Re: [Captive-portals] Arguments against (any) Capport "API"

To: David Bird <[email protected]>

Subject: Re: [Captive-portals] Arguments against (any) Capport "API"

From: Erik Kline <[email protected]>

Date: Wed, 5 Apr 2017 22:45:26 +0900

Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/gqLzoG9Rws7EJz57E8BS2qFfd30>

Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com

Cc: [email protected]

Delivered-to: [email protected]

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=QPZve2eu1IqXvDHwpXYja4zsrU4xtRF981blekaMVcY=; b=Gqx2QjFvDlYa0o5r1TZaB+/II9C71HrTV5j8bBXTVrSElUFlzBdyei0SSbWf7zp3BH /73NoiRXkJ0EjMGFjKBq3KyqAVNFCC4R0i4dQdAY+Zs3L3TqrS7VrtsSLtTvcHwT5RYM D+R49EVCzBy1pXJEPWPAdDoMdL9Mpe/kxmnRlyiEXa5J8EmEH0H9VRP0B55lcHFV9ALG e4fCXteJyeQ1/aMTADMIDXnh71diXe5YeCl6GtwGhiE3afsGKGm/0EdHu3Z4n/soiedG zJ+rs43LsY8jYXBBveaiYzB7MJ6LGx2pFAsUi7xbZkAzLY+Rf0J/Rcl8dkqiKHkEzAYf 5zpA==

In-reply-to: <CADo9JyU2wiEBB4L7ADSybt9se7jCN764JSEoHuGTcuiU_jDscQ@mail.gmail.com>

List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>

List-help: <mailto:[email protected]?subject=help>

List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>

List-post: <mailto:[email protected]>

List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>

List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>

References: <CADo9JyU2wiEBB4L7ADSybt9se7jCN764JSEoHuGTcuiU_jDscQ@mail.gmail.com>

I think we can't get away from nodes doing both new style (7710 + yet-to-be-published stuff) and legacy detection. In an increasingly HTTPS-ified world I would expect we'll end up with devices doing something like:

[1]

if (7710 available) {

do 7710 + yet-to-be-published interaction;

if (successful HTTPS Internet query) return;

}

[2] # possibly in parallel with [1]

do sacrificial cleartext HTTP request

if (rewriting detected) {

do legacy interaction;

if (success HTTPS Internet query) return;

}

[3]

last ditch effort here

I think it's what the majority of client OS vendors do with (first) [3] and (then) [2] that will determine, in a sort of game theoretic sense, how successful [1] will be.

If a majority of client OSes implement [3] as "never make this network the default, but some apps can use it via a multiple Provisioning Domain API (to support connecting to printer hotspots, and the like), or new TAPS API, while leaving (if available) mobile up", then captive portal vendors will at least be incentivized to stop faking out the queries that constitute [2].

If there proves to be some industry support for [1], and ongoing measurements show some meaningful adoption trends, then OS vendors can look at taking action with respect to networks that still only support [2]. This could include things like de-prioritization in ESSID auto-join algorithms.

We'll obviously need to provide value to as many reasonable parties as possible through whatever [1] ultimately becomes but that value can grow over time as functionality is added to address an increasing number of use cases. This is definitely going to take some time.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature