[tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48)
Sebastian Moeller <moeller0@gmx.de> Wed, 24 July 2024 18:46 UTC
Return-Path: <moeller0@gmx.de>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 636C5C14F6A9; Wed, 24 Jul 2024 11:46:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.856
X-Spam-Level:
X-Spam-Status: No, score=-1.856 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmx.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NM7On2hpKXzo; Wed, 24 Jul 2024 11:46:27 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1731DC14F699; Wed, 24 Jul 2024 11:46:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmx.de; s=s31663417; t=1721846776; x=1722451576; i=moeller0@gmx.de; bh=3/sdKXo8bTMy2rngkaYYGSyJre6WvoGc+eJ+bM1/n4Q=; h=X-UI-Sender-Class:Date:From:To:CC:Subject:In-Reply-To:References: Message-ID:MIME-Version:Content-Type:Content-Transfer-Encoding:cc: content-transfer-encoding:content-type:date:from:message-id: mime-version:reply-to:subject:to; b=JLQKHrfCnA3p4VT717H4oijCaF2uc5UsxBUtgPfKZivloXtTjedQtVIZ3kE5pRmg Td3kvUYZKNS+Rh6W36tP4bNlcAOVVNpz3UHHE2fLG7b2q9lM+T4+V0pw8ee8vNAKQ psS3jgKpHJ364DMB0HKBlwMxICULPhZpyZzJiHO9+z7MJYOJi4mBs0cARIHfvRmBd udfDek7rqAN10WmW+nlr3vFOR21qfsB54Oecx4cpplHDBbbw4PpzuI44eAcXfYc3J tCw3q1UqO2C5Yf3hDC/JCU0rMc7agA7ZHktLDQyM9Nfl9uykeULwFG3KecesxOoUW 7IG0zHVJTgrA+1WY0w==
X-UI-Sender-Class: 724b4f7f-cbec-4199-ad4e-598c01a50d3a
Received: from [127.0.0.1] ([80.187.122.177]) by mail.gmx.net (mrgmx105 [212.227.17.168]) with ESMTPSA (Nemesis) id 1Mkpap-1rsQxb2mX1-00cXq4; Wed, 24 Jul 2024 20:46:16 +0200
Date: Wed, 24 Jul 2024 20:46:12 +0200
From: Sebastian Moeller <moeller0@gmx.de>
To: tsvwg@ietf.org, "Livingood, Jason" <jason_livingood=40comcast.com@dmarc.ietf.org>, "Black, David" <David.Black=40dell.com@dmarc.ietf.org>, "Overcash, Michael (CCI-Atlanta)" <michael.overcash@cox.com>, gwhiteCL/NQBdraft <reply+AB2VULW2XRH6MPK23ABRZQOEVLRFREVBNHHI5USV5Y@reply.github.com>, gwhiteCL/NQBdraft <NQBdraft@noreply.github.com>
User-Agent: K-9 Mail for Android
In-Reply-To: <6F90E433-3EC7-4A07-851B-8DEDE30061D7@comcast.com>
References: <gwhiteCL/NQBdraft/issues/48@github.com> <gwhiteCL/NQBdraft/issues/48/2244060936@github.com> <MN2PR19MB404591B9BAA1AEED7BBB900983A92@MN2PR19MB4045.namprd19.prod.outlook.com> <LV2PR01MB7622B7EA53C95951987C9B0B9FA92@LV2PR01MB7622.prod.exchangelabs.com> <MN2PR19MB4045E01E9923873F4A0BBD4883AA2@MN2PR19MB4045.namprd19.prod.outlook.com> <6F90E433-3EC7-4A07-851B-8DEDE30061D7@comcast.com>
Message-ID: <EEB6B0D5-BDA4-410D-B804-057F0806E0DB@gmx.de>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Provags-ID: V03:K1:OVstR6Qa1CvroEw7PsfgB3y6lk4HofJmNWxfpiX/Nmbp627wJBw 8nLhvnOpmc8FyvBT+NSYOVVsotWJkC4dZHL7ryslRIwht+WIoA+L4YHquVWgo0MJZMCCMaG UMElukG2NoJaiW1WjVf7mwX6um90kz6UX4jJKqeCGqZWS64A1kQH5NHb2mQyBQWYdstVoU3 LvrsGq0l2i/1d16+Awszg==
UI-OutboundReport: notjunk:1;M01:P0:ESHn+RX41+s=;O6+vEAeLs7QXMG+JfQnEQsMsZ4h rXDiJbWbiSA+XK/gPI9A/0XbbKHA9pkrZS2n9EJyp7FJwGTNUxmBzZeScb3spTS90imnlK6wt HjtqqKxpGAu5cErDn0/oO03mqcfv8a6j06LvEl4qK3Bk3Yk+jkfEEJispCLcMnoNRqS56NrXA HdNW86kuP49he5lPKQjBPEoacdJBCBFtxdrZWHoVgwbAlQXyOaEYI/7hmgAeyePRQisn6DIA3 eKrcR8uzKkTsgvYwPRSHNdeUMonQRrTfNHAJui3Age0cEnlpD3AkKywqop8NT0VrhjaGTLz85 FME/P4UZHK6Qyr0IX/qCqII/g2PRas4/plxN63rmYpwgAtAgSYdNTPpoAoMGIpuB0AHoFivou 11H2aWfbMX+X33UzQi7gmggeL0wqtADZVh+pHbsRc5Tf0Y/dOTjc2xlwgdr+TronnoirB24hQ SpjjWy1DdIG5QK3m8bX1KNIv6B6mA5WphyyiGFiSfinsYzoYY5yShWt98BBvnvSx2urMVuINB W01R3NXZ++RnilmJABbMRfNNnCuq2p4/TblVFs2h08Z5GDLTQ5wxbag6FtccHNmaX6R2GIviL hUbteYk25XoUSuP5jHpO2ZYG7dHHFQvmDPCigYcbP+uGyoKHlPqDFVdfwAWWR2hF7NyAiXbEB 9Rd2SIa+RfJGY9x1qGxD4jZ/vl2QlhnN67vWvOSC0E5QL354SRdSIYWhIadkdi7MXPU2ES2go dPIRk++tScDyGKwoHrcYmS/Vu2WM2DDxxeSbFWfFf/02ryat8JUm/tGkvV/e/YrvcQfL6xwen 19wyynJ4FBPP2dTnZqcGJXJQ==
Message-ID-Hash: 3HCUKRYZJNM4GBLPN5FBFPBCH2NDAF2C
X-Message-ID-Hash: 3HCUKRYZJNM4GBLPN5FBFPBCH2NDAF2C
X-MailFrom: moeller0@gmx.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tsvwg.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: tsvwg IETF list <tsvwg@ietf.org>, "Black, David" <David.Black@dell.com>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Should traffic protection be mandatory to implement? (Issue #48)
List-Id: Transport Area Working Group <tsvwg.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/6Smby5PXs3MMVKa7YJHBrr_SliY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Owner: <mailto:tsvwg-owner@ietf.org>
List-Post: <mailto:tsvwg@ietf.org>
List-Subscribe: <mailto:tsvwg-join@ietf.org>
List-Unsubscribe: <mailto:tsvwg-leave@ietf.org>
On 24 July 2024 17:24:22 CEST, "Livingood, Jason" <jason_livingood=40comcast.com@dmarc.ietf.org> wrote: >>> I also don’t think it is necessary or helpful to try to solve for malicious actors here. Any malicious actor can fill up queues and crowd out other traffic simply by sending high rate UDP. >>> Shallow buffers are not uniquely vulnerable here. > >> That's the wrong class of malicious actor. Theft of service is a different attack (with different malicious actor behavior) from denial of service. The draft's incentives framework is making strong claims that theft of service attempts are sufficiently counterproductive for the thief so as to make other countermeasures (e.g., traffic protection) unnecessary. The fact that all the buffers, e.g., both best effort and NQB, can be overwhelmed by a sufficiently large denial of service attack has almost no relevance to that theft of service concern. > >[JL] So “theft of service” in this use case would be some software on the home network trying to achieve high throughput on an upstream (outbound) basis to the internet? There are already ways that users can sort of do similar things – such as using their own home router and using QoS prioritization to advantage certain LAN clients (e.g., game console) and to give certain devices or users more bandwidth than others. This is the user making decisions for how to use their connection. [SM] In the case of an mischieviuos application however that tries to achieve more than its equitable share, the user is not really in control of the decision, unlike when actively configuring priority for an application the users deems important... So I do not think these are analog situations, as user intent matters. > >[JL] So ISTM there are parallels in this use case to what many customers do today. They are provided a certain bandwidth (and may have volumetric usage policies) – shouldn’t it be up the the user to decide how to use that? Wouldn’t the user just be ‘stealing’ from themselves? [SM] But by that token an application, that without user intervention uses NQB or L4S is different in that it does not let the user decide. Given the lax consideration of security I start to wonder whether the best policy for networks under my control is not simply to drop all packets carrying NQB and ECT(1), and then patiently wait for things to get fixed (or not) from a pure passive spectator position instead of from a victim's view.... Regards Sebastian > > > > -- Sent from my Android device with K-9 Mail. Please excuse my brevity.
- [tsvwg] Re: [gwhiteCL/NQBdraft] Should traffic pr… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Overcash, Michael (CCI-Atlanta)
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Greg White
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Overcash, Michael (CCI-Atlanta)
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Greg White
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Greg White
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Jonathan Morton
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Overcash, Michael (CCI-Atlanta)
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Livingood, Jason
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Black, David
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller
- [tsvwg] Re: [EXTERNAL] Re: [gwhiteCL/NQBdraft] Sh… Sebastian Moeller