Re: [arch-d] Development of Internet Protocol "Five Fields" (IP-FF): Presentation
Bob Briscoe <ietf@bobbriscoe.net> Thu, 07 January 2016 18:48 UTC
Return-Path: <ietf@bobbriscoe.net>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6BBCA1A92EA for <architecture-discuss@ietfa.amsl.com>; Thu, 7 Jan 2016 10:48:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JqBb3ngx21Pt for <architecture-discuss@ietfa.amsl.com>; Thu, 7 Jan 2016 10:48:51 -0800 (PST)
Received: from server.dnsblock1.com (server.dnsblock1.com [85.13.236.178]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55D151A92E9 for <architecture-discuss@ietf.org>; Thu, 7 Jan 2016 10:48:50 -0800 (PST)
Received: from 96.21.198.146.dyn.plus.net ([146.198.21.96]:35980 helo=[192.168.0.6]) by server.dnsblock1.com with esmtpsa (TLSv1.2:DHE-RSA-AES128-SHA:128) (Exim 4.86) (envelope-from <ietf@bobbriscoe.net>) id 1aHFc8-0007bM-At; Thu, 07 Jan 2016 18:48:48 +0000
From: Bob Briscoe <ietf@bobbriscoe.net>
To: Alexey Eromenko <al4321@gmail.com>
References: <CAOJ6w=H7bs8kGt+ct=DKaVOtNcnD6PnouzpjmmLTL3P=C-Zynw@mail.gmail.com> <D2B140A5.27F7%theodore.v.faber@aero.org> <9020D012-C361-45E2-9C31-B39E852E239B@tony.li> <568C2DF9.2060003@isi.edu>
Message-ID: <568EB30F.5050803@bobbriscoe.net>
Date: Thu, 07 Jan 2016 18:48:47 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.4.0
MIME-Version: 1.0
In-Reply-To: <568C2DF9.2060003@isi.edu>
Content-Type: multipart/alternative; boundary="------------030800080808040109090208"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - server.dnsblock1.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - bobbriscoe.net
X-Get-Message-Sender-Via: server.dnsblock1.com: authenticated_id: in@bobbriscoe.net
X-Authenticated-Sender: server.dnsblock1.com: in@bobbriscoe.net
Archived-At: <http://mailarchive.ietf.org/arch/msg/architecture-discuss/aQbFII2J0ev-RQ6aigp-szPpjMY>
Cc: architecture-discuss@ietf.org
Subject: Re: [arch-d] Development of Internet Protocol "Five Fields" (IP-FF): Presentation
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jan 2016 18:48:53 -0000
Alexy, I suspect you are most proud of the fact that you have produced a set of ideas that all work well together. But see inline... On 05/01/16 20:56, Joe Touch wrote: > On 1/5/2016 10:14 AM, Tony Li wrote: >>>> On Jan 5, 2016, at 9:43 AM, Theodore V Faber<theodore.v.faber@aero.org> wrote: >>>> >>>> Let us know when you’ve implemented something. >> … and when you’ve thought about the routing implications of your design. > ...and when you have a plan for tech transition. > > It's very easy to redesign any protocol if you ignore the need to > support legacy systems. *1. Deployability** * ...I would argue that the value of each part of FF has to be assessed as if that part was separate from the rest, for the reason Joe gives... ...there is little mention or consideration of incremental deployability {note 1} of the whole system, let alone each of the parts (other than the NAT part). But even though the FF system is unlikely to ever be deployable as a whole, it might be possible to modify some of the individual ideas in FF to add incremental deployability, so that the most valuable ideas can become usable individually. *2. Private problem statement?** * The biggest problem with FF is that you have been working on solving a set of problems that few would agree have been articulated as the real underlying problem that needs to be solved. The problem statement is the part that should be done in public, even if you do the design in private. * v6 address space too big - so what? it's more important to agree on any size, than to have the "right" size. * v6 addresses hard to transliterate, read etc - so what? - just a tools problem * mobility without breaking transport - need to solve this without compromising other features like ability to keep ports private. A number of alternative ways already solve this: multipath TCP, or Teemu Koponen et al's "Resilient Connections for SSH and TLS," USENIX Annual Technical Conference * ports at L3 or L4 - Just because ports can be useful at L3, doesn't mean they should be moved to L3. A better answer is "Design for Tussle", ie on the wire it needs to be possible to have ports hidden or not, and everything works (for some definition of "works") whichever way you choose. {note 2} * no ARP - looks useful to replace with an algo. The question then becomes how do you introduce new MAC layer addressing schemes in future - ARP is agnostic to the internal semantics of a L2 address, but an algo cannot be. * stronger L4 checksums - useful, but needs to be considered as part of the bigger problem of L4 extensibility currently being addressed. * IP-VRF - again the problem here is the extensibility architecture of existing IP. We can't keep changing to a completely new Internet Protocol every time we realise we missed an extension we should have thought of. Well it would be worth the change if the new Internet Protocol had a brilliant extensibility architecture... * ...which raises a good question... Where's your extensibility architecture? Should be the first design decision, not the last. I'm trying to be helpful while being critical. Cheers Bob {Note 1} If IPv6 had been proposed today, given how important everyone now knows incremental deployment is, it would have been rejected out of hand. Incremental deployment alongside v4 involved messy dual-stack, gateway and tunnelling additions, rather than incremental deployment intrinsic to the protocol design. And future protocol extensibility proved to be badly architected as well. {Note 2} Ports can be added incrementally to L3, by agreeing/standardising the port fields as a shim betw layers, then altering protocols like IPsec ESP to move the SPI to the same location as the unencrypted ports would be found in. At the same time, the source IP port can be moved to this shim because it is really transport layer info, and the space where it was in the IP header can be used to double the bits for dest addresses (eliding the details on how to identify the different header format). See sourceless network architecture (SNA) from Jon Crowcroft and Marcelo Bagnulo Braun, and see Bryan Ford and Janardhan Iyengar: “Breaking Up the Transport Logjam”, HotNets-VII. > Joe > > _______________________________________________ > Architecture-discuss mailing list > Architecture-discuss@ietf.org > https://www.ietf.org/mailman/listinfo/architecture-discuss -- ________________________________________________________________ Bob Briscoe http://bobbriscoe.net/
- [arch-d] Development of Internet Protocol "Five F… Alexey Eromenko
- Re: [arch-d] Development of Internet Protocol "Fi… Iljitsch van Beijnum
- Re: [arch-d] Development of Internet Protocol "Fi… Alexey Eromenko
- Re: [arch-d] Development of Internet Protocol "Fi… Alexey Eromenko
- Re: [arch-d] Development of Internet Protocol "Fi… Theodore V Faber
- Re: [arch-d] Development of Internet Protocol "Fi… Tony Li
- Re: [arch-d] Development of Internet Protocol "Fi… Joe Touch
- Re: [arch-d] Development of Internet Protocol "Fi… Bob Briscoe
- Re: [arch-d] Development of Internet Protocol "Fi… Alexey Eromenko
- [arch-d] IPv6 (address) usability and tools [Re: … Simon Leinen
- Re: [arch-d] IPv6 (address) usability and tools [… Alexey Eromenko
- Re: [arch-d] Development of Internet Protocol "Fi… Stephane Bortzmeyer
- Re: [arch-d] IPv6 (address) usability and tools [… Iljitsch van Beijnum