Re: [tcpm] Fwd: Re: Data on 'Nonce' and 'Broken' responses to AccECN SYN?

Bob Briscoe <ietf@bobbriscoe.net> Wed, 18 July 2018 17:50 UTC

Return-Path: <ietf@bobbriscoe.net>
X-Original-To: tcpm@ietfa.amsl.com
Delivered-To: tcpm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 78EE7130F96 for <tcpm@ietfa.amsl.com>; Wed, 18 Jul 2018 10:50:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.989
X-Spam-Level:
X-Spam-Status: No, score=-1.989 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=bobbriscoe.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w2s35OaeQ_tW for <tcpm@ietfa.amsl.com>; Wed, 18 Jul 2018 10:50:22 -0700 (PDT)
Received: from server.dnsblock1.com (server.dnsblock1.com [85.13.236.178]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9F00D130E32 for <tcpm@ietf.org>; Wed, 18 Jul 2018 10:50:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=bobbriscoe.net; s=default; h=Content-Type:In-Reply-To:MIME-Version:Date: Message-ID:From:References:Cc:To:Subject:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=Ss3tabiJNFAB81+xsJoZZhqkV6RDXLiAR8wc/0D7UVk=; b=T/Hxbw5udQu4P/lTRxnV+R6jL cVTRXm2e1Lu3kcXNZVKebYiYJLCUV36NqK6MqqczH7PV3e740nlnNbPue0Qqz4KqJrT8ZRUdZktZs du3Un17dRspQKL1NcdDnCUVrvvBeNgIgTy47sd+7RG68wZFqHPylQMxkhOyhVna7mB9ayO1jXmIjF BouhabhKEAutxxPqLYbEtUjRvdrm2c+yMtJXn3suJMdHCqOHOReczT++EEtm3L0Y8PBVPcts+e7y7 QPekmBFaG05Pznd0DEbj1uDNH4a06OX2i6ei1UWEROVbFFBlZYr6XIl3e9yHRMcXne1kgizG9YAH4 gqxSk2P5g==;
Received: from dhcp-94a4.meeting.ietf.org ([31.133.148.164]:46006) by server.dnsblock1.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.91) (envelope-from <ietf@bobbriscoe.net>) id 1ffqah-0002Py-Jy; Wed, 18 Jul 2018 18:50:19 +0100
To: "Scharf, Michael (Nokia - DE/Stuttgart)" <michael.scharf@nokia.com>
Cc: tcpm IETF list <tcpm@ietf.org>
References: <CANBVbAtF3nrSEW+Mf5vcmS9HioKaVSTr2JEvzrwX2xztkghQeQ@mail.gmail.com> <bb5e3d4c-3c79-1790-3780-b1fdec9cb2b3@bobbriscoe.net> <VI1PR07MB0880A7BF3FCC4FBC31E81D6093530@VI1PR07MB0880.eurprd07.prod.outlook.com>
From: Bob Briscoe <ietf@bobbriscoe.net>
Message-ID: <8b8363c9-aca2-3888-58f8-dc1a9bb88b02@bobbriscoe.net>
Date: Wed, 18 Jul 2018 13:50:18 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.9.1
MIME-Version: 1.0
In-Reply-To: <VI1PR07MB0880A7BF3FCC4FBC31E81D6093530@VI1PR07MB0880.eurprd07.prod.outlook.com>
Content-Type: multipart/alternative; boundary="------------0CC9A9F4B7F267C02D6EF741"
Content-Language: en-GB
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.dnsblock1.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bobbriscoe.net
X-Get-Message-Sender-Via: server.dnsblock1.com: authenticated_id: in@bobbriscoe.net
X-Authenticated-Sender: server.dnsblock1.com: in@bobbriscoe.net
Archived-At: <https://mailarchive.ietf.org/arch/msg/tcpm/9po1MoOrh7AhQlLf6KVVL4irCm4>
Subject: Re: [tcpm] Fwd: Re: Data on 'Nonce' and 'Broken' responses to AccECN SYN?
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tcpm/>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jul 2018 17:50:31 -0000

Michael,

I agree. Also, even tho 'broken' is not currently any use, it might be 
one day.

So we should reserve both the nonce and broken patterns on the SYN-ACK 
(in response to 111 on the SYN) for future AccECN use. They have to be 
solely for AccECN use, cos the SYN is still saying "I support AccECN".


We can add a RESVD tag in table 2, and explain in the notes underneath.


Bob

On 18/07/18 09:24, Scharf, Michael (Nokia - DE/Stuttgart) wrote:
>
> Interesting. So what prevents us from reserving the nonce pattern for 
> future use?
>
> Michael
>
> *From:*tcpm [mailto:tcpm-bounces@ietf.org] *On Behalf Of *Bob Briscoe
> *Sent:* Wednesday, July 18, 2018 1:41 PM
> *To:* Michael Scharf <michael.scharf@gmail.com>
> *Cc:* ANNA MARIA MANDALARI <amandala@it.uc3m.es>es>; tcpm IETF list 
> <tcpm@ietf.org>
> *Subject:* [tcpm] Fwd: Re: Data on 'Nonce' and 'Broken' responses to 
> AccECN SYN?
>
> Michael,
>
>
> Below is data from 410,803 of the Alexa top 500k web server that 
> confirms what I said in the presentation about space for future 
> evolution of AccECN:
>
>   * the nonce pattern on the SYN-ACK could be reused now (0.0007%)
>   * the broken reflection pattern is still far too prevalent to re-use
>     it (0.35%).
>
> If anyone wants the list of broken servers that Anna attached for me, 
> pls ask.
> The whole dataset is also available via: 
> http://www.it.uc3m.es/amandala/ecn++/ 
> <http://www.it.uc3m.es/amandala/ecn++/>
>
> @Anna, thanks v much for responding so quickly - it was me that hadn't 
> read your email in time for the talk.
>
>
>
> Bob
>
> -------- Forwarded Message --------
>
> *Subject: *
>
> 	
>
> Re: Data on 'Nonce' and 'Broken' responses to AccECN SYN?
>
> *Date: *
>
> 	
>
> Tue, 17 Jul 2018 15:42:10 +0200
>
> *From: *
>
> 	
>
> ANNA MARIA MANDALARI <amandala@it.uc3m.es> <mailto:amandala@it.uc3m.es>
>
> *To: *
>
> 	
>
> Bob Briscoe <research@bobbriscoe.net> <mailto:research@bobbriscoe.net>
>
> Hi Bob,
>
> I had a look at the data and I found *1,438 servers *over the top 
> 410,803 Alexa (0.35%) that reply SYN/ACK+111 to a SYN+111 (attached 
> the list).
>
> Only *3 servers *(0.0007%) reply SYN/ACK+101 to a SYN+111:
>
> test_synack;200.12.171.53;80;ect;0;flags;338
> test_synack;60.28.220.134;80;ect;0;flags;338
> test_synack;200.12.171.52;80;ect;0;flags;338
>
> Let me know if I can help you with something else!
>
> 2018-07-17 13:26 GMT+02:00 Bob Briscoe <research@bobbriscoe.net 
> <mailto:research@bobbriscoe.net>>:
>
>     Anna,
>
>     Could you do me a favour and look up how many servers responded to
>     an AccECN (111) SYN with a SYN/ACK carrying respectively 'Nonce'
>     (101) or 'Broken' (111)?
>
>     And also the total number of tests sent with an AccECN SYN, so I
>     can give proportions in the AccECN draft.
>
>     Cheers
>
>
>
>     Bob (too lazy to look at the data myself)
>
>     -- 
>     ________________________________________________________________
>     Bob Briscoe http://bobbriscoe.net/
>
>
>
>
> -- 
>
> ANNA MARIA MANDALARI
> Universidad Carlos III de Madrid
>

-- 
________________________________________________________________
Bob Briscoe                               http://bobbriscoe.net/