Re: [6lo] Review Request for ipv6-over-nfc-07

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Thu, 15 June 2017 10:43 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D5DBE129B28; Thu, 15 Jun 2017 03:43:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.521
X-Spam-Level:
X-Spam-Status: No, score=-14.521 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JpNHb0R1GXhj; Thu, 15 Jun 2017 03:43:31 -0700 (PDT)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1FFFE126B7E; Thu, 15 Jun 2017 03:43:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=28080; q=dns/txt; s=iport; t=1497523411; x=1498733011; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=rSgbWSnYa15XB/t2vO0vVWLb0g6oWmFLgAUt8TxkWXU=; b=MG+CS0HQBMscFzhdetCcZFppYxh+TklFkhmSeIA+9691bToYiN5m4oj5 ibMOOFsuHCOCoSSLscvavHO1tB0WrCaxy/ppeVbBWsnnVySUdZlm3K9pc Ds0lPKNNthBzxacbrV1dcHMNwTFxyQfXfMZZyewjGP8dVThea8bfMwFxw M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0DUAACNZEJZ/4MNJK1cGQEBAQEBAQEBA?= =?us-ascii?q?QEBBwEBAQEBgm9pYoENB4NvihiReIgrjVyBMgNcLIV4AhqCQj8YAQIBAQEBAQE?= =?us-ascii?q?BayiFGAEBAQEDIwpMEAIBBgIRAwEBASEHAwICAh8RFAkIAgQBDQUIiUBMAxUQj?= =?us-ascii?q?FudYYImhBYBgyINhAgBAQEBAQEBAQEBAQEBAQEBAQEBAQEYBYZigWCCFoEMgSW?= =?us-ascii?q?BM4IZBxIWglyCYQWJTnKFdoZYhwA7Aocrh0CEXoIQhUaKPnCIKoI3iS0BHzhMP?= =?us-ascii?q?nQVhVYcgSsBOnaIRYENAQEB?=
X-IronPort-AV: E=Sophos;i="5.39,343,1493683200"; d="scan'208,217";a="256269393"
Received: from alln-core-1.cisco.com ([173.36.13.131]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 15 Jun 2017 10:43:29 +0000
Received: from XCH-ALN-004.cisco.com (xch-aln-004.cisco.com [173.36.7.14]) by alln-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id v5FAhTAf006904 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 15 Jun 2017 10:43:29 GMT
Received: from xch-rcd-001.cisco.com (173.37.102.11) by XCH-ALN-004.cisco.com (173.36.7.14) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 15 Jun 2017 05:43:29 -0500
Received: from xch-rcd-001.cisco.com ([173.37.102.11]) by XCH-RCD-001.cisco.com ([173.37.102.11]) with mapi id 15.00.1210.000; Thu, 15 Jun 2017 05:43:28 -0500
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Samita Chakrabarti <samitac.ietf@gmail.com>, Dave Thaler <dthaler@microsoft.com>, =?utf-8?B?7LWc7JiB7ZmY?= <yhc@etri.re.kr>, "6lo-chairs@ietf.org" <6lo-chairs@ietf.org>, lo <6lo@ietf.org>
CC: James Woodyatt <jhw@google.com>
Thread-Topic: Review Request for ipv6-over-nfc-07
Thread-Index: AQHS3loN/iWZqtVOG062WoVNE/lOSqIlxlEg
Date: Thu, 15 Jun 2017 10:43:28 +0000
Deferred-Delivery: Thu, 15 Jun 2017 10:42:52 +0000
Message-ID: <62cc094156074e1ba96abc761e89e7a0@XCH-RCD-001.cisco.com>
References: <CAKmdBpeUiiaixp1Dept0spes769jOJrYHVg4TCN1r1qPkDmA2g@mail.gmail.com>
In-Reply-To: <CAKmdBpeUiiaixp1Dept0spes769jOJrYHVg4TCN1r1qPkDmA2g@mail.gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.55.22.4]
Content-Type: multipart/alternative; boundary="_000_62cc094156074e1ba96abc761e89e7a0XCHRCD001ciscocom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/LxZKOj3K9XGV4oHOBv-5GEuQCOI>
Subject: Re: [6lo] Review Request for ipv6-over-nfc-07
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Jun 2017 10:43:34 -0000

Dear authors ;

Thanks for incorporating a nonce in the computation of the privacy address. This addresses my concern. It would have been good to insist that you are doing it in the security section as well, but the text there confirms that the address is not repeated on the next connection so we should be all set. Also in the security section, I’m not sure what to do with this text:

“

   However, malicious tries for one connection of a long-lived link with
   NFC technology are not secure, so the method of deriving interface
   identifiers from 6-bit NFC Link layer addresses is intended to
   preserve global uniqueness when it is possible.  Therefore, it
   requires a way to protect from duplication through accident or
  forgery and to define a way to include sufficient bit of entropy in
   the IPv6 interface identifier, such as random EUI-64.

“
I fail to understand the first sentence and the paragraph reads as a problem statement, but for what?  Seems that section 4.3 does now provide the required entropy, correct?

About section 4.5, I think some more text could be useful to assign the role of 6LBR.
If 2 similar devices meet (say 2 handeheld), whether one is 6LR/LBR. How would that be decided?
When they are different, if there is a fixed device (a payment terminal, say) or provides connectivity as a router, then it makes sense that it is 6LBR.
This could be described so we would not end up with 2 devices that cannot talk because they only do 6LN.

Cheers,

Pascal


From: Samita Chakrabarti [mailto:samitac.ietf@gmail.com]
Sent: mardi 6 juin 2017 02:16
To: Pascal Thubert (pthubert) <pthubert@cisco.com>om>; Dave Thaler <dthaler@microsoft.com>om>; 최영환 <yhc@etri.re.kr>kr>; 6lo-chairs@ietf.org; lo <6lo@ietf.org>
Cc: James Woodyatt <jhw@google.com>
Subject: Review Request for ipv6-over-nfc-07



Hello Dave, Pascal, James and WG members:

ipv6-over-nfc-07 has just been published and the author mentions that he had addressed the comments from Pascal and Dave.

 Pascal and Dave,  would you please have sometime to review version 07 to check if your comments are addressed?

I have appended the excerpt from IETF98 meeting minutes for your reference.
This document is due for WG LC if  it looks okay.

James, you are shepherd for NFC draft -- please let us know if you are okay with the document's next step.

Thanks,
-Samita

As per IETF98 meeting minutes:
================================================

2 IPv6 over NFC                                    Younghwan Choi
  https://tools.ietf.org/wg/6lo/draft-ietf-6lo-nfc-06 was presented by Younghawn Choi on updates and
  discussed comments from WG and NFC forum. The draft was reviewed by NFC forum, no more comments
  from NFC forum. The author likes to move to WGLC.

  Dave Thaler:IID generation changed as a result of previous meeting

  Pascal: Replacing 6 bit address with hashing function with fixed parameters. Scanning is still
  easy. How is it different?
  YC: offset. Dave: offset should be random to add entropy, not predictable.
  Gabriel: offset may not be a right name. Nonce would be better.
  Samita: need reviewers before WGLC. Pascal, Dave, would you volunteer?
  Pascal will do the review and Dave agreed to review the final update.
=======================================================
---------- Forwarded message ----------
From: 최영환 <yhc@etri.re.kr<mailto:yhc@etri.re.kr>>
Date: Sun, Jun 4, 2017 at 5:02 PM
Subject: RE: [6lo] Request for IETF99@Prague 6lo Agenda items
To: Samita Chakrabarti <samitac.ietf@gmail.com<mailto:samitac.ietf@gmail.com>>
Cc: Gabriel Montenegro <Gabriel.Montenegro@microsoft.com<mailto:Gabriel.Montenegro@microsoft.com>>

Hello Samita,

I’ve submitted the new version of ipv6-over-nfc (-07). The document is ready for review.
Thanks.

Best regards,
Younghwan Choi