoints to participate, for which we don't need a layer -- that's transport's job. Note that the current requirements document is not explicitly limited to in-band approaches, but the fact that the signaling has to get the same NAT and forwarding treatment would seem to be an implicit limit. Cheers, Brian > Michael > > > -----Original Message----- > From: Stackevo-discuss [mailto:stackevo-discuss-bounces@iab.org] On Behalf Of Brian Trammell > Sent: Thursday, May 19, 2016 5:07 PM > To: stackevo-discuss@iab.org > Subject: [Stackevo-discuss] Fwd: Possible WG-forming follow-on to SPUD BoF > > Greetings, all, > > Forwarding this to the correct address for this mailing list (oops). Please discuss at spud@ietf.org. > > Thanks, cheers, > > Brian > >> Begin forwarded message: >> >> From: Brian Trammell <ietf@trammell.ch> >> Subject: Possible WG-forming follow-on to SPUD BoF >> Date: 19 May 2016 at 17:04:50 GMT+2 >> To: spud@ietf.org >> Cc: stackevo-discuss@ietf.org, tsv-area@ietf.org, "Mirja Kuehlewind >> (IETF)" <ietf@kuehlewind.net>, Spencer Dawkins at IETF >> <spencerdawkins.ietf@gmail.com> >> >> Greetings, all, >> >> We propose to hold a working-group forming BoF in Berlin as a follow-on to the SPUD work, to define a common substrate protocol for encrypted transports based on the requirements derived from experimentation with the SPUD prototype. >> >> First, note that since the acronym "SPUD" refers primarily to the prototype itself, any follow-on working group should have a different name. We're using the derived requirements, not starting for the prototype. The name is a subject for discussion, and suggestions are welcome. To have something to put in the proposed charter, we'd propose "Path Layer UDP Substrate" (PLUS) as a starting point. >> >> The proposed charter appears below. We're interested in hearing initial feedback on the proposed charter in preparation for a BoF proposal (the cutoff date is two weeks from tomorrow, on Friday 3 June). Is there work to do here within the IETF? Is the scope of the proposed charter appropriate? Is there energy to do this work? >> >> Thanks, cheers, >> >> Brian and Mirja >> >> >> Path Layer UDP Substrate (PLUS) >> =============================== >> >> The PLUS working group’s goal is to enable the deployment of new, >> encrypted transport protocols, while providing a transport-independent >> method to signal flow semantics under transport and application control. >> >> The current Internet protocol stack has no layer for explicit >> signaling of flow semantics and characteristics to network elements, >> nor an integrated signaling mechanism from network elements to back to >> endpoints and applications. This layer never evolved within the stack, >> because middleboxes and other devices on path could simply inspect and >> modify headers and payload of unencrypted traffic at every layer. This >> implicit use of information from the transport and application layers >> is a key origin of the ossification that makes it hard or impossible to deploy new protocols. >> >> In order to support more ubiquitous deployment of encryption, explicit >> signaling must be added to the stack, and it must be transport >> protocol independent. While IP would seem to be the natural home for >> this facility, both IPv4 and IPv6 options and extensions have >> deployment problems on their own, which makes it hard to include any >> additional information in these protocols. Additionally, a feedback >> channel that provides information from on-path devices back to >> endpoints and applications, e.g. for error handling, is essential for >> the deployment and success of an explicit cooperation approach. >> >> The PLUS working group will specify a new protocol as a Path Layer >> User Substrate (PLUS), to support experimental deployment of explicit >> cooperation between endpoints and devices on path, with the following goals: >> >> - enable ubiquitous deployment of encrypted higher layer protocols by >> providing exposure of similar semantics to existing protocols (e.g. >> TCP) to devices on path (e.g. NATs and firewalls) >> >> - allow applications and transport protocols to explicitly provide >> limited information to devices on path >> >> - allow devices on path to provide feedback and information about the >> path to sending endpoints, under sending endpoint control >> >> - allow devices on path to provide information about the path to >> receiving endpoints, with feedback to the sending endpoint, under >> sending endpoint control >> >> Note that this approach explicitly gives the control of information >> exposure back the application and/or transport layer protocol on the >> end host. It is the goal of PLUS to minimize the information exposed >> at the level of detail that is useful for the network, while >> encrypting everything else. This is important to avoid future implicit >> treatment and the resulting ossification, as well as to leverage the >> principle of least exposure to minimize privacy risks presented by explicit cooperation. >> >> Given that the primary goal of PLUS is to enable the deployment of >> arbitrary, fully encrypted transport protocols, we assume that the >> higher layer protocol can provide an encryption context that can be >> used by PLUS to provide authentication, integrity, and encryption >> where needed. The primary threat model to defend against will be >> modification or deletion of exposed information by middleboxes and >> other devices on path, by allowing a remote endpoint to detect modifications. >> >> The working group will start with an initial set of use cases (see >> draft-kuehlewind-spud-use-cases) and requirements (see >> draft-trammell-spud-req), taken from experience with the Substrate Protocol for User Datagrams prototype. >> The working group's main output will be an experimental protocol >> specification, together with an initial registry of types of >> information that can be exposed using PLUS, clearly aligned to these >> use cases and requirements. The working group will close if it is not >> able to come to consensus on a protocol design to meet these requirements. >> >> The working group will additionally aim to identify other working >> groups that could or should address parts of these requirements within >> existing protocols, e.g. by specifying new protocol extensions or as >> input for on-going standardization work. It will aim to work with >> working groups defining encryption protocols (e.g. TLS) which could be >> used for encryption of transport protocols running over PLUS. >> > > _______________________________________________ > Spud mailing list > Spud@ietf.org > https://www.ietf.org/mailman/listinfo/spud
- [Spud] Possible WG-forming follow-on to SPUD BoF Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Scharf, Michael (Nokia - DE)
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Toerless Eckert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Scharf, Michael (Nokia - DE)
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Dave Dolson
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Dave Dolson
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Toerless Eckert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Dave Dolson
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Ian Swett
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Mirja Kühlewind
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Ian Swett
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Dave Dolson
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Toerless Eckert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Dave Dolson
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Phillip Hallam-Baker
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Michael Welzl
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Toerless Eckert
- Re: [Spud] Fwd: Possible WG-forming follow-on to … Mark Nottingham
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Michael Welzl
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Mirja Kühlewind
- Re: [Spud] Fwd: Possible WG-forming follow-on to … Mirja Kühlewind
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] Fwd: Possible WG-forming follow-on to … Brian Trammell
- Re: [Spud] Fwd: Possible WG-forming follow-on to … Toerless Eckert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Mirja Kühlewind
- Re: [Spud] Fwd: Possible WG-forming follow-on to … Mirja Kühlewind
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Joe Touch
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Joe Touch
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] Fwd: Possible WG-forming follow-on to … Toerless Eckert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Joe Touch
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Joe Touch
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] Possible WG-forming follow-on to SPUD … Mark Nottingham
- Re: [Spud] Possible WG-forming follow-on to SPUD … Brian Trammell
- Re: [Spud] Possible WG-forming follow-on to SPUD … Mark Nottingham
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Brian Trammell
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Mirja Kühlewind
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Mirja Kühlewind
- Re: [Spud] Possible WG-forming follow-on to SPUD … Fan, Peng
- Re: [Spud] [Stackevo-discuss] Fwd: Possible WG-fo… Tom Herbert
- Re: [Spud] Possible WG-forming follow-on to SPUD … Tom Herbert
- Re: [Spud] Possible WG-forming follow-on to SPUD … Brian Trammell
- Re: [Spud] Possible WG-forming follow-on to SPUD … Szilveszter Nadas
- Re: [Spud] Possible WG-forming follow-on to SPUD … Brian Trammell
- Re: [Spud] Possible WG-forming follow-on to SPUD … Tom Herbert
- Re: [Spud] Possible WG-forming follow-on to SPUD … Brian Trammell
- Re: [Spud] Possible WG-forming follow-on to SPUD … Szilveszter Nadas
- Re: [Spud] Possible WG-forming follow-on to SPUD … Tom Herbert