Re: [Apn] APN presentation in SAAG on Thursday.
David Schinazi <dschinazi.ietf@gmail.com> Fri, 12 March 2021 18:44 UTC
Return-Path: <dschinazi.ietf@gmail.com>
X-Original-To: apn@ietfa.amsl.com
Delivered-To: apn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AD753A1AD1 for <apn@ietfa.amsl.com>; Fri, 12 Mar 2021 10:44:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SG66HdRiZwHU for <apn@ietfa.amsl.com>; Fri, 12 Mar 2021 10:44:32 -0800 (PST)
Received: from mail-pl1-x62f.google.com (mail-pl1-x62f.google.com [IPv6:2607:f8b0:4864:20::62f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 271F83A1ACD for <apn@ietf.org>; Fri, 12 Mar 2021 10:44:32 -0800 (PST)
Received: by mail-pl1-x62f.google.com with SMTP id d23so9127314plq.2 for <apn@ietf.org>; Fri, 12 Mar 2021 10:44:32 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=pM6J8I1mQvd6X8r5Mv3DhVXxZcpBbTtGFZZJwED0Jlg=; b=o2Gt/9dKLJVMWNpk+MjJLEzIGV6GVYGPAhT1LMKDJWFfjCI0iWYHnGxMHoNxvYGckx hI4V9kJeoc4bMceGdy/YyuG0WFGHT1ZK/e5j0Pdk9xYqF/FKxpQgP2xeNs4gLcpMGu7z ENJ/yq9ZELj4I4I4zM2+TVUioqfnzvGNYNJzo/zCxeZbUDWz4PV2GrvDjtVNfan5ReOT wzhBdW/Y6J91yvX1H0aaJbR95+xCJduGIvhoWTOw18EA0r9p/nMhPUnsg7Fhudkyet4Y VgP+9l6t8iHtASj4ELkOAnZVUJjWskqZwPa8EGf6NNoBRKdVnMaaKgqIAhP732URflmu lOgw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=pM6J8I1mQvd6X8r5Mv3DhVXxZcpBbTtGFZZJwED0Jlg=; b=Vzt0M1Hk8P83XmOJIor+DLe/qDUx3hk51Iz/h+q/MY+GTGbQXFqrOBvTMxS14ptQoK U+J9JjvxE9R4ClEIj9Iq6ABwI5bNaT1gbXFsOCKsOi0qB5SSSX1WYLhpc9NPqqI8DdQr 3dVkLRhEiVG9IuHN4dvUdtLV+ZP2DnGm6Hmi3fvICAtbmbZi9+VUUv+EQletaW3R+Hld 81DObf0M5UcsdZSIyO2xvxnuFMjDdOSLC23m1vTTbfZ2JlAZs088ceoEy0ba/ABQeDJ7 bCo7d79FSNJ/sZG9ff+3wDrlKHPtA12EuN17YhGR2KWvBfRtPN6A9r9Okv6Zw5lLe6zf 1YZQ==
X-Gm-Message-State: AOAM5314u5YP1WpyIfIS4GoNUundFwRAn53B1GO2iUX+yeyNUPYjWicq 1Z+hUEPfTQMTkr0ewn2bfhFD4yjMoZB3D0QO5oQ=
X-Google-Smtp-Source: ABdhPJyeEiXToqrx4gpbT+RJRz8HPNhAqLfsNtJHCL4ToNIr1wf+AN3Y1ZW+HgpP4LNOS/7gJaBQGwn6qTLSK8iS1ew=
X-Received: by 2002:a17:90a:f28e:: with SMTP id fs14mr15241681pjb.100.1615574670633; Fri, 12 Mar 2021 10:44:30 -0800 (PST)
MIME-Version: 1.0
From: David Schinazi <dschinazi.ietf@gmail.com>
Date: Fri, 12 Mar 2021 10:44:19 -0800
Message-ID: <CAPDSy+5QyTXmMWw6Hm2bkmRPPRaAipODCYqZLq_ZHRr4F1L+pg@mail.gmail.com>
To: Zhenbin Li <lizhenbin@huawei.com>, "Pengshuping (Peng Shuping)" <pengshuping@huawei.com>, APN <apn@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000059eddd05bd5b4a08"
Archived-At: <https://mailarchive.ietf.org/arch/msg/apn/vPK-TI4Fi-ghMVPDvnZPtE4SCjE>
Subject: Re: [Apn] APN presentation in SAAG on Thursday.
X-BeenThere: apn@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Application-aware Networking <apn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/apn>, <mailto:apn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/apn/>
List-Post: <mailto:apn@ietf.org>
List-Help: <mailto:apn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/apn>, <mailto:apn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Mar 2021 18:44:34 -0000
Hello Zhenbin and Shuping, Thank you for the discussion in SAAG. Now that I have a better understanding of your proposal, I would like to share some thoughts here on the list. But first let's make sure I understood you correctly. In the meeting you mentioned that the client device (e.g. mobile phone) does not send any APN-related data, and that there is a network device that looks at the 5-tuple, and uses a classification mechanism to infer the APN data (application ID, user ID, etc.). In theory, any network appliance that wishes to provide applications with different treatment could run the same classifier. You made the argument that this classifier might be expensive to run on every network appliance, so you would prefer to run it once, and write the result in the packet so other network appliances can simply use the result. You also mentioned that there is a non-IETF encapsulation mechanism being used between these network appliances. Is my understanding correct? If not, can you point out anything I misunderstood? Assuming I understood correctly, then I don't see a need for IETF to solve this problem. You are free to modify the non-IETF encapsulation protocol to augment it with this APN information, you do not need to have this information in an IPv6 extension header, and you do not need an IETF standard. Therefore, I believe this work should not proceed at the IETF. Regards, David On Wed, 10 March 2021 14:47 UTC, "Pengshuping (Peng Shuping)" < pengshuping@huawei.com> wrote: > Hi Folks, > > Thanks to the ADs and the Chairs, we are going to present APN (Application-aware Networking) in the SAAG working group at 13:00-15:00 (UTC+1) Thursday. > > APN is focused on developing a framework and set of mechanisms to derive, convey and use an attribute information to allow for the implementation of fine-grain user (group)-, application (group)-, and service-level requirements at the network layer. APN works within a limited trusted domain, which typically is defined as a service provider's limited domain in which MPLS, VXLAN, SR/SRv6 and other tunnel technologies are adopted to provide services. > > In the presentation, we would like to introduce the concepts, clarify the scope, attract people to understand and discuss the topic, and collect feedback and suggestions on this work, to further address the main concerns that were raised by the IESG. > > For the SECers, we would like to especially know about what the security issues are when the APN attribute is used within a limited operator's controlled domain. > > Please find the latest version of the key draft, clarifying the scope and the gap analysis. > https://datatracker.ietf.org/doc/html/draft-peng-apn-scope-gap-analysis-01 > > We have been discussing in the APN mailing list regarding the various aspects of APN. If you have not subscribed, you are very welcome to subscribe. You can also find the archived discussions. > https://datatracker.ietf.org/wg/apn/about/ > > More information about APN can be found here. > https://github.com/APN-Community > > Best Regards, > Shuping
- [Apn] APN presentation in SAAG on Thursday. Pengshuping (Peng Shuping)
- Re: [Apn] APN presentation in SAAG on Thursday. Joey S
- Re: [Apn] APN presentation in SAAG on Thursday. Pengshuping (Peng Shuping)
- Re: [Apn] APN presentation in SAAG on Thursday. David Schinazi
- Re: [Apn] APN presentation in SAAG on Thursday. Lizhenbin