IAB Workshop on Managing Radio Networks in an Encrypted World (MaRNEW) Report
GSMA
nrooney@gsma.com
https://gsma.com
Wonder Hamster
spencerdawkins.ietf@gmail.com
Networks
The MarNEW workshop aimed to discuss solutions for bandwidth optimisation on mobile networks for encrypted content, as current solutions rely on unencrypted content which is not indicative of the security needs of today’s Internet users. The workshop gathered IETF attendees, IAB members and various organisations involved in the telecommunications industry including original equipment manufacturers and mobile network operators.
The group discussed the current Internet encryption trends and deployment issues identified within the IETF, and the privacy needs of users which should be adhered. Solutions designed around sharing data from the network to the endpoints and vice versa were then discussed as well as analysing whether the current issues experienced on the transport layer are also playing a role here. Content providers and CDNs gave an honest view of their experiences delivery content with mobile network operators. Finally, technical responses to regulation was discussed to help the regulated industries relay the issues of impossible to implement or bad-for-privacy technologies back to regulators.
A group of suggested solutions were devised which will be discussed in various IETF groups moving forward.
Mobile networks have a set of requirements and properties which places a large emphasis on sophisticated bandwidth optimization. Encryption is increasing on the Internet which is positive for consumer and business privacy and security. Many existing mobile bandwidth optimization solutions primarily operate on non-encrypted communications; this can lead to performance issues being amplified on mobile networks. Encryption on networks will continue to increase; and with this understanding the workshop aimed to understand how we can solve the issues of bandwidth optimization and performance on radio networks in this encrypted world.
For the purposes of this workshop, bandwidth optimization encompasses a variety of technical topics related to traffic engineering, prioritisation, optimisation, efficiency enhancements, as well as user-related topics such as specific subscription or billing models. These can include:
Caching
Prioritisation of interactive traffic over background traffic
Per-user bandwidth limit
Business-related topics such as content delivery arrangements with specific content providers.
Many of these functions can continue as they’re performed today, even with more encryption. Others are using methods which inspect parts of the communication that are encrypted, and these will have to be done differently in an encrypted Internet.
Finally, while not strictly speaking traffic management, some networks employ policy-based filtering (e.g., requested parental controls) and many networks support some form of legal interception functionality per applicable laws.
The workshop aimed to answer questions including:
Understanding the bandwidth optimization use cases particular to radio networks
Understanding existing approaches and how these do not work with encrypted traffic
Understanding reasons why the Internet has not standardised support for lawful intercept and why mobile networks have
Determining how to match traffic types with bandwidth optimization methods
Discussing minimal information to be shared to manage networks but ensure user security and privacy
Developing new bandwidth optimization techniques and protocols within these new constraints
Discussing the appropriate network layer(s) for each management function
Cooperative methods of bandwidth optimization and issues associated with these
The further aim was to gather architectural and engineering guidance on future work in the bandwidth optimisation area based on the discussions around the proposed approaches. The workshop also explored possible areas for standardization, e.g. new protocols that can aid bandwidth optimization whilst ensuring user security inline with new work in the transport layer.
This workshop report summarizes the contributions to and discussions at the workshop, organized by topic. The workshop began with scene setting topics which covered the issues around deploying encryption, the increased need for privacy on the Internet and setting a clear understanding that ciphertext should remain unbroken. Later sessions focused on key solution areas; these included evolution on the transport layer and sending data up or down the path. A session on application layers and CDNs aimed to highlight both issues and solutions experienced on the application layer. The workshop ended with a session dedicated to technical response to regulation with regards to encryption. The contributing documents were split between identifying the issues experienced with encryption on radio networks and suggested solutions. Of the solutions suggested some focused on transport evolution, some on trusted middleboxes and others on collaborative data exchange. Solutions were discussed within the sessions. All accepted position papers and detailed transcripts of discussion are available at .
The outcomes of the workshop are discussed in Section 7 and 8, and discuss progress after the workshop toward each of the identified work items as of the time of publication of this report.
Report readers should be reminded that this workshop did not aim to discuss regulation or legislation, although policy topics were mentioned in discussions from time to time.
The workshop was conducted under the IETF with the exception of the “Technical Analysis and Response to Potential Regulatory Reaction” session which was conducted under .
The IETF and GSMA have divergent working practices, standards and processes. IETF is an open organisation with community driven standards with the key aim of functionality and security for the Internet’s users, the GSMA is membership based and serves the needs of its membership base most of whom are mobile network operators.
Unlike IETF, GSMA makes few standards. Within the telecommunications industry standards are set in various divergent groups depending on their purpose. Perhaps of most relevance to the bandwidth optimisation topic here is the work of the which work on radio network and core network standards with their members which include mobile operators and original equipment manufacturers.
One of the standards relevant to this workshop is PCC-QoS . Traditionally mobile networks have managed different applications and services based on the resources available and priorities given; for instance, emergency services have a top priority, data has a lower priority and voice services are somewhere in-between. defined the PCC-QoS mechanism to support this functionality, and this depends on unencrypted communications .
Scene setting sessions aimed to bring all attendees up to a basic understanding of the problem and the scope of the workshop. There were three scene setting sessions: Scene Setting (defining scope), Encryption Deployment Considerations and Trust Models and User Choice (Privacy).
The telecommunications industry and Internet standards community are extremely different in terms of ethos and practices. Both groups drive technical standards in their domain and build technical solutions with some policy-driven use cases. These technologies, use cases and technical implementations are different; not only this but motivators between the two industries are also diverse.
To ensure all attendees were aligned with contributing to discussions and driving solutions this “Scene Setting” session worked on generating a clear scope with all attendees involved. In short: it was agreed that ciphertext encrypted by one party and intended to be decrypted by a second party should not be decrypted by a third party in any solution, that the radio access network (RAN) is different and does experience issues with increased encrypted traffic, that we need to understand what those problems are precisely and that our goal is to improve user experience on the Internet. Proposing new technical solutions based on presumed future regulation was not in scope. The full scope is given below.
The attendees identified and agreed the following scope:
In discussion we should assume: No broken crypto, Ciphertext increasingly common, congestion does need to be controlled as do other transport issues and Network management including efficient use of resources, in RAN and elsewhere, has to work
How/why is RAN different for transport; help us understand the complexities of the RAN and how hard it is to manage and why those matter
What are the precise problems caused by more ciphertext
Identify players, incl. Users, and resulting tensions and how ciphertext changes those
Some solutions will be radically changed by ciphertext, it’s ok to talk about that
As good as possible Quality of experience for end user is a goal
Our aim for the next two days is to analyse the situation and identify specific achievable tasks that could be tackled in the IETF or GSMA (or elsewhere?) and that improve the Internet given the assumptions above
We should not delve into:
Ways of doing interception (legal or not), see for why
Unpredictable political actions.
Attendees were shown that encrypted content is reaching around 50% according to recent statistics and . The IAB are encouraging all IETF groups to consider encryption by default on their new protocol work and the IETF are also working on encryption on lower layers, for example TCP encryption within the Working Group. The aims of these items of work are greater security and privacy for users and their data.
Telecommunications networks often contain middleboxes that operators have previously considered to be trusted; but qualifying trust is difficult and should not be assumed. Some interesting use cases exist with these middleboxes; such as anti-spam and malware detection, but these need to be balanced against their ability to open up cracks in the network for attacks such as pervasive monitoring.
When operators increase the number of radio access network cells (“Base Stations”), this can improve the radio access network quality of service , but also adds to radio pollution. This is one example of the balancing act required when devising radio access network architecture.
Encryption across the Internet is on the rise. However, some organisations and individuals come across a common set of operational issues when deploying encryption, mainly driven by commercial perspectives. The draft explains these network management function impacts, detailing areas around incident monitoring, access control management, and regulation on mobile networks. The data was collected from various Internet players, including system and network administrators across enterprise, governmental organisations and personal use. The aim of the document is to gain an understanding of what is needed for technical solutions to these issues, maintaining security and privacy for users. Attendees commented that worthwhile additions would be: different business environments (e.g. cloud environments) and service chaining. Incident monitoring in particular was noted as a difficult issue to solve given the use of URL in today’s incident monitoring middleware.
Some of these impacts to mobile networks can be resolved using difference methods and the draft details these methods. The draft focuses heavily on methods to manage network traffic without breaching user privacy and security.
By reviewing encryption depoyment issues and the alternative methods of network management MaRNEW attendees were made aware of the issues which affect radio networks, the deployment issues which are solvable and require no further action, and those which aren’t currently solveable and which should be addressed within the workshop.
Some solutions intended to improve delivery of encrypted content could affect some or all of the privacy benefits that encryption provides. Understanding user needs and desires for privacy is therefore important when designing these solutions.
From a recent study 64% of users said concerns over privacy have increased, 67% of mobile Internet users would like to do more to protect their privacy. The W3C and IETF have both responded to user desires for better privacy by recommending encryption for new protocols and web technologies. Within the W3C new security standards are emerging and the design principles for HTML hold that users are the stakeholders with most priority, followed by implementors and other stakeholders, further enforcing the “user first” principle. Users also have certain security expectations from particular contexts, and sometimes use new technologies to further protect their privacy even if those technologies weren’t initially developed for that purpose.
Operators may deploy technologies which can impact user privacy without being aware of those privacy implications or incorrectly assume that the benefits users gain from the new technology outweigh the loss of privacy. If these technologies are necessary they should be opt-in.
Internet stakeholders should understand the priority of other stakeholders. Users should be considered the first priority, other stakeholders include implementors, developers, advertisers, operators and other ISPs. Some technologies have been absued by these parties, such as cookie use or JavaScript injection. This has caused some developers to encrypt content to circumvent these technologies which they find intrusive or bad for their users privacy.
If users and content providers are to opt-in to user network management services with negative privacy impacts they should see clear value from using these services, and understand the impacts on clear interfaces. Users should also have easy abilities to opt-out. Some users will always automatically click through consent requests, so any model relying on explicit consent is flawed for these users. Understanding the extent of “auto click through” may help make better decisions for consent requests in the future. One model (Cooperative Traffic Management) works as an agent of the user; by opting-in metadata can be shared. Issues with this involve trust only being applied at endpoints.
Network or Transport Solution Sessions aimed to discuss suggested and new solutions for managing encrypted traffic on radio access networks. Most solutions focus on the sharing of metadata; either from the endpoint to the network, from the network to the endpoint, or cooperative sharing between both. Evolutions on the transport layer could be another approach to solve some of the issues radio access networks erience which cause them to require network management middleboxes. By removing problems at the transport layer, reliance on expensive middleboxes could decrease.
Collaboration between network elements and endpoints could bring about better content distribution. A number of suggestions were given, these included:
Mobile Throughput Guidance : exchanges data between the network elements and the endpoints via TCP Options. It also allows for gaining a better idea of how the transport protocol behaves and improving user experience further, although the work still needs to evolve.
SPUD : a UDP-based encapsulation protocol to allow explicit cooperation with middleboxes while using new, encrypted transport protocols.
Network Status API: An API for operators to share congestion status or the state of a cell before an application starts sending data could allow applications to change their behaviour.
Traffic classification: classifying traffic and adding this as metadata for analysis throughout the network. This idea has trust and privacy implications.
ConEx : a mechanism where senders inform the network about the congestion encountered by previous packets on the same flow, in-band at the IP layer.
Latency versus Bandwidth: allowing the content provider to indicate whether a better bandwidth or lower latency is of greater priority and allowing the network to react. Where this bit resides and how to authenticate it would need to be decided.
No network management tools: disabling all network management tools from the network and allow the protocols to manage congestion alone.
FlowQueue Codel : a hybrid packet scheduler/AQM algorithm, aiming to reduce bufferbloat and latency. FQ-CoDel mixes packets from multiple flows and reduces the impact of head of line blocking from bursty traffic.
Some of these suggestions rely on signaling from network elements to endpoint.
Others aim to create “hop-to-hop” solutions, which could be more inline with how congestion is managed today, but with greater privacy implications.
Still others rely on signaling from endpoints to network elements. Some of these rely on implicit signaling, and others on explicit signaling. Some workshop attendees agreed that applications explicitly declaring what quality of service they require was not a good route, given the lack of success with this model in the past.
One of the larger issues in the sharing of data is the matter of competition; network operators are reluctant to relinquish data about their own networks because it can competitive information, and application providers wish to protect their users and reveal as little information as possible to the network. Some people think that if middleboxes were authenticated and invoked explicitly, this would be an improvement over current transparent middleboxes that intercept traffic without endpoint consent. Some workshop attendees suggested any exchange of information should be bidirectional, in an effort to improve cooperation between the elements. A robust incentive framework could provide a solution to these issues, or at least help mitigate them.
The radio access network is complex because it must deal with a number of conflicting demands. Base stations reflect this environment, and information within these base stations can be of value to other entities on the path. Some workshop participants thought solutions for managing congestion on radio networks should involve the base station if possible. For instance, understanding how the Radio Resource Controller and AQM interact (or don’t interact) could provide valuable information for solving issues. Although many workshop attendees agreed that even though there is a need to understand the base station not all agreed that the base station should be part of a future solution.
Some suggested solutions were based on network categorisation and providing this information to the protocols or endpoints. Categorising radio networks could be impossible due to their complexity, but categorising essential network properties could be possible and valuable.
TCP has been the dominant transport protocol since TCP/IP replaced NCP on the Arpanet in March 1983. TCP was originally devised to work on a specific network model that did not anticipate the high error rates and highly variable available bandwidth scenarios experienced on modern radio access networks. Furthermore new network elements have been introduced (NATs and network devices with large buffers creating bufferbloat), and considerable peer-to-peer traffic is competing with traditional client-server traffic. Consequently the transport layer today has requirements beyond what TCP was designed to meet. TCP has other issues as well; too many services rely on TCP and only TCP, blocking deployment of new transport protocols like SCTP and DCCP. This means that true innovation on the transport layer becomes difficult because deployment issues are more complicated than just building a new protocol.
The IETF is trying to solve these issues through the “Stack Evolution” programme, and the first step in this programme is to collect data. Network and content providers can provide data including: the cost of encryption, the advantages of network management tools, the deployment of protocols, and the effects when network management tools are disabled. Network operators do not tend to reveal network information mostly for competition reasons and so is unlikely to donate this information freely to IETF. The GSMA is in a position to try to collect this data and anonymise it before bringing it to IETF which should alleviate the network operator worries but still provide IETF with some usable data.
A considerable amount of work has already been done on TCP, especially innovation in bandwidth management and congestion control; although congestion is usually detected by detecting loss, and better methods based on detecting congestion would be beneficial.
Furthermore, although the deficiencies of TCP are often considered as key issues in the evolution of the stack, the main route to resolve these issues may not be a new TCP, but an evolved stack. Some workshop participants thought SPUD and ICN are two suggestions which may help here. QUIC engineers stated that the problems solved by QUIC are general problems, rather than TCP issues. This view was not shared by all attendees of the workshop. Moreover, TCP has had some improvements in the last few years which may mean some of the network lower layers should be investigated to see whether improvements can be made here.
Many discussions on the effects of encrypted traffic on radio access networks happen between implementers and the network operators; this session aimed to gather the opinions of the content and caching providers including their experiences running over mobile networks, the experience their users expect, and what they would like to achieve by working with or using the mobile network.
Content providers explained how even though this workshop cited encrypted data over radio access networks as the main issue the real issue is network management generally, and all actors (applications providers, networks and devices) need to work together to overcome these general network management issues. Content providers explained how they assume the mobile networks are standard compliant. When the network is not standards compliant (e.g. using non-standards-compliant intermediaries) content providers can experience real costs as users contact their support centres to report issues which are difficult to test for and build upon.
Content providers cited other common issues concerning data traffic over mobile networks. Data caps cause issues for users; users are confused about how data caps work or are unsure how expensive media is and how much data it consumes. Developers build products on networks not indicative of the networks their customers are using and not every organisation has the finances to build a caching infrastructure.
Strongly related to content providers, Content owners consider CDNs to be trusted deliverers of content and CDNs have shown great success in fixed networks. Now traffic is moving more to mobile networks there is a need to place caches at the edge of the mobile network, near the users. Placing caches at the edge of the mobile network is a solution, but requires standards developed by content providers and mobile network operators. The CNDi Working Group at IETF aims to allow global CDNs to interoperate with mobile CDNs; but this causes huge issues for the caching of encrypted data between these CDNs. Some CDNs are experimenting with approaches like “Keyless SSL” to enable safer storage of content without passing private keys to the CDN. Blind Caching is another proposal aimed at caching encrypted content closer to the user and managing the authentication at the original content provider servers.
At the end of the session the panelists were asked to identify one key collaborative work item, these were: evolving caching to cache encrypted content, using one-bit for latency / bandwidth trade-off (explained below), better collaboration between the network and application, better metrics to aid bug solving and innovation, and indications from the network to allow the application to adapt.
This session was conducted under Chatham House Rule. The session aimed to discuss regulatory and political issues; but not their worth or need, rather to understand the laws that exist and how technologists can properly respond to these.
Mobile networks are regulated, compliance is mandatory (and non-compliance can result in service license revocation in some nations round the world) and can incur costs on the mobile network operator. Regulation does vary geographically. Some regulations are court orders, others are self-imposed regulations, for example, “block lists” of websites such as the Internet Watch Foundation list . Operators are not expected to decrypt sites, so those identified sites which are encrypted will not be blocked.
Parental control-type filters also exist on the network and are easily bypassed today, vastly limiting their effectiveness. Better solutions would allow for users to easily set these restrictions themselves. Other regulations are also hard to meet - such as user data patterns, or will become harder to collect - such as IoT cases. Most attendees agreed that if a government cannot get information it needs and is legally entitled to have from network operators they will approach content providers. Some governments are aware of the impact of encryption and are working with or trying to work with content providers. The IAB have concluded blocking and filtering can be done at the endpoint of the communication.
Not all of these regulations apply to the Internet, and the Internet community is not always aware of their existence. Collectively the Internet community can work with GSMA and 3GPP and act collectively to alleviate the risk imposed by encrypted traffic. Some participants expressed the concern that governments might require operators to provide information that they no longer have the ability to provide, because traffic has been encrypted, and this might expose operators to new liability, but no specific examples were given during the workshop. A suggestion from some attendees was that if any new technical solutions are necessary, they should have the ability to be easily switched off.
Some mobile network operators are producing transparency reports covering regulations including lawful intercept. Operators who have done this already are encouraging others to do the same.
Based on the talks and discussions throughout the workshop a set of suggested principles and solutions has been collected. This is not an exhaustive list, and no attempt was made to come to consensus during the workshop, so there are likely participants who would not agree with any particular principle listed below.
Encrypted Traffic: any solution should encourage and support encrypted traffic.
Flexibility: radio access network qualities vary vastly and different network needs in content can be identified, so any new solution should be flexible to either the network type or content type or both.
Privacy: new solutions should not introduce ways where information can be discovered flows and attribute them to users.
Minimum data only for collaborative work: user data, app data and network data all needs protecting, so new solutions should use the minimum information to make a working solution.
A collection of solutions suggested by various participants during the workshop is given below. Inclusion in this list does not imply that other workshop participants agreed.
Evolving TCP or evolution on the transport layer: this could take a number of forms and some of this work is already existing within IETF. Other suggestions include:
Congestion Control: many attendees cited congestion control as a key issue, further analysis, investigation and work could be done here.
SPROUT: research at MIT which is a transport protocol for interactive applications that desire high throughput and low delay.
PCC: Performance-oriented Congestion Control: is a new architecture that aims for consistent high performance even in challenging scenarios. PCC endpoints observe the connection between their actions and their known performance, which allows them to adapt their actions.
CDNs and Caches: placing caches closer to the mobile user or making more intelligent CDNs would result in faster content delivery and less train on the network. Related work includes:
Blind Caching: a proposal for caching of encrypted content .
CDN improvements: including keyless SSL and better CDN placement.
Mobile Throughput Guidance: a mechanism and protocol elements that allow the cellular network to provide near real-time information on capacity available to the TCP server.
One bit for latency / bandwidth trade-off: determining whether using a single bit to distinguish between traffic that the sender prefers to be queued and traffic that the sender would prefer to drop rather than delay provides additional benefits beyond what can be achieved without this signaling.
Base Station: some suggestions involved “using the Base Station”, but this was not defined in detail. The Base Station holds the Radio Resource Controller and scheduler which could provide either a place to host solutions or data from the Base Station could help in devising new solutions.
Identify traffic types via 5-tuple: information from the 5-tuple could provide understanding of the traffic type which network management could then be applied.
Heuristics: Networks can sometimes identify traffic types through specifics such as data flow rate and then apply network management to these identified flows. This is not recommended as categorisations can be incorrect.
APIs: An API for operators to share congestion status or the state of a cell before an application starts sending data could allow applications to change their behaviour. Alternatively an API could provide the network with some information on the data type to provide network management to, although this method exposes privacy issues.
Standard approach for operator to offer services to Content Providers: mobile network operators could provide caching services or other services for content providers to use for faster and smoother content delivery.
AQM and ECN deployments: queuing and congestion management methods have existed for sometime in the form of AQM, ECN and others which can help the transport and Internet layer adapt to congestion faster.
Trust Model or Trust Framework: some solutions in this area (e.g. SPUD) have a reliance on trust when content providers or the network are being asked to add classifiers to their traffic.
Keyless SSL : allows content providers to maintain their private keys on a “key server” and host the content elsewhere (e.g. on a CDN). This could become standardised in IETF.
Meaningful capacity sharing: including the ConEx work which exposes information about congestion to the network nodes.
Hop-by-hop: some suggestions offer hop-by-hop methods allowing nodes to adapt flow given the qualities of the networks around them and the congestion they are experiencing.
Metrics and metric standards: in order to evolve current protocols to be best suited to today’s networks, data is needed from the current network conditions, protocol deployments, packet traces and middlebox behaviour. Beyond this, proper testing and debugging on networks could provide great insight for stack evolution.
5G: Mobile operator standards bodies are in the process of setting the requirements for 5G. Requirements for network management could be added.
In the workshop attendees identified other areas where greater understandinf could help the standards process. These were identified as:
Greater understanding of the RAN at IETF
Reviews and comments on 3GPP perspective
How to do congestion controlling in RAN.
Throughout the workshop attendees placed emphasis on the need for better collaboration between the IETF and telecommunications bodies and organisations. The workshop was one such way to achieve this, but the good work and relationships built in the workshop should continue so the two groups can work on solutions which are better for both technologies and users.
Since MaRNEW a number of activities have taken place in various seperate working groups or groups external to IETF. The ACCORD BoF was held at IETF95 which brough the workshop discussion to the wider IETF audiences by providing an account of the discussions within the workshop and highlighting key areas to progress on. Key areas to progress and an update on their current status follows:
The collection of useable metrics and data were requested by a number of MaRNEW attendees; this has been difficult to collect due to the closed nature of mobile network operations.
The IAB’s Stack Evolution programme has continued discussion and development of guidance on the evolvability of protocols.
The Measurement and Analysis of Protocols (MAP) Research Group was chartered before IETF 96, and provides a venue for the discussion of data and research on many of the topics addressed at MaRNEW, including the deployment of encryption and the prevalence of in-network inpairments to protocol evolution.
The Mobile Throughput Guidance draft has entered into a testing and data collection phase; although further advancements in transport technologies (noteably QUIC) may have stalled efforts in TCP-related proposals.
Attempts on proposals for caching of encrypted content continue albeit with some security flaws which proponents are working on further proposals to fix. Most often these are discussed within the HTTP WG.
The PLUS BOF did not result in the formation of a working group, with attendees expressing concern on the privacy issues associated with the data sharing possibilities of the shim layer proposed.
The LURK BOF did not result in the formation of a working group, because the BOF identified more problems than anticipated with this approach.
The most rewarding output of MaRNEW is perhaps the most intangible. MaRNEW gave two rather divergent industry groups the opportunity to connect and discuss common technologies and issues affecting users and operations. Mobile Network providers and key Internet engineers and experts have developed a greater collaborative relationship to aid development of further standards which work across networks in a secure manner.
Stephen Farrell reviewed this report in draft form and provided copious comments and suggestions.
Barry Leiba provided corrections.
IETF Policy on Wiretapping
IAB
IESG
This document describes the position that the Internet Engineering Task Force (IETF) has taken regarding the inclusion into IETF standards-track documents of functionality designed to facilitate wiretapping. This memo explains what the IETF thinks the question means, why its answer is "no", and what that answer means. This memo provides information for the Internet community.
IETF Recommendations Regarding Active Queue Management
This memo presents recommendations to the Internet community concerning measures to improve and preserve Internet performance. It presents a strong recommendation for testing, standardization, and widespread deployment of active queue management (AQM) in network devices to improve the performance of today's Internet. It also urges a concerted effort of research, measurement, and ultimate deployment of AQM mechanisms to protect the Internet from flows that are not sufficiently responsive to congestion notification.Based on 15 years of experience and new research, this document replaces the recommendations of RFC 2309.
Information-Centric Networking: Baseline Scenarios
This document aims at establishing a common understanding about a set of scenarios that can be used as a base for the evaluation of different information-centric networking (ICN) approaches so that they can be tested and compared against each other while showcasing their own advantages. Towards this end, we review the ICN literature and document scenarios which have been considered in previous performance evaluation studies. We discuss a variety of aspects that an ICN solution can address. This includes general aspects, such as, network efficiency, reduced complexity, increased scalability and reliability, mobility support, multicast and caching performance, real-time communication efficiency, energy consumption frugality, and disruption and delay tolerance. We detail ICN-specific aspects as well, such as information security and trust, persistence, availability, provenance, and location independence.This document is a product of the IRTF Information-Centric Networking Research Group (ICNRG).
The Addition of Explicit Congestion Notification (ECN) to IP
This memo specifies the incorporation of ECN (Explicit Congestion Notification) to TCP and IP, including ECN's use of two bits in the IP header. [STANDARDS-TRACK]
IETF Note Well
MaRNEW Workshop IAB Homepage
Chatham House Rule
GSMA Homepage
3GPP Homepage
Policy and charging control signalling flows and Quality of Service (QoS) parameter mapping
Some observations of TLS in the web
Some observations of TLS in the web
TCP Increased Security Working Group
Effect of Ubiquitous Encryption
Network management of encrypted traffic
Public Perceptions of Privacy and Security in the Post-Snowden Era
Mobile Throughput Guidance Inband Signaling Protocol
Requirements for the design of a Session Protocol for User Datagrams (SPUD)
Proceedings of the PLUS BoF at IETF 96, Berlin, July 2016
Congestion Exposure Working Group
FlowQueue-Codel
QUIC, A UDP-Based Secure and Reliable Transport for HTTP/2
Content Delivery Networks Interconnection Working Group
Internet Watch Foundation
Stochastic Forecasts Achieve High Throughput and Low Delay over Cellular Networks
PCC, Re-architecting Congestion Control for Consistent High Performance
Caching Secure HTTP Content using Blind Caches
TLS/DTLS Content Provider Edge Server Split Use Case
Keyless SSL: The Nitty Gritty Technical Details
The effect of encrypted traffic on the QoS mechanisms in cellular networks
Rich Salz, Akamai
Aaron Falk, Akamai
Vinay Kanitkar, Akamai
Julien Maisonneuve, Alcatel Lucent
Dan Druta, AT&T
Humberto La Roche, Cisco
Thomas Anderson, Cisco
Paul Polakos, Cisco
Marcus Ihlar, Ericsson
Szilveszter Nadas, Ericsson
John Mattsson, Ericsson
Salvatore Loreto, Ericsson
Blake Matheny, Facebook
Andreas Terzis, Google
Jana Iyengar, Google
Natasha Rooney, GSMA
Istvan Lajtos, GSMA
Emma Wood, GSMA
Jianjie You, Huawei
Chunshan Xiong, Huawei
Russ Housley, IAB
Mary Barnes, IAB
Joe Hildebrand, IAB / Cisco
Ted Hardie, IAB / Google
Robert Sparks, IAB / Oracle
Spencer Dawkins, IETF AD
Benoit Claise, IETF AD / Cisco
Kathleen Moriarty, IETF AD / EMC
Barry Leiba, IETF AD / Huawei
Ben Campbell, IETF AD / Oracle
Stephen Farrell, IETF AD / Trinity College Dublin
Jari Arkko, IETF Chair / Ericsson
Karen O’Donoghue, ISOC
Phil Roberts, ISOC
Olaf Kolkman, ISOC
Christian Huitema, Microsoft
Patrick McManus, Mozilla
Dirk Kutscher, NEC Europe Network Laboratories
Mark Watson, Netflix
Martin Peylo, Nokia
Mohammed Dadas, Orange
Diego Lopez, Telefonica
Matteo Varvello, Telefonica
Zubair Shafiq, The University of Iowa
Vijay Devarapalli, Vasona Networks
Sanjay Mishra, Verizon
Gianpaolo Scassellati, Vimplecom
Kevin Smith, Vodafone
Wendy Seltzer, W3C
Mohammed Dadas, Emile Stephan, Mathilde Cayla, Iuniana Oprescu, “Cooperation Framework between Application layer and Lower Layers” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_33.pdf
Julien Maisonneuve, Thomas Fossati and Vijay Gurbani, “The security pendulum and the network” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_4.pdf
Martin Peylo, “Enabling Secure QoE Measures for Internet Applications over Radio Networks is a MUST” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_32.pdf
Vijay Devarapalli, “The bandwidth balancing act: Managing QoE as encrypted services change the traffic optimization game” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_10.pdf
Humberto La Roche, “Use Cases for Communicating End-Points in Mobile Network Middle-Boxes” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_12.pdf
Richard Barnes and Patrick McManus, “User Consent and Security as a Public Good” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_13.pdf
Iuniana Oprescu, Jon Peterson and Natasha Rooney, “A Framework for Consent and Permissions in Mediating TLS” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_31.pdf
Jari Arkko and Göran Eriksson, “Characteristics of Traffic Type Changes and Their Architectural Implications” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_15.pdf
Szilveszter Nadas and Attila Mihaly, “Traffic Management for Encrypted Traffic focusing on Cellular Networks” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_16.pdf
Gianpaolo Scassellati, “Vimpelcom Position Paper for MaRNEW Meeting” at https://www.iab.org/wp-content/IAB-uploads/2015/09/MaRNEW_1_paper_17.pdf
Mirja Kuehlewind, Dirk Kutscher and Brian Trammell, “Enabling Traffic Management without DPI” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_18.pdf
Andreas Terzis and Chris Bentzel, “Sharing network state with application endpoints” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_19.pdf
Marcus Ihlar, Robert Skog and Salvatore Loreto, “The needed existence of Performance Enhancing Proxies in an Encrypted World” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_20.pdf
John Mattsson, “Network Operation in an All-Encrypted World” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_21.pdf
Dirk Kutscher, Giovanna Carofiglio, Luca Muscariello and Paul Polakos, “Maintaining Efficiency and Privacy in Mobile Networks through Information-Centric Networking” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_23.pdf
Chunshan Xiong and Milan Patel, “The effect of encrypted traffic on the QoS mechanisms in cellular networks” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_25.pdf
Thomas Anderson, Peter Bosch and Alessandro Duminuco, “Bandwidth Control and Regulation in Mobile Networks via SDN/NFV-Based Platforms” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_26.pdf
Karen O’Donoghue and Phil Roberts, Barriers to Deployment: “Probing the Potential Differences in Developed and Developing Infrastructure” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_27.pdf
Wendy Seltzer, “Performance, Security, and Privacy Considerations for the Mobile Web” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_28.pdf
Jianjie You, Hanyu Wei and Huaru Yang, “Use Case Analysis and Potential Bandwidth Optimization Methods for Encrypted Traffic” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_29.pdf
Mangesh Kasbekar and Vinay Kanitkar, “CDNs, Network Services and Encrypted Traffic” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_30.pdf
Claude Rocray, Mark Santelli and Yves Hupe, “Providing Optimization of Encrypted HTTP Traffic” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_341.pdf
Zubair Shafiq, “Tracking Mobile Video QoE in the Encrypted Internet” at https://www.iab.org/wp-content/IAB-uploads/2015/08/MaRNEW_1_paper_35.pdf
Kevin Smith, “Encryption and government regulation: what happens now?” at https://www.iab.org/wp-content/IAB-uploads/2015/09/MaRNEW_1_paper_1.pdf