Re: [Wpack] About content-based origins
Ben Schwartz <bemasc@google.com> Tue, 24 March 2020 20:03 UTC
Return-Path: <bemasc@google.com>
X-Original-To: wpack@ietfa.amsl.com
Delivered-To: wpack@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5AAA03A0C61 for <wpack@ietfa.amsl.com>; Tue, 24 Mar 2020 13:03:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.599
X-Spam-Level:
X-Spam-Status: No, score=-17.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cCIU3QzGSwb3 for <wpack@ietfa.amsl.com>; Tue, 24 Mar 2020 13:03:55 -0700 (PDT)
Received: from mail-wr1-x42f.google.com (mail-wr1-x42f.google.com [IPv6:2a00:1450:4864:20::42f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF3AE3A0BAE for <wpack@ietf.org>; Tue, 24 Mar 2020 13:03:54 -0700 (PDT)
Received: by mail-wr1-x42f.google.com with SMTP id s1so46488wrv.5 for <wpack@ietf.org>; Tue, 24 Mar 2020 13:03:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=K5W3bfiuxNdQ/5UCICCFuJ1zBDEoUcLJd0YgijwLtiQ=; b=kXEHwZJfK9q1Thtr4gIwRzdUl+v+B1LYtS1tJ0/EmONDB+3p9GIFLxIQVoaFZrmNs4 VDZuVujOj1xeQ0bOdcTfLf5IGaN5VBPO3NhDALxK6qXZoPBRjvTdsctxoyI9yXbkEZ52 j6+kHAxUDRmsu7AedUuKnb3ZAxgHsJZa+rh9Z5b0/j+JB0K4pyUBljhBZm3fk0HHBX5H b2zT9VjQ1tL4h3nhi3d0uZmxjvA2XrMTBfWIUpe1sEb3qRHFBVkt09H4zPtzdDK/uDru O/FJxnQQgSOGqyjBYXOR5sU6WJpmIefGtjMKPbid6hxk2Dxzka4NTxEjTbS9Ed5shORU BUcA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=K5W3bfiuxNdQ/5UCICCFuJ1zBDEoUcLJd0YgijwLtiQ=; b=FZT68fTutTtWXtY5t6eAEL8ViGw5pllzx53P9MsVOdqeghIiZlEsipqNZReCSG4TlK ZUzbuJdyyWD9JwndrDysj86WUlp56Wj8BAcgoSd1Yp0rYGHKis4ywxhLCUJKmMgFl0pJ 095LZQjBKqOJBMjTV41hHvg4Qxa/dVcRFh7aHDpng+q7hrCUnSZI8XP5rk+/vPP4DbVd VKJmKltAjXx04kBDbRm6Qp04P78WevsMRhTN/HAGJoMD/OrIlmIbt6dbVtHQXOgSvMu8 CRGZTCPf0hQ0cnTGCo/iOFUVBdJrgTHt4d+WhYfB7vSGCsjrcn01kvE1sBmRwx/legLV uKew==
X-Gm-Message-State: ANhLgQ1+TiLLUFWHUTrbQ0kBPP5LbgQmOVYbdzJ6fc8dowIvjU/odt1A Hj8bPGe+fJSdjFFw0NAjllKgD6jW1PdSxmSQN1jRwlWO
X-Google-Smtp-Source: ADFU+vtfta/WQAJQP9gFgz8gXyu15t8TEsa7lRD8lrVxqrRA9LcwrycSGywHY5RMrI8JvH4IOWgamGqnRs+uUEFKSF8=
X-Received: by 2002:adf:804e:: with SMTP id 72mr23707982wrk.258.1585080232585; Tue, 24 Mar 2020 13:03:52 -0700 (PDT)
MIME-Version: 1.0
References: <260dfc2f-8399-483e-859d-08f92821c823@www.fastmail.com> <CA+9kkMANYCD6N_kxDfLJtOXj679u1+NGhfDKREMk3P75efm19g@mail.gmail.com>
In-Reply-To: <CA+9kkMANYCD6N_kxDfLJtOXj679u1+NGhfDKREMk3P75efm19g@mail.gmail.com>
From: Ben Schwartz <bemasc@google.com>
Date: Tue, 24 Mar 2020 16:03:41 -0400
Message-ID: <CAHbrMsApYeh2r2AZtEwQv26o7u+Zo8-+GS1TdDkqWs97otf0EA@mail.gmail.com>
To: Ted Hardie <ted.ietf@gmail.com>
Cc: Martin Thomson <mt@lowentropy.net>, wpack@ietf.org
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="0000000000003f004205a19f4000"
Archived-At: <https://mailarchive.ietf.org/arch/msg/wpack/TQz-lfsGnnmS_4dfr633tMXvY8U>
Subject: Re: [Wpack] About content-based origins
X-BeenThere: wpack@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Web Packaging <wpack.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/wpack>, <mailto:wpack-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wpack/>
List-Post: <mailto:wpack@ietf.org>
List-Help: <mailto:wpack-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/wpack>, <mailto:wpack-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Mar 2020 20:03:58 -0000
For a lighter example: if I'm distributing updates to a single-player videogame, does the client have to get online and ping the server before the game can access my local saved state? (I can think of ways to avoid this while preserving the origin separation, by forking the local state and blocking network access, but it seems complicated.) On Tue, Mar 24, 2020 at 1:48 PM Ted Hardie <ted.ietf@gmail.com> wrote: > Hi Martin, > > Thanks for your note. A question in-line. > > On Mon, Mar 23, 2020 at 5:34 PM Martin Thomson <mt@lowentropy.net> wrote: > >> Ted's note prompted me to send a much-belated announcement (sorry folks, >> I forgot). >> >> The draft is here: >> https://tools.ietf.org/html/draft-thomson-wpack-content-origin-00 >> >> A nicer version here: >> >> https://martinthomson.github.io/wpack-content/draft-thomson-wpack-content-origin.html >> >> This approach could a dramatically different approach to addressing the >> use cases set out in our charter. >> >> In short, this aims to address the core question of how offline content >> might *ultimately* be attributed to a web origin in a fundamentally >> different way. There are two key concepts: >> >> 1. Content is given its own origin, using a new system for identification. >> >> 2. A target origin can "accept" content and state from one of these new >> origins. >> >> > I note that you did not include "hashing is a key element of > identification" in the key concepts here, despite it being pretty prominent > in the draft. Is it something you consider fundamental here, or is it an > approach to demonstrate a method of achieving the two desiderata above? > > > >> There are a lot of details here (read the draft), but the major advantage >> I see is that you don't have to make an offline decision about authority, >> and that means you can be offline for much longer (lifting the 7 day limit). >> >> I would personally describe this as a trade-off, rather than an > advantage. The inability to make an offline decision about authority has > consequences for how different resources available to the client relate to > each other (e.g some come from a bundle and some from a cache). To take an > unfortunately pressing example, let's assume a local authority has provided > a set of resources to local residents. A new item is created and > distributed. For those getting it via direct connection to the local > authority's server, the new item can be related to the other items. With a > signed exchange and a signature verification, those receiving it > peer-to-peer can as well. In a content-origin approach, my understanding > is that the new item could be received and displayed, but the ability to > integrate it with the rest of set is not active until the client can go > online and confirm with the local authority's serve that it verifies that > "ni:hashmumble" is the target. The problem here for an offline client is > pretty serious, as it cannot determine whether the new resource is from the > local health authority or not.. If it updates information like a set of > symptoms or treatments, the consequences are large. > > Have I missed something here? If I have not, then this approach makes a > trade-off that limits its utility in ways that make peer-to-peer usage of > the approach problematic for use cases I personally care about it. Others, > of course, may make other assessments of that trade-off. > > regards, > > Ted > > > > >> What it does have in common with signed exchanges approach is the need >> for a bundling format, but in its current form it is less dependent on the >> details of the format. That might allow that to be simpler, but I'm sure >> that the need to mint new identifier types will more than make up for any >> slack there. >> >> The draft is quite rough. I'm sure that it has the remnants of a few bad >> ideas still hanging around. Ask questions if you think something is >> unclear. >> >> _______________________________________________ >> Wpack mailing list >> Wpack@ietf.org >> https://www.ietf.org/mailman/listinfo/wpack >> > _______________________________________________ > Wpack mailing list > Wpack@ietf.org > https://www.ietf.org/mailman/listinfo/wpack >
- [Wpack] About content-based origins Martin Thomson
- Re: [Wpack] About content-based origins Ted Hardie
- Re: [Wpack] About content-based origins Ben Schwartz
- Re: [Wpack] About content-based origins Martin Thomson
- Re: [Wpack] About content-based origins Devin Mullins
- [Wpack] Sec-Content-Origin clarification question… Ted Hardie
- Re: [Wpack] Sec-Content-Origin clarification ques… Devin Mullins
- Re: [Wpack] Sec-Content-Origin clarification ques… Jeffrey Yasskin
- [Wpack] On double-hashing (was: Re: About content… Devin Mullins
- Re: [Wpack] On double-hashing (was: Re: About con… Devin Mullins
- Re: [Wpack] On double-hashing (was: Re: About con… Martin Thomson
- Re: [Wpack] On double-hashing (was: Re: About con… Devin Mullins
- Re: [Wpack] On double-hashing (was: Re: About con… Martin Thomson
- Re: [Wpack] On double-hashing (was: Re: About con… Devin Mullins
- Re: [Wpack] On double-hashing (was: Re: About con… Martin Thomson
- Re: [Wpack] About content-based origins Martin Thomson
- Re: [Wpack] On double-hashing (was: Re: About con… Devin Mullins
- Re: [Wpack] About content-based origins Devin Mullins
- Re: [Wpack] About content-based origins Martin Thomson