IETF Logo Mail Archive

Re: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022

Esko Dijk <esko.dijk@iotconsultancy.nl> Fri, 04 November 2022 10:51 UTC

Return-Path: <esko.dijk@iotconsultancy.nl>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 32FEAC14CF00 for <anima@ietfa.amsl.com>; Fri, 4 Nov 2022 03:51:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iotconsultancy.nl
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1lRLSEV5M2jq for <anima@ietfa.amsl.com>; Fri, 4 Nov 2022 03:51:18 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2113.outbound.protection.outlook.com [40.107.22.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A56F5C152711 for <anima@ietf.org>; Fri, 4 Nov 2022 03:51:16 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Z3SnPoGc5ACkN/Lwh4tWcO93B/e8qBUuBEiytOOgZ3z6f3vxaV0UKXZo2jyLy7ACdcElBkR3r2iyKvXZtGk3D/cZ/qymQl97IRatOzaPF3BgFuyQE0YnqObq5Zt3ciOmCPXuBWcQJ0H41uBZ9Gk6+IbJqIAYoHrB8vd7G8cmi64uco9wkiGx7hdNrqQBTqBhRXVKTB4fY1s4V8dt9xrlBbIRhSk66sryps5Cn4EqoEbrk5AUsRRFu8Y6GJv7SW2INDtNeHQ1c7gq3RpBNpCpaUmZXYbHIQbaaFf7gABVzVxzrZcMZj8YqvYfCvvml2aT5iSL0+zsy4kRxcO7EdRjHA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=IaFSgwVyJ0mVPGZnpyoBl7goeKvilBe92HxJuai/HkI=; b=UikMpobps8CXUSbVzHpEKF7bG8HxEt64FV9gFxnFUO8EGzc87UZix1x4y2L/fdeAjW57ZlcSvzoHeVInsQDw4+x/bzzjUXF0JoXEjU5lrbLxJZiZnOvL0xp1UFICzqWMJz8F/ip2O+ZQgfGkMD7OOojJkEuC4O+dzD7buZAIoy/HFP8yveqypZhX3fGnvfms/bdj37CRpWuvK7ohqu/ioEptxsEoVFMxwtOPkA85a7q6uBI8QXpPyz8lPoVWHd+JYQ/NvmBgmxVUak0YN1Ii2XeVojhnP4NppzpU0G6lq+3CBvEZcdrD5H+hBZhy+SslE6uLYJ8blsNHT/z2zXco0A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=iotconsultancy.nl; dmarc=pass action=none header.from=iotconsultancy.nl; dkim=pass header.d=iotconsultancy.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iotconsultancy.nl; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IaFSgwVyJ0mVPGZnpyoBl7goeKvilBe92HxJuai/HkI=; b=QbFVdQizh59HmmH/a1veQyC3jYU22BEqsECG0mMba2ppV7yL5r13nnpRFSoCFqAs3FUIWZmtJa1Nx804yb9sli4zOB3ionM83h48YAnLaE3rT4fI8zUU0rLDT1Yjhi5ap2fYG8jYhGA3EkDiZidAcW0O1Jy+mlr3hIE6Y69AovI=
Received: from DU0P190MB1978.EURP190.PROD.OUTLOOK.COM (2603:10a6:10:3b9::20) by VE1P190MB0990.EURP190.PROD.OUTLOOK.COM (2603:10a6:800:1a1::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5791.22; Fri, 4 Nov 2022 10:51:10 +0000
Received: from DU0P190MB1978.EURP190.PROD.OUTLOOK.COM ([fe80::1de:9807:7495:454e]) by DU0P190MB1978.EURP190.PROD.OUTLOOK.COM ([fe80::1de:9807:7495:454e%2]) with mapi id 15.20.5791.022; Fri, 4 Nov 2022 10:51:09 +0000
From: Esko Dijk <esko.dijk@iotconsultancy.nl>
To: Toerless Eckert <tte@cs.fau.de>, Michael Richardson <mcr+ietf@sandelman.ca>
CC: Anima WG <anima@ietf.org>
Thread-Topic: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022
Thread-Index: AQHYwhP3HO7jwtOswEm8kcCpJFFx1a3ov6uwgAEGqwCAAAIXgIAIbm+AgBhVcfCAIpEQgIAAPf2AgAADt4CAAYZyIA==
Date: Fri, 04 Nov 2022 10:51:09 +0000
Message-ID: <DU0P190MB1978B3ADE46E5E5AA4C2F8E3FD3B9@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM>
References: <Yxd/oBl0dmbmUI8L@faui48e.informatik.uni-erlangen.de> <DU0P190MB1978F420D478B93CE29F36D3FD4C9@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <46723.1663756262@dooku> <DU0P190MB1978AC04BBB22272B360984DFD4F9@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <YzH8R88OY/kNDLxz@faui48e.informatik.uni-erlangen.de> <DU0P190MB1978A4C862C2DE321FD8680EFD229@DU0P190MB1978.EURP190.PROD.OUTLOOK.COM> <Y2NlC2iCgtyn3T2I@faui48e.informatik.uni-erlangen.de> <841584.1667471627@dyas> <Y2OcKfz+hNoaViRi@faui48e.informatik.uni-erlangen.de>
In-Reply-To: <Y2OcKfz+hNoaViRi@faui48e.informatik.uni-erlangen.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=iotconsultancy.nl;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DU0P190MB1978:EE_|VE1P190MB0990:EE_
x-ms-office365-filtering-correlation-id: 60196532-c795-4b2a-dd1d-08dabe527b9d
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DU0P190MB1978.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(396003)(346002)(136003)(376002)(366004)(39830400003)(451199015)(5660300002)(110136005)(66446008)(66946007)(7696005)(6506007)(76116006)(71200400001)(4326008)(478600001)(66476007)(186003)(83380400001)(41300700001)(26005)(9686003)(2906002)(8936002)(52536014)(64756008)(44832011)(55016003)(38070700005)(66556008)(66899015)(38100700002)(316002)(53546011)(122000001)(86362001)(33656002)(8676002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 4swuvEm1W+3P5BLR4LLV4tEPdoS3TegE++qjYROhEjNQNxmUjGFcnBFuEiyjrRKuzrqZLwi1eIFl8n02d73GY+jOlewaDk1Pi4w/bO8n2sfJEbQbDoDShqFupPTjNincy11UiD5x9bub9hrsh8Y0HamvzDOV4n0+lZHuVkva7DLfJG0whWM5duu/mRY7ATy0q/84kWtG5cd8ikOvO4iDBdZN8JXESjgvQ60ElwNAN0Lm2CtYRFqPQ3mNTKwoFb0C3FLYSPDx2Lut/Z33JUl4+qRas1Dpr3NdB8Zpl3TeFJPc5O0nmwOaItute+zFOMcMzCTGC5L/JKsU9T+tAh4T9LhaOKnEBSS9XHTo1lPF295mjLdV1+4Vk8PurxV20vZsEu5eLJuveNUVT+3ZlHgC1CDluHK4bueXqAOqcHJEeq5qYhPOQYxOfYPcWN3CKEig8bVmRCkaALjVRkcCUZIBfCGpksefrcKYpaV+VnLb8J9Maraa8uHzO249xo55Rtbu/28qBhhaLwDQi3Ngfh6ToeR1uaRgkCWb9+345MXLSn+pt8jfGaOhZ4t34Qjni0qcIAtMYe42U+lBnI/PEMlPHw+t0mFVCmtdBJ6FbFWISxNyXdIBa0BbRG5sdfYQ3cVkULeXDThaBDWiS+093sQvUkCLaCJEi6cdY25xcbZmTveEsN9yH8vjzHP5PmitqFi/O0q8tokJ3S85pzbl9q52atjADrL5q88D9rEDikI7DjNEerWxcoxrxj9ay2WTskuSsVQXV6ptXH+XUaJebjSKRJDeYjfJaQN93WQsb8xtUpa+L8lM0+qRiXdGHqXF/1Vak5e2/XHkUk/qHCgOKu91fX8koePBOAeu2uvk1KSOByXZxOb4eO8FaFaVmqQcV9CUs5YOQFj3R5ST5zgjNjr6ngrWT5WqA0t4dhWd5LcLcFhYPca/GTuoGQYWdzFcyYeGWxbFYyd6Wm+/OjsFgMdkIytSgBOXb3bi9mE0ZNSLhqcdlBJCB1tmj+panhE+CXFZ4MAVO2kDRfsN+FMyACHhb2fITN6QQVt9HyYzn3wilM500NSOIqeo2BHbIdhZl/sMcEABfGyynNHOTs4RWDo9yoPciLnKr1F+iqjD4Y2rGTgh1zui4sQapicOHr3axf3B46TSe+/ksB7q1kYsCIuTQXFUrhY5ah5Wi3kazgzgu8ZRDuj/Dws8k0uI8q0uz4AUaMN92a6AhKoscvCSsSSETsZh4gW5dS7l0l0BPZDGArdYqAOjqptr04O46QtCMscRG45GNJfPQFOL1yj+wTlzK5kRb9uHdHDJOENhcfw54nIQI92i4Cv0iCsBAcS/rcY1RVLBuU8s6JYSJIWKxlVCZFOcMYXMrttk4f3FvF/k/WiMslLdsg49q4MrH+GlMLRST3F9r1s66YTG4vJyCshbtq/ZVUJ1l54iZX2/EwtVzldv80DWTYbt62MjTF4sWn60qh1ThDBYeZAF0qQUxqqXP+KggWzsnPeBRaNw4O54n2gLkFCOXkhw5o2VR/Fthr7l672oOp00zfIIkzaxXYGuSkQyJKvooTWHKWwTxbErCqtpr2nvU0LmviKPTkU0IL2O
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: iotconsultancy.nl
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DU0P190MB1978.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 60196532-c795-4b2a-dd1d-08dabe527b9d
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Nov 2022 10:51:09.6416 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 58bbf628-15d2-46bc-820b-863b6774d44b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: fhZ1rdVZ1Ct3bgO8fphm9xIK19FouGHZ63dU41bQyrMF1szvwIUMxuRdkom6+2MiYJK2JxoRzn3+7/8e3zJJXRZlF8J24JcU3Uq33mZGDMI=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VE1P190MB0990
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/3uxAxLN8dQW9886QXTRcjFpyWfo>
Subject: Re: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Nov 2022 10:51:23 -0000

For RF bands with legal duty cycle regulations, sure any device using such band always has to comply with the duty cycle.
So we could say that's not our specific problem; it holds in general for any data sent by the device.

But I do see the point that for duty-cycled RF transmitters there's the added challenge in this case that forwarding "untrusted" data traffic eats up the hourly data limit that the device has. In that case a device may want to throttle depending on how much data it still has left for the coming hour. Or it may want to simply apply some preset limit (like 0.2% of channel capacity if the RF Tx duty cycle is 1% i.e. 20% of average hourly data budget).  That's up to the implementer. 

Esko

-----Original Message-----
From: Toerless Eckert <tte@cs.fau.de> 
Sent: Thursday, November 3, 2022 11:47
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: Esko Dijk <esko.dijk@iotconsultancy.nl>; Anima WG <anima@ietf.org>
Subject: Re: [Anima] 2nd WGLC for draft-ietf-anima-constrained-join-proxy-12, ends September 20th 2022

On Thu, Nov 03, 2022 at 10:33:47AM +0000, Michael Richardson wrote:
>     > How would you deal with proxies that are on frequencies where the duty cycle
>     > is limited by law. For example devices on my 868 home automation network needs to maintain
>     > a 1%/hour duty cycle.
> 
> "by law" or by regulation or by protocol?

Pretty sure this would be regulations (aka: civil penalties if you misbehave,
enfroced by whatever the regulatory agency in the country is. I could try to look
it up for Germany, where i saw this in the products i am using).

> Your 868 system might be unable to complete onboarding, or maybe it will take
> an hour.

I have to admit i do not even managed to figure out the nominal bitrate best case
for he 969 Mhz system ;-) But also the ZWave "Interview" (the system i am using in the
USA) is taking several minutes. I can't say this is a good user experience, so i am
all for finding best compromise - but challenging.

>     > The problem to me seems that under those regulations, badly behaving nodes
>     > can force proxy and registrar into exhausting their regulatory limit as
>     > well unless either proxy and/or registar do something against that.
> 
> Yes, that's true, and why we want to be able to switch onboarding on/off.

Sure. "Status: Forced to idle - Call 1-800-SORR-YFCC"
;-)

>     > It almost feels as if radio networks where there are strict duty-cycle
>     > limits are requring per-pledge state on the proxy if the proxy wants to
>     > defend itself against the attacking pledge exhausting the proxies own
>     > duty-cycle. Unless the proxy function itself stricly operates
>     > independent of pledge on a cycle that is below the overal permitted
>     > duty-cycle for the proxy.
> 
> Yes, if one has ram and power, a stateful proxy can do a better job of
> defending the network against attacks.  A mains-powered PLC gateway between
> power and 802.15.4 could/should do exactly that.
> (Mind: I saw PLC systems that do Gb/s at networkX two weeks ago...)

Indeed. Building BRSKI for the future we also have to be worried about designing
against obsolete constraints of the past... But i guess LORAWAN would be here to say
for long enough for us to worry, right ?!

>     > Proxy operations as described in this document are not necessarily sufficient
>     > to protect proxy and/or registrar against misbehaving pledges that attack
>     > proxy/registar with too much data, especially when using (radio) networks
>     > with regulatory limitations on the volume permitted per sender (such as
>     > 1% duty-cycle per hour limitatios).
> 
> Yes.  But, let's not boil the ocean.
> It's a PS.  We need to finish it so that we can deploy it so that we can
> learn.  Perfect is the enemy of good enough.

Sure. I just wold love to see us not loosing the insight we're getting here...
wiki / github - where would you think we could best collect them better than
here in email ?

Cheers
    Toerless

v2.23.0 | Report a Bug | By Email