[Ace] Ordering Guarantee in CoAP-EAP

Dan Garcia Carrillo <garciadan@uniovi.es> Tue, 30 March 2021 16:49 UTC

Return-Path: <garciadan@uniovi.es>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 568C43A1ADB for <ace@ietfa.amsl.com>; Tue, 30 Mar 2021 09:49:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, MSGID_FROM_MTA_HEADER=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=unioviedo.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0XO5PYgDw98b for <ace@ietfa.amsl.com>; Tue, 30 Mar 2021 09:49:49 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130081.outbound.protection.outlook.com [40.107.13.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A9AFB3A19A0 for <ace@ietf.org>; Tue, 30 Mar 2021 09:49:39 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Q3igpFzgpD4gs3Sf/5n+Eg37c8XG4KAMZE6AfdbL16hJFszGAhS2lSPjGdUYXKedJE4rkHqWNw0d62bEItx8RCUULECDGwwS+ip5IXtByPoEavDDMT27iFNDCV9m1HCxDV9RQ/Gouu8Ty4a/3OHE2FjXhtMIClRX9qv0q11gSGONBZduCfARtKq58UdZPXbxd5VFzjzhE49P0+J6aXzI3g434KlhqVzHgZNYFIvTYJfXuf0mTXnpP2BF9Yol+WtCyeBCGgaA74z+Wv1EAuAG+NVqNQwAGTul8YI3GhVVOAjK0iE/D1ZUr0rxc4Snp5vg8gWPwFjKbcN07kl8Q6/wng==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QPa+NCyZO6NZ5o0nzXs7fxlLpPmBOxmak2JRgrpdLAw=; b=J721VQH1muOYF3/hJV7/u4lLbVhonrpT9dIMpf30NRS2DRwr4MMTWHvjfOvmQRmnhb1w+HazQwt17Q2wmh/5te4UoBcSWXRnWHMgTu7+0srR7qHEa+tpzBD40Ak1oMY241s8n2k06hKLCsUNMK4BI/HSYvhlH+G/xUqgO4v5ZA60pgD/g5sPGW9TIyMYxcmU+6PElpORWYAsD4WSKOAoxs/FZTJxGOgmwPG1BvqGFzFyLyHOkX1rm9mtGkHdDhr9bXaalccNmnzD0Un6d2lq+7mBxxippPqBxycpVVd1CYt7ZVzv/CLYEB/l0Fm1sMcg4j/5h9Eb9My+fb9tMS/A4A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=uniovi.es; dmarc=pass action=none header.from=uniovi.es; dkim=pass header.d=uniovi.es; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=unioviedo.onmicrosoft.com; s=selector2-unioviedo-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QPa+NCyZO6NZ5o0nzXs7fxlLpPmBOxmak2JRgrpdLAw=; b=kt5alkL6YT4ZkbBaAPdLks316qaxfUmMrWPnoR1Mvim61+eiZLibjEJ3RuM3IOiE36goGm1dlBN6u24ddJVLY1ve0CC60D1LI3MguY+TnP0KlatIUyqZZTJ0nTlUQgfrWmhdCyJOKoCxq7Sz8ImD1n9UzCGxCEig6Q7G9vLoZwM=
Authentication-Results: um.es; dkim=none (message not signed) header.d=none;um.es; dmarc=none action=none header.from=uniovi.es;
Received: from DBBPR08MB6202.eurprd08.prod.outlook.com (2603:10a6:10:209::9) by DB9PR08MB6554.eurprd08.prod.outlook.com (2603:10a6:10:254::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3977.26; Tue, 30 Mar 2021 16:49:34 +0000
Received: from DBBPR08MB6202.eurprd08.prod.outlook.com ([fe80::3da3:6df0:c5f1:392d]) by DBBPR08MB6202.eurprd08.prod.outlook.com ([fe80::3da3:6df0:c5f1:392d%7]) with mapi id 15.20.3977.033; Tue, 30 Mar 2021 16:49:34 +0000
To: "ace@ietf.org" <ace@ietf.org>
Cc: garciadan@uniovi.es, Rafa Marin-Lopez <rafa@um.es>
From: Dan Garcia Carrillo <garciadan@uniovi.es>
Message-ID: <4a720f1d-5b46-c86d-4472-95da7774571d@uniovi.es>
Date: Tue, 30 Mar 2021 18:49:32 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:78.0) Gecko/20100101 Thunderbird/78.9.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: en-GB
X-Originating-IP: [94.73.44.78]
X-ClientProxiedBy: MR1P264CA0032.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:2f::19) To DBBPR08MB6202.eurprd08.prod.outlook.com (2603:10a6:10:209::9)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
Received: from DansMacBookPro.local (94.73.44.78) by MR1P264CA0032.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:2f::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3977.25 via Frontend Transport; Tue, 30 Mar 2021 16:49:33 +0000
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: ad508720-aaf0-4961-9244-08d8f39bcbde
X-MS-TrafficTypeDiagnostic: DB9PR08MB6554:
X-MS-Exchange-Transport-Forked: True
X-Microsoft-Antispam-PRVS: <DB9PR08MB6554440FC1E955641B810EAAB47D9@DB9PR08MB6554.eurprd08.prod.outlook.com>
X-MS-Oob-TLC-OOBClassifiers: OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DBBPR08MB6202.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(376002)(396003)(136003)(39850400004)(346002)(2616005)(5660300002)(6916009)(956004)(6486002)(83380400001)(38100700001)(2906002)(8936002)(316002)(8676002)(186003)(6512007)(86362001)(786003)(26005)(66946007)(36756003)(31686004)(6506007)(966005)(31696002)(52116002)(66556008)(66476007)(4326008)(478600001)(16526019)(4090200002)(43740500002)(45980500001); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData: =?utf-8?B?UEduaFA0czl6NU84UWdDWEJxckZldHQrZWVsSTdoRURCYmkxM3NlbVdoN0Ns?= =?utf-8?B?cDJJMng3aFRZY2xQSUxNT0ljakloUDBWNDF3eGVNYVp0THJqbndhRTJ3ai9U?= =?utf-8?B?aXVxUXpSYzRqMVNFMC9QWkFTc1BMY0hvRS9yNng4Rlc1REtWNkt1L3RWS25q?= =?utf-8?B?YXNseEZNNzdXME9xbnlMdjl3MHV4QXRwQ1B6Tlh1VnZMRkU1M2xWVjdacGtp?= =?utf-8?B?RDhYMTlrYk5FeHVXZmRhK2JPNjZTSUhkbUlYbjZVcVp2aFFvMkRRVUtTUzJY?= =?utf-8?B?blllbmF0OTRkd09VZGFNT3p6QUhxN0pKSnFkSjFtdDdQbHhHdmJ3alZpcVFI?= =?utf-8?B?L3BMT3hYNjBRV3V3ekV4Zm5CS01hWkNNTFRnNjRwU2FDVlZ1MmJWZEU5dFRr?= =?utf-8?B?UDFrM1dXOTBoQUVMSGF4NmlobmdtL3poQTMyOVpqZURFMkZwU1ZFN2daUFJt?= =?utf-8?B?dXgyUkpYT3BGTVhETlJnOGNVUHU2RVlhdDM0OXcvQ1hnS2tjUjQ0ajVTcDNa?= =?utf-8?B?ZkFSNzBRZ2YvMGpzSGlyblJYeWJjZFJMcjhIUitzRWZXV1g4WEdtOEM2QVYx?= =?utf-8?B?VHZkVnlyVm91bGdDdTJQYVFtZi9GZ2dnMld5KzlMdzRKVTZXekZ1WVIwZWhL?= =?utf-8?B?WCtHSWZhMEJKYWhvVHRCNy9scFBwbjUyRThvYmNOMzZwajl2VUUrQW9kd3NV?= =?utf-8?B?T3g0SldBVVhMb05VRjBUWjhvNm9UZ2YvQ291bUxCSjJjWGFpWitjeStRb1lt?= =?utf-8?B?SmRTNG1EYS9lUmlqOHFqN3FYK09acFk1UTRzUEJoVHVMUExXRkIydGsvTlhT?= =?utf-8?B?UDIrTE1FQWQ4MDV5aDNGbmVDYzk3TVRYR2p5QmFpTUZvRW5kLzVLWVU5TmNN?= =?utf-8?B?ZGdkNzNjWENHeW4rNWZPbUkzbDhPZFFzd3MrT05UemNuOENiRDZyam51THpJ?= =?utf-8?B?UkJicE1GdFg4R1pBZ29FVGNXT2R3aWF5T3A2Z0RQTkFjaHBJQ3VpSmhnQllX?= =?utf-8?B?N0t5Z1JQV21YdFNXQ0lIOG5hK01CQ05qV1R3bXZ5TlVtTU9uOVdtZk83RnRQ?= =?utf-8?B?cENkdFQxb0o1V0YwVlF5aGNxU2syRkhJd3pNcTNYNCtlRTRQRXNzcHYzb3NV?= =?utf-8?B?WHhrelNkNEZMemRROEhSVG9GSjRDak41aWp4TTJYS3l3NmI3cXIyOEszUjQ2?= =?utf-8?B?NGZDRmMxRGN4ZGgrOEdHbzhJdyt0VC9yOXljTHZuSTlJR3hhbExFTlMzTGZ1?= =?utf-8?B?bkg2YlNNRFVtcFpReDdVKzdKY3BBOUF2WVl1T1RGeC95T01jQVVBSVJSaVR2?= =?utf-8?B?N0tVelVRSGd5bHZVQmlkUHBqakNEaDhoek5GUDBYcEpFWkNxL2RRR2pKMHBr?= =?utf-8?B?Z3hyclhBUGdIQ2IxUEUxeU1ndUt5RlZyV0ttSS9BUGJ4Ull1STJ4cm1WZFI1?= =?utf-8?B?TVRld1NVSW1ZM1BjakxIUGNWRjRmU010TUExbkowSFgreWpYUmtZZVVIeHRv?= =?utf-8?B?SSs5WnNsMUhGL1gzaU9RN3ZDdC9EZDU5T1pqdzNoejVPaFVxbk1TMEtWaEY2?= =?utf-8?B?b1o3OHI4d0NjOUhyUUl5cEx3MUVORi9GWkZZMGxxT0FsVlBUckZXT29sS2pD?= =?utf-8?B?SU9qQjB2R1h0OW9uTWdFYmVRcGtUeHRrUnFZRnFCRzY3bThQMGs0QUM3ems4?= =?utf-8?B?OHFudUM0RHllNkM4emRSWXptYnJyemcybWFJUWdBWmx4R1lYSU82K2k4ZnN4?= =?utf-8?Q?x+i2xRGWBPQT4wqA528bLJLYIZk8Q9iQ3CBpyob?=
X-OriginatorOrg: uniovi.es
X-MS-Exchange-CrossTenant-Network-Message-Id: ad508720-aaf0-4961-9244-08d8f39bcbde
X-MS-Exchange-CrossTenant-AuthSource: DBBPR08MB6202.eurprd08.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Mar 2021 16:49:33.9931 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 05ea74a3-92c5-4c31-978a-925c3c799cd0
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: ZKFofkZ8gLrkez7LzXd1cPLxX8Is/q9vYRT1BGjSFfuwF46OEqXEbO14LW0/rBWzgQTAkhpRMEKm8ffiBimGhA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR08MB6554
X-MS-Exchange-CrossPremises-AuthSource: DBBPR08MB6202.eurprd08.prod.outlook.com
X-MS-Exchange-CrossPremises-AuthAs: Internal
X-MS-Exchange-CrossPremises-AuthMechanism: 06
X-MS-Exchange-CrossPremises-Mapi-Admin-Submission:
X-MS-Exchange-CrossPremises-MessageSource: StoreDriver
X-MS-Exchange-CrossPremises-BCC:
X-MS-Exchange-CrossPremises-OriginalClientIPAddress: 94.73.44.78
X-MS-Exchange-CrossPremises-TransportTrafficType: Email
X-MS-Exchange-CrossPremises-Antispam-ScanContext: DIR:Originating; SFV:NSPM; SKIP:0;
X-MS-Exchange-CrossPremises-SCL: 1
X-MS-Exchange-CrossPremises-Processed-By-Journaling: Journal Agent
X-OrganizationHeadersPreserved: DB9PR08MB6554.eurprd08.prod.outlook.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/ZOs4J-jOe8hLooO5nUFhgoxwYGE>
Subject: [Ace] Ordering Guarantee in CoAP-EAP
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Mar 2021 16:49:52 -0000

Hi ACE,

Last Thursday we had a conversation with Christian regarding possible 
optimizations on how to provide the requisite of the ordering guarantee 
for EAP.

This is currently achieved with an Option we define (SeqNum) to maintain 
a sequence number. This number is initialized randomly by the Controller 
and increased monotonically. This way the IoT device is able to know 
which is the next expected message.

In previous investigations, having into account that we are dealing with 
a lock-step protocol, we consider using the MSG-ID. The fact that they 
can be generated randomly was not a problem, since we considered that 
the CoAP engine store the recent MSG-IDs to detect duplicates, and any 
new message with an unregistered MSG-ID was considered the next expected 
message.

After our conversation with Christian, he pointed out that there may be 
implementations which may not keep track of recent MSG-IDs, hence we may 
need to rely on other mechanism to ensure the message sent is the one 
expeted.

To avoid defining a new option, we could use existing solutions to help 
provide ordered delivery:
- URI-Query
- Location-Path and Location-Query
- Echo Option

URI-Query:
We can use this as part of the request to specify accesing a resource 
with a subsequent value that indicates the step we are currently in 
(e.g., /b/x/n), 'b' -> bootstrapping service; 'x'-> resource for the 
currenty bootstrapping state; 'n'-> the current exchange

Location-Path and Location-Query:
In the response we would indicate the update on the current state and  
what is expected from the client in the next message, by adding the 
Location-Path and Location-Query Options. The problem is that currently 
these options are specified with 2.01 response code, not 2.04 Changed 
(the one we are using every time we update the bootstrapping state).

Our question is, would be possible to have this confirmation in the 
response?

Echo Option:
Finally, another option proposed by Christian is to use the Echo Option, 
starting in the first ACK from the server, to achieve the ordering 
guarantee. The server would state a number that has to be replied in 
another Echo Option in the next POST request from the server.


We feel that the mechamism finally chosen, that we are pursuing for the 
need of the EAP requirements, could be used for any lock-step protocol 
using CoAP as transport.

This is what we understood, please Christian comment if there is 
something to be clarified.


I think the option with the Echo Option we achieve a clean solution with 
a similar approach as we propose with the SeqNum Option.

Best Regards,

Dan.



[1] https://tools.ietf.org/html/draft-ietf-core-echo-request-tag-12