Skip to main content

Minutes IETF117: maprg: Fri 16:30
minutes-117-maprg-202307281630-00

Meeting Minutes Measurement and Analysis for Protocols (maprg) RG
Date and time 2023-07-28 16:30
Title Minutes IETF117: maprg: Fri 16:30
State Active
Other versions markdown
Last updated 2023-08-11

minutes-117-maprg-202307281630-00

IRTF maprg agenda for IETF-117 (San Francisco)

  • Date: Friday, 28 July 2023, Session I 0930-1130
  • Room: Continental 6
  • Chairs Mirja and Dave
  • Notes: Gorry Fairhurst

Overview and Status - Mirja/Dave

Notewell and other anouncements (see slides).

Internet Scale Reverse Traceroute - Kevin Vermeulen (remote)

Tim Chown: I understand the RR option is IPv4.
Kevin: We don't have a solution for IPv6.

Gorry Fairhurst: What is the transport - I know transport headers can
influence ECMP...
Kevin: We measured ICMP traffic at the moment.

Ben Schwartz: Are there any changes you think the IETF could help with?

Kevin: I saw an ID on reverse traceroute (using a new ICMP type), which
might be useful if this progresses.

Tim: Many paths are asymmetric, how many?
Kevin: 47% are asymmetric at the AS level.

Web Privacy By Design: Evaluating Cross-layer Interactions of QUIC, DNS and H/3 - Jayasree Sengupta (remote)

Ben Schwartz: I think you may be using the term "DoQ" differently to
what is often used in the IETF. Is DoH3 the same as DoQ+H3?
Jayasree: No this tries to serve the DNS and content from the same
sever, using the same QUIC connection.
Ben: I think that sounds like DoH3 - that isn't what is thought of in
the IETF as DoQ (where the protocol stack is different).
Ben: Why would the DNS server be co-located with content?
Jayasree: In the future we think the CDN could be the same in the
future.
Ben: If I do not know the content IP address, then you'll need a new
connection. I recommend looking in Chromium, and look at the way this
separates DNS and web page retrivel in the client for privacy reasons.

Mike Bishop: It would be good to clarify the things Ben mentioned.
Jayasree: Yes, we'd like to see DNS and content on the same connection.

Mike: How do decide to talk to the server in the first place?
Jayasree: For our epxeriment, we feed in the IP address. This is a
future-looking idea based on the CDN has DNS functions.

Spencer Dawkins: Thanks for working on this. I think the same type of
questions might apply to MoQ etc.

Eric Kinear: Thanks also. We did have a document that allowed a resolver
to be specified for a particular domain (with authority) that can be
more closely with that content, and that seems like it might apply here.

Exploring the Cookieverse: A Multi-Perspective Analysis of Web Cookies - Ali Rasaii (remote)

Dave: Thanks for your talk, let's use email and the chat for questions.

User Awareness and Behaviors Concerning Encrypted DNS Settings in Web Browsers - Ranya Sharma (remote)

Ted Hardie: Thanks for bringing this interesting work here. Did you do
random assignments and people who selected non-default browsers (who may
be more security aware).
Ranya: This was when we used randomised browsers, to spread the number
of people per browser used.
Ted: Did you use a script?
Ranya: We did, we did not look at what happened when you presented this.
most would benefit from more information that is easy to access.

Ben: I think the Chromium interface tries to follow this recommendation.
The answer could be very different in different scenarios, such as in
Indonesia where they have different security expectations.

Wes Hardaker: Did you ask about whether they had different views about
whether their data was given to an ISP (mobile or other)?
Ranya: Yes, have a look at our paper which has expecations for small
companies vs. ISPs.

IPvSeeYou: Exploiting Leaked Identifiers in IPv6 for Street-Level Geolocation - Robert Beverly (remote)

Bob Hinden: This is important as the IETF has tried to deprecate this,
and the vast majority of devices use the randomised values. I see that
ISP devices still need to fix this.
Robert: I agree it has been known as a problem for a long time. There is
a really long-tail relating to deployed devices, 100's millions of
devices continue to use this in the wild and have still to be updated.

Rui Paulo: How do you determine the accuracy of the data at the street
level?
Robert: We started with known contacts, and then partnered with new a
national body.

Tim Chown: The RFC doesn't say "MUST NOT" use the MAC address- but does
say they SHOULD NOT do this, of course not all vendors adhere to the
IETF recommendations.

Measurement Lab: Supporting Open Internet Research - Lai Yi Ohlsen (remote)

Ali Rezaki: There is work on environmental impact work at the IETF. Have
you any related work?
Lai Yi: No, but there is a lot more that our platform can do, and this
may be interesting to do.

Francois Nguyen: Do you have people in Russia, China and some other
places?
Lai Yi: Not at the moment, talk to us.
Francois: Where is the data stored is there a GDPR issue?
Lai Yi: see our web site.