From 109ecc3dd93d939b41d144b869bfb1ae4ac3f71d Mon Sep 17 00:00:00 2001 From: Martin Thomson Date: Wed, 6 Jan 2021 21:14:37 +1100 Subject: [PATCH 1/2] Explain why multiple connection IDs Closes #4528. --- draft-ietf-quic-transport.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/draft-ietf-quic-transport.md b/draft-ietf-quic-transport.md index e896545bfa..8484e26fb4 100644 --- a/draft-ietf-quic-transport.md +++ b/draft-ietf-quic-transport.md @@ -1079,6 +1079,10 @@ deployment-specific) method that will allow packets with that connection ID to be routed back to the endpoint and to be identified by the endpoint upon receipt. +Multiple connection IDs are used so that endpoints can send packets that cannot +be identified as being for the same connection without cooperation from an +endpoint; see {{migration-linkability}}. + Connection IDs MUST NOT contain any information that can be used by an external observer (that is, one that does not cooperate with the issuer) to correlate them with other connection IDs for the same connection. As a trivial example, From f197295de0ac31e8d9e8a7e5dffb77eb1742bef6 Mon Sep 17 00:00:00 2001 From: Martin Thomson Date: Thu, 7 Jan 2021 17:03:43 +1100 Subject: [PATCH 2/2] by whom Co-authored-by: Jana Iyengar --- draft-ietf-quic-transport.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/draft-ietf-quic-transport.md b/draft-ietf-quic-transport.md index 8484e26fb4..565a40f14b 100644 --- a/draft-ietf-quic-transport.md +++ b/draft-ietf-quic-transport.md @@ -1080,8 +1080,8 @@ be routed back to the endpoint and to be identified by the endpoint upon receipt. Multiple connection IDs are used so that endpoints can send packets that cannot -be identified as being for the same connection without cooperation from an -endpoint; see {{migration-linkability}}. +be identified by an observer as being for the same connection without +cooperation from an endpoint; see {{migration-linkability}}. Connection IDs MUST NOT contain any information that can be used by an external observer (that is, one that does not cooperate with the issuer) to correlate