IETF Logo Mail Archive

Re: [arch-d] ETSI launches new group on Non-IP Networking addressing 5G new services

John C Klensin <john-ietf@jck.com> Fri, 17 April 2020 03:46 UTC

Return-Path: <john-ietf@jck.com>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E6AD93A08A7 for <architecture-discuss@ietfa.amsl.com>; Thu, 16 Apr 2020 20:46:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6nKapxm9yGIk for <architecture-discuss@ietfa.amsl.com>; Thu, 16 Apr 2020 20:46:28 -0700 (PDT)
Received: from bsa2.jck.com (bsa2.jck.com [70.88.254.51]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C57083A089F for <architecture-discuss@ietf.org>; Thu, 16 Apr 2020 20:46:27 -0700 (PDT)
Received: from [198.252.137.10] (helo=PSB) by bsa2.jck.com with esmtp (Exim 4.82 (FreeBSD)) (envelope-from <john-ietf@jck.com>) id 1jPHxN-000Ki9-C2; Thu, 16 Apr 2020 23:46:21 -0400
Date: Thu, 16 Apr 2020 23:46:15 -0400
From: John C Klensin <john-ietf@jck.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, Toerless Eckert <tte@cs.fau.de>
cc: Christian Huitema <huitema@huitema.net>, architecture-discuss@ietf.org
Message-ID: <3B865A655CF0068FB0217D67@PSB>
In-Reply-To: <96ea575b-78d5-019d-15b2-abc8e5c8b22e@gmail.com>
References: <20200408054204.GA6005@nic.fr> <6C2A3533-7F75-45B1-9B51-19938597174B@tzi.org> <20200408194154.GJ28965@faui48f.informatik.uni-erlangen.de> <4200C5F8-9F56-4FFF-90F4-7AD76A9F4FC8@eggert.org> <20200409121941.GZ28965@faui48f.informatik.uni-erlangen.de> <C758BDF2-8CD6-4C22-90CA-6ED98DACD740@eggert.org> <20200409175431.GF28965@faui48f.informatik.uni-erlangen.de> <1e89795e-6bd9-2318-aa81-27f8327e1226@gmail.com> <4ac9e9fc-41a3-f458-566e-f0a68d26d9ea@huitema.net> <E029AEC023B1A60E3E956641@PSB> <20200416174840.GL41264@faui48f.informatik.uni-erlangen.de> <96ea575b-78d5-019d-15b2-abc8e5c8b22e@gmail.com>
X-Mailer: Mulberry/4.0.8 (Win32)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
X-SA-Exim-Connect-IP: 198.252.137.10
X-SA-Exim-Mail-From: john-ietf@jck.com
X-SA-Exim-Scanned: No (on bsa2.jck.com); SAEximRunCond expanded to false
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/nNsjLGSGfsbdqk6-Ntc4QjtokYI>
Subject: Re: [arch-d] ETSI launches new group on Non-IP Networking addressing 5G new services
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Apr 2020 03:46:31 -0000


--On Friday, April 17, 2020 09:17 +1200 Brian E Carpenter
<brian.e.carpenter@gmail.com> wrote:

> On 17-Apr-20 05:48, Toerless Eckert wrote:
>> On Mon, Apr 13, 2020 at 02:56:30PM -0400, John C Klensin
>> wrote:
>>> It may also be worth noting that a, perhaps the, major add-on
>>> change in IPv6 --much touted in its early days-- was
>>> supposed to be ubiquitous lP-level encryption.
> 
> Not touted by the IPv6 protagonists, however.

Really?  You obviously were not at some of the IPv6 Forum events
that I got to.  Now, if you mean (as suggested below) "IETF IPv6
protagonists", then I would probably agree, but the same IPv6
Forum leadership were citing the IETF as authority for a lot of
things few, if any, IETF participants ever said.  

(Obviously agreeing with Geoff here, just writing more slowly.)

And, since we are mentioning names, Latif wasn't the only one.
Arguably "we" -- IETF, IAB, and ISOC -- said some things that
were interpreted as indicating that IPv4 address exhaustion was
going to occur really soon, that it would be the end of life as
we knew it, and that IPv6 was the only solution.  While most of
those/ "our" comments were very nuanced, they left a vacuum that
a variety of people --some very sincere and a few pushing
products that were often not quite ready -- pushed, supposedly
quoting/representing "us".

> Yes, there was
> an intention to make IPsec mandatory-to-implement, but there
> was never a claim from the IETF that IPv6 with IPsec was
> intrinsically more secure than IPv4 with IPsec.

Agreed.  But there were a lot of claims that, since it was or
soon would be mandatory to implement, it was going to be much
more widely supported under IPv6 than it had been, or would
likely ever be, under IPv4.  And the implication of many of
those claims was the IPSec over (or integrated with) IPv6 would
be far more secure, easier to implement and deploy, etc., than
what was available (as an add-on, they said) over IPv4.  See
above.

> The claim that IPv6 was intrinsically secure was indeed
> touted; if I'm not mistaken it orginated in an industry white
> paper, was picked up and exagerrated by the IPv6 Forum, and
> got into draft-ietf-iab-case-for-ipv6-00, (which led to
> draft-iab-case-for-ipv6-06 and was then scrapped). But it also
> featured in various lists of IPv6 Myths over many years.

And I am pushing on this because, at least IMO, we are still
talking about when IPv6 will dominate IPv4 on the Internet
and/or making claims about how rapidly it is deploying.  That
breaks, by far, the record of claims for "two years from now"
about a small collection of protocols unrelated to the IETF,
claims that you may remember every couple of years through the
1980s.

>From an entirely non-technical perspective, we --the IETF and
various bodies that claimed our support and involvement, with
said IPv6 Forum high on the list-- made two very fundamental
political-economic errors.  "We" claimed that it was ready, and
products that would support it were ready, and that it was/would
be easy to deploy at a time when the claims about readiness were
dubious (because the assorted dual-stack and other arrangements
at the endpoints were not quite finished or because ISPs were
not ready to deploy either the packets or the boundary routers
or equivalent).   And some of the organizations that took "our"
advice and tried to deploy got burned and became harder to
convince to try again later.  The other is that, at least IMO,
we failed to adequately consider incentives for deployment once
one moved past fear of running out of address space (which,
predictably, tended to be seen as something to be worked around
or someone else's problem).  

This is, I think, important today, not because of the IPv6
issues but because the Internet has matured enough that it may
be even more important now than it was then to include in our
thinking about major new protocols or protocol changes an
analysis of incentives and disincentives to deployment, and, if
appropriate, who benefits and who loses, not just analyses of
whether they can be implemented and will work.  And it would be
reasonable for us to share that advice with others as well as
following it ourselves.

best,
  john

v2.23.0 | Report a Bug | By Email