Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-6lo-ap-nd-15: (with DISCUSS and COMMENT)
"Pascal Thubert (pthubert)" <pthubert@cisco.com> Thu, 06 February 2020 13:01 UTC
Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8127F12089F; Thu, 6 Feb 2020 05:01:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.498
X-Spam-Level:
X-Spam-Status: No, score=-14.498 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=aQ5MS43e; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=tAfK0054
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j0LRch2eruVS; Thu, 6 Feb 2020 05:01:03 -0800 (PST)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C71B120086; Thu, 6 Feb 2020 05:01:03 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6376; q=dns/txt; s=iport; t=1580994063; x=1582203663; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=QcES3YL7QBjCszkTzaJoJgUH2IpG2URiClJelnBUw9I=; b=aQ5MS43eLUMXKTfZWZvaVchHHN6fUhMZG1rSfEoGjs1BjqBtT53uVwuO yU4UccAoZa3PUtYJbSH4suebUiUbxo8yeZDWhlAK7C6SVwhzz+v08E5vL BuqtmC37ntZeqQcsUqJ6smdZQqdDy/LJjarTSUP0le+15OiV77wuBuykI c=;
IronPort-PHdr: 9a23:ulugMBPwC77ogqeFxzol6mtXPHoupqn0MwgJ65Eul7NJdOG58o//OFDEu6w/l0fHCIPc7f8My/HbtaztQyQh2d6AqzhDFf4ETBoZkYMTlg0kDtSCDBjjMP73ZSEgAOxJVURu+DewNk0GUMs=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CjBQDCDDxe/5pdJa1mDg4BAQEBAQcBAREBBAQBAYF7gVRQBWxYIAQLKoQVg0YDin6CX5gSgUKBEANUCQEBAQwBASMKAgEBhEACF4ImJDgTAgMNAQEEAQEBAgEFBG2FNwyFZgEBAQECARIREQwBATcBBAcEAgEIEQQBAQECAiYCAgIwFQgIAgQOBSKDBAGCSgMOIAECDKArAoE5iGJ1gTKCfwEBBYUOGIIMAwaBDiqFH4VBgUMagUE/gREnIIJMPoJkAgIBGYEvGoMQMoIskCA7nxQKgjqHSo58G4JIiBCOTYFml06SNwIEAgQFAg4BAQWBaSJEgRRwFWUBgkFQGA2OHQwXFYM7hRSFBDt0AoEnimAnghoBAQ
X-IronPort-AV: E=Sophos;i="5.70,409,1574121600"; d="scan'208";a="720736980"
Received: from rcdn-core-3.cisco.com ([173.37.93.154]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 06 Feb 2020 13:01:01 +0000
Received: from XCH-ALN-010.cisco.com (xch-aln-010.cisco.com [173.36.7.20]) by rcdn-core-3.cisco.com (8.15.2/8.15.2) with ESMTPS id 016D11KG004638 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 6 Feb 2020 13:01:01 GMT
Received: from xhs-rcd-003.cisco.com (173.37.227.248) by XCH-ALN-010.cisco.com (173.36.7.20) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 6 Feb 2020 07:01:00 -0600
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-rcd-003.cisco.com (173.37.227.248) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 6 Feb 2020 07:01:00 -0600
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Thu, 6 Feb 2020 07:01:00 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ktr8OqtAu+ux3398K6jVOSZcWdQEFbQQS1k6M5zmS8d0vvT6VRY5PojdMKBr2w5tqXNtfqjItoyDUYwrAU9czUfr2vTdK6tXqcORZYatX7kLvICD1pFUtu6FuU6wIbePfRLIRZjg7pFJj1FwLUcPaiGlIEI5TKaRA9YcSiq5wXvByfb0cFkdb27jh+J8G6EZv3q50MbmJjbOVw5Ke/EN6V5W+s/AYDBoSuiEKCtVWzSBYME6NSOxZjckwsu0eaEO1Hk6KOh6dr6aeVuS5dRzJZmYBYimHFASJxBA6sMO19m1+p1AApBGDyoYc/wyrt4o1uAu+QlF/ehsiiElz0kSMQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QcES3YL7QBjCszkTzaJoJgUH2IpG2URiClJelnBUw9I=; b=XQ9dFE7eINclWRznJmZcu3Y5ZiNKgXBKwMoVvFTo3j2CeagJ6oABRNe8qW6+6ZJExkcFPAqxNNCprdGZiEuB059HlE9KhN2MNSdXvebsNEMtAUVyZ4ve7S+ppB53+lkVEDc6kr9DpQiooSpmycqGR3ksenSHr9fl0Bh5iwVaEGa77bFZdXHjPuYjGkcGc7FOqw56ObqD5OQdyx9HupWgrsV/+oKSYcfyqE2J4Y7JCm85YQ114no68RumMfvcfVf0tN9EcA3bcLhTEengqkZuPZa6+mZJJ2VEkkpVM+XfbkIQCkc7jlObj2bSDApVp8dqLj1/LBI2KU0oceZcT46Y6g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QcES3YL7QBjCszkTzaJoJgUH2IpG2URiClJelnBUw9I=; b=tAfK00542TicxlZQUjDUuwE0thiFnq1Efl/KcIxOPlpIPiveviqmPMyGSSrheS5k56gBtCjapUec0X9wTdxM7FNxgA3tp43wMKaLR9vO2AN9NcLyOhIWnB4VfhNlvd7hMrDCnLxrlSDg7/b6LwnZSVmg1bTXJ+GGMUl9bGkvdlA=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (20.178.250.159) by MN2PR11MB4287.namprd11.prod.outlook.com (52.135.37.17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2707.21; Thu, 6 Feb 2020 12:59:46 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::fd76:1534:4f9a:452a]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::fd76:1534:4f9a:452a%3]) with mapi id 15.20.2707.023; Thu, 6 Feb 2020 12:59:45 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Benjamin Kaduk <kaduk@mit.edu>
CC: The IESG <iesg@ietf.org>, "draft-ietf-6lo-ap-nd@ietf.org" <draft-ietf-6lo-ap-nd@ietf.org>, "Shwetha Bhandari (shwethab)" <shwethab@cisco.com>, "6lo-chairs@ietf.org" <6lo-chairs@ietf.org>, "6lo@ietf.org" <6lo@ietf.org>
Thread-Topic: Benjamin Kaduk's Discuss on draft-ietf-6lo-ap-nd-15: (with DISCUSS and COMMENT)
Thread-Index: AQHV2IzboswYmzjUQ0uf9MGXohRBl6gGYZDwgAP8MYCAAGiTEIAAVUFAgAIHboCAAMIVUIAARGrC
Date: Thu, 06 Feb 2020 12:59:45 +0000
Message-ID: <697E38D7-CD81-4F3B-806A-47742C808A7D@cisco.com>
References: <158051274858.21121.16988738930495243847.idtracker@ietfa.amsl.com> <MN2PR11MB3565552065F2F21DD481EEC3D8000@MN2PR11MB3565.namprd11.prod.outlook.com> <20200204030143.GB53329@kduck.mit.edu> <MN2PR11MB35658E5BA1A1DF2BBA232F2DD8030@MN2PR11MB3565.namprd11.prod.outlook.com> <MN2PR11MB3565284DDAB5F7D94CB2F039D8030@MN2PR11MB3565.namprd11.prod.outlook.com> <20200205212015.GC84913@kduck.mit.edu>, <MN2PR11MB3565D8C850C5238B162C4C6FD81D0@MN2PR11MB3565.namprd11.prod.outlook.com>
In-Reply-To: <MN2PR11MB3565D8C850C5238B162C4C6FD81D0@MN2PR11MB3565.namprd11.prod.outlook.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [2a01:cb1d:4ec:2200:c9ac:947d:c081:5def]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 76bd8d3e-5b39-4d51-9757-08d7ab0470fa
x-ms-traffictypediagnostic: MN2PR11MB4287:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <MN2PR11MB428789C7BB433B0DBDC654AAD81D0@MN2PR11MB4287.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0305463112
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(396003)(346002)(376002)(136003)(366004)(199004)(189003)(316002)(966005)(66476007)(66556008)(64756008)(66446008)(2616005)(6916009)(5660300002)(186003)(478600001)(66946007)(91956017)(6512007)(54906003)(76116006)(2906002)(53546011)(6506007)(4326008)(8676002)(36756003)(81166006)(6486002)(81156014)(66574012)(33656002)(8936002)(71200400001)(86362001); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB4287; H:MN2PR11MB3565.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: HjPOcHZ+6A5mgiKZwbmjbVMusnDkKBxGmQkLSLXdr+fd7yTY7yJY07NWeS2ONqpuFvx0XV4Tk1IYoLbB+apddchqMk6PvCXoR9CQbX8u4QyV4qtwFzLX9JZySZXmTVCjY4sZD1y2pfOP6Qj76nvpckiiuZpfaqCzjFLMlc4eXaIjUGQofY/n2VDluZIZL8Xr5Qc8Y59eR4Up0v8w1nDkog==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 76bd8d3e-5b39-4d51-9757-08d7ab0470fa
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Feb 2020 12:59:45.8175 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 3fMnTuw2+9LRWob+tsp4y4Rvxm9x7bFTeQPAXWGyywPihrLbdfRkYRCZRxyRcOiV5a3j5L2j0GOwRu+ON+IYRQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4287
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.20, xch-aln-010.cisco.com
X-Outbound-Node: rcdn-core-3.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/OLgBUyP_6FAQ77IyRWRfu7qWBkQ>
Subject: Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-6lo-ap-nd-15: (with DISCUSS and COMMENT)
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Feb 2020 13:01:07 -0000
Maybe like this? Regards, Pascal > Le 6 févr. 2020 à 10:48, Pascal Thubert (pthubert) <pthubert@cisco.com> a écrit : > > Hello Benjamin > > We're getting there. I snipped the places were we appear to have converged. > > Please let me know if the DISCUSS is now solved (we removed all ambiguity on the crypto-ID and forced that a key is employed uniquely for the purpose of this draft and for one crypto-ID). > > More below: > >> -----Original Message----- >> From: Benjamin Kaduk <kaduk@mit.edu> >> Sent: mercredi 5 février 2020 22:20 >> To: Pascal Thubert (pthubert) <pthubert@cisco.com> >> Cc: The IESG <iesg@ietf.org>; draft-ietf-6lo-ap-nd@ietf.org; Shwetha Bhandari >> (shwethab) <shwethab@cisco.com>; 6lo-chairs@ietf.org; 6lo@ietf.org >> Subject: Re: Benjamin Kaduk's Discuss on draft-ietf-6lo-ap-nd-15: (with >> DISCUSS and COMMENT) >> >>> On Tue, Feb 04, 2020 at 02:22:23PM +0000, Pascal Thubert (pthubert) wrote: >>> This was truncated when I received the echo, retrying... >> >> It appears different here as well; interesting. >> I will remove a layer of quoting to make it easier for me to write a reply. >> >>> Hello Benjamin >>> >>> Whao, that was quick. Many thanks again! >>> >>> I got a comment on the change to BCP201 and looked it up. Seems there >>> was a confusion, BCP 201 is RFC 7696 not RFC 7748. So I rolled back >>> the overload. Did you expect something else? >> >> I think I did expect something else; I thought I wrote: >> >> % It's probably better to cite RFC 7696 as BCP 201 directly. >> I guess maybe there was a copy/paste glitch. > > Oups then : ) I changed the reference, also for BCP 26. > >> >>> I'm publishing 17 for the delta below, we still have the 3 open >>> points. Please check the diffs at >>> https://tools.ietf.org/rfcdiff?url2=draft-ietf-6lo-ap-nd- >>> 17.txt >>> >>> More below: >>> >>>>> Why do we need to allow ambiguity/flexibility as to the point >>>> representation >>>>>> within a given Crypto-Type value (as opposed to fixing the >>>>>> representation >>>> as a >>>>>> parameter of the Crypto-Type)? Alternately, what does >>>> "(un)compressed" >>>>>> mean, as it's not really clarified directly? Furthermore, Table >>>>>> 2 lists an "(un)compressed" representation for type 0 (over >>>>>> P-256), but RFC 7518 >>>> notes >>>>>> that the compressed representation is not supported for P-256 >>>>>> (Section 6.2.1.1). I also am not finding the needed codepoints >>>>>> registered in the >>>> JOSE >>>>>> registries to use ECDSA25519 (crypto-type 2) -- do we need to >>>>>> register anything there? >>>>> >>>>> Let us take this one separately in a thread with the co authors >>> >>> I keep this item in the thread, to track that it's progressing >>> separately > > Please consider the changes in https://tools.ietf.org/rfcdiff?url2=draft-ietf-6lo-ap-nd-18.txt > Did we clear the DISCUSS? > > > >>> >>> >>>> >>>> Perhaps it goes without saying (as part of DAD), but the 6LBR has to >>>> consult its database of ROVR/IP address to determine what response >>>> to give in the DAC. Part of my question above was about what state >>>> the 6LBR needs and what verification the 6LBR does as part of the >>>> process >>>> -- am I correct that it's just checking whether (1) the requested >>>> address is already registered and (if so) (2) that the ROVR in the >>>> EARO matches the one registered with the requested address? >>> >>> Yes, per RFC 8505, inherited from RFC 6775. I'd say that DAD expressed >>> as you did is the core function of RFC 6775. >>> This draft does not really change the 6LBR, just adds the capability >>> to stimulate a revalidation by the 6LR. >> >> It sounds like it does go without saying :) Thanks for confirming. > > This draft is really an extension of RFC 8505 and cannot be implemented separately. > But I guess it does not hurt to clarify a little bit. Maybe by changing the first paragraph of section 3 as > " > Section 5.3 of [RFC8505] introduces the ROVR that is used to detect > and reject duplicate registrations in the DAD process. The ROVR is a > generic object that is designed for backward compatibility with the > capability to introduce new computation methods in the future. Using > a Crypto-ID per this specification is the RECOMMENDED method. > Section 7.3 discusses collisions when heterogeneous methods to > compute the ROVR field coexist inside a same network. > " > Is that readable? > > I'll publish this with the changes suggested by Roman > > Thanks a million! > > Pascal
- [6lo] Benjamin Kaduk's Discuss on draft-ietf-6lo-… Benjamin Kaduk via Datatracker
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Rene Struik
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Pascal Thubert (pthubert)
- Re: [6lo] Benjamin Kaduk's Discuss on draft-ietf-… Benjamin Kaduk