Re: [Taps] How to handle Protocol stacks that are not equivalent
"Philipp S. Tiesel" <phils@in-panik.de> Wed, 24 July 2019 14:11 UTC
Return-Path: <phils@in-panik.de>
X-Original-To: taps@ietfa.amsl.com
Delivered-To: taps@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AD859120131 for <taps@ietfa.amsl.com>; Wed, 24 Jul 2019 07:11:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.597
X-Spam-Level:
X-Spam-Status: No, score=-2.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id S5bOM3LindKD for <taps@ietfa.amsl.com>; Wed, 24 Jul 2019 07:11:07 -0700 (PDT)
Received: from einhorn-mail.in-berlin.de (einhorn-mail.in-berlin.de [217.197.80.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ACC171200E3 for <taps@ietf.org>; Wed, 24 Jul 2019 07:11:00 -0700 (PDT)
X-Envelope-From: phils@in-panik.de
Received: from x-berg.in-berlin.de (x-change.in-berlin.de [217.197.86.40]) by einhorn.in-berlin.de with ESMTPS id x6OEAw7C001899 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 24 Jul 2019 16:10:58 +0200
Received: from [2001:67c:370:1998:6dfc:c233:eb2e:71b] by x-berg.in-berlin.de with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.84_2) (envelope-from <phils@in-panik.de>) id 1hqHws-0001Pr-O1; Wed, 24 Jul 2019 16:08:54 +0200
Content-Type: multipart/alternative; boundary="Apple-Mail=_AE977671-E5E9-44C0-92AB-D142A1D40287"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
From: "Philipp S. Tiesel" <phils@in-panik.de>
X-Priority: 3
In-Reply-To: <f8d01742-e729-4c42-9049-a2110a3a1991@email.android.com>
Date: Wed, 24 Jul 2019 10:10:56 -0400
Cc: Theresa Enghardt <theresa@inet.tu-berlin.de>, taps@ietf.org
Message-Id: <72D09983-6712-47D1-B9AE-AF8435C9A6CC@in-panik.de>
References: <f8d01742-e729-4c42-9049-a2110a3a1991@email.android.com>
To: Maximilian Franke <mfranke@inet.tu-berlin.de>
X-Mailer: Apple Mail (2.3445.104.11)
Archived-At: <https://mailarchive.ietf.org/arch/msg/taps/nSr05XZ196hJtDwdpehv3g2nv98>
Subject: Re: [Taps] How to handle Protocol stacks that are not equivalent
X-BeenThere: taps@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IETF Transport Services \(TAPS\) Working Group" <taps.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/taps>, <mailto:taps-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/taps/>
List-Post: <mailto:taps@ietf.org>
List-Help: <mailto:taps-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/taps>, <mailto:taps-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 Jul 2019 14:11:11 -0000
> On 23. Jul 2019, at 17:56, Max Franke <mfranke@inet.tu-berlin.de> wrote: > > Good point, I guess this might be true for other things as well. > Take SCTP for example, you might not know if it is multistream or not until after it has already been raced and the association has been established. > So for some transport properties you might have to race protocols before you can determine if two protocol stacks are equivalent or not. No! - That is exactly the reason why we need to clarify that “equivalent” actually means “satisfies requires/prohibits set by the application/profile” – that means setting all to ignore will make all protocols equivalent! > > Best > Max > > Am 23.07.2019 17:30 schrieb Theresa Enghardt <theresa@inet.tu-berlin.de>: > Hi, (trimmed Cc list) > > On 23.07.19 16:53, Anna Brunström wrote: > Subject: Re: [Taps] How to handle Protocol stacks that are not equivalent > > > Yes, that's correct. My interpretation is that being in the candidate set already requires equivalence. > > > Same here, seems we all agree on this. > > Agreed. > > However, the equivalence question becomes way more interesting once you're adding security. > > TLS 1.2 is not equivalent to TLS 1.3, therefore you can't race them, the Architecture clearly says so and I agree. > > As the application probably never asked for any specific version -- What if our TCP stack only supports TLS 1.2 but our QUIC stack offers basically TLS 1.3? We always take the better version and then fall back in case this fails? But wouldn't that be racing? > > I think this is also an interesting question for the Implementation draft. > > Best, > Theresa > > > _______________________________________________ > Taps mailing list > Taps@ietf.org > https://www.ietf.org/mailman/listinfo/taps AVE! Philipp S. Tiesel -- Philipp S. Tiesel https://philipp.tiesel.net/
- [Taps] How to handle Protocol stacks that are not… Philipp S. Tiesel
- Re: [Taps] How to handle Protocol stacks that are… Tommy Pauly
- Re: [Taps] How to handle Protocol stacks that are… Gorry Fairhurst
- Re: [Taps] How to handle Protocol stacks that are… Theresa Enghardt
- Re: [Taps] How to handle Protocol stacks that are… Tommy Pauly
- Re: [Taps] How to handle Protocol stacks that are… Joe Touch
- Re: [Taps] How to handle Protocol stacks that are… Tommy Pauly
- Re: [Taps] How to handle Protocol stacks that are… Max Franke
- Re: [Taps] How to handle Protocol stacks that are… Joe Touch
- Re: [Taps] How to handle Protocol stacks that are… Tommy Pauly
- Re: [Taps] How to handle Protocol stacks that are… Anna Brunström
- Re: [Taps] How to handle Protocol stacks that are… Theresa Enghardt
- Re: [Taps] How to handle Protocol stacks that are… Max Franke
- Re: [Taps] How to handle Protocol stacks that are… Philipp S. Tiesel