Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Internet Engineering Task Force / IETF 115 / 7 Nov 2022
Internet Engineering Task Force / IETF 115 / 7 Nov 2022
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: IETF115-DISPATCH-20221107-0930

Description

DISPATCH meeting session at IETF115
2022/11/07 0930

https://datatracker.ietf.org/meeting/115/proceedings/

A

Us.

A

Today,.

B

Yeah, hello, hello, everyone we're just going to get started in a few minutes. I would encourage everyone to go over to the note taking and help us minute this exciting meeting, because if the minutes don't exist, it's like it never happened, excited.

B

Okay, let's get this show on the road welcome to itf115 welcome to dispatch. This is the first and therefore the best session you'll see so far this week, I am Kirsty Payne I'm one of the co-chairs of dispatch, and we have my co-chair shipping joining virtually shipping. Do you want to say hi.

C

Hi, hello, everybody.

B

It's great to have you feels like I've got, got you right next to me, um even though the chat is empty, so we've got a pretty full dispatch agenda today and the art area meeting just afterwards, but because we're the first meeting of the week we like to go over some of the admin that will help you navigate a successful ITF in terms of logistics and meeting interaction.

B

So if we go through the slides to start with, please note the note well, you will have agreed to this when you registered for this meeting, but it's just a reminder to you that all of these various policies are in force. This includes working group processes, things on anti-harassment, Code of Conduct copyright by participating, which is speaking sending emails like joining in meetings. You agree to follow these processes and any such contribution is covered by these processes. So it's really important that you note the note.

B

Well, that's why it's called note well and if we skip ahead foreign.

B

There's always going to be teething problems in the first week here, so in the first session, if you're able to skip the slide on. Thank you, so this session is being recorded. You can find it on YouTube afterwards. If you want to watch yourself back um for those in the room, you must sign in to the session using the meat Echo lights client, which you can find on the data tracker agenda here.

B

This is true for every session and it helps us manage the micro queue so that, whether you're virtual or you're in person, we see you in the order. You joined the queue okay, so it's really important. We don't favor impersonal, virtual participation when it comes to the micron.

B

If you are not using the on-site version, we ask that you keep your audio and video off to help us go through as smoothly as possible and, importantly for those of us in person in the room, you'll see we're all wearing masks. That's not because it's a fashion statement. It's our mask policy. So please wear your masks. Unless you are actively speaking at the microphone there, you have the option to remove your mask, but, as I am clearly demonstrating, the mask does not inhibit the audio in any way.

B

So it really is your choice for remote participants. We strongly encourage you use a headset if at all possible, okay, let's advance so here. If you're coming to ITF in London welcome, you can tell from my accent that I am British, so welcome to my home country. You have the agenda all the stuff. You need from Meet Echo participation and technical assistance on the reporting issues page there.

B

If you have any problems during the session, you can always find me afterwards to ask or just tap the person next to you and see, if they're willing to help you out all right onto it, so welcome to dispatch another hybrid meeting, it's exciting to have you all here and we always ask for people to head over to note taking you can find that in the agenda um uploaded to the session for dispatch today, here's what we're going to run through so we've got a few minutes to go through and Bash.

B

The agenda anything you want to add: we have some Flex time and aob at the end, um but first we have four things: to dispatch slight Flex in the agenda due to a late running flight. We will push the Deacon replay item to the last item in dispatch just to give one of the presenters a chance to run here in an epic last minute, Sprint, um but either way decim will just be after webrtc, so we have vcon at first Sasol authentication for sip Deacon replay after webrtc and then in the art area.

B

We've got a few different things coming up as well. You can find all the materials all the drafts and everything on the dispatch page. So we'll just pause in case. Anyone has any questions, clarifications or issues with the agenda.

B

Seeing nobody in the mic, client, virtually or otherwise, let's continue. Okay!

B

So a reminder, we have the mailing list, a dispatch and art topics to discuss things further, as well after the session, but first I'd like to welcome up our first presenter Thomas Howe to present on vcon, we'll just share the slides for you, as you make your way up here, welcome Thomas, first ITF, so welcome. Thank.

D

You thank you Christy. Thank you very much. Thank you. My name is Thomas and on behalf of me and Dan, thank you for your time today. um We want to talk about the Json standard for for carrying conversations and why that's really important for us to put some energy into that. So next slide. Please.

D

um So in in my particular field of communications, which is real time, business stuff, uh the rage for the last five or ten years has been conversational, Commerce, conversational work, machine learning, Etc and so the unit of exchange as a conversation has become a a real Focus for for us and um when I took my new job just about a year ago.

D

I realized that in my particular company, which is not unusual, we have about a million conversations a month a year with customers, and we record them like most agent, which most companies do um and we have them over five different Services, a web chat, a dialer, an inbound queue, a phone system um and what's happened, is all this data that we've been collecting about.

D

Our customers is siled and it's splattered all around my company, um and so because uh we don't have a a general definition of how to capture a container a capture, a conversation um I don't actually have any standard tools by which I could measure what's inside of a conversation and that ends up being really um important.

D

uh Not only spiritually, but legally uh many places, as you understand, have uh right to be forgotten laws where customers can say I like you I, like my data back and what you have of mine, um I, can't answer that definitively for all the most important data which I've captured about my customers, their voices, their wants their faces, and it's everywhere. I liken it to uh the days before the relational database, and we had all that data on all of our workstations. All around the network.

D

It was ungoverned, it was unusable, it was unshareable, it was a mess um and so um and then finally, I want to I want to point out that uh the conversations that we use today are an active uh place for automations for insight, for sentiment for for generating models for providing uh uh the fuel, the food for artificial intelligence and machine learning, and we have a an oncoming I think. Maybe economic disaster, which is when a customer asks you to remove their data.

D

um You also have to rerun the models that were used with that data and the large models today, on average cost around fifty thousand dollars to rerun, which is approximately the amount of energy contained in a boxcar full of coal, and if we have to be doing this every time a customer says forget my data. We better be really careful about what data is used to train the models. Next.

D

Slide, please yep, thank you so, where what we're suggesting here and we've we've implemented this um after the last slide, you'll see the writing code that we have that we're running it now. We believe a conversation actually has four parts and if you think about it very briefly, you might think a conversation might be an MP3 file or a transcript, but it's really not sufficient, um but it, but it's necessary, obviously, and we're talking about every part of a conversation. The video, the audio the transcripts, whatever Mark Zuckerberg has.

D

Next all of these things, all these things which you can capture the personal details of you are important to manage, but but something else which is also important to manage is, of course, identity and we've done a lot of work in stir shaking trying to fix the identity problem. We believe that the identity of a conversation can be just as important as a conversation itself, um and so we believe it's time for a real upgrade in the way in which we relate um identity.

D

Two conversations uh the old world of called detail records is, is the Old World. um The last two parts, I think, are really the juice of the the matter. It's easy to think of this as being somewhat you know innocuous, because what what is a conversation and an identity, but the last two are simply. What are the the analysis of this conversation that goes along with the conversation is the customer angry is: are they are they lying to you? What's the authenticity of what they're saying are there translations?

D

Are there transcripts that analysis should be paired with not only the conversation, but the context of the conversation for my company we're a sales company we have leads. The leads would be something that would be appropriate to capture with the conversation for the context of it, but it might be the PowerPoint that you had on a zoom meeting. It might be, um uh you know the the V cards or the participants, it might be the vcon that you use to make this thing and there's the new v-con, all kinds of things used for attachments.

D

Next, please.

D

So the Becon standard approaches all of these. um These points we've put the draft in um and what we're what what we're asking here is for your involvement and for work group to come and help us really solve this problem. While it's still solvable.

D

This is not something that the vendors are likely to do, because it's a cross vendor problem. Even those vendors who say we can do everything, don't do everything, and even if I'm, not picking on them, but even if Genesis said we can provide all of your communication stuff. You may be one company that only has Genesis there isn't one because Genesis doesn't do web chat and every company does have web chat. So there's a there's a lot of stuff here um and I guess the last point I want to put into Beacon standard.

D

Is it's really important that this is a definition? It allows us to define something strongly to set a fact and for us to be able to set a fact and reproduce the fact really change to the game, for interoperability, for safety, for security, for the security of your information and for the performance of our networks. So this definition is really foundational and critical to the next generation of conversations. Next.

D

So what are the practical problems? We're solving so General conversation management like signing and verification encryption? Is this a real conversation? Has it changed it since uh content reaction?

D

um uh One of the very interesting things is the data packing and unpacking. You know you have a conversation, it can be very large and so that conversation can be carried in one big package where it can be referenced externally, depending upon your scenario and the way you convert between the two it should be, it should be a defined thing um from my own. You know uh my professional purposes as a as a guy who's running this department.

D

um You know, I, have a responsibility to my customers to protect their data. I have responsibility to my shareholders to give them the Insight that they that they need. The vcon allows me to manage both sides of my responsibilities uh and um in in, and that can't be more. um You know emphasized here that this is really where we sit in the world that really that real tension between the intelligence of what we're trying to do and the privacy of what we need to maintain. So next, so here's the status.

D

um So the vcom python library is now available. um It does life cycle support. um uh This is the way I have to do. Next, we have to work on the life cycle, support um redaction amendments, but otherwise it's a fully functioning uh Library. uh We have a vcom server. We call it the con server, because it's funny um it's basically a database for conversations. You can put a conversation there and get it back later. You know you can get it back for dacted.

D

It puts it all in one place, we've already integrated to six different kinds of communication services to prove out that the modes work between the two places um from from cusing to chatting to um to uh email um and we've also integrated with three different analysis: engines, um open, AIS, whisper, a commercial offer by Deep, Graham and citigroup's data profiler. We did that in the the um uh the hackathon, so we're looking for comments and suggestions.

D

um We need a volunteer to uh chair the bar buff, you don't have to it says it's a Thursday night, I'm sure you've heard my call for for drinking. Well, if you are, if you're the volunteer at a chair, you don't have to pay. So, don't don't don't worry about that, um um and so uh we do have some current discussions going on around is Json. The right type I think actually at Json is absolutely the right type um for interchange for the application layer. It's really the big thing.

D

If you're trying to draw a line between the bottom and the top Json is the thing which allows us to draw that line. uh Binary um formats aren't appropriate for application web app guys. So that's what I got.

B

Thank you thanks.

D

So much for.

B

Presenting Thomas and sharing your work with us here, we've put um this slide with just more information: there's a mailing list, but I'd invite the room or um virtual participants as well to join the queue and we're looking here for a dispatch outcome. So if you think that there is interest, if you would be interested in working on this problem, if you've read the drafts, you have any questions or thoughts about where it should go. Yeah.

D

And well, I'm, sorry, one! That's interesting! The white paper that we have a reference to here was the result of half a dozen of us, um putting some work together, trying to illuminate the the opportunities in terms of privacy and AI in the market. It's a 25-page white paper um and it's it's really deep. If you'd like to really understand what we're looking at for problems, it's a good place to start.

B

Great, thank you so much so in the virtual queue we have Ted Hardy um who's, also in person as well. Hi Ted.

E

uh Hello, uh 1030 Cisco, um thanks for the presentation, uh you're welcome, I think from a dispatch point of view that this would have to go to above. It's a chewy, large scale, piece of work um and I. Think at that buff. We would probably want to tackle a very fundamental question. Well before do we do Json with this in, and that is. Is this the right Lego piece?

E

Typically in the ietf, we build building blocks and I think what you're actually looking at is something that's partially built from other building blocks. So if you were going to model this with like a full ontology, you would say this is actually an utterance, and this utterance has those identity, properties and other properties that you were describing, and the linkage of different utterances into either a Time sequence or to a set of exchanges is what you're calling a conversation.

E

But you can easily imagine this set of utterances being used in a different kind of Corpus right. So if you created this and said actually what I want to do with this is to see all of the utterances by this particular identity across a series of conversations, because maybe what I'm looking for is an analytical pattern of uh harassment or something.

D

Like.

E

That um your focus on the conversation is I think um useful for the business case. You you put forward and I certainly understand why you did it that way, but I think if we're going to build building blocks here, we we might actually have to go back a step and say what are the building blocks that actually go into this, so that you have these set of utterances that can be either exchanges or other kinds of corpuses and go from there, and so I really encourage you as you're as you're.

E

Looking at this to kind of back up a step and say: if we're going to run a buff, what is it we're actually asking people to build and how many pieces are there because I think some of what you're describing if you take it from that perspective, some of the privacy considerations that you have will expand a good bit um and some of that question you have about whether or not the identity framework is suitable.

E

If you're looking at it from a single interchange where you're one party may be quite different if you're looking at it from a a different perspective. So.

D

Thank you very much, I appreciate that and I, and um you know I I I I thought the same thing too. I was I was in the same place there and I think we can do more work with that and I I understand that.

D

But what I found was that when you took The Primitives that we already have the the stuff we've already done in art, um they roughly represent the um the elements that are the composite that we're putting together but from the but from the other side, if you think about it from a system diagram that actual component that we're thinking about is externally referenced, not from the application layer, but from regulations from the vendor side from the bottom to the top.

D

It does transform ourselves right into the entire ecosystem, and so because I think it's we do have a lot of um uh requirements on that one particular component: that's what brought me to there, but I think I I agree with you. I I thought that through okay.

B

Thank you very much, just a reminder: people in the room, if you're going to join the queue please join on the meets, Echo, Lite client and then get up to the mic, so I'm calling from the virtual queue so we're all in order. So um you can immediately see people add themselves. Thank you! So Jonathan Rosenberg you're up next.

F

That's me: I, you probably need to put yourself in the virtual queue. If you want to speak uh all right, I'm happy or you can go all right. Jonathan Rosenberg, um I'm from five nine, actually we're a cloud contact center provider. So this is pretty relevant to my day. Job um I have two comments for you, one is uh one is: should go to a buff I. Think, there's there's a lot here.

F

um The second thing, I would say, is one of the things I find is unclear and would be valuable from the buff is. Who is this meant to be exchanged between like what's missing? Is the system diagram of like oh industry problem today? Is vendor a makes product a and vendor B makes product B and today there's no standard and that helps qualify. The requirements I.

F

Look at this, for example, and I I thought it was maybe trying to solve a different problem uh in my business, which is, we have two vendors today that the contact center provider, that has the calls and the chats and the quality management people who like get access to that for like people, listen to the recordings and stuff, and this format is insufficient as defined today for that exchange. So maybe that's not the problem. You're solving, yeah, I, don't know what the problem is so clarifying the scope of.

F

What's the participants that you want to change this between, so we can scope out the what should be in this thing and not that would be my suggestion. Thank.

D

You JD I, appreciate that, and, and um and there's the white paper, the 25 page, dense white paper is a compendium of 15 use cases um and I think the challenge is exactly that. How do we, how do we boil it down to the use case that we can hang our Bob hats on.

F

Write a draft with the use cases yeah great. Thank you good advice. Thank.

B

You very much okay up next, in the queue we have Robert steppenak.

G

Hello, Robert, stepanek FastMail, so at the risk of bike shedding I just wanted to say that I found the name vikon quite confusing, especially since you're in the introduction, referring to vCard um I'm working a lot with these formats, and they they have nothing to do with Json right. So um I found it very I. Had this, this mental gap between sure thing called V, something and then coming in a very different format than data mode. Yeah.

D

That's a good comment and, and um it by the way it started as a joke, um we were designing um and we realized. We had this conversation object and my co-designer said too bad. We don't have V cards for conversations. We should call it a b con and that's that's where it came from the lot from The Logical level, it's like a v card, but it's for Commerce PDF for conversations. That was the idea, but you I think I'll. Take that comment as well. If you have a better name, I'm all ears. Thank.

G

You I mean you can take a g on in front of it, but it's yeah. That's.

B

Right very original: that's disgusting! Okay, up in the queue next, it's Eric Chris, Corner,.

H

uh Yeah hi um I have no opinion the name um uh on the process, um as people said, this needs to go to above clearly um um I. Think from my perspective, the requisite for a buff would be a pretty clear problem statement document and use cases document, not a requirements document, but simply talking about laid out this problem space.

H

So people understand what we're trying to solve um protocol is fine um as an input to that, but, like it's very harder version engineer where the problem statement is out of the protocol, so I think the Play Store would be that um um and I think you know um just just to just to preview this. The standard for working group will be like why levels of interest in terms of doing this so um I would incur I would strongly encourage you on once.

H

You have that problem statement to shop it around to people who um other vendors, like maybe Jonathan or other people like him, who might be interested in implementing and see if they are so that you have um some evidence that that will be the case. Okay,.

D

Thanks anchor appreciate that.

B

Thank you for the input. Okay. Next in the kids, Martin Thompson yeah.

I

Martin Thompson, uh when, when Ted got up and started talking about ontologies and utterances um uh I'm I'm gonna say that um that made me think that maybe a boss is not exactly the right place to do. This sort of thing um and I largely agree with the things that other people have said about forming this. The sort of constituency around this and working on making sure that the requirements and use cases are very, very clearly articulated, but I'm going to suggest that maybe the w3c might be interested in this work.

D

They have reached out, actually they have reached out and just just to say how we got here versus the w3c.

D

um We believe that there were enough privacy and security requirements, and this was coming up from the bottom of the stack enough- that it was probably more appropriate to have it as part of the plumbing than the than the toilet joke.

D

um But you know what I mean I think I think it's more than the basement than the Attic So.

I

Yeah, so this this may be one of those cases where a joint uh that might.

D

Be enterprised.

I

Is what you're looking for sure um I? Don't know enough about the details to to really be able to say that, but it seems like there's a lot of work that that is very much at a higher layer tying all of these sorts of things together and and describing things like uh data models and and those sorts of other things on top of it. Whereas, yes, it does have a.

D

Lot of things again, it is clear in the again the 25 page white paper, just how applicable it is to so many different places. So that's very, very true, okay man. Thank you.

B

Thank you very much what a memorable phrase just kick the week off, um so we have next in the queue Helen Jennings.

J

uh Colin Jennings, um oh so dispatch of course I've been on dispatch topic, obviously both. But what I want to say is this above. This would be very interesting to us, particularly in the use case, so Colin James, with Cisco and you're very interested in the use cases that help us manage uh machine learning, data that we're using for training and stuff uh I also also I'm uh Cisco's AC rep for w3c, so fairly familiar stuff with, what's going on there with semantic web.

J

If this is going to be done on top of somatic web I I'm pretty much 100 sure we will totally ignore it and have nothing to do with it.

D

And he's gone.

B

Okay, thank you. um So, just noting time, I'd encourage anyone to join the queue. If you think a buff is not the way forward. After some clarification and problem statements and use case drafts put together, possibly with the liaison on w3c. So if you strongly disagree with that looks like where the dispatch is going, so please join the queue. If you disagree, um Jonathan Rosenberg you're up next yeah.

F

Jonathan Rosenberg, five, nine again uh I I, wouldn't I. Don't think that w3c thing makes sense just in terms of venue um largely because uh this is like telephony stuff. A lot of the folks who are here are familiar with the type of problems. uh There's been a lot of historic work at five. Nine on like call detail, records and stuff of which this is a successor in many ways, so I think ITF is fine and it should be a buff. So thank you.

B

Thank you. Thank you very much, okay with no one else in the queue all we have to do is say. Thank you very much. Thomas thank.

D

You for your time thank.

B

You thank you, Stella start to your first ITF as well. Okay, so, next on the agenda, we have Rick van rein, who's presenting on Sasol authentication for sip.

C

Yeah.

K

Hello, um this is something I ran into recently on a crossroad of two sorts of work. I was doing, and.

B

I'm closer to the bank.

K

um um This is something I ran into on a crossroad of two lines of work. I was working on um and it looks like it's very general and might in general be useful for other purpose as well, so I'm here basically to bounce off the question. Is this valuable enough to put into a specification into formalize so if I could have the first line?

K

So normally um what I'm doing is trying to get mechanism for realm crossover, meaning some domain owner States user identity under under this domain and other domains anywhere in the world can find a trust relationship based on the DNS again that sort of thing to get to the identity provider, get the user out and use it in their own protocol as an authenticated identity. So that's what I call realm crossover um and it just ends up being a user domain name sort of identity.

K

So it's all pretty much in line with ITF standards and I always try to adhere to those as much as possible. We hardly have to make changes next slide. Please and the sense of the the integration of Realm Grove with Cecil is actually the most uh most likely to be used just anywhere, because it's assassins isn't part of so many protocols. There are a few where it's a bit painful that it doesn't have such so. One of them is HTTP, for which I will be proposing a social embedding next Friday.

L

In.

K

Hpbs group, but for sip, which inherits most authentication mechanisms from HTTP. It may also make a lot of sense. So this was a general idea that I had and it might actually help a lot because the authentication mechanisms can be flexibly selected, so they're not as rigid as as digest alone, for example in sip, and it can do things like Channel binding. That's a bit special is it, but um this can be very useful.

K

I can do things like Mutual authentication, which might be very useful in telephony, because you want to know the caller and the colleague they both need to be authenticated and there are mechanisms in Sasol that do that, like Kerberos and recently, opaque was defined or it's being defined at this moment, um and you might have something um you have shared credentials for authentication many of the mechanisms and they allow you to derive symmetrices that might be integrated with DV homework key exchange.

K

So you have a post, Quantum mechanism of sharing a key between the endpoints and I. Think that's very valuable. Next slide. Please.

K

So um this isn't the first approach to authentication or security intercepts, so I need to look at the context. Digest is the the standard mechanism means sip, um it's pretty much um a minimum solution, but you always need to have a password in two places. So it's not going to work if you're going to call someone in another domain, like a user at a domain name somewhere else- and you haven't talked to them before TLS is an often seen suggestion.

K

um Dls. However, IN Zip is only half functional because it's only sip is passed route from from proxy to proxy and only the the step The Hop between two proxies is being protected by TLS, so it can't do. End-To-End, cryptography and especially they'll derived end-to-end keys with the best privacy possible um stir, might be an opportunity, but stir uh limits itself to phone numbers.

K

So the passport, sister or certificates that only uh Register phone numbers and certificates in general tend to be very flexible in terms of data, but they are very static in terms of protocols. So you can't have new, flexible Innovations in cryptography, like using oblique prf, for example. You can't have that when you use certificates and they tend to be public key based, so they're also slightly um dangerous when it comes to Quantum, crypto uh Quantum computing.

K

um Also, many of these Solutions are specific for ship. Then, and it means you can't have one credential that can be used over many protocols, which is one of the things we are trying to do as well, and if you have Sasol, you can use the many protocols and you can use the same identity provided for the same user and domain name. Our next slide. Please.

K

So the other I said this was work on a crossroad I'm working on something else. That brings us up actively suddenly as I'm trying to use sip, which is for session initiation. It's normally used for media sessions, but I'm using this for why I got because why God sends encrypted packets of UDP and perfectly suitable to set up UDP internals as standards for that and basically what you do.

K

Is you set up a UDP or UDP word instead of RTP saavp, for example, you give a port number and then you give a man type that could in this case be application vnd.wireguard, you can give parameters which might involve a public key of a party you're talking to, and it might include something that refers to public, uh appreciate, key derivation method and that's particularly interesting, because why a guard is very good with diffie-hellman stuff.

K

That's where the public key is there, but it can also mix in appreciate key to thwart quantum computers and to be a to be Quantum proof. um So that's a very desirable method. But of course you don't want to quote the key there. You want to State a method and what I'm interested in is putting something there that says derivative key from assessable authentication using whatever credentials were used in there, so that both ends know nobody in between knows it. So this is where the crossroads Junction is, could have the next slide. Please.

K

So this is what HTTP sensor looks like that's what I will be presenting next Friday? um Basically, you get a 401 or a four or four or seven error. It has a WWE authenticate, uh uh a header, and it mentions that realm, of which log and that's just like with that. Gs2 basic authentication and it lists a number of magnets for Samsung, and it might include a token that allows state to be passed back and forth with protection of course.

K

And then, when the client answers it will send author authorization with a mechanism Choice um serve to server token, and if it already has a trying to surface token, it will add a c2s feel as well, and they can can go back and forth through a few bounces and that's how you can embed Sasol in HTTP um and the sips. Hustle is just a derivative from that, because sip inheritance authentication from HTTP next slide please.

K

So there are a few things that differ um with HTTP, Central and zip cycle, and one of them is that both the from and the two identity will have to be validated at least the address.

K

um So you want to have mutual authentication mechanisms. Well, Satchel offers several of those.

K

um If possible, you want to derive end-to-end Keys, that's not something currently done is as early in Social stencil security layer and in general there can be all sorts of things. So this can be defined.

K

Encryption is the common option that sort of deprecated nowadays, but key derivation in general I think has a great a great future ahead of it is in light of quantum computers coming up um you, we want all the entropy we can have right and especially when it's end-to-end entropy um Channel binding, is a nice nice feature here and you would use that to bind in the sdp contents that contain the public key as well as the preset key and then automatic automatically.

K

You know that you're trusting the right public key, so it's like an instant certificate um and well not all Sasso mechanisms are suitable because TLS protects one Trend, one hop. It gets decrypted and passed on in encrypted format, so the intermediate value should be safe for anyone who's sitting there in the middle. So you can't use Cecil mechanisms that are not safe to pass over plain text: plain text login, for example, with a plain password, but again Sasso offers choices. There.

K

No problem, so um is that an excellent I'm, not sure anymore, no I, don't think so. So there's the idea um that I came across um from a background of Realm crossover running into the idea of using ship for work. Why it got set up and I realized. Hey Sasso for ship might be a very good idea. I'd like to hear opinions about that.

B

Great thank you very much. Rick for presenting I should have said. This is your first ITF as well so great to have you here and speaking to us. So first in the queue um was.

L

John sorry I took myself out of the queue.

B

As.

L

I stood up using should I wait until you. You call me.

B

No go for it.

L

First of all, welcome thanks for presenting this um I think it was probably about 10 years ago. I think somebody did Pitch this I'm, pretty sure for sip, then, and I mean you know for better for worse, we've kind of come up with a set of security Primitives. We think work for sip at this point, except like because of the commercial imperatives of the people that are doing, you know HTTP and TLS, primarily as the security things we can get.

L

Operators to do, we've kind of had to like you know, cook with the ingredients we have and stir, is a great example of how we kind of cook with the ingredients we have and of the things that you've identified here is kind of the gaps in sip security that Sasol might Rectify I. Think we've actually managed a couple most of those together with stir at this point, so it's kind of a tough sell, I think at this point to like look at something like this.

B

Sorry.

L

So.

B

What was the dispatch recommendation.

L

uh To dispatch it in the dispatch sets no.

B

Action: okay, not to stay the way forward. Thank you, Rick! Do you want to respond.

K

um Yeah, if there is documentation, Awards was discussed 10 years ago without me. Knowing then I would very much like to see that uh if you could send me an email or something, it would be greatly appreciated.

H

Error, prescola um I I make several points, but I'll open with the dispatch, which is uh no action. um I do not think this is going to go, um but um now I'll make some actual substantive points. um So first, as I mentioned in my email to you, um the place I would start with. Does anyone want to do this?

H

um Not do you want to do it, but is anyone who actually operates a real system want to do this, and if the answer is no, then it doesn't matter. Technology is simply irrelevant to this question.

K

I wouldn't mind working on this, no um I'm already doing for HTTP and I think it's.

H

Fair I, don't mean I, don't mean what I'm saying is. Has anyone has a deployed? Zip system want this.

K

um Yeah yeah for the one for the Weigel stuff I think it's got a pretty good use case.

H

No you're making a case out of here. What what I'm saying is anybody have a deployed system want to do it, a person who actually operates a big system?

H

um Okay, when you, when you're, when you have a protocol, yeah and you're, producing a protocol that is fits into a deployed infrastructure, the question is: do people actually have that deployed infrastructure want it and if they don't it doesn't matter how good the protocol is? And so my question is: does anybody who operates a does? Anybody operates? A big wire guard system is any anybody who operates want to use sip? Does anybody operates a big sip to left any system want to use Cecile?

H

If the answer this question is no, then the technical mirrors do not matter so. Does anybody who operates one of these systems want this.

K

Thank you for Wireshark. There are currently no mechanisms for setting it up. Okay, so this adds a new venue, I think.

H

Yeah but you're I'll try one more time, you're making a merits case, but I'm saying something different. Let's say: I'm asking a market question: okay, you're, making a case that this is good, which is fine, but my question: is anybody want it because we don't standardize things that people don't want? And so my question is: does anybody who operates wire guard or a basic system want this.

K

Okay, I'll I will take that question and look around if people are interested. I think that's what you're saying.

H

Right yeah for me now, but take this question with you. That is a preparatory question to doing any work here on the technical side. um I think this actually misunderstands the security situation around sip someone, um the um as John says we have cobbled together a set of mechanisms which work and largely rely on Hapa hyper encryption, followed by end to end um message: Integrity via signatures, um which was star, is obviously um and um so um to the center, which one is to satisfied with the types of identities which stir provides I.E phone numbers.

H

The right way to do this is to extend those identity sets by providing credentials that mapping into the signature system um that would go along with stir not by not by replacing with entirely new set of mechanisms.

K

um You've mentioned on the the main list. It would be very nice to store, were extended to domain uh uh uses and I think that would be another venue that might be very interesting right.

H

I think that would be I think I think if they said to which you're dissatisfied with phone number type identification for sip. That would be the way to fix the problem. Yeah.

K

I would not be satisfied with that. I won't use the.

H

Said domain names sure um and then once again I'll simply say: does anybody who operates a sip system want you to have domain names.

B

Okay, well, thank you. Part of presenting it dispatch is to find people who do want the work as well. So if you are interested in this book, please come up to the mic and voice your opinion there, as well um Cullen Jennings you're. Next, in the queue.

J

Okay, Colin Jay's good um I I, one of the things that this is a technical comment about it. uh One of the levels when you're talking about end-to-end security with SIP is inherently a hot by hot protocol. That's used to set up an inbuyan thing, and your VPN in this case is the End. By end in thing, you may actually want to do the level of authentication you're trying to achieve in the security you want on top of the the VPN layer, instead of on top of the Hop, inherently hot, by hop um thing.

J

So that would just be one recommendation. I would have to to think a little bit about.

J

um You know how you're, how you're skinning this cat and whether you're using a potato peeler or if there's a different place you can skin it thanks.

K

Okay, thank you. um I was starting from wireguard and trying to make the best out of that, and what you're saying is maybe why God needs some work. Then I.

J

I I I I, don't have a strong opinion of which way it would be yes, but I think it would be really worth considering both those architectural ways of doing it. Thank you, clear.

B

Thank you, Anthony somersets,.

M

Hi Anthony Somerset liquid, um we operate a large-scale voice, Network um I'm a little bit confused about what we're trying to solve we're trying to fix authenticating caller ID versus the from and the two or the actual caller is.

M

You know this is a person on this endpoint and they've been authenticated um because they're, two they're two different things with two different mechanisms to manage and as the as Cullen was saying, it's hot by hop on sip, because you have to make routing decisions, which means you have to know that data, so it can kind of the Privacy gets a bit murky, um so I'm just struggling to understand what are we trying to solve here and I do want to Echo. You know authenticate the network layer as much as you can.

M

First before we have to deal with getting into it. That being said, I'd be very interested in seeing an alternative to digest because it is more secure in terms of authenticating. An endpoint um might be difficult from a network to network interrupt perspective, though.

K

Yeah, um what I'm, what I'm into here is uh making cross domain calls possible with authentication end-to-end, so the from and the two identities are the things I'm concerned about. But what you are saying is instead of digest. You might register, for example, settle and that's the second idea I have had. That might be a general use case. So thank you for stating that you would like to see a replacement for Digest.

B

Thank you, John Peterson, John,.

L

Again, just uh I wasn't really going to go into the technical details, but I will just a little bit just so I think we're clear about what the Baseline is of sips existing security features so stir is by no means limited telephone numbers. Actually it solves for user at domain. Just as well, that was true of its predecessor. Spec RFC 4474, as well stir, negotiates Keys end to end. It has an m key, parameter and passport that lets.

L

You sign the media keys to present in sdp, and you know, if you're concerned, about securing the to and from it's basically like the best practice right, because usually those are not domains controlled by the end users right and like having King material down in the user agents is not actually typically useful at all for being able to figure out like who should attest to the you know the validity of the two in the parameter fields in set, and so I mean I I, think it's that the you know it's more fundamental.

L

It's the the sizzle security model is is fundamentally misaligned with the things sip security actually needs. If you want to be able to authenticate things like the from and two and yes, there is even a mutual authentication feature there first for store now as well. So I mean uh it's unclear to me what features this would offer us beyond that. This realm crossover, obviously the ability to do this working with other things, but people have looked at like oauth for that as well.

L

So and digest is not the only thing that people use by any means to figure out how to authenticate yourself to your local domain, but when it's that question of how you figure out, who the to and from are like having interoperable layer for that, that's going to be cross domain, um I I think we got that I think we probably got that as fixed as it can be. First up now,.

K

Thank you, I looked into stir a bit, so only one RFC might have been that that was an early RFC. That only mentioned.

L

There's like 10, maybe 12 at this point, yeah.

K

Okay, I.

B

Will I will look into that? Thank you. Thank you for the feedback, just in the interest of time I'm going to cut the cue shortly and just to relay a comment from Jabba from dkg. Why God deliberately avoids any fancy authentication mechanisms for the sake of Simplicity and points are identified by raw public keys. I suspect why our guard itself will never adopt fancier Earth schemes and.

K

Sorry, I didn't I didn't catch it. Can you, please repeat.

B

Yeah wire guard deliberately avoids any fancy. Authentication mechanisms for the sake of Simplicity endpoints are identified by raw public keys. I suspect that wireguard itself will never adopt fancier authentication schemes. Just relaying a comment from I mean you don't have to respond to it. It's just yeah.

K

Extra comment: I think: okay,.

B

um Eric bruscola you're next in the line yeah.

H

So I think it's probably important to distinguish between two different settings here. One setting is authenticating the client to the SIP server um which, um which is I think like the situation which sassoles canonically been used for authenticating. You know, you know I'm, not clients to iMac servers and that kind of thing on the other is end end for the reasons like John laid out.

H

um I think Sasol is like entirely inappropriate for the end end question right, um it is potentially one might imagine appropriate for the client silver question, but my peers, who work on this, tell me that problem has been solved without satisfaction.

H

So um I think to this end, to which um you know just just from um from noting that you're also presenting about Sasol HTTP I sense, is that you, like Cecil, um if you're interested in having Sasol and sip I, would focus on the question of how to think the simpler question of how do they get a client a server if there are any gaps in such an area.

K

Yeah, okay, well, there's a very big line here of um looking into the other ways of of doing things, I need to organize what is actually needed, and if this is the solution for that, that's very clear feedback. Thank you. Okay,.

B

Thank you. That's the end of the queue, so thanks Rick for your time and sharing your work with us. um The outcome from dispatch is the work, should not go forward and as current form, so we're looking down next to the agenda enough after heroic Sprint from the airport and we've actually got Deacon replay back in its original slot. So it's over to way to present virtually and Bron who's with us in the room to field any questions you may have so over to you.

N

Six, all right, can you see me and hear me? We.

B

Can see and hear you Highway.

N

Hi, um let's see if I can control the slides.

N

And actually should I see some sort of control.

B

So you should see the slides shipping is driving, the slides can take no.

N

Credit all right all right um good morning, everyone, my name, is Roy Trang I'm from Google I'm, presenting dcom, replay problems and possible solutions with Brian gondwana from FastMail next slide, so email authentication uh is defined by two standards from the ITF RFC 6376, which is a mechanism to sign and authenticate emails.

N

Another important standard for this is our SPF, which is RFC 7208, which is a mechanism to authenticate the uh sending mail server replay was described in the dkem RFC in section 8.6, as a message that can spam message that can be sent through a decom signer that leverages the reputation of that signer and then that message can then be resent to many victim recipients.

N

Next slide, please so to describe the mail flow problem. It's important to uh characterize it in terms of uh some of the flows that we would see so here in this uh diagram. We have a sender that is sending a message through a decom signer. The top line is going to be a message: that's directly sent to some recipient. In that case, we would expect to see uh potentially a deacon pass and an SPF pass and they can be aligned. The receiver would see that as and can characterize as a message.

N

That's been directly sent to it now.

N

There can be also an indirect flow on the bottom, where the message is being forwarded through potentially a mailing list, uh a bulk sender and those are benign cases or it could also be an instance of Decon replay, which is malicious, and here the receiver would see a message that would be potentially a deacon pass, potentially also a decim uh sorry SPF passed, but not aligned or an FP of fail, and the problem from the receiver's point of view is very hard for it to tell the benign cases from the Deacon replay case next slide.

N

um So in the Deacon replay scenario um and well, the decom. uh What the the spam is going to do is uh find a message that they can send and sign through hybrid petitions uh signer and then have that uh captured by an account that the spammer has access to and then next slide.

N

And then they're going to uh then potentially take that message potentially modify the message within the balance of what geekim allows and then broadcast that out uh to many many recipients, uh because they're leveraging the high reputation signer, they can get their spam to get through the spam filters, and this is a classification problem. A kind of false negative next slide.

N

And the consequence of that is that these spam messages are going to be seen by the spam filter, and then it's going to cause the reputation of that sign or to drop potentially causing a deliverability issue for good mail, that's being sent by that signer and we're going to see a kind of false positive. Now.

N

What we've seen in Gmail is that, while DCM replay isn't the highest Source or cost of spam that we're seeing it's the one that has the most consequences in terms of deliverability complaints and then that's causing a huge amount of problems for us- and this is one of the reasons why we're very interested in trying to solve this problem.

N

um We saw this a large increase of Deacon replay attacks late in 2021, and while it's trying to die down due to a number of mitigations folks are putting out there in the ecosystem. We think that they're still a weakness in the standards that we would like to see fixed.

N

um The other thing just to reiterate again is that, from a receiver's perspective, being able to tell the difference between benign flows and malicious flow is very difficult from from a receiver's point of view. Next slide.

N

So uh we uh helped put together a deacon replay birds of a feather session at MOG 56 in Brooklyn. Recently in October, um there were four drafts uh discussed at that uh buff uh one by kutral, one by Truong, myself uh by Bradshaw and gondwana.

N

The outcome of that buff was that we should try to characterize the problem in a draft, and then we wrote up a problem statement draft that tried to characterize some of these uh complex voiding flows that characterize modern male and then the other thing that we did was we tried to put these drafts and potential other Solutions into a taxonomy and I'll present that next next slide.

N

So the first solution set of solutions is trying to put the envelope recipient into the signature, and this was proposed in three of the drafts to try bratra and chuang, uh and uh essentially the difference between these drafts are that they're going about uh putting that signature? uh The the recipient, the envelope recipient in the future in different ways, so one would uh have it implicitly done, uh is without having to change the message itself.

N

Another bride trial would take that uh hash of the recipient and put that into a new header. In the message, and then the draft by Truong would uh instead have the uh recipient either explicitly disclosed uh with the payload headers, like the qcc or in some new header. That would uh then be hashed and then uh part of the signature.

N

um Now these uh approaches uh do avoid the amplification problem that was described earlier in the example uh and solved the replay problem that way. However, they do run potentially into some problems where they may prevent uh indirect mail flows, much like SPF or if they don't so the first. You have that issue where I think they would be impacted by uh in direct flows. The third draft the trunk draft- would uh solve that, but would do so at increased complexity and that will be described later next slide.

N

The second approach in this taxonomy is, you could count the number of signatures and then filter above a certain threshold, and this was mentioned uh by Yahoo and the birds of feather session uh as the technique they're using to great effect. However, uh this will run into issues with mailing lists. You know Exploder, aliases or even large, number of bccs as a potential of essentially false positives. That will get a cut if, above that, threshold next slide.

N

A third class of solutions could be to potentially strip off these detail signatures. So essentially these decom signatures would be uh you know, SMTP uh transactional only so basically signed an outbound and then stripped on inbound. uh It's a straw man. We don't know of anyone using it. uh It does uh have the problem that is going to have SPF like Behavior again, and uh you could have a malicious uh Mill, Forward or that could get in the way too next slide.

N

The fourth solution, potentially, is to gather perhaps signatures and also uh specify the next hop destination domain, uh thereby uh these uh flows are going to be much harder to replay, because uh you know a replayer is going to have a hard time uh harder time, uh taking a message and then re-injected back in either that or they basically identify themselves as part of the flow.

N

Now uh this of course tolerates voiding, but it does have additional signing overhead and two of the graphs uh discuss this particular technique: the drawing draft and the gun water draft. uh This requires that all messages of uh all hops, I should say of a mess. A message path is going to have to participate in this protocol um either that or the message may be identified is uh going outside of a path but messages going outside of the path.

N

It won't be possible to determine whether or not the message is being Deacon well, being replayed or uh or some benign flow. uh The other thing I should point out the difference between these two drafts is the trunk draft uh uses Arc as infrastructure.

N

The gondwano draft proposes using new headers that are going to be very arc-like next slide.

N

So what should we do? Well? The proposal here is that this work should be spun up in a new ITF working group for email authentication. The goals would be to, of course, authenticate email, but also mitigate this replay. uh We think that uh this uh you know these. These authentication methods should be able to tolerate uh multi-hop forwarding, because that's what modern male does these is. uh It should also.

N

There should also be a potential discussion, at least of some of the other problems that uh forwarding has such as mailing list body modifications uh in particular. The um gondwana draft uh proposes some new ideas there and then, in the appendix of this uh slide deck uh there's a number of uh draft Set uh in the that have also discussed how to solve those types of problems.

N

um Thank you for your time and I look forward to your feedback and also bronze there on stage that, and he can also help take some questions. Thank you.

B

Great, thank you. So please join the queue with your comments and questions as a question from Murray. In this.

O

Sorry, my client is not allowing me to get in the queue.

B

That's okay, I'll I'll one time allow it yeah. Okay, so um Murray asked the question: is anyone using any of these yet I.

P

Just the reason I said, that is because we pointed out on one of the slides, no one's actually using this yet and I'm wondering. Is that true, for any of them uh has anybody.

Q

Tried any of this yet Yahoo are using their solution, which is basically to count the number of messages that have identical headers, identical dkim signatures, and if they get hundreds of thousands of those, then they know that the message is a replay. uh The difficulty is that there is an edge case where a message has gone to a mailing list and has that same header going to thousands of users, and so it becomes a heuristic guess. It's not a perfect solution.

Q

Yeah the others not yet, but there's lots of talk about it and the big mail providers are all interested in finding the right solution.

B

Okay, thank you just with the mic tool, um malfunctioning, Barry Leiber. Let me go next.

O

Hi thanks Barry Lieber, our former D Kim working group chair uh where we discussed this issue a lot in the original dkim design decided for various reasons that we couldn't resolve it. We now have more information. We have operational experience, that's important in this. We know what the priorities are and we have all the information to to debate the pros and cons of uh of these different proposals and perhaps others that come up so I think it's important to look at this and I.

O

Think a new working group is absolutely the right venue to do it. Thanks Barry.

B

Thank you, Eric cruscola,.

H

First, let me say, ugh like I'm, just watching this and being like Oh god. um uh Clearly, however, um with that said uh um clearly, the working group was the right place to do this and it sounds like there's enough energy and interest to do that. So I don't think we need a Bob I think we could spin up a working group with a charter like approximated, this stuff. um You know uh pretty much now thanks.

B

Okay, thank you. Jim Fenton,.

R

Hi Jim Fenton- um this was as indicated by the uh by the RFC. This is definitely something that was considered in the design of dcam, um one of the uh one of the uh aspects of of email. That I think wasn't mentioned in the slides, at least it might be, it might be in the other drafts is that the requirement for confidentiality of BCC recipients in the same domain, um both um both as as bcc's and also on on a mailing list? You, don't uh you don't disclose? Who?

R

Who all is uh you know when you get the recipient of a of a mailing list? Email does not have access to who uh else in their domain might have gotten that email, so uh I think this is an interesting problem to solve. I have severe questions about whether this is a solvable problem within all of the constraints, without breaking something that.

Q

Specific question is answered in a couple of the drafts, and the answer is that you split it, so you send an individual message to each person, so each basically say recipient can only see their own address, not any other BCC recipient's address and that solves it. What it does do is it explodes the number of copies you need to send uh 20 years ago? That might not have been as easy to do these days.

Q

It's not that big a cost in the same way that https was originally too expensive to do for everything, and now we just assume it's required, because computers are now fast enough. It's not a problem. Okay,.

R

So so uh I'm sure Gmail has enough capacity to handle the additional incoming mail. I mean this is also a burden on mailing lists that are not necessarily the big providers that need to now split out that meal and do a lot of individual transactions. A lot of it's already happening.

B

Hey thank you where's hardika. Next, in the queue.

S

West herricker uscisa I'd, like to Second ecker's Ugg, you know, is every time we try and bet all these problems, things get worse and worse and, um to me, I think one of the things missing. So for me, dispatch wise this is, you know, fairly obvious, it's a large enough problem that it needs a working group of its own, because it'll consume an entire. You know two-hour slot every meeting for a while.

S

um So that's a no doubt the thing that I'm thinking of is more. What does this look like long term in a lot of other places in the ITF? We have Ops groups that last a long time, because you need to measure and see how well these things are doing over time and I.

S

Think, given the fact that you know we're coming back in to DCM and SPF and stuff over and over and over, um and some of these solutions that were proposed in particular like some of the Accounting Solutions with thresholds and stuff, really requires continual discussion. And you know, is this working or do we need to shift to something new and that that seems to me? Like a longer term, maintenance working group might be needed as well.

Q

Yeah I I agree that it's probably time in the next couple of years to talk to the area directors, about consolidating the multiple email groups into a maintenance group and then specific groups that hand their work back to that maintenance group over time, hello area directors. Do you want to pop up and comment on that.

P

Yeah um we have talked about that. uh A related concern is that there's a lot of these sorts of drafts that are heading for the ISE, because there's not a maintenance working group and the isgu is a little bit reticent to create. Well, we've got some feedback from from some very experienced email people that that may not be a good idea or it can turn into ocean boiling. So we need to control it appropriately, but the conversation is happening thanks.

B

Okay, there's no one else in the queue and Murray's had the last word, but would you like a second last word.

P

um So Christy, you can correct me if I'm wrong, but it sounds like people are okay with creating a working group, no need for a bath okay. So if anybody wants to share it, please let me know- and we can start working on all that process. Okay,.

B

Just to yeah that is kind of where the dispatch outcome is looking like. It's heading I'll just give Cullen enough time to join the queue.

J

No I that wasn't actually what I I heard um I heard that there's a lot of people in the room who don't believe this problem solvable and that a boss would be a great place to see if people think that there is a workable Solution. That's that's solvable right, so I I'm, not I'm, not like saying one way or another, but I'm saying it wasn't as obvious to me that a boss would have the purpose of trying to like we've tried to solve this problem many times before.

J

It's not a new problem and we failed and has something changed fundamentally that people believe that that solves it. Okay, so I I, don't know it's not obvious to me that we should just go form a working group without some discussion of what that would look like.

B

Okay, so um just before Barry joins I, don't think anyone's mentioned a buff, but that doesn't mean that that's not the sentiment of the room. So just Barry over to you.

O

Oh, this is Barry Lebo the to just to answer Colin. What what's changed is that we have more experience with using dkm and SPF and dmarc, which wraps the two of them together, and we know what use cases we have a better sense of what use cases are important and which ones we can compromise on.

O

So some of the reasons that we didn't want to do this kind of solution before we we can reevaluate them and decide whether it's okay now to say that use case is less important than we thought it was, and that sort of thing right.

J

So that makes sense exactly what you said, but I didn't hear a single discussion today of the use cases. People are willing to compromise on that they weren't willing to compromise on before, and that is going to be the messy part in this.

O

Stuff right it will be and that's what the working group will have to decide so.

B

Okay, so apart from Colin I haven't heard anyone raise the need for a bath. If you believe that a buff is needed, please hurry yourself to the queue or else I'm going to say that the majority of us think just a working group on its own is is fine and that those problems will be sorted out in the working group itself.

B

So I'll do a slow, countdown sort of like an auction going going gone.

B

Okay, then a dispatch outcome here is to form a new working group without a buff thanks.

Q

Go see, okay, thank you very.

B

Much for presenting both of you and uh we like to welcome up our final dispatch draft for today um on web Sergio right. Take it away.

T

Yep then this is ladies.

T

Yes, so if I presented, we pay I said another couple of years ago, so a web is really similar to whip, but then take you into account the egress part, so I review reviews some of the slides that I presented.

T

That I did when presented with to this part, so a webrtc still the best media transform protocol for real-time streaming. It is even if there are other protocols that are being discussed right now, for example, but I mean whether this is irrelevant in this space. However, we don't have any standard protocol that we can use, alongside with it, I mean see if an NPP are mainly focused on conferencing and a rtsp is not very well suited for using with a webrtc.

T

So as a consequence, all the webrtc streaming services are doing their own custom implementation of the signaling protocol and, as a consequence, there is no interoperative between either the service install fund players and even in between different services. So why is web needed? I mean it is a the the main driven for web. Probably is the interior interoperability between webrtc services and product, and it's like, and lately we have been seeing a trend about being able to have like a avoiding vendor lock-in but being able to have like a backup solutions for webrtc streaming.

T

So you can uh you don't when you are building your services? You are not looking to the the webrtc provider that you choose, but you can decide to move all later on without there being lock into a specific, a vendor, or even if you, for example, there is a a notice in a service.

T

You can move to a different service provider without being impacted in in your in your customers, or even you can have multiple webrtc providers to be able to load balance or decide, because someone works better in a region than others so, and this is becoming very important in webrtc, also a probably in um a bit lower priority than that. The first one is that we could start by using a player server that is, can you can easily be integrated in in in your service?

T

I mean this is, has not been a a real algorithm for webrtc services. So far because you typically just Implement your.

T

Ux, based on with a HTML JavaScript, so there is not much problem with just implemented your the custom just with to handle them the playback of the of the webrtc streams. But this is something that it is a good health and that you know webrtc and some survey on some devices that don't support him.

T

The web artist is stuck in JavaScript, for example, division or iot when having a been able to just provide a simple interface for playing web stream is much easier, that just provided the full JavaScript and customizable API and on them, and the last scene is the integration that it would be. We have been discussing with the impact. Does the passive group about integrating stdp does playback with with webrtc?

T

So you could have like a um an integrated player where you can be both having a live stream coming through webrtc, but you could also be using a hdb dashboard going backward in times and start watching one, even, for example, for for the beginning of the of the of.

Q

Of of the.

T

Of the event, instead of having just the the live feed, so uh that's a lie. Thank you. So, as I said before, we bang web are very similar in the scope and Technical solution, but the egress part of the of the of the of this protocol is a explicitly out of a scoreboard with a working group, but also a web.

T

At least the drops I have I have created, reduce almost all the mechanics that I we have put in place for Whip, and the draft is basically just a replacement of for whip to whip and Ingress for regress, and so they are really really similar so and also a week and web. Both protocols can be used together to.

G

Provide.

T

Service center with their availability, so I think that it should make sense to register the they will say working group to include also a great signal, and not also, and not only English, so necess like this. So just a very quick um look up of how the the web protocol works. It is essentially the same as as what a whip does is just say, the web player. We will create a make. An HTTP boss request, with the sap offer there to the end to the weapon point.

T

Then the the weapon will return an sdp answer in the in the response. The I say: nandi and dtls will be set up, and then we will have an HTTP API to provide um other functionalities like, for example, the teardown of the session or the IC restart, and and check the lights that it is also shared with sweep so necess slide.

T

So really quick. This is just to show that uh we could just use a a weapon web to be able to interpret into to create interiority between different Services because, as they just share the the an HTTP base with mechanism with sdp or financial exchange, it will be really easy to just create gateways that could allow us to to interoperate different and.

E

Whip.

T

Endpoints and weak with clients with web employees and web clients, so this is late yep, so the what's missing in the in the draft. Well, the whip is say already or is going to be in working group last call and during this week, so the the protocol is quite mature and web has same reduce most of it. So it should be quite close to to have something that it is doable. But web has a bit more requestment that the in terms of functionality didn't whip.

T

For example, we will have to work on on on on essential super multi-language or a more controls on the playback side, for example, pause or mute, subtitles, metadata or cleanser resolution when you are using a multi build rate adaptation. So there is still some somewhere to do so message like this.

T

So the main question is say: where are we going to first Define the protocol and extension? If it is a just a matter of Richard in the with working group? Also, we create a new working group for a handle and then the web specification.

B

Okay, thank you very much for presenting Sergio so open up the queue. If there are questions, comments or thoughts on where this should go. If anywhere on this work, then please add yourself to the queue get up in the room.

B

Okay, um someone said they can't work out. Colin Jennings I can't think I had to get on the Queue anymore, but plus one to reach out to the wish working group to do this.

B

um Okay, Murray you've joined the queue.

P

Has this been discussed in wish at all.

T

uh We are, it is in the agenda for the for this, uh for this Thursday I think we try to present it in a in the in the last meeting in the last ITF meeting, but as it was in not in the scope of the of the working group, we only have like five minutes and we couldn't present it very very, very well. So it is easier. I mean discussing something that it is not in the in the scope of the chart.

T

Itself is difficult to do it in the world in the working group, but we are going to try to present it, and hopefully we have a a resolution of. If we are going to be able to reach out the the working group, it will be easier to get it in the arena. So.

P

For Christy I wonder if we should wait until for the outcome of that before we decide what we're going to do with it.

B

Thank you, yeah Sean, Turner you're. Next.

U

Yeah hi um Sean Turner, um Sarah Whip or wish all confused um in any in any event, um yeah. So last time we had about five minutes to talk about it. This time we're gonna have about 30.. This is kind of just jumping the gun right. So at the end of the day we know it's not in Charter. So if we're going to do it, we're either going to reach out or you're going to do working group. There's no objection at this point to re-chartering so just kind of like basically priming the gun here so.

B

Okay, thank you both. So it sounds like the result is, what's already happening, to have the session and wish about this and see if the retarding is in scope.

B

Okay, so that brings us to the end of the ditch Dispatch session um part of this meeting.

B

So, as you know, we combine this meeting with the art area uh meeting as well, so just to recap our dispatch outcomes before we move into the art portion of the meeting we heard um on the topic vcon, so the dispatch result was to create a draft of the use case, a problem statement to clarify the scope and take it to a buff I've been asked to mention that the vconf is on Thursday at 3 30 till 4 30 in Richmond.

B

Six um on the second piece of work, authentication for sip do not proceed with this work in its current form for dkim replay, we are forming a new working group without a buff and for web. um We are holding and letting the session in wish progress to see if a re-charter is appropriate.

B

Okay, so over to the art section of the meeting Murray, do you want to come up here? Claim your your spot.

P

Foreign from this time from this microphone, um one just one quick announcement, Francesca you've probably seen announcement- is returning to her duties, um so she will be taking back over supervision of the working groups that she normally looks after. This is our third area director, by the way, um if.

P

I think she can hear us all right um if I've been looking after stuff, while she was on maternity leave. If there's anything, that's supposed to be in my queue that I haven't acknowledged. Please message me: I'll still take care of things while she's coming ramping back up. Otherwise I'm things are going to be drifting back to her control. I think my cue is empty, except for one document from one of my own working groups, but if I've missed something, please let me know and I think that's all I wanted to say today.

P

Unless there are I, don't need to go through all that.

B

Okay, thank you um so yeah. We always put this up.

B

To highlight some Buffs and side meetings coming up and other interesting meetings, the dispatch meetings as I'm sure you find are very interesting because you get the first look at a lot of work coming into the ietf. So it's a good place to be the IAB open meetings always interesting and the RFC editor future development program always draws a crowd. A couple of side meetings: vcom we've mentioned an ebpf which we're going to hear about in a moment um and then the boss, as listed at the top there as well, okay, but without further Ado.

B

Let's get into the art portion of the agenda so up. First, we have Stephen Farrell presenting on ngi funding.

V

Hey good morning so I think that's why it kind of says it already. um There's a it's a funding scheme for people who want to do open source work, for you know in small chunks of money. So next slide.

V

uh So if you're, you know if this is turns out relevant, you can talk to me. You can talk to my colleague Kerry we're going to hang around in one of the side meeting rooms to say this evening in case people want to talk about it or there's links there for applying for the money next slide, foreign.

V

Things anyone can apply, so you don't have to be a company, an individual can do it or a group of people together or some open source projects can do this. um You don't have to be academic.

V

You don't have to be based in the EU, although there you do have to have a story about the EU somehow so I think typically, what's happened, that this has been running for a few years already I think most non-eu people tend to try and partner up with somebody in the EU to apply for the funding, and that seems to work so next slide.

V

um This is kind of a bunch of weird terminology here. So ngi sounds like this kind of grand. You know next Generation internet thing, but actually it's it's a funding mechanism um and ngi. Zero is a subset of that and we're involved with kind of helping out that most of this, the ngi zero Things Are, driven by nlnet, Foundation Michael leaner, is there and they have about 9.6 million to give out over the next few years in these kind of smallish chunks. uh So we're helping with that we're, not part of selecting who gets funded.

V

So we can kind of talk to people about whatever they want to talk about um and part of our you know, part of what we're doing there is to try and help some of those projects want to bring things to the ITF and so we're there to try and help them do that or try and convince them not to try and not to even bother uh if that's the right answer and I think that might be the last slide. It was the next one, oh yeah, so there's a there's, there's basically current funding schemes.

V

There's a guide for applicants there for the main one and for those people who are funded there's a review thing which allows them to ask for support if they want to get like Security review or a review about how accessible their their technology is uh for people with disabilities or vision problems whatever.

V

um So it seems like a reasonable scheme and I think that is the last slide. Is it next one yeah? So any questions? This is basically just an announcement that I think what's different about this game. Is that typical EU funding it takes like a year to get the money and you have to get a whole Consortium together to get the money, whereas this is yeah calls every two months for small amounts of money suitable for people working on open source projects um so yeah.

V

If you're interested you can come on there or if you've got a question at the mic. Now, that's fine too.

B

Great. Thank you. If anyone has any questions about the topic, please do join the queue, but seeing no one so far just say. Thank you very much.

G

Awareness.

B

Okay, we continue down our art area meeting agenda up next ebpf Dave, all.

C

Right next slide meeting announcement, uh so it was actually interesting at the uh hackathon ebpf showed up on a bunch of slides, which kind of you know surprised me in a good way.

C

um So recently, an ebtf Foundation was formed underneath the Linux Foundation as a sort as a home for open source and I'm in the leadership of both ebpf foundation and, of course, ietf and so I get to do the rage between the two So for anybody that doesn't know evvf and I'm, giving the same presentation by the way, an INT area which hopefully, will cover most of the relevant people between the two areas.

C

um The best way to summarize ebpf in case you're new to it is it's a cross-platform technology. It actually came from originally the Linux kernel and is was derived from BPF, which came from the BSD kernel before that cross-platform technology, the current sandbox programs to extend a privilege system component, and if you ask what it stands for the answer, is it no longer stands for anything next slide?

C

So rough analogy and I'm going to stretch things a little bit here, JavaScript is to the browser. What ebpf is to an OS kernel? Okay, now, of course the analogy is correct, that JavaScript isn't just for browsers.

C

Ebpf is not just for an OS kernel, but what it did is it made JavaScript made a browser, be programmable right, so you're not limited to the functionality that ships in the browser similarly ebpf makes the OS kernel be programmable, so you're not limited to what ships in the OS kernel and some people use it to extend, say your TCP stack or some other privileged system component next slide.

C

This is an example of how it's organized in the Linux kernel, which is the most dominant use of evpf other uses, would be we're making it work on Windows, uh there's various uh Nik Hardware cards that actually support it, so you can offload stuff into your neck and so on. This is the Linux kernel example. So you have ebtf program. That's written in some particular language of your choice. C rust go whatever.

C

It gets compiled into a particular byte code format and then an application can then load that into the kernel, and so it's red there, because it's considered untrusted until it hits the box, that's labeled verifier. That does a formal proof. Basically, it's a static analysis verifier that if it can prove that it's safe in terms of executing within a conceptual sandbox, then it can be jit compiled into native code and run and interact and extend in this example in OS kernel right and then it can communicate back with user mode things through shared memory.

C

That's called Maps. Okay, just so you understand some terminology. So this is what ebpf is using the Linux kernel example. So there's a bunch of yeah next slide. Please there's a bunch of different categories of things that um people would like to see standardized in some place. Okay, so there's a list of things that are up there.

C

um You can see there's a bunch of different categories, so next I'm not going to walk through those right. You can see the list if you're familiar with BTS with uh BPF, then um you'll recognize some of the terms and stuff there, but hopefully you can figure them out from the previous slide next slide. So the purpose of the side meeting is to figure out whether it makes sense to actually have a buff is ietf actually the right place for it or not right? Okay, because it can be argued both ways right.

C

My initial impression was no ietf is not the right place, but there's enough using the ietf that maybe something might be, and so that's why we're going to have a side meeting, there's a bunch of ebfpf users that are here at ietf. So let's get them in a side beating and decide where we want to take stuff and the evpf foundation. Here's the four possibilities that we've discussed the bottom one is the scope of the side.

C

Meeting okay, the evpf foundation could just say as an open source organization we're going to publish you know: Standard specs, even though we're an open source organization, we could do that. We could take that and then take it and get an ISO number afterwards, like some other small seos, do we could publish as an independent stream RFC or an IIT frfc okay. So the purpose of side meeting is not the technical discussion. It's the which SEO was the right place to to actually put the documents.

C

That's the purpose, the side meeting, if you have views on that, come to the side, meeting, Thursday, 6 p.m. Right after the last Thursday session,.

B

um Thanks, thank you. Actually, if you have views on it, you we have time. If you want to express that view now, based on the presentation we've just seen, But. Thank you, Dave for sharing it with us, I'll just pause in case. Anyone does want to join the queue I.

C

Will mention that um evpf is often used to extend networking functionality, but it's not just for networking people use it to extend security, observability and so on. The uh on the bottom bullets of the seven possible uh standard stuff. Some of those were networking specific when it says cross-platform program types and cross-platform map types. That's really. The only thing that you could say is specifically about networking is those bottom two bullets there's some subsets of that is okay, I, see comments.

B

Yeah David can I see you first.

W

Hi David skanazi, Google I.

B

Closer.

W

Oh yes, sorry I'll eat the mic with the mask um I at first I. I generally was of the opinion that, like ITF, shouldn't standardize apis, but then we kind of gave up on standardizing apis and then apis haven't changed in decades, and you know for a lot of things like look at sockets like hello. Does anyone have a pulse? Can we make this thing better uh anyway? All that to say, I really think this is important. This is useful. Having it standardized is really great.

W

If we, you know, if you manage to make your analogy with JavaScript work, that would be amazing, uh so I think the ITF would be a good place, because um I know that we have a pulse and we'll get stuff done. um I, don't know the other organization. They could be good too, but I think this would be a good place. So I'd I'd be very supportive of seeing this work here. Okay,.

C

I'd encourage you to come to the side meeting um and uh between those seven bullets that were back there. It's arguable whether any of them are actually apis. uh The bottom two, you could argue, might be abstract apis in the same census. Like um uh some other working groups, do abstract apis, I guess you know maybe taps or before that the um the security one.

C

um The acronym escapes me right now, I'm sure Echo. Remember all right. Next.

H

uh Can you go back to actually more list.

B

Oh sorry, just yeah go.

H

Back to which one is the seven bullet list, the seven bullet list yeah, so we're not allowed to say birthday packet, filter, anymore,.

C

uh It no longer stands for that, because it's not limited to networking, and so the P implies packet, yeah of course, and so uh the ebpf foundation even before that right, it said no longer stands for things because they don't want people to limit their view to say this is just for networking. It's not applicable to me right. So it's like KFC.

H

So um um yeah um yeah, so um so I mean this is good stuff, um I I think the analogy actually draws to wasm more than to JavaScript, but um uh uh whatever um I I guess I am um I would like to see it on somewhere. um uh I'm, like less I, think excited about having an ITF um merely for um for probably cultural and Technical reasons, which is that designing um the isas for this kind of thing especially um requires really understanding how jets work.

H

um It requires a feminine understanding about Dynamic languages and what only mechanical language fast don't make verification work, none of which is expertise which is really found in this Arena. And so, if you look at what wasm did they formed a Wes?

H

So JavaScript, of course, is done in tc39 and um uh um and uh um plasm is done um in the w3c uh wising community group, followed by w3c, was a working group um now I will say that that at least in um in my senses, in both those areas they just sucked in a bunch of compiler like people and like which people did that work.

H

um But um my sense is that that might not work here um and in particular, the working mode that those screws tend to have. Is very intense and very like um and answer culturally, very different from the working mode we have and so well, I think there's a I do want to emphasize I think this is exciting, work and I'm glad it's happening. I'm less excited about having it here.

H

I think that people would find it frustrating to be here and work with us and have uh frankly um um um and in particular, I think they would find. You know um how should I phrase this to sort of drop in tourism that we often get um very, very irritating um in in design of these I, say very, very technical features which, as I say, really requires anyhow, have just work and how processors work.

C

Yep um by commenters that um this is widely deployed um and not standardized, and so there's a bunch of people already out there in the community that do those things but they're, not necessarily iatf people to ecker's point uh yeah. A number of them will be on the side meeting, because the side meeting is a hybrid meeting and the zoom meeting and a bunch of them will be remote and I would like to encourage more interaction between the two communities, regardless of which one of the which one of the standardization places it goes. So.

H

I guess, oh yes, the other thing I would say is um the fact that it is so widely deployed. I think um requires a certain amount of care in terms of care and feeding, and um you know having been through this process multiple times, and um uh you know um the itf's um attitude about like well, it's just like make everything a little Indian if it's a big Indian or vice versa, um and all that and I wish, like renumber, all the instructions in the VM um just because we don't like the way.

H

The way they're spelled like that seems like kind of like disruption. The idea often like brings the party that, like you, would not want to bring to the party in this case yeah.

C

Not only is it mature, it is actually still evolving right and so there's obviously some concern about. How fast can the ietf keep up with things and what's the right documentation process, as you do extensions, and so that's from the ebpf community, that's classically not evpf that some of their questions and so getting everybody in the same room to be able to discuss those sorts of things to will actually help inform where's the best place to do it. Okay,.

X

And listening to the presentation, if I had substituted wasn't for epbf, it would have been almost identical. Have uh what's the what's your perception of the relationship between uh this and wasn't and this developer community and there wasn't there. There were Pokemon.

C

uh It's a good question: I do not know, wasn't enough to give you a definitive answer myself. uh So there's probably other people who might have to compare notes with to give you something. I don't know if wasm is typically used in kernel space, um whereas evpf is widely used in kernel space, and so, if so, I've only heard of it being used in user space. I, don't know if there's kernel space, you just have to ask somebody here.

H

So my sense is that um you know both these are um growing metastasizing.

O

Whichever one.

H

You never would you want to choose, um and that was in this is going downwards, and this is growing upwards. um I'm surprising, of course started in browsers and is now moving towards. You know, depending Cloud infrastructure. um You know because I don't I mean I think at some level. Of course, these are competitors analogies in the same way like the Java VM is a computer technology, um but I think you know, there's like room for more than one V one jitted VM thing.

H

um One thing I will say is that um eliasm does not appear to have the proof stage that this has Verizon is um is correct by construction, rather than being um uh um you know, rather than being proved the way this is I mean a particular um uh I. Don't know EPF well, but the um uh I assume part of the proof is about verifying that you can't like reference outside your own outside of the map sandbox. Among other things, the.

C

Same way, that knackle proof of termination within a fixed number of instructions that have the.

H

Same with a knackle, for instance, was yeah, um and so like I say why ISM does this is um last name is like pure compute and then you have to provide affordances to do anything outside of wasm. So I think, like um you know, I think it might I mean it might be worth trying to see if there's Quest pollination between the community to see like they're cool things to be stolen. um But um but my sense is that that the uh um the aspirations are different enough.

H

um You know, Wiseman is really for like a long running process like for very like a long running process, very long execution processes, because otherwise you just kind of run, JavaScript um and um and high compute, where it sounds like it's low, compute and lightweight. So that's my sense. Yep.

C

Thank you that uh that that all makes sense, um I have a vague recollection that there was a presentation somewhere recently, maybe at Linux plumbers or open source Summit that actually did have both of them. The same presentation made that same analogy that wasm is kind of at the top working its way downwards, and ebpf is the bottom working its way upwards and there's kind of this fuzzy area in between I thinking.

C

It was awesome that was about that I can look it up and if I can find it I'll post it to the to the list. um So.

B

All right, thank you very much Dave and thanks everyone for your input. Just a reminder that side meeting is on Thursday at 6, 00 PM, so further views, please add them there. Okay, it's our last um item on the agenda today. This is in the art area. Part of the meeting, still uh we're looking at a testable HTTP so over to um hey.

Y

um Yes hi, can you hear me.

B

Yeah we can hear you, we can see you go for it.

Y

Yeah cool. Thank you. Yes, hello. This is Heinz Bryant uh joining from Intel and I'll quickly talk about the future possibility to initiate building trust for the modern internet, and please go to the slide one. The next slide, all right cool. So following end-to-end principle, we're proposing an L7 protocol to help achieve trustworthy. Web services called the testable HTTP or attack or httpa. Each GPA is simply an HTTP extension for binding remote adaptation messages to http headers and it establishes trusted communication for web services, running Insider trusted execution, environment or tea or tea.

Y

T is considered an emerging Computing resource for web services. However, httpa is not specific to T endpoint by extending HTTP we're proposing a fundamental method called HTTP test and that set of ADD test header line for standardization.

Y

This can not only be used for unilateral agpa, but also Mutual to uh for um for Mutual agpa to build L7 trusted end-to-end communication next slide. Please.

Y

All right- and here is some background about the agpa. We have Market demands for trustworthy web services, however, and web services are mostly not tested, also notice that we are sailing into the new era, not just protecting data in transit or storage, but also protecting data in use.

Y

In addition, a great example is T, which is an emerging technology that protects data in use, and it is a reasonable endpoint for HTTP message, exchanges t as an emerging resource for web application to leverage, and there is a need for unifying remote annotation using te for Hep protocol and next slide. Please.

Y

And here's a quick comparison between a GPS and a GPA, although both of them provide end-to-end security, they have different granularity levels for defining an endpoint.

Y

Https needs CA certificate authority to build trust with the website and also note that it is most likely the website Gateway, not the web service itself and httpa works with trusted authority to build trust with the web service run inside the team directly users can authenticate the.

S

Identity.

Y

Of the web service to build trust by remote adaptation, remote adaptation is the key method. We propose to verify a sort of all sort.

B

Of identity of.

Y

Software or hardware for finer, granularity, Authentication, httpa workflow, includes four major transactions, including PreFlight transaction, a test, hidden shape transaction, a test secret, provisioning transaction and the trustage communication. Transaction and httpa can stand alone to build its own secure communication.

Y

We call this secure communication on the attested Node trusted communication for some strong T users can only trust the web service itself, even without the need to trust the CSP to use the web service for their sensitive data, even though the middle box at the middle point in between such as an application, Gateway, is compromised due to something like TLS termination or maybe something else. The information is still protected and because the protect information can only be decrypted inside the teeth.

Y

If you want to encrypt every bit of the message, you can also use hcbba over TOs. However. Httpa doesn't rely until as to build secure communication with httpa users can regain the right to verify security, assurances inside the hardware and software and the freedom to choose, who or right to trust or and, most importantly, to regain the control on their own data.

Y

Okay,.

B

Yeah, we just have a question in the queue hi.

H

Eric Escuela, um so just to look at this diagram, there's still a little puzzled by something how much of the web server is running in the T. All of it.

Y

Oh, that's a good question, so in this use case we simply demonstrate one but uh I think you are asking the scalability. That is another uh implementation details here, but this in this case is one.

H

No sorry, that's right. um What I'm asking is is the web server? Is the entire web server running in the T or is only a tiny bit of the web server writing of the T.

Y

Oh so it could be either one depends on how you design the web service. Let's go.

H

Okay,.

B

um We have someone else in the queue as a clarifying question.

Z

um Sort of.

B

I would recommend if it's not a clarifying question, we wait there.

Z

It's a clarifying question in the form of I want to understand how this works. Okay, um so hi Alex, surehowsky I mostly was curious. What why we are doing this rather than doing a testable TLS. So, like my mental model, for how normally you use these things is that you perform a remote attestation using your credentials to some sort of maybe centralized service in order to get an unlock key for a certificate, and then you could use our certificate for mtls or maybe an oauth assertion or something else which would let you centralize.

Z

The number of services would have to be worried about the attestation, and then you could sort of use more existing Primitives that we have today in terms of the existing authentication Frameworks. In order to have you know, presented a delegated Trust of you know something already verified this assertion that you're talking to something trusted and I'm sort of wondering what we get as a benefit.

Z

By going and putting this at the HTTP layer, because now it seems that every service needs to be aware of the attestation and I'm, not sure I, see the benefit or like how this would be used in the wild.

Y

Yeah, so so they so that, so the key motivation is to build the trust inside the T. um So we don't want to trust any things outside of T. So they'll hope that the group decryption all the process can happen inside the T and the best way to do that is to um implement this at the high level, like L7 level, um for the protocol, rather than need to trust something else that where the decryption happens outside the T and I think basically, that's the intuition.

Z

No I don't think it does, because you could simply implement the TLs Mutual authentication inside the T.

Y

uh Yes, you could and, however, in that sense, you have to um Implement all those tall things inside the uh probably the application Gateway. However, if you do that to your uh some application web services behind in the back end um and.

N

Then.

Y

That would be hard to realize in the modern in Cloud infrastructure, because it would be hard to uh to have the application Tail as tunneling directly back into the into the web service.

Z

Sorry, so to restate what I think you said, your goal is to be able to have an untrusted Gateway which sees the requests that passes them to a back end, which could be a t which goes and does the verification yeah.

Y

And.

Z

You don't want to do something like you know, sni-based routing or anything else,.

Y

Those routing can happen that that's fine, because we hdba does not prohibit that from happening. That's true can happen, but what we care about is the sensitive information inside the HTTP message which don't want to protect it, make sure the confidentiality or the Integrity of the message is protected.

Y

Okay,.

O

So so.

Y

The unchastic Gateway can still operate on the things thanks.

B

um Dave Taylor You've joined the queue okay, we just have one more slide. So if you want to go just to your last slide hands and then we can start the queue properly.

Y

Yeah, so here we're just thinking about uh where do we go for this work and I hope that we have a protocol application Level protocol to allow people to use uh T resources in the future for their application? That's it.

B

Okay, thank you. Dave.

C

Dave Taylor, um among other things, chair of the teeth working group, which is on the slide and also currently the technical advisory Council chair in the confidential Computing instruction that deals with tees um I've, seen at least five different proposals in uh CCC meetings around people doing a tested TLS. So this is following up on Alex, who said a bunch of what I was going to say um at least five five different proposals for doing it.

C

I think all of them were doing HTTP over the top of it, and so they were basically doing what Alex was saying. Five different ways and the feedback was get some unification and then take the drafts and bring them to iitf and so I think some of those drafts will be mentioned in the rats working group.

C

uh Steve working groups here, I, would say: I, don't think tip is the right place, because that's for provisioning, as opposed to the actual communication here, um uh attested fill in the blank rats, is a good working group to review it. Rats by itself does not do protocols under the current Charter. What it does is it can just like. You know the DHC working group does not do all possible DHCP options. Other groups can right so they would review stuff, but it wouldn't necessarily be there.

C

That is the best home to take the discussion to right now. So yes, for for taking it there, they might say do it in a different working group um or maybe TLS or whatever, but as far as putting stuff in the tee uh to what Alex is saying, I've seen a bunch of people actually using stuff in deployment right now. The way that Alex was saying with HTTP over the top of a tested TLS. So thanks.

B

Okay, Martin Thompson.

I

uh This item is on the agenda for SEC dispatch later this week. It was on this agenda for five minutes. We've already blown well past that one I suggest we take this discussion to that other meeting where we have a group that is much better suited to answer the questions.

B

Okay, we are running early on the agenda, so I'm less concerned about the time, but note your point that this is being presented later in the week, which is the point of having it here to make sure everyone's aware. Okay, um sorry I, don't yeah you're at the queue go.

AA

For it so hi this is Hank. um Despite what they've said, the Reds working group may do protocols if it's not feasible, to use existing protocols.

AA

So then that's okay, um which would for me initiatively, say Go to http. Definitely, first and if you have had a stable, remote accession questions, then real Reds in but but the HTTP part should be the first gateway function. I guess yeah! That's all.

B

Okay, thank you, there's no one else in the queue so we'll just say. Thank you very much Hans for presenting this. As we said, it is on the agenda for sex dispatch and https. It was presented here just to share and make sure more people are aware of it. So that is the end of everything we've run through in dispatch before you run off and enjoy some coffee um just to say thank you to our presenters, each and every one of you and your input from the community.

B

That's what makes dispatch dispatch I'd also like to thank the co-chair, who is not here in person but has been doing a stellar job behind the scenes. So thanks to shipping and finally, thanks to Murray our area director, who has done a stellar job in covering Francesca's maternity leave. So thanks everyone for your participation today and enjoy the rest of ITF any speakers. If you want to come up and chat to me after about next steps, I'm very happy to do so enjoy the rest of ITF.

F

Okay, thank you. Christy.

A

How.

N

Are you.

A

um

A

Foreign.

A

Foreign.