IETF
DNSSD
dnssd@jabber.ietf.org
Thursday, March 22, 2018< ^ >
DavidSchinazi has set the subject to: DNSSD WG at IETF 101
Room Configuration
Room Occupants

GMT+0
[09:00:43] DavidSchinazi joins the room
[09:07:19] DavidSchinazi leaves the room: Stream reset by peer
[09:11:25] Yoshiro Yoneya joins the room
[09:16:48] DavidSchinazi joins the room
[09:16:48] DavidSchinazi leaves the room: Stream reset by peer
[09:17:37] meetecho joins the room
[09:17:47] DavidSchinazi joins the room
[09:18:54] WtdnUKuv joins the room
[09:25:11] Kerry Lynn joins the room
[09:25:56] Daniel Kaiser joins the room
[09:27:24] Mikael Abrahamsson joins the room
[09:32:56] sandoche@xmpp.jp joins the room
[09:34:04] <Mikael Abrahamsson> I'm jabber scribe, if you want something relayed to mic, please include "(to mic)" in your message.
[09:35:32] Jason Polis joins the room
[09:37:08] Katharine Daly joins the room
[09:45:58] Narayanaswamy Baluswamy joins the room
[09:47:07] Narayanaswamy Baluswamy leaves the room
[09:47:24] Mark ANDREWS joins the room
[09:50:39] <Mikael Abrahamsson> Tom Pusateri at mic
[09:57:27] <Mikael Abrahamsson> Stuart Cheshire at mic
[09:59:51] <Mikael Abrahamsson> Mikael Abrahamsson at mic
[10:01:54] Tomek Mrugalski joins the room
[10:03:27] Katharine Daly leaves the room
[10:06:45] Barbara Stark joins the room
[10:08:54] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:12:24] <Mikael Abrahamsson> Mikael Abrahamsson at mic
[10:13:43] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:15:06] <Mikael Abrahamsson> Terry Manderson at mic
[10:16:33] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:16:45] <Mikael Abrahamsson> Tom Pusateri at mic
[10:18:03] Daniel Kaiser leaves the room
[10:18:19] <Mikael Abrahamsson> Ted Lemon at mic
[10:18:48] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:19:22] ajs joins the room
[10:23:19] <DavidSchinazi> Kerry if you could join the queue to present?
[10:23:25] <Kerry Lynn> Can you guys hear me?
[10:23:35] <Kerry Lynn> How do I join the queue?
[10:23:39] <Barbara Stark> No we can't hear you
[10:24:03] <Mikael Abrahamsson> there is a self test, perhaps we can do another presentation and Kerry can do the self-test?
[10:24:05] David Schinazi joins the room
[10:24:15] <Mikael Abrahamsson> now we can hear you
[10:25:57] David Schinazi leaves the room
[10:27:23] Daniel Kaiser joins the room
[10:37:36] <Mikael Abrahamsson> Dave Thaler at mic
[10:40:04] <Mikael Abrahamsson> Ted Lemon at mic
[10:41:26] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:41:38] <Mikael Abrahamsson> Christian Amsuss at mic
[10:43:03] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:44:35] Suzanne joins the room
[10:45:00] <Mikael Abrahamsson> Christian Amsuss at mic
[10:45:59] <Mikael Abrahamsson> Barbara Stark at mic
[10:47:17] Mikael Abrahamsson leaves the room
[10:47:18] Mikael Abrahamsson joins the room
[10:47:45] DavidSchinazi leaves the room: Connection failed: connection closed
[10:51:47] David Schinazi joins the room
[10:52:30] <David Schinazi> We're starting the privacy discussion
[10:53:36] <Kerry Lynn> Is the client exposing its identity, or its IP address?
[10:54:00] <Mikael Abrahamsson> Stuart Cheshire at mic
[10:54:01] <Daniel Kaiser> Its hostname
[10:54:42] <Daniel Kaiser> And the service names and types as well.
[10:54:55] DavidSchinazi joins the room
[10:55:48] <Kerry Lynn> The client's hostname goes in the DNS query?
[10:56:33] <Kerry Lynn> I can see that all that info about the _service+ is exposed...
[10:57:00] <Daniel Kaiser> Typically, devices offer an A resource reocrd with their DNS-SD/mDNS hostnames.
[10:57:36] <Kerry Lynn> Oh, I think you're talking about unintentional advertising...
[10:58:24] <Daniel Kaiser> The SRV record also contains the hostname of the offering device.
[11:00:20] <Kerry Lynn> Yes, of the public printer in his example.  I'm trying to understand his comment that the identity of the _client_ is exposed.
[11:01:28] <Daniel Kaiser> The client will typically advertise its A resource record when it joins the network.
[11:01:47] <Kerry Lynn> "Doctor, it hurts when I do this."
[11:03:51] <David Schinazi> @Kerry the client will not necessarily leak its identity if it's not advertising services, but it does leak the fact that it is interested in printing
[11:06:41] <Kerry Lynn> So you expose your IP address.  The problem comes in if your IP can be tied back to a personal identity (e.g. part of your address is a MAC ID).  6MAN is working on privacy addresses.
[11:07:43] <Kerry Lynn> It also seems that VPN could be useful, though I'm not clear on whether to assume your adversary is also in the VPN.
[11:09:28] <Daniel Kaiser> But the client might offer its A resource record and services in the same network, which would allow linking.
[11:12:33] <Daniel Kaiser> In which way could VPN be useful?
[11:13:27] ajs leaves the room
[11:15:12] <Mikael Abrahamsson> Dave Thaler at mic
[11:15:28] <Daniel Kaiser> yes
[11:15:58] <Kerry Lynn> In the shared secret case, it seems that the set of servers and "approved" clients could be on teh same VPN
[11:16:57] <Daniel Kaiser> OK, in the case that some kind of approving method is available.
[11:17:28] <Kerry Lynn> Well, you have the ask the barista for the WiFi key...
[11:17:40] Witold Krecicki joins the room
[11:17:52] <Daniel Kaiser> That would include the adversary as well.
[11:17:56] <Daniel Kaiser> most likely
[11:18:05] Witold Krecicki leaves the room
[11:18:07] Witold Krecicki joins the room
[11:18:24] <Daniel Kaiser> This is the case of a secret shared among all clients
[11:19:28] <Mikael Abrahamsson> Chris Wood at mic
[11:19:32] Witold Krecicki leaves the room
[11:21:08] ajs joins the room
[11:21:10] <Mikael Abrahamsson> Stuart Cheshire at mic
[11:23:32] ajs leaves the room
[11:23:39] <Mikael Abrahamsson> Christian Huitema at mic
[11:24:30] <Mikael Abrahamsson> Chris Wood at mic
[11:25:47] <Daniel Kaiser> Regarding the second question: I addressed that problem before, but it would interfere with the configurationless property. However, it would be nice to have the possibilty of configuring this while having sensible defaults.
[11:25:59] <Daniel Kaiser> @Kerry Lynn
[11:26:06] <Mikael Abrahamsson> Dave Thaler at mic
[11:28:54] <Mikael Abrahamsson> Chris Wood at mic
[11:29:51] <Mikael Abrahamsson> Christian Huitema at mic
[11:31:26] dthaler joins the room
[11:31:51] <dthaler> One of the places my 2 slides are is in the T2TRG deck at https://www.ietf.org/proceedings/99/slides/slides-99-t2trg-chair-slides-00.pdf slides 17-18.
[11:32:23] <Mikael Abrahamsson> Stuart Cheshire at mic
[11:33:28] Jason Polis leaves the room
[11:33:49] <Mikael Abrahamsson> Tom Pusateri at mic
[11:34:39] <Mikael Abrahamsson> Mikael Abrahamsson at mic
[11:35:42] <Mikael Abrahamsson> Dave Robin at mic
[11:38:49] <Mikael Abrahamsson> Stuart Cheshire at mic
[11:40:28] Tomek Mrugalski leaves the room
[11:40:42] <Daniel Kaiser> to mic: Should a medical device really join a public WiFi network for communcating with, e.g., a phone?
[11:41:59] <Mikael Abrahamsson> Christian Huitema at mic
[11:42:53] <Kerry Lynn> Most likely talking over BT
[11:42:54] <Mikael Abrahamsson> Stuart Cheshire at mic
[11:43:05] Christian Amsüss joins the room
[11:43:16] <Daniel Kaiser> thank you :)
[11:43:26] <Christian Amsüss> meetech: might it make sense to pivot the camera to the queue?
[11:43:42] <Christian Amsüss> meetecho: ^ (in case my typo didn't get you pinged)
[11:44:05] <meetecho> Done!
[11:44:08] <Christian Amsüss> thx
[11:45:00] <Mikael Abrahamsson> Christian Huitema at mic
[11:45:54] <Mikael Abrahamsson> kerry: I read somewhere that there is wifi functionality as well now to communicate p2p without joining an SSID.
[11:46:11] <Kerry Lynn> A discovery proxy seems the only way to implement private discovery with legacy/low-cost servers (e.g. printers)
[11:46:49] <Daniel Kaiser> @Mikael Abrahamsson Could you link that work on the list?
[11:47:08] <Mikael Abrahamsson> http://ieeexplore.ieee.org/document/6549288/
[11:47:22] <Mikael Abrahamsson> I don't know if this is the correct one though
[11:47:28] <Daniel Kaiser> thank you :)!
[11:48:25] mellon joins the room
[11:48:32] <Mikael Abrahamsson> daniel: this is why Apple airdrop requires both BT and wifi to be enabled. It uses both (from my understanding)
[11:48:32] <Kerry Lynn> Unlikely that WiFi would be employed in a battery powered device
[11:49:18] Tomek Mrugalski joins the room
[11:49:27] <Mikael Abrahamsson> kerry: you mean like a mobile phone? :) You probably mean a low power sensor type device? I have read that 802.11 is working on that as well, so might not be too far off for some types of devices.
[11:49:49] <Mikael Abrahamsson> Normen Kowalewski at mic
[11:49:55] Edward Lemon joins the room
[11:51:08] <Mikael Abrahamsson> Christian Huitema at mic
[11:51:17] <Kerry Lynn> Yes, I mean for small FitBit type devices.  And low-power WiFi has been six months away for about the last ten years...
[11:52:43] <Kerry Lynn> Thx @Mikael for your scribing :)
[11:52:49] <Mikael Abrahamsson> np!
[11:52:53] Tomek Mrugalski leaves the room
[11:53:17] <Daniel Kaiser> Yes. Thank you :)
[11:53:32] mellon leaves the room
[11:53:58] Tomek Mrugalski joins the room
[11:54:23] Edward Lemon leaves the room
[11:55:35] Barbara Stark leaves the room
[11:56:23] Kerry Lynn leaves the room
[11:56:49] meetecho leaves the room
[11:56:59] Mark ANDREWS leaves the room
[11:56:59] Daniel Kaiser leaves the room
[11:56:59] Christian Amsüss leaves the room
[11:56:59] Tomek Mrugalski leaves the room
[11:56:59] David Schinazi leaves the room
[11:56:59] Mikael Abrahamsson leaves the room
[11:57:54] DavidSchinazi leaves the room: Stream reset by peer
[12:02:44] Suzanne leaves the room
[12:04:04] Yoshiro Yoneya leaves the room
[12:09:44] dthaler leaves the room
[12:17:04] Suzanne joins the room
[12:24:54] dthaler joins the room
[12:43:46] dthaler leaves the room
[13:09:14] Suzanne leaves the room
[13:28:49] dthaler joins the room
[13:34:18] Suzanne joins the room
[13:34:23] Suzanne leaves the room
[13:38:52] DavidSchinazi joins the room
[13:39:55] mellon joins the room
[13:55:03] mellon leaves the room
[13:58:12] dthaler is now known as Dave Thaler
[14:08:35] mellon joins the room
[14:49:17] mellon leaves the room
[14:52:26] DavidSchinazi leaves the room: Connection failed: connection closed
[14:53:58] DavidSchinazi joins the room
[15:12:31] DavidSchinazi leaves the room: Stream reset by peer
[15:42:38] Dave Thaler leaves the room
[15:52:49] DavidSchinazi joins the room
[16:11:45] DavidSchinazi leaves the room