Re: [arch-d] Centralization or diversity

[Toerless Eckert <tte@cs.fau.de>]

On Wed, Jan 08, 2020 at 10:53:01AM -0800, tony.li@tony.li wrote:
> Nope. Been there and tried that.  ISO has PIC statements that are pretty much that for their standards.  Did not help at all.

Yes, i was thinking of ISO PICS. But i lost track of those ISO standards
since the 90th. I guess i would have to see a successfull and still
currently used standard and how its PICS do or do not help. Just
not alot of those ISO specs left in wide deployments, right.
X.500 ? Maybe i can get more insight from the security community.

> What it does do is to encourage people to write ???conformance test suites???.  These then get sold to unsuspecting customers and end-users.  Unfortunately, the quality of such suites is so low that you spend way, way, way more time debugging the test suite and you never find bugs in your implementation.

This is just the worst possible outcome, and i am sure one can learn
from those bad experiences. Just think of taking a more organized
step towards being able to collect protocol implementation information
from the industry. Right now every WG who wants to raise the level of
an IETF protocol, e.g.: to(wards) full standard is coming up with a
questionaire in an ad-hoc fashion (we're just doing this in Multicast
for IGMP/MLD). 

> >> The good news, however, is that Murphy does have a police force and has demonstrated repeatedly that genetic diversity in a network is a Very Good Thing.
> > 
> > Give or take the absence of competition due to the huge capital
> > investment requirements.
> 
> Customers who buy into single vendor architectures are inflicting vendor lock on themselves.

My point was: If the only murphy you have is competitive pressure, it works not
it there is only limited competition, such as a total of maybe no
more than 3 competing national infrastructures. 

Remember my last mail where repeatedly half countries had no internet
from one of those three providers four many hours because of single
points of failures ?  For years and years. So much for competitive
pressure/Murphy.

Besides, Trump has already concluded that you only need to eliminate
one of the equipment vendors to solve the problem of secure, reliable
national infrastructures.
(not sure what the most fitting emoji is for this paragraph).

> > *yawn*. Sorry, but coming from financal (services) networks, that had
> > this since the 1990th, what you are saying now is like saying
> > "Fred Flintstone now has upgraded to a color CRT TV???.
> 
> Good.  Then I???ll say something more controversial: not everyone does it that way, yet.

See above. The best i think we (IETF) can do is to educate better about
this by appropriate documents. Certainly some additional protocol work
will result from that. I for once had simple slides 10 years ago how to fixup
non-dual plane networks to be dual-plane. And maybe we can come up with
questionaires to get better numbers from actual deployments (the
PICS discussion).

Figuring out ideas for a complete ecosystem of monetization and
deployment between competition and regulation is better left for
an ongoing bar-bof with emphasis on bar.

> >> Some others still have to learn this.  One of the good things that might come of this effort is to write this down.
> > 
> > One should also remember that the cost of dual-plane may be vastly
> > different based on the density and structure of the country and
> > underlying infra (fiber trunks, power supplies, etc..). Countries
> > like USA and china are a lot more interesting/challenging than the
> > typical european country.
> 
> Redundancy always has costs.  When it is needed it then pays dividends.  :-)

Actually one of the interesting conclusions was that dual-plane in
many cases is really free but deployments often just don't fully
utilize it.

Cheers
    Toerless

> Tony