IETF Logo Mail Archive

Re: [arch-d] Development of Internet Protocol "Five Fields" (IP-FF): Presentation

Bob Briscoe <ietf@bobbriscoe.net> Thu, 07 January 2016 18:48 UTC

Return-Path: <ietf@bobbriscoe.net>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6BBCA1A92EA for <architecture-discuss@ietfa.amsl.com>; Thu, 7 Jan 2016 10:48:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JqBb3ngx21Pt for <architecture-discuss@ietfa.amsl.com>; Thu, 7 Jan 2016 10:48:51 -0800 (PST)
Received: from server.dnsblock1.com (server.dnsblock1.com [85.13.236.178]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55D151A92E9 for <architecture-discuss@ietf.org>; Thu, 7 Jan 2016 10:48:50 -0800 (PST)
Received: from 96.21.198.146.dyn.plus.net ([146.198.21.96]:35980 helo=[192.168.0.6]) by server.dnsblock1.com with esmtpsa (TLSv1.2:DHE-RSA-AES128-SHA:128) (Exim 4.86) (envelope-from <ietf@bobbriscoe.net>) id 1aHFc8-0007bM-At; Thu, 07 Jan 2016 18:48:48 +0000
From: Bob Briscoe <ietf@bobbriscoe.net>
To: Alexey Eromenko <al4321@gmail.com>
References: <CAOJ6w=H7bs8kGt+ct=DKaVOtNcnD6PnouzpjmmLTL3P=C-Zynw@mail.gmail.com> <D2B140A5.27F7%theodore.v.faber@aero.org> <9020D012-C361-45E2-9C31-B39E852E239B@tony.li> <568C2DF9.2060003@isi.edu>
Message-ID: <568EB30F.5050803@bobbriscoe.net>
Date: Thu, 07 Jan 2016 18:48:47 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.4.0
MIME-Version: 1.0
In-Reply-To: <568C2DF9.2060003@isi.edu>
Content-Type: multipart/alternative; boundary="------------030800080808040109090208"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.dnsblock1.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bobbriscoe.net
X-Get-Message-Sender-Via: server.dnsblock1.com: authenticated_id: in@bobbriscoe.net
X-Authenticated-Sender: server.dnsblock1.com: in@bobbriscoe.net
Archived-At: <http://mailarchive.ietf.org/arch/msg/architecture-discuss/aQbFII2J0ev-RQ6aigp-szPpjMY>
Cc: architecture-discuss@ietf.org
Subject: Re: [arch-d] Development of Internet Protocol "Five Fields" (IP-FF): Presentation
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jan 2016 18:48:53 -0000

Alexy,

I suspect you are most proud of the fact that you have produced a set of 
ideas that all work well together.
But see inline...

On 05/01/16 20:56, Joe Touch wrote:
> On 1/5/2016 10:14 AM, Tony Li wrote:
>>>> On Jan 5, 2016, at 9:43 AM, Theodore V Faber<theodore.v.faber@aero.org>  wrote:
>>>>
>>>> Let us know when you’ve implemented something.
>> … and when you’ve thought about the routing implications of your design.
> ...and when you have a plan for tech transition.
>
> It's very easy to redesign any protocol if you ignore the need to
> support legacy systems.

*1. Deployability**
*
...I would argue that the value of each part of FF has to be assessed as 
if that part was separate from the rest, for the reason Joe gives... 
...there is little mention or consideration of incremental deployability 
{note 1} of the whole system, let alone each of the parts (other than 
the NAT part).

But even though the FF system is unlikely to ever be deployable as a 
whole, it might be possible to modify some of the individual ideas in FF 
to add incremental deployability, so that the most valuable ideas can 
become usable individually.

*2. Private problem statement?**
*
The biggest problem with FF is that you have been working on solving a 
set of problems that few would agree have been articulated as the real 
underlying problem that needs to be solved. The problem statement is the 
part that should be done in public, even if you do the design in private.

* v6 address space too big - so what? it's more important to agree on 
any size, than to have the "right" size.
* v6 addresses hard to transliterate, read etc - so what? - just a tools 
problem
* mobility without breaking transport - need to solve this without 
compromising other features like ability to keep ports private. A number 
of alternative ways already solve this: multipath TCP, or Teemu Koponen 
et al's "Resilient Connections for SSH and TLS," USENIX Annual Technical 
Conference
* ports at L3 or L4 - Just because ports can be useful at L3, doesn't 
mean they should be moved to L3. A better answer is "Design for Tussle", 
ie on the wire it needs to be possible to have ports hidden or not, and 
everything works (for some definition of "works") whichever way you 
choose. {note 2}
* no ARP - looks useful to replace with an algo. The question then 
becomes how do you introduce new MAC layer addressing schemes in future 
- ARP is agnostic to the internal semantics of a L2 address, but an algo 
cannot be.
* stronger L4 checksums - useful, but needs to be considered as part of 
the bigger problem of L4 extensibility currently being addressed.
* IP-VRF - again the problem here is the extensibility architecture of 
existing IP. We can't keep changing to a completely new Internet 
Protocol every time we realise we missed an extension we should have 
thought of. Well it would be worth the change if the new Internet 
Protocol had a brilliant extensibility architecture...
* ...which raises a good question...

Where's your extensibility architecture? Should be the first design 
decision, not the last.


I'm trying to be helpful while being critical.

Cheers



Bob

{Note 1} If IPv6 had been proposed today, given how important everyone 
now knows incremental deployment is, it would have been rejected out of 
hand. Incremental deployment alongside v4 involved messy dual-stack, 
gateway and tunnelling additions, rather than incremental deployment 
intrinsic to the protocol design. And future protocol extensibility 
proved to be badly architected as well.

{Note 2} Ports can be added incrementally to L3, by 
agreeing/standardising the port fields as a shim betw layers, then 
altering protocols like IPsec ESP to move the SPI to the same location 
as the unencrypted ports would be found in. At the same time, the source 
IP port can be moved to this shim because it is really transport layer 
info, and the space where it was in the IP header can be used to double 
the bits for dest addresses (eliding the details on how to identify the 
different header format). See sourceless network architecture (SNA) from 
Jon Crowcroft and Marcelo Bagnulo Braun, and see Bryan Ford and 
Janardhan Iyengar: “Breaking Up the Transport Logjam”, HotNets-VII.


> Joe
>
> _______________________________________________
> Architecture-discuss mailing list
> Architecture-discuss@ietf.org
> https://www.ietf.org/mailman/listinfo/architecture-discuss


-- 
________________________________________________________________
Bob Briscoe                               http://bobbriscoe.net/

v2.23.0 | Report a Bug | By Email