IETF Logo Mail Archive

[6tisch-security] transporting Router Advertisements in Extended Beacons: draft-richardson-6lo-ra-in-ie

Michael Richardson <mcr+ietf@sandelman.ca> Tue, 18 October 2016 16:13 UTC

Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: 6tisch-security@ietfa.amsl.com
Delivered-To: 6tisch-security@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F28EE1296BC; Tue, 18 Oct 2016 09:13:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.332
X-Spam-Level:
X-Spam-Status: No, score=-2.332 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.431, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1Yokp7hJ2Dxk; Tue, 18 Oct 2016 09:13:08 -0700 (PDT)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 197371296D2; Tue, 18 Oct 2016 09:13:08 -0700 (PDT)
Received: from sandelman.ca (obiwan.sandelman.ca [IPv6:2607:f0b0:f:2::247]) by tuna.sandelman.ca (Postfix) with ESMTP id 5FCF52009E; Tue, 18 Oct 2016 12:27:42 -0400 (EDT)
Received: from obiwan.sandelman.ca (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id C4D5563AFE; Tue, 18 Oct 2016 12:13:06 -0400 (EDT)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: 6tisch@ietf.org, 6lo@ietf.org
In-Reply-To: <147680041580.30853.17692159482786173917.idtracker@ietfa.amsl.com>
References: <147680041580.30853.17692159482786173917.idtracker@ietfa.amsl.com>
X-Mailer: MH-E 8.6; nmh 1.6+dev; GNU Emacs 24.5.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha1"; protocol="application/pgp-signature"
Date: Tue, 18 Oct 2016 12:13:06 -0400
Message-ID: <12199.1476807186@obiwan.sandelman.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch-security/nY1e4yOajf0PLkAE4iNzjTfm7II>
Cc: 6tisch-security@ietf.org
Subject: [6tisch-security] transporting Router Advertisements in Extended Beacons: draft-richardson-6lo-ra-in-ie
X-BeenThere: 6tisch-security@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: 6tisch@ietf.org, 6lo@ietf.org
List-Id: Extended Design Team for 6TiSCH security architecture <6tisch-security.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch-security/>
List-Post: <mailto:6tisch-security@ietf.org>
List-Help: <mailto:6tisch-security-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Oct 2016 16:13:10 -0000

Hi, as detailed in the design team minutes at:
   https://mailarchive.ietf.org/arch/msg/6tisch-security/QI671AgUjY2t4nMKSWc7SPn5PjA

The design team has come to realize that there would be significant time and
energy savings if we could embed an IPv6 Router Advertisement into the
802.15.4 TSCH Enhanced Beacon used by 6tisch to synchronize timing, and
announce the schedule.

I did an initial draft at:
  https://datatracker.ietf.org/doc/draft-richardson-6lo-ra-in-ie/

at the cost of 1-2 bytes, it just uses 6282/6loRH compression to store any
IPv6 packet, but we may want to lock this down more.  The total content is
56 bytes, which just barely fits into a Beacon. (uncompressed it is 80 bytes,
which will not fit)

This is very very much -00!!!  Comments and co-authors welcome, github at:
     https://github.com/ietf-roll/6lo-ra-in-ie

Much more "why" text is needed, and how to use the components is needed.
I don't know if this should be a 6lo or 6tisch work effort; I leave it to the
chairs to think about this.

Unless I mis-read 6282, it provides no compression of ICMPv6 headers,
nor does 6loRH do so at present.  I know that Pascal had talked about coming
back in 6loRH v2, using the new code page space, to compressing RPL (which is
ICMPv6).

I went slightly further afield in this document, and defined a new Router
Advertisement option that I called:
              "Constrained Network Identification"

This will contain a copy of the 16-byte DODAGID so that a very sleepy node
returning to operation would be able to identify which beacon belongs to
which network.  A joining node will have no idea which DODAGID it
wants, and a maliciously sent beacon could have any manner is superfuge here.
Nodes which have already joined the network SHOULD be able to authenticate
the beacons.  However, this is one of the larger objects in the 56 bytes that
I describe, and maybe it is excessive to store so many bytes here.

It could be that the SLLA option (and EUI-64 contained within) is also
unnecessary.

I want to attempt to apply RFC7400 (GHC) to this, the savings will be
probably on the order of ten bytes of zeroes.


--
Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works
 -= IPv6 IoT consulting =-

v2.23.0 | Report a Bug | By Email