Re: [Spud] No. Operators don't need SPUD for mobile network management

Mikael Abrahamsson <swmike@swm.pp.se> Thu, 21 July 2016 15:15 UTC

Return-Path: <swmike@swm.pp.se>
X-Original-To: spud@ietfa.amsl.com
Delivered-To: spud@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9E8C212D5F8 for <spud@ietfa.amsl.com>; Thu, 21 Jul 2016 08:15:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.288
X-Spam-Level:
X-Spam-Status: No, score=-3.288 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-1.287, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=swm.pp.se
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RrIqXqnYcLlt for <spud@ietfa.amsl.com>; Thu, 21 Jul 2016 08:15:46 -0700 (PDT)
Received: from uplift.swm.pp.se (ipv6.swm.pp.se [IPv6:2a00:801::f]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 03C5A12D67C for <spud@ietf.org>; Thu, 21 Jul 2016 08:15:46 -0700 (PDT)
Received: by uplift.swm.pp.se (Postfix, from userid 501) id EC709A3; Thu, 21 Jul 2016 17:15:43 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=swm.pp.se; s=mail; t=1469114143; bh=trb7u1OqLu7gfW0gpJ5PSjscPnA6fZdDOR+CCegD9Hg=; h=Date:From:To:cc:Subject:In-Reply-To:References:From; b=CU7cOwJNrCG4xfvhZNq/LEHtGd19mOu6eaoTGVOyzXxv6pVryYN009bBkXQ0hXvoM hNFQuC9JS0Iznu3swaIh3KFn1FLxljiOPqSXZZQBuksxoA3AP378igMd+QWwW4Xr46 tdgvkydXDXXe/zzv5ClxARX2TPjUJsc22p+ODeTE=
Received: from localhost (localhost [127.0.0.1]) by uplift.swm.pp.se (Postfix) with ESMTP id E8B95A2; Thu, 21 Jul 2016 17:15:43 +0200 (CEST)
Date: Thu, 21 Jul 2016 17:15:43 +0200 (CEST)
From: Mikael Abrahamsson <swmike@swm.pp.se>
To: Frode Kileng <frodek@tele.no>
In-Reply-To: <0f504f66-1df8-e2da-b55a-3e44e67d0912@tele.no>
Message-ID: <alpine.DEB.2.02.1607211712500.2309@uplift.swm.pp.se>
References: <43a39476-9327-87ef-204c-d7c614a80669@tele.no> <alpine.DEB.2.02.1607211643150.2309@uplift.swm.pp.se> <0f504f66-1df8-e2da-b55a-3e44e67d0912@tele.no>
User-Agent: Alpine 2.02 (DEB 1266 2009-07-14)
Organization: People's Front Against WWW
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Archived-At: <https://mailarchive.ietf.org/arch/msg/spud/s8TkvP8_ZtIKjUbowj_KV49kArk>
Cc: spud@ietf.org
Subject: Re: [Spud] No. Operators don't need SPUD for mobile network management
X-BeenThere: spud@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Session Protocol Underneath Datagrams <spud.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spud>, <mailto:spud-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spud/>
List-Post: <mailto:spud@ietf.org>
List-Help: <mailto:spud-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spud>, <mailto:spud-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jul 2016 15:15:47 -0000

On Thu, 21 Jul 2016, Frode Kileng wrote:

> I'm not a native English speaker and I'm sorry if I was not clear enough 
> in my initial e-mail. I was talking about existing operational practices 
> hindered by end-to-end encryption and that PLUS can bring back (i.e. 
> referring to a statement today that "mobile operators need PLUS").

If all traffic is IPSEC encrypted and the SYN flag is no longer available 
to network operators, they can't do what I described. They can't do it 
either with various UDP protocols that people are now developing.

If SPUD comes with flags that say "this is a connection establishment 
packet" (SYN-like) and another flag that matches ACK, then middle boxes 
can track connection establishment for all traffic based on SPUD, without 
needing to know anything more about the traffic. This is the functionality 
I'm talking about.

-- 
Mikael Abrahamsson    email: swmike@swm.pp.se