Re: [TLS] Transport Issues in DTLS 1.3

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Wed, 31 March 2021 13:16 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: tls@ietfa.amsl.com
Delivered-To: tls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 730743A2834; Wed, 31 Mar 2021 06:16:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=qost8UB9; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=qost8UB9
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dyq0LYXll6o1; Wed, 31 Mar 2021 06:16:41 -0700 (PDT)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140042.outbound.protection.outlook.com [40.107.14.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 551AD3A2831; Wed, 31 Mar 2021 06:16:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+Po7jmlUFrxIKW1yiH8/3VoIn6zwKPXg6R57pIlLtNU=; b=qost8UB93ZK94HU805gr5ZBU7J/hfeoQ985A0zLvfwTzhYUtzmo5CNwltP6iYj3yon7Qw5orIWM6dt3BwHGamsWQWxodqGUJU0ZUvkq0CrF6ynj1kN4dmaaT1oSTaGetXTD4QVQwk+DquMBqpCgOUfHZ/6CyATHE8bayBSeV0w4=
Received: from AM6PR04CA0010.eurprd04.prod.outlook.com (2603:10a6:20b:92::23) by VI1PR08MB3629.eurprd08.prod.outlook.com (2603:10a6:803:7f::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3977.25; Wed, 31 Mar 2021 13:16:31 +0000
Received: from AM5EUR03FT009.eop-EUR03.prod.protection.outlook.com (2603:10a6:20b:92:cafe::e7) by AM6PR04CA0010.outlook.office365.com (2603:10a6:20b:92::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3999.26 via Frontend Transport; Wed, 31 Mar 2021 13:16:30 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by AM5EUR03FT009.mail.protection.outlook.com (10.152.16.110) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3977.25 via Frontend Transport; Wed, 31 Mar 2021 13:16:30 +0000
Received: ("Tessian outbound 22890c8e8230:v89"); Wed, 31 Mar 2021 13:16:30 +0000
X-CR-MTA-TID: 64aa7808
Received: from 83861a411b30.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 56476AF0-B515-42B0-B390-D0B549E64EF1.1; Wed, 31 Mar 2021 13:16:23 +0000
Received: from EUR05-VI1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 83861a411b30.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Wed, 31 Mar 2021 13:16:23 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kHfr11ImGECbcmm9QyELD8kf5YYrWhk9MrowC6kF/3XrYZPJeV/hj4K7Mp1Iub7nmiE0cjbqVLUzXM1zcHP1ScDPwWmYVkTTIiaFmhiFRi7m6GCnSdgO4BryZaOOAmOzXSNAqLxezLl3XGv7M6KGJZQTmzOb9dc55qVRtMcm0ydT2bNvOcvw44arG4P3jgMmG0P2RwDwrOzlcMqs5ZwSXjAC0fxGEolqTw0blKWnd6SCnisaiIwJ21BbA62On7er3f27eXWz6ZTX7VxL0s4TC8TcHqHy9jEwaidz3WiVvralN0SjjJuRfIr3pAuT+lgh8Q225+68xutwXiuhKwlG1w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+Po7jmlUFrxIKW1yiH8/3VoIn6zwKPXg6R57pIlLtNU=; b=NWOrMWGZIooBZmKkSBGY4LVlwFgDmMyxEIzcUpbKFxa2VZS5ZOEgRJq6h6H/DLamAveuJGPL0/BtzuiPR4Hs+FSumJG0F5n0CL5RGXmN9EPPvSTu7bao2hciKWHiCZn7fVOvlA8ZOT05R3iSCpmFVUfnPI9390q4YiuuXcuQonamAQHhlVpLrMlmkFdwJQ2PH+NAkEnBQREI4bDXuWyEEp4w2QmaSYSK8jpBMNKED8SGjIkBLOMApqooTR+BoGsKiAV25Qan8bI7SWwCOFrDw8TIwSFlRAxVWW6liya4c4Tzzed+OmMN9MSYkD5+bm3AnmN8isWkvQCUV8qLly0wGw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+Po7jmlUFrxIKW1yiH8/3VoIn6zwKPXg6R57pIlLtNU=; b=qost8UB93ZK94HU805gr5ZBU7J/hfeoQ985A0zLvfwTzhYUtzmo5CNwltP6iYj3yon7Qw5orIWM6dt3BwHGamsWQWxodqGUJU0ZUvkq0CrF6ynj1kN4dmaaT1oSTaGetXTD4QVQwk+DquMBqpCgOUfHZ/6CyATHE8bayBSeV0w4=
Received: from VI1PR08MB2639.eurprd08.prod.outlook.com (2603:10a6:802:25::13) by VI1PR08MB4494.eurprd08.prod.outlook.com (2603:10a6:803:f4::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3977.24; Wed, 31 Mar 2021 13:16:17 +0000
Received: from VI1PR08MB2639.eurprd08.prod.outlook.com ([fe80::99ef:85aa:3465:475e]) by VI1PR08MB2639.eurprd08.prod.outlook.com ([fe80::99ef:85aa:3465:475e%7]) with mapi id 15.20.3977.033; Wed, 31 Mar 2021 13:16:17 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Bill Frantz <frantz@pwpconsult.com>, Martin Duke <martin.h.duke@gmail.com>
CC: Mark Allman <mallman@icsi.berkeley.edu>, Gorry Fairhurst <gorry@erg.abdn.ac.uk>, Lars Eggert <lars@eggert.org>, "draft-ietf-tls-dtls13.all@ietf.org" <draft-ietf-tls-dtls13.all@ietf.org>, "<tls@ietf.org>" <tls@ietf.org>
Thread-Topic: [TLS] Transport Issues in DTLS 1.3
Thread-Index: AQHXIZcqf28Z7hfMOUOFn2z/tyGB36qW1cqAgAYAy4CAABCXgIAAeowAgAC5kdA=
Date: Wed, 31 Mar 2021 13:16:17 +0000
Message-ID: <VI1PR08MB2639479EE70161E24FD999F6FA7C9@VI1PR08MB2639.eurprd08.prod.outlook.com>
References: <CAM4esxR+4NWHW6PadAVUsnwMZzE+yw75fdk2m2s3jV7V3inuQw@mail.gmail.com> <r480Ps-10146i-20AD45E2CA1842C088AF00A66C47422B@Williams-MacBook-Pro.local>
In-Reply-To: <r480Ps-10146i-20AD45E2CA1842C088AF00A66C47422B@Williams-MacBook-Pro.local>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ts-tracking-id: A8E8678FDE88BB48B047924A728799F5.0
x-checkrecipientchecked: true
Authentication-Results-Original: pwpconsult.com; dkim=none (message not signed) header.d=none;pwpconsult.com; dmarc=none action=none header.from=arm.com;
x-originating-ip: [195.149.223.198]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 6d1f6883-abc3-4171-493b-08d8f44732ec
x-ms-traffictypediagnostic: VI1PR08MB4494:|VI1PR08MB3629:
X-Microsoft-Antispam-PRVS: <VI1PR08MB362982CD89FE27E72AD5BCFAFA7C9@VI1PR08MB3629.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:6790;OLM:9508;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VI1PR08MB2639.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(346002)(366004)(39850400004)(136003)(376002)(55016002)(86362001)(9686003)(52536014)(66574015)(66946007)(66556008)(64756008)(66476007)(76116006)(38100700001)(478600001)(66446008)(5660300002)(6506007)(2906002)(71200400001)(54906003)(26005)(33656002)(110136005)(8676002)(7696005)(186003)(4326008)(316002)(83380400001)(8936002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR08MB4494
Original-Authentication-Results: pwpconsult.com; dkim=none (message not signed) header.d=none; pwpconsult.com; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM5EUR03FT009.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: 6f04c430-e0fe-442a-fdbc-08d8f4472b45
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(4636009)(136003)(39850400004)(396003)(346002)(376002)(36840700001)(46966006)(66574015)(478600001)(47076005)(7696005)(26005)(4326008)(186003)(450100002)(82310400003)(2906002)(8936002)(52536014)(86362001)(6506007)(9686003)(356005)(70206006)(70586007)(316002)(36860700001)(81166007)(54906003)(82740400003)(8676002)(55016002)(336012)(83380400001)(5660300002)(110136005)(33656002); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 31 Mar 2021 13:16:30.6406 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 6d1f6883-abc3-4171-493b-08d8f44732ec
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: AM5EUR03FT009.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR08MB3629
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/IKdex5cS6d5OQ86bDzv29ixMZPk>
Subject: Re: [TLS] Transport Issues in DTLS 1.3
X-BeenThere: tls@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls/>
List-Post: <mailto:tls@ietf.org>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Mar 2021 13:16:46 -0000

Hi Bill,

> Are there any issues with space-based paths? I know Elon Musk is planning Internet service via many LEO satellites.
>
> If we were talking about going to the moon, that would be a 3 second delay.
>
> Cheers - Bill

There are profiles for TLS/DTLS for specific deployment environments. One such deployment environment is IoT where TLS/DTLS is used in mesh networks and networks with lossy links. For those deployment environments we use a different timeout. For example, RFC 7925 says "An initial timer value of 9 seconds with exponential back off up to no less then 60 seconds is therefore RECOMMENDED." for DTLS 1.2

The recommendations for DTLS 1.3 are work in progress in draft-ietf-uta-tls13-iot-profile.

Ciao
Hannes

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.