IETF Logo Mail Archive

[babel] info-model: HMAC/DTLS/interface references

"STARK, BARBARA H" <bs7652@att.com> Fri, 19 April 2019 02:17 UTC

Return-Path: <bs7652@att.com>
X-Original-To: babel@ietfa.amsl.com
Delivered-To: babel@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E7E3F1203CE for <babel@ietfa.amsl.com>; Thu, 18 Apr 2019 19:17:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.237
X-Spam-Level:
X-Spam-Status: No, score=-1.237 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, KHOP_DYNAMIC=1.363, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cgTw3-Kz38nz for <babel@ietfa.amsl.com>; Thu, 18 Apr 2019 19:17:38 -0700 (PDT)
Received: from mx0a-00191d01.pphosted.com (mx0b-00191d01.pphosted.com [67.231.157.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 54C8312027E for <babel@ietf.org>; Thu, 18 Apr 2019 19:17:38 -0700 (PDT)
Received: from pps.filterd (m0049463.ppops.net [127.0.0.1]) by m0049463.ppops.net-00191d01. (8.16.0.27/8.16.0.27) with SMTP id x3J2FWb1037823 for <babel@ietf.org>; Thu, 18 Apr 2019 22:17:36 -0400
Received: from alpi154.enaf.aldc.att.com (sbcsmtp6.sbc.com [144.160.229.23]) by m0049463.ppops.net-00191d01. with ESMTP id 2ry2x538n8-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <babel@ietf.org>; Thu, 18 Apr 2019 22:17:35 -0400
Received: from enaf.aldc.att.com (localhost [127.0.0.1]) by alpi154.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id x3J2HZ4k029302 for <babel@ietf.org>; Thu, 18 Apr 2019 22:17:35 -0400
Received: from zlp30485.vci.att.com (zlp30485.vci.att.com [135.47.91.178]) by alpi154.enaf.aldc.att.com (8.14.5/8.14.5) with ESMTP id x3J2HTM8029234 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <babel@ietf.org>; Thu, 18 Apr 2019 22:17:31 -0400
Received: from zlp30485.vci.att.com (zlp30485.vci.att.com [127.0.0.1]) by zlp30485.vci.att.com (Service) with ESMTP id 468104009E70 for <babel@ietf.org>; Fri, 19 Apr 2019 02:17:29 +0000 (GMT)
Received: from GAALPA1MSGHUBAD.ITServices.sbc.com (unknown [130.8.218.153]) by zlp30485.vci.att.com (Service) with ESMTPS id 32A6E4009E67 for <babel@ietf.org>; Fri, 19 Apr 2019 02:17:29 +0000 (GMT)
Received: from GAALPA1MSGUSRBF.ITServices.sbc.com ([169.254.5.160]) by GAALPA1MSGHUBAD.ITServices.sbc.com ([130.8.218.153]) with mapi id 14.03.0439.000; Thu, 18 Apr 2019 22:17:28 -0400
From: "STARK, BARBARA H" <bs7652@att.com>
To: 'Babel at IETF' <babel@ietf.org>
Thread-Topic: info-model: HMAC/DTLS/interface references
Thread-Index: AdT2U+MdStZfZEgjQySeQ3Ar9PMXyg==
Date: Fri, 19 Apr 2019 02:17:28 +0000
Message-ID: <2D09D61DDFA73D4C884805CC7865E6114E151AF4@GAALPA1MSGUSRBF.ITServices.sbc.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [135.70.206.27]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:, , definitions=2019-04-19_01:, , signatures=0
X-Proofpoint-Spam-Details: rule=outbound_policy_notspam policy=outbound_policy score=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 bulkscore=0 spamscore=0 clxscore=1015 lowpriorityscore=0 mlxscore=0 impostorscore=0 mlxlogscore=999 adultscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1810050000 definitions=main-1904190015
Archived-At: <https://mailarchive.ietf.org/arch/msg/babel/CFfIpkyuwetBKGlkxyzjxkkND6A>
Subject: [babel] info-model: HMAC/DTLS/interface references
X-BeenThere: babel@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A list for discussion of the Babel Routing Protocol." <babel.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/babel>, <mailto:babel-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/babel/>
List-Post: <mailto:babel@ietf.org>
List-Help: <mailto:babel-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/babel>, <mailto:babel-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Apr 2019 02:17:40 -0000

I've posted a draft draft version of info-model at 
https://bhstark2.github.io/babel-information-model/draft-ietf-babel-information-model.html 

It has (I hope) resolution of all issues except the question I had around describing the IANA Babel Link Properties wired and wireless items.
Barbara
================
In Prague we discussed that the direction of reference (from HMAC and DTLS object to interface object) should be reversed (from interface to DTLS and HMAC), and parameters moved out of the HMAC and DTLS objects into the interface object. Here is what the new draft has...

under interface (see the draft for the entire description of parameters -- what I have here is abbreviated):
   |  +-- babel-interfaces-hmac-keys: List of references to the babel-hmac entries that apply to this interface. When an interface instance is created, all babel-hmac instances with babel-hmac-default-apply "true" will be included in this list.
   |  +-- babel-hmac-algorithm: The name of the HMAC algorithm used on this interface.
   |  +-- babel-hmac-verify: A Boolean flag indicating whether HMAC hashes in incoming Babel packets are required to be present and are verified.
   |  +-- babel-interfaces-dtls-certs: List of references to the babel-dtls entries that apply to this interface. When an interface instance is created, all babel-dtls instances with babel-dtls-default-apply "true" will be included in this list.
   |  +-- babel-dtls-cached-info: Indicates whether the cached_info extension is included in ClientHello and ServerHello packets.
   |  +-- babel-dtls-cert-prefer: List of supported certificate types, in order of preference.

under hmac and dtls:
   +-- babel-hmac
   |  +-- babel-hmac-default-apply: A Boolean flag indicating whether this babel-dtls instance is applied to all interfaces, by default. If "true", this instance is applied to new babel-interfaces instances at the time they are created, by including it in the babel-interface-dtls-certs list. If "false", this instance is not applied to new babel-interfaces instances when they are created.
   |  |  +-- babel-hmac-key-name
   |  |  +-- babel-hmac-key-use-sign
   |  |  +-- babel-hmac-key-use-verify
   |  |  +-- babel-hmac-key-value

   +-- babel-dtls
   |  +-- babel-dtls-default-apply: A Boolean flag indicating whether this babel-dtls instance is applied to all interfaces, by default. If "true", this instance is applied to new babel-interfaces instances at the time they are created, by including it in the babel-interface-dtls-certs list. If "false", this instance is not applied to new babel-interfaces instances when they are created.
   |  |  +-- babel-cert-name: A unique name for this DTLS certificate that can be used to identify the certificate in this object instance, since the value is too long to be useful for identification. This value can only be provided when this instance is created, and is not subsequently writable. (this is a new parameter, as agreed to in Prague)
   |  |  +-- babel-cert-value
   |  |  +-- babel-cert-type
   |  |  +-- babel-cert-private-key
   |  |  +-- babel-cert-test

v2.23.0 | Report a Bug | By Email