Babel - Thursday, November 16, 2017

Babel

babel@jabber.ietf.org

Thursday, November 16, 2017< ^ >

Barbara Stark has set the subject to: IETF 96 babel WG

Room Configuration

Room Occupants

GMT+0
[10:00:57] meetecho joins the room
[10:05:14] Lorenzo Miniero joins the room
[10:05:14] Jon Hudson joins the room
[10:05:14] Mathias Mahnke joins the room
[10:05:14] Toke Høiland-Jørgensen joins the room
[10:05:14] Juliusz Chroboczek joins the room
[10:05:14] Rafael Monnerat joins the room
[10:05:15] Matthieu Boutier joins the room
[10:05:20] Rodrigo Garcia joins the room
[10:05:23] Laurent Pietroni joins the room
[10:05:26] Justin Kilpatrick joins the room
[10:06:37] Rafael Monnerat leaves the room
[10:06:40] Rafael Monnerat joins the room
[10:06:48] Juliusz Chroboczek leaves the room
[10:06:53] Juliusz Chroboczek joins the room
[10:06:59] Rafael Monnerat leaves the room
[10:07:49] Rafael Monnerat joins the room
[10:07:59] <Juliusz Chroboczek> Does anyone know how to choose the right microphone in meetecho?
[10:08:31] <Toke Høiland-Jørgensen> Your browser should ask you which mic to use when it requests permission
[10:08:54] Juliusz Chroboczek leaves the room
[10:09:28] Juliusz Chroboczek joins the room
[10:10:34] Mathias Mahnke leaves the room
[10:10:39] Laurent Pietroni leaves the room
[10:10:56] Laurent Pietroni joins the room
[10:11:14] Matthieu Boutier leaves the room
[10:11:17] Mathias Mahnke joins the room
[10:11:38] Juliusz Chroboczek leaves the room
[10:11:45] Antonin Décimo joins the room
[10:11:51] Juliusz Chroboczek joins the room
[10:13:31] Matthieu Boutier joins the room
[10:15:54] Antonin Décimo leaves the room
[10:15:57] mellon joins the room
[10:16:19] Antonin Décimo joins the room
[10:16:49] Juliusz Chroboczek leaves the room
[10:17:02] DavidSchinazi joins the room
[10:17:05] Juliusz Chroboczek joins the room
[10:18:00] DavidSchinazi leaves the room: Stream reset by peer
[10:18:44] <mellon> David Schinazi speaking
[10:19:45] Matthieu Boutier leaves the room
[10:20:58] Juliusz Chroboczek leaves the room
[10:21:03] Juliusz Chroboczek joins the room
[10:25:41] akatlas joins the room
[10:27:52] Michaël PAULON joins the room
[10:28:34] akatlas joins the room
[10:28:34] akatlas leaves the room
[10:29:27] akatlas leaves the room
[10:29:47] DavidSchinazi joins the room
[10:29:59] akatlas joins the room
[10:30:41] DavidSchinazi has set the subject to: IETF 100 babel WG
[10:33:45] Denis Ovsienko joins the room
[10:36:51] sftcd joins the room
[10:38:34] <sftcd> is that DTLS with certs or PSKs?
[10:38:51] Benjamin Graillot joins the room
[10:38:57] <DavidSchinazi> Would you like that asked at the mic?
[10:39:09] <mellon> Certs don’t really make sense.
[10:39:15] <sftcd> no I'm in the room and can ask, just thought someone might know
[10:39:19] <mellon> But I suppose maybe with RPKI—I don’t know much about RPKI.
[10:39:27] <mellon> We’ve been talking about using bare keys.
[10:39:33] <sftcd> RPKI, nah, don't go there
[10:39:49] <mellon> RPKI is awesome!
[10:39:50] <sftcd> bare keys and tofu could work
[10:40:04] <mellon> You missed our conversation on Wednesday.
[10:40:07] <DavidSchinazi> In my mind the trust model would depend on the use-case
[10:40:16] <sftcd> I did yeah sorry
[10:40:44] <mellon> What we concluded there is that we should have a keying ritual, and maybe a TOFU-esque fallback.
[10:40:59] <mellon> But we’re not sure that the TOFU-esque fallback is at all useful.
[10:41:09] <sftcd> I'm skeptical that a ritual can be defined that'll work in enough cases tbh, but great if it did
[10:41:17] <DavidSchinazi> Note that was for the homenet use case
[10:41:29] <mellon> I think if you are willing to insist on the user having a phone with a camera, it’s not hard.
[10:41:31] <mellon> Otherwise it’s hard.
[10:41:58] <sftcd> so QR codes I guess?
[10:42:10] <mellon> yup.
[10:42:17] Juan P. Cerezo joins the room
[10:43:18] <sftcd> for the tofu stuff I guess factory-reset is the worst thing or are there other badnesses?
[10:43:44] DavidSchinazi leaves the room: Stream reset by peer
[10:43:44] <mellon> The problem with tofu is that it’s not clear that it prevents any attacks.
[10:43:54] <mellon> In which case might as well not bother.
[10:44:11] <mellon> Juliusz, can you mute?
[10:44:59] <mellon> Oh, that’s David at the mic.
[10:47:10] mellon leaves the room
[10:47:28] <Antonin Décimo> No sure if there are DTLS 1.3 implementations out yet
[10:47:43] <Antonin Décimo> Does OpenSSL have it ?
[10:47:50] <Denis Ovsienko> is there a virtual queue? because I don't see it in my browser at this time.
[10:48:04] mellon joins the room
[10:48:24] <mellon> I think when I went looking for it it wasn’t quite ready for prime time yet.
[10:48:36] <mellon> But that was ~4 months ago.
[10:48:39] <Toke Høiland-Jørgensen> Denis: There's a button in the top-right corner to show the queue, and in the top-left corner you can raise you hand
[10:49:38] <Denis Ovsienko> yes, there's normally a button
[10:50:05] <Denis Ovsienko> oh, I managed to raise my hand
[10:50:15] DavidSchinazi joins the room
[10:50:30] <mellon> Of course there’s no way to actually shove your way into the mic line.
[10:51:04] <meetecho> Denis Ovsienko: did you cancel your raised hand on purpose?
[10:51:16] <Denis Ovsienko> would you mind if I feed my input into chat?
[10:51:21] <DavidSchinazi> Go ahead
[10:51:32] <Denis Ovsienko> because meetecho page keeps crashing
[10:51:34] <mellon> The thing that’s making me say what I’ve been saying is that Juliusz said that DTLS was designed to work with connected sockets, and that doesn’t ring true based on my recollection of what I learned when I was looking at DTLS 1.3.
[10:53:05] <Denis Ovsienko> 1. this is a right discussion but what we are discussing is more or less what we were discussing 1.5 years ago
[10:53:20] Michaël PAULON leaves the room
[10:54:39] sftcd leaves the room
[10:55:00] <Denis Ovsienko> 2. interoperability is a goal, and Standards Track is how it is achieved so I am afraid saying "let's have as much flexibility as possible now and sort things out later" isn't going to result in good deliverables
[10:55:51] <Juliusz Chroboczek> Ted, the implementation Antonin was using, not DTLS itself.
[10:55:55] <Juliusz Chroboczek> Sorry if not clear.
[10:55:57] <Denis Ovsienko> this concerns not only security but the overall process
[10:56:02] <Juliusz Chroboczek> Denis 1, yes.
[10:56:04] <mellon> Ah.
[10:56:19] <Juliusz Chroboczek> And I understand you're frustrated.
[10:56:26] <mellon> ?
[10:56:53] <Juliusz Chroboczek> I understand Denis is frustrated, he's been working on getting us to do security for 2 years.
[10:57:01] <mellon> Ah, ok.
[10:57:18] <akatlas> It's a common frustration :-( for those doing similar work in other WGs too - sadly.
[10:57:35] <mellon> It’s hard to get anybody excited about it. Dunno why, it’s a fascinating topic.
[10:57:55] <Denis Ovsienko> 3. DTLS is in scope as much as an I-D we can discuss or any other comprehensible document
[10:58:07] <Toke Høiland-Jørgensen> To be fair, though, 2 years is only 0.2 decades; not too long in IETF time ;)
[10:58:30] <Denis Ovsienko> previously I have heard on many occasions about "Stenberg" security and asked if I can study the document, and that never happened
[10:59:10] <mellon> Hey, I got a draft published in <2 years recently!
[11:00:09] err ikce joins the room
[11:00:16] <Denis Ovsienko> sorry if my input is out of phase, the video and the audio broke off a while ago
[11:00:33] <mellon> Seems like Juliusz still has video and audio.
[11:00:50] <Denis Ovsienko> I can only see a frozen slide from Sandy talk and Juliusz's cam
[11:01:05] <mellon> Ah, okay.
[11:02:07] <Denis Ovsienko> let me restart the browser
[11:02:49] Denis Ovsienko leaves the room
[11:02:52] Denis Ovsienko joins the room
[11:02:55] err ikce leaves the room
[11:03:49] mellon leaves the room
[11:03:49] <Denis Ovsienko> git video and audio, just in time
[11:04:04] <akatlas> wrapping it up....
[11:04:12] Justin Kilpatrick leaves the room
[11:04:17] meetecho leaves the room
[11:04:22] Lorenzo Miniero leaves the room
[11:04:22] <akatlas> Juliusz - Tony suggests you should read your Aristotle.
[11:04:34] <akatlas> I have no opinion ;-0
[11:04:37] akatlas leaves the room
[11:04:41] Laurent Pietroni leaves the room
[11:04:42] Rodrigo Garcia leaves the room
[11:04:42] Antonin Décimo leaves the room
[11:04:42] Mathias Mahnke leaves the room
[11:04:42] Jon Hudson leaves the room
[11:04:42] Toke Høiland-Jørgensen leaves the room
[11:04:42] Benjamin Graillot leaves the room
[11:04:42] Rafael Monnerat leaves the room
[11:04:42] Denis Ovsienko leaves the room
[11:04:42] Juliusz Chroboczek leaves the room
[11:04:42] Juan P. Cerezo leaves the room
[11:04:52] Err ikce joins the room
[11:05:15] DavidSchinazi leaves the room
[11:08:05] Err ikce leaves the room
[21:25:58] mellon joins the room
[21:26:48] mellon leaves the room

Powered by ejabberd - robust, scalable and extensible XMPP server