smtp adaptation with opes
play

SMTP adaptation with OPES draft-ietf-opes-smtp-00.txt OPES WG - PowerPoint PPT Presentation

Nov 26, 2023 •264 likes •496 views

SMTP adaptation with OPES draft-ietf-opes-smtp-00.txt OPES WG meeting on 64 th IETF in Vancouver, BC, Canada Martin Stecher (martin.stecher@webwasher.com) Clemens Perz (cperz@allaboutit.lu) Presented by Paul Knight (paul.knight@nortel.com)

  1. SMTP adaptation with OPES draft-ietf-opes-smtp-00.txt OPES WG meeting on 64 th IETF in Vancouver, BC, Canada Martin Stecher (martin.stecher@webwasher.com) Clemens Perz (cperz@allaboutit.lu) Presented by Paul Knight (paul.knight@nortel.com) 2005-11-08 SMTP Adaptation with OPES 1 OPES WG on 64 th IETF in Vancouver

  2. Content • What is OPES/SMTP? • Operation Flow of an OPES SMTP System • Tracing • Bypass • (Optional Details) 2005-11-08 SMTP Adaptation with OPES 2 OPES WG on 64 th IETF in Vancouver

  3. What is OPES/SMTP? • From our charter: – The OPES [WG] has previously [...] developed a protocol suite for invocation and tracking of OPES services inside the net. The protocol suite includes a generic, application- agnostic protocol core (OCP Core) that is supplemented by profiles specific to the application-layer protocol used between the endpoints. So far, the WG has specified an OCP profile for HTTP, which supports OPES services that operate on HTTP messages. – In a next step, the WG will specify one or more OCP profiles that will support OPES services operating on SMTP. 2005-11-08 SMTP Adaptation with OPES 3 OPES WG on 64 th IETF in Vancouver

  4. What is OCP? Server OCP = O PES C allout P rotocol pre-processing OCP scope OCP wrapped application data OCP-Client OCP-Server OCP control messages post-processing adaptation OPES processor Callout server Client 2005-11-08 SMTP Adaptation with OPES 4 OPES WG on 64 th IETF in Vancouver

  5. OCP/SMTP is the current target  RFC 4236 current focus Application HTTP RTSP FTP SMTP MIME ... protocol profile profile profile profile profile binding Application OCP Core protocol  RFC 4037 agnostic assumes Other TCP/IP TCP as transport Transports 2005-11-08 SMTP Adaptation with OPES 5 OPES WG on 64 th IETF in Vancouver

  6. “SMTP adaptation with OPES” is more! • The SMTP adaptation draft does not only specify the OCP/SMTP profiles. • It also has to deal with Tracing, Bypass and other OPES requirements • Building on: – “Requirements for OPES Callout Protocols” [RFC3836] – “OPES Treatment of IAB Considerations” [RFC3914] – “Security Threats and Risks for OPES” [RFC3837] – and others 2005-11-08 SMTP Adaptation with OPES 6 OPES WG on 64 th IETF in Vancouver

  7. recap: Operation Flow of an OPES SMTP System Mail Client Mail Server Mail Gateway Mail Client Mail Server MUA MSA MTA MTA MTA MTA MDA MUA Possible OCP/SMTP OCP/SMTP OCP/SMTP Activation OCP/SMTP Points (usually just one Callout server Callout server of these) Callout server Callout server MUA = Mail User Agent; MTA = Mail Transfer Agent; MSA = Mail Submission Agent; MDA = Mail Delivery Agent 2005-11-08 SMTP Adaptation with OPES 7 OPES WG on 64 th IETF in Vancouver

  8. Two profiles • Defines two profiles for OCP/SMTP: – http://iana.org/opes/ocp/SMTP/sender Used while or just before sending a message – http://iana.org/opes/ocp/SMTP/receiver Used while or just after receiving a message 2005-11-08 SMTP Adaptation with OPES 8 OPES WG on 64 th IETF in Vancouver

  9. Profile negotiation • OPES processor (the MTA) offers application message parts that it allows to adapt (Adaptive-Parts) and parts that it can provide as auxiliary information (Informative-Parts) • Callout server responds with the subset of parts that it plans to adapt and wants to see as additional meta information. 2005-11-08 SMTP Adaptation with OPES 9 OPES WG on 64 th IETF in Vancouver

  10. Tracing • Trace headers MUST be added by the OPES processor; same as OCP/HTTP (RFC 4236) • Example: Received: from gateway.example.com ([192.0.2.138]) by mail.example.com with testserver; Mon, 10 Oct 2005 05:37:19 +0200 Received: from mail2.example.org [192.0.2.99] by gateway.example.com id 33W9WIMC; Mon, 10 Oct 2005 05:35:55 +0200 OPES-System: http://mail.example.com/opes?id=33W9WIMC OPES-System: http://gateway.example.com/opes?session=33W9WIMC OPES-Via: http://gateway.example.com/opes?session=33W9WIMC, http://www.opes-services-4u.com/cat/?sid=123, http://www.opes-services-4u.com/cat/?sid=124, http://www.opes-services-4u.com/cat/?sid=125 ; mode=A Subject: Test From: "Steve" <steve@example.org> To: "Sandra" <sandra@example.com> 2005-11-08 SMTP Adaptation with OPES 10 OPES WG on 64 th IETF in Vancouver

  11. Tracing (2) • Adding trace header gives OPES trace notifications to message receiver. • IAB Considerations say the sender must be able to receive the trace information • An SMTP Trace extension could be supported to allow the message sender to receive trace notifications (see list of open issues at end) 2005-11-08 SMTP Adaptation with OPES 11 OPES WG on 64 th IETF in Vancouver

  12. Open Issues (1) – Tracing info for sender • While SMTP tracing information for the email recipient is trivial, reliable notifications for the email sender are a problem (a general problem with SMTP not only for OPES). • How does that correspond to the IAB considerations? • What do you think about Delivery Status Notifications (RFC3461) and/or Message Tracking (RFC3885) to build on for OPES/SMTP? 2005-11-08 SMTP Adaptation with OPES 12 OPES WG on 64 th IETF in Vancouver

  13. Bypass • IAB Considerations say the sender must be able to receive the trace information • An SMTP extension could be supported to allow OPES bypass • Just adding a header to an email message comes too late if bypass of an RCPT command adaptation is requested (see list of open issues at end) 2005-11-08 SMTP Adaptation with OPES 13 OPES WG on 64 th IETF in Vancouver

  14. Open Issues (2) - Bypass • OPES bypass is usually client controlled. Does that really mean email recipient controlled here? • It is hard to check the client‘s bypass requests in a sender centric OPES system. • The whole bypass idea is an issue for protocols that do not have client requests. • Is the definition of an SMTP extension the solution? • Or do we need an out-of-band solution? 2005-11-08 SMTP Adaptation with OPES 14 OPES WG on 64 th IETF in Vancouver

  15. Optional Details 2005-11-08 SMTP Adaptation with OPES 15 OPES WG on 64 th IETF in Vancouver

  16. List of message parts • Many different message parts are available: – HELO: The argument of the HELLO command – MAIL: The argument of the MAIL command – RCPT: The argument of the RECIPIENT command – VRFY: The argument of the VERIFY command – EXPN: The argument of the EXPAND command – RAWDATA: The complete mail data which is sent after the DATA command – ALLHEADERS: The header of the email data – SINGLEHEADERS: Some or all header fields of the email data, each to be sent in a separate OCP message. – BODY: The body of the email data as defined – SECTIONS: Sections of the email body (for example MIME sections), each to be sent in a separate OCP message. 2005-11-08 SMTP Adaptation with OPES 16 OPES WG on 64 th IETF in Vancouver

  17. Negotiation Example 1 [ P=OPES processor, S=Callout Server] P: NO ({"38:http://iana.org/opes/ocp/SMTP/receiver" Adaptive-Commands: (RCPT,DATA) Informative-Commands: (IP,HELO,MAIL) }) SG: 25 ; S: NR {"38:http://iana.org/opes/ocp/SMTP/receiver" Adaptive-Commands: (DATA) Informative-Commands: (MAIL,RCPT) } SG: 25 ; 2005-11-08 SMTP Adaptation with OPES 17 OPES WG on 64 th IETF in Vancouver

  18. Negotiation Example 2 [ P=OPES processor, S=Callout Server] P: NO ({"38:http://iana.org/opes/ocp/SMTP/receiver" Adaptive-Commands: (MAIL,RCPT) Informative-Commands: (IP,HELO,SINGLEHEADERS) }) SG: 25 ; S: NR {"38:http://iana.org/opes/ocp/SMTP/receiver" Adaptive-Commands: (MAIL,RCPT) Informative-Commands: (IP,HELO,SINGLEHEADERS) Header-List: (From,To,Reply-To,Received) } SG: 25 ; 2005-11-08 SMTP Adaptation with OPES 18 OPES WG on 64 th IETF in Vancouver

  19. Message Flow • Data Use Mine (DUM) and Data Use Yours (DUY) messages are used to exchange the application message parts • DUM, DUY are defined in OCP Core • Additional parameters are added – Allow: OPES processor lists which additional parameters are supported – SMTP-Error: Callout server replies with an SMTP error instead of content adaptation (for example: “550 No such user here”) – Add-Header: Callout server asks the OPES processor to add a header to the email. 2005-11-08 SMTP Adaptation with OPES 19 OPES WG on 64 th IETF in Vancouver

  20. Example (1) DUM 72 1 0 Kept: 0 AM-Part: MAIL 19:<steve@example.org> ; DUM 72 1 19 Kept: 19 AM-Part: RCPT 18:<paul@example.com> ; DUM 72 1 37 Kept: 37 AM-Part: RAWDATA 49:From: steve@example.org To: sandra@example.com ; DUM 72 1 86 Kept: 86 AM-Part: RAWDATA 41:Subject: Test Hi, this is a test! . 2005-11-08 SMTP Adaptation with OPES 20 ; OPES WG on 64 th IETF in Vancouver

  21. Example (2) Example: P=OPES processor, S=Callout Server P: DUM 72 1 0 Kept: 0 AM-Part: RCPT Allow: (SMTP-Error) 18:<paul@example.com> ; S: DUM 72 1 0 AM-Part: RCPT SMTP-Error: "21:550 No such user here" 0: ; 2005-11-08 SMTP Adaptation with OPES 21 OPES WG on 64 th IETF in Vancouver

Recommend

OPES Working Group Callout Protocol Design: Major Decision Points IETF-56 Alex Rousskov March

OPES Working Group Callout Protocol Design: Major Decision Points IETF-56 Alex Rousskov March

OPES Working Group Callout Protocol Design: Major Decision Points IETF-56 Alex Rousskov March 2003 OPES Callout Protocol (OCP) Location: OPES dispatcher OPES callout server Purpose: Adaptation of application messages Apps: HTTP,

806 views • 39 slides
IAB IAB Architectural Consideration for Architectural Consideration for OPES OPES Abbie

IAB IAB Architectural Consideration for Architectural Consideration for OPES OPES Abbie

IAB IAB Architectural Consideration for Architectural Consideration for OPES OPES Abbie Barbir abbieb@nortelnetworks.com Design Team IAB consideration (RFC 3238) Brief Review of Some Issue IP-layer communications (2.2) For an OPES

216 views • 8 slides
OPES and E2E Encryption Should OPES be compatible with end-to- end encryption? Define

OPES and E2E Encryption Should OPES be compatible with end-to- end encryption? Define

OPES and E2E Encryption Should OPES be compatible with end-to- end encryption? Define compatible Define the trust model Discuss pro and con Decide, spec, implement Goal: combine confidentiality with services, if

470 views • 11 slides
Model for SMTP Use User SMTP Sender Receiver Commands/Replies SMTP SMTP File File and

Model for SMTP Use User SMTP Sender Receiver Commands/Replies SMTP SMTP File File and

Model for SMTP Use User SMTP Sender Receiver Commands/Replies SMTP SMTP File File and Mail System System Sender-SMTP Receiver-SMTP The SMTP Commands HELLO (HELO) - identify the sender-SMTP to the receiver-SMTP. MAIL (MAIL) - initiate

191 views • 3 slides
OPES processor and end points OPES processor and end points communications communications

OPES processor and end points OPES processor and end points communications communications

OPES processor and end points OPES processor and end points communications communications draft- -ietf ietf- -opes opes- -end end- -comm comm- -00 00 draft Abbie Barbir Abbie Barbir abbieb@nortelnetworks.com Presented by Paul

251 views • 13 slides
11 Application Layer Application Layer DNS: Domain Name System Most commonly used names

11 Application Layer Application Layer DNS: Domain Name System Most commonly used names

Application Layer Application Layer SMTP: final words Mail message format SMTP uses persistent Comparison with HTTP: SMTP: protocol for connections exchanging email msgs header HTTP: pull blank SMTP requires message RFC 822:

453 views • 4 slides
Opes Acquisition Corp|BurgerFi Merger Investor Presentation June 2020 Disclaimer Opes Acquisition

Opes Acquisition Corp|BurgerFi Merger Investor Presentation June 2020 Disclaimer Opes Acquisition

Opes Acquisition Corp|BurgerFi Merger Investor Presentation June 2020 Disclaimer Opes Acquisition Corp., a Delaware corporation (OPES), and BurgerFi International LLC, a Delaware limited liability company (BurgerFi) and their

343 views • 31 slides
DA(e)NEn lgen nicht Patrick Ben Koetter Carsten Strotmann TLS und SMTP 2 TLS und SMTP

DA(e)NEn lgen nicht Patrick Ben Koetter Carsten Strotmann TLS und SMTP 2 TLS und SMTP

DA(e)NEn lgen nicht Patrick Ben Koetter Carsten Strotmann TLS und SMTP 2 TLS und SMTP STARTTLS? 3 TLS und SMTP STARTTLS? STARTTLS! 4 TLS und SMTP STARTTLS? STARTTLS! Flschung 5 TLS und SMTP STARTTLS? STARTTLS? STARTTLS!

438 views • 32 slides
Sending E-Mail Today MX Priority #1 SMTP Exchange

Sending E-Mail Today MX Priority #1 SMTP Exchange

DANE and SMTP: TLS Protec4on for SMTP Using DANE and DNSSEC Russ Mundy &amp; Wes Hardaker Parsons &lt;Russ.Mundy@parsons.com&gt; &lt;mundy@4slabs.com&gt; 7/17/13

481 views • 9 slides
1 Mail access protocols DNS: Domain Name System SMTP SMTP access Domain Name System: People:

1 Mail access protocols DNS: Domain Name System SMTP SMTP access Domain Name System: People:

FTP: separate control, data connections TCP control connection FTP client contacts FTP port 21 server at port 21, specifying TCP as transport protocol TCP data connection FTP, SMTP and DNS Client obtains authorization FTP FTP port

443 views • 3 slides
Implementation effort OPES WG meeting on 57 th IETF in Wien, sterreich Martin Stecher

Implementation effort OPES WG meeting on 57 th IETF in Wien, sterreich Martin Stecher

Implementation effort OPES WG meeting on 57 th IETF in Wien, sterreich Martin Stecher (martin.stecher@webwasher.com) Alex Rousskov (rousskov@measurement-factory.com) 2003-07-15 Implementation effort 1 OPES WG on 57 th IETF in Vienna Content

689 views • 11 slides
Nat ional Red List of Ecosyst ems/ Biot opes (RLE) work in Finland Lasse Kur vi nen Par ks

Nat ional Red List of Ecosyst ems/ Biot opes (RLE) work in Finland Lasse Kur vi nen Par ks

Nat ional Red List of Ecosyst ems/ Biot opes (RLE) work in Finland Lasse Kur vi nen Par ks &amp; Wi l dl i f e Fi nl and Petra Pohjola Background Finland is current ly working on t he nat ional Red List of Biot opes, or ecosyst ems

548 views • 13 slides
MAIL SECURITY AND THE DNS John Levine STANDCORE LLC ICANN 65 | Marrakech MAIL AND SMTP ARE VERY

MAIL SECURITY AND THE DNS John Levine STANDCORE LLC ICANN 65 | Marrakech MAIL AND SMTP ARE VERY

MAIL SECURITY AND THE DNS John Levine STANDCORE LLC ICANN 65 | Marrakech MAIL AND SMTP ARE VERY VERY OLD Message format from RFC 733 in 1977 SMTP from RFC 788 in 1981 Both pretty much the same today, with a lot of extensions DNS

867 views • 32 slides
OPES Callout Protocol OPES Callout Protocol SOAP Consideration SOAP Consideration Abbie Barbir

OPES Callout Protocol OPES Callout Protocol SOAP Consideration SOAP Consideration Abbie Barbir

OPES Callout Protocol OPES Callout Protocol SOAP Consideration SOAP Consideration Abbie Barbir Barbir abbieb@nortelnetworks.com Abbie abbieb@nortelnetworks.com Nortel Networks Nortel Networks Purpose To discuss the feasibility of

409 views • 7 slides
SMTP [in]Security Ian Foster Jon Larson Goals 1. Does the global email system currently

SMTP [in]Security Ian Foster Jon Larson Goals 1. Does the global email system currently

SMTP [in]Security Ian Foster Jon Larson Goals 1. Does the global email system currently provide security against passive adversary (eavesdropper)? 2. Against an active adversary (man in the middle)? Brief History of SMTP Many standards

662 views • 22 slides
Neuer SMTP MTA auf OpenVMS (3E05) John.Dite@compinia.de Compinia GmbH &amp; Co. KG Dornacher

Neuer SMTP MTA auf OpenVMS (3E05) John.Dite@compinia.de Compinia GmbH &amp; Co. KG Dornacher

HP IT-Symposium 2006 Neuer SMTP MTA auf OpenVMS (3E05) John.Dite@compinia.de Compinia GmbH &amp; Co. KG Dornacher Str. 3c 85622 Feldkirchen Tel: +49.89.90.5067.55 Topics OpenVMS SMTP Messaging Alternatives CommuniGate Systems

442 views • 18 slides
Coastal Adaptation Kellie Fisher FCERM Senior Advisor Why Adaptation? Adaptation to a

Coastal Adaptation Kellie Fisher FCERM Senior Advisor Why Adaptation? Adaptation to a

Coastal Adaptation Kellie Fisher FCERM Senior Advisor Why Adaptation? Adaptation to a changing environment. Coastal change is not new! Traditional defences are a form of adaptation too. Are they always appropriate? Property

516 views • 19 slides
An Architecture for Open Pluggable Pluggable An Architecture for Open Edge Services (OPES) Edge

An Architecture for Open Pluggable Pluggable An Architecture for Open Edge Services (OPES) Edge

An Architecture for Open Pluggable Pluggable An Architecture for Open Edge Services (OPES) Edge Services (OPES) draft- -ietf ietf- -opes opes- -architecture architecture- -02 02 draft Abbie Barbir Abbie Barbir

405 views • 13 slides
DNSSEC, DANE and SMTP Security A Mid-level Overview Wes Hardaker Parsons Downgrade Resistant,

DNSSEC, DANE and SMTP Security A Mid-level Overview Wes Hardaker Parsons Downgrade Resistant,

DNSSEC, DANE and SMTP Security A Mid-level Overview Wes Hardaker Parsons Downgrade Resistant, Opportunistic Security for Server To Server E-Mail Delivery Overview Server-to-Server E-Mail background SMTP Vulnerabilities DANE/SMTP to

360 views • 16 slides
Strategies to Harden and Neutralize UAVs using RF DEW Jos L OPES E STEVES , Emmanuel C OTTAIS

Strategies to Harden and Neutralize UAVs using RF DEW Jos L OPES E STEVES , Emmanuel C OTTAIS

Strategies to Harden and Neutralize UAVs using RF DEW Jos L OPES E STEVES , Emmanuel C OTTAIS AND Chaouki K ASMI ABOUT THE AUTHORS ANSSI: National Cybersecurity Agency of France Wireless Security Lab 10 members, 2 PhDs, 2 PhD

663 views • 40 slides
De Develop opment of of the new Research Infrastructure for or Europ opes Na Natural Sc

De Develop opment of of the new Research Infrastructure for or Europ opes Na Natural Sc

De Develop opment of of the new Research Infrastructure for or Europ opes Na Natural Sc Science Collections using g novel building g blocks in EOSC SC wouter.addink@naturalis.nl Naturalis Biodiversity Center Distributed System of

197 views • 18 slides
E ur opes Favouri te Ai r l i ne Europes Lowest Fare/Lowest Cost Carrier No. 1,

E ur opes Favouri te Ai r l i ne Europes Lowest Fare/Lowest Cost Carrier No. 1,

H1 Results Nov 2016 E ur opes Favouri te Ai r l i ne Europes Lowest Fare/Lowest Cost Carrier No. 1, Traffic 119m (+12%) No. 1, Cover 85 Bases No. 1, Service Low Fares/On-time/Fewest Canx Always Getting

469 views • 22 slides
You dont hear me but your phones voice interface does Jos L OPES E STEVES &amp; Chaouki K

You dont hear me but your phones voice interface does Jos L OPES E STEVES &amp; Chaouki K

You dont hear me but your phones voice interface does Jos L OPES E STEVES &amp; Chaouki K ASMI Hack In Paris - 18/06/2015 WHO WE ARE Jos Lopes Esteves and Chaouki Kasmi ANSSI-FNISA / Wireless Security Lab Electromagnetic

838 views • 40 slides
Biodiversity, Ecosystem Services and Adaptation and Adaptation Dr Pushpam Kumar Associate

Biodiversity, Ecosystem Services and Adaptation and Adaptation Dr Pushpam Kumar Associate

International Workshop on Vulnerability and Adaptation to Climate Change: From Practice to Policy on May11-12, New Delhi Biodiversity, Ecosystem Services and Adaptation and Adaptation Dr Pushpam Kumar Associate Professor Institute of Economic

209 views • 20 slides

More recommend