Re: [CDNi] Secdir last call review of draft-ietf-cdni-additional-footprint-types-05
Daniel Migault <mglt.ietf@gmail.com> Thu, 15 December 2022 22:07 UTC
Return-Path: <mglt.ietf@gmail.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19A87C14CEFC; Thu, 15 Dec 2022 14:07:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dJmeE6eyimTt; Thu, 15 Dec 2022 14:07:33 -0800 (PST)
Received: from mail-oa1-x2d.google.com (mail-oa1-x2d.google.com [IPv6:2001:4860:4864:20::2d]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E897C14F744; Thu, 15 Dec 2022 14:07:33 -0800 (PST)
Received: by mail-oa1-x2d.google.com with SMTP id 586e51a60fabf-143ffc8c2b2so1153998fac.2; Thu, 15 Dec 2022 14:07:33 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=u3WJwVRDUo8sWmqyJ3WhSvvLuywLwYV0fOYk50HCFOE=; b=Ut9pJ3hHTT2r9Jv1s2Ujy2ISFZhtX2S2FqsXWF19qrMMHT0orzW1YvNK95mEMGwrFx Bjpztf9efX9Mdhs4fS+cR/qITMhGkAHx4hpF7rVckGevEawwzeqyWz0nMSP/ZKy8Tm8t wG4fLHdNoKiocu9ZVxgVzw+n3/cMYNzjjHkUnQE4uraIeGVDREaWrV8e9ygIX8t4y3ri ajQ9dAKk0wtRQVqzgb9NicbatiTIKHh+hE7DXRpV3eUt2/KK9Sq8LHm4zjMZy9Wq8md7 hBoJKXEm9VvNCJAZtJgqA4Ap1nxnhFD4vliOqQmMN0EtcemtFZP2a4lpYNn54NPmg/L0 L5Dg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=u3WJwVRDUo8sWmqyJ3WhSvvLuywLwYV0fOYk50HCFOE=; b=PE+ayyQu6t8+QLHCoghjzyngE2L4fQFkCPJPA4Nn3Berj1eb+j3AMSUnSki4Y7n1BY KRuLCGAwJCfxClFVSBuX6RJbKe5OZeWg5HP7b4iHE5jb6O/FtSqxQEEvWKLgHw/QyUcS qUNHdmUpDttXNfBuyE/qeEibHtHjxBgVQcZg7ir4V/9shM+enNWc9lxaJjW0Qj7S4Ghn Hv6aQ4fh3EO2JutXqjNU99GbGWIxY/n034P/npLhFYdsSFHdvfnMcEu7eeutGp94v0Un j7lmh8IZ74QFnYeHWOH80YGN5IqMSap+JJC9cJEMDXLVLfx9eGy2cFN8ZKwr58EglYPv DKpA==
X-Gm-Message-State: AFqh2kph6iO7iqf/WQUEujJK0h89O7Ino9SuVvVgWpLvSaPnFKbTmnN6 IzTolI0r3nFCnroI6U/ZruYe2LHWepeBLD1FlqY=
X-Google-Smtp-Source: AMrXdXt+yhD+vSvlKxiQpvDoDnS8US0lQXJ31RnPCtXcsyflcboXwJXjcojxAi5bBklJbPAwrfUyVpxb+3kIFnjJMPo=
X-Received: by 2002:a05:6870:6b0b:b0:148:5aa:4722 with SMTP id mt11-20020a0568706b0b00b0014805aa4722mr638256oab.185.1671142052522; Thu, 15 Dec 2022 14:07:32 -0800 (PST)
MIME-Version: 1.0
References: <167068470142.29533.15030214937491608215@ietfa.amsl.com> <CACUa7-vtUJ6mn+4oxgcaNxpnyT0t251QMw31DUN-y0zwmJcsdg@mail.gmail.com>
In-Reply-To: <CACUa7-vtUJ6mn+4oxgcaNxpnyT0t251QMw31DUN-y0zwmJcsdg@mail.gmail.com>
From: Daniel Migault <mglt.ietf@gmail.com>
Date: Thu, 15 Dec 2022 17:07:21 -0500
Message-ID: <CADZyTknbP-ZH6409CyEq_558Qor8Xj06bObxKkPj_p1s2kwgDg@mail.gmail.com>
To: Nir Sopher <nirsopher@gmail.com>
Cc: secdir@ietf.org, cdni@ietf.org, draft-ietf-cdni-additional-footprint-types.all@ietf.org, last-call@ietf.org
Content-Type: multipart/alternative; boundary="00000000000068f12905efe51488"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/3Ce2GV_Tnv-3PYKFwfZwrv0c4h8>
Subject: Re: [CDNi] Secdir last call review of draft-ietf-cdni-additional-footprint-types-05
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Dec 2022 22:07:37 -0000
Thanks for the clarifications. Yours , Daniel On Tue, Dec 13, 2022 at 3:57 PM Nir Sopher <nirsopher@gmail.com> wrote: > Hi Daniel, > Thank you for the deep dive into the concepts and incentives of the draft. > Per your remarks, please see our comments inline :) > Cheers, > Sanjay and Nir > > On Sat, Dec 10, 2022 at 5:05 PM Daniel Migault via Datatracker < > noreply@ietf.org> wrote: > >> Reviewer: Daniel Migault >> Review result: Ready >> >> Hi, >> >> Reviewer: Daniel Migault >> Review result: Ready >> >> I have reviewed this document as part of the security directorate's >> ongoing >> effort to review all IETF documents being processed by the IESG. These >> comments >> were written primarily for the benefit of the security area directors. >> Document >> editors and WG chairs should treat these comments just like any other >> >> The comment below mostly reflects what raised my curiosity while reading >> the >> document. I do not see any of these comments requires some changes to the >> document. >> >> While reading the document I was wondering what could be the reason for >> advertising ca-ns and us-ny. Note that whatever the response is, there is >> no >> need to change the document. From my point of view, I imagined that >> subdivision >> code would be mostly used to characterize a geographic zone that is >> served by a >> CDN and so that expected codes would be neighbor areas. The example takes >> ca-ns >> and us-ny which I do not see as neighbors, at least geographically >> speaking. I >> know we can always find a case, but I am wondering if it is expected to be >> common to have some non neighbor subdivisions being advertised and why. >> One >> reason could be that geographic neighborhood and networking neighborhood >> may >> also be distinct and I would be curious to understand if that is the >> reason and >> how often it is expected to happen. To be clear, I am fine if the >> subdivision >> code has just been taken (pseudo) randomly for example. >> > > Indeed. A geographical proximity is expected to be the common case. > The reason we presented ca-ns and us-ny was to give an example for 2 types > of subdivisions - a Province in Canada vs. a state in the US. > But now that you bring it up, we see it can confuse the reader. > > To make it more intuitive to the reader, we will change the example to > reflect the geographical proximity, presenting for example NY and NJ or NY > and Ontario. > Thanks for the clarification. NY and Ontario is probably the best choice ;-) > > >> The Union data type is mentioned as overcoming the limitation of narrowing >> capability. I think the text is nice saying that narrowing does not work >> for >> what we do, but overall I do see the need to have union as a completely >> separate need from the need to narrow. In other words, I do not see the >> justification as something needed. My perception is that we were able to >> have >> AND and Union enables to have OR. > > >> If my understanding is correct, I have the impression that there is an >> alternative way to achieve OR which would consist of having different >> separate >> advertisements. Not being an expert in CDNI, what I have in mind is that >> a dCDN >> may send one advertisement with a union or may make multiple >> advertisements (1 >> for each member of the union). I am not challenging here the need for a >> union >> as I am convinced it is needed - or will be needed at some point. What I >> would >> like to understand is if multiple advertisements could effectively be >> considered as an alternative to the union. If that is correct, I would be >> interested to briefly understand the pro/cons of each alternative. I >> suspect >> this mostly an operational advantage, but I am curious to learn a bit >> more on >> it. >> > > There are a few reasons for using union. Indeed there is an operational > efficiency in joining > Additionally, there are more substantive uses of union, such as in cases > where the advertised capability refers to a fixed commodity (e.g. capacity). > For example, in the case a dCDN advertises its "capacity" capability, > which may apply for an overall set of IPs, from both IPv4 and IPv6. > The union allows us to be unambiguous - avoiding overbooking of "capacity > units", on the one hand, as well as utilizing the advertised capacity > efficiently (without arbitrarily splitting it) on the other. > Thanks for the clarification, that makes complete sense. > > >> The SUBDIVISION Domain was not entirely clear to me, but I suspect this >> connects the newly defined footprint type to the more generic framework. >> >> The main security consideration I have regarding the footprint type is the >> ability to prove that the dCDN is legitimate for announcing such >> capabilities. >> Typically, I am wondering if there is any way to prevent a CDN to >> advertise >> capabilities in Australia for example - while he is not serving that >> region ? > > >> Note that we generic and so, is likely to be already addressed at a higher >> level. My impression is that the model is that one has to trust the >> advertisement, and so only consider those of trusted CDNs. I am wondering >> if >> there are any practical ways to evaluate the trustworthiness related to >> the >> subdivision. >> > > Indeed, there is no mechanism preventing dCDN from publishing > capabilities for IPs they do not own / cannot really serve. > This issue was also discussed in RFC 8008 section 2.4 > <https://www.rfc-editor.org/rfc/rfc8008.html#section-2.4>, which mostly > refers to resolution of the issue at the business/contractual level. > They also point to the option to make the Footprint verifiable, mostly > out-of-band (non realtime). > There is very little to know incentive for a dCDN to cheat, as RFC 8008 > states that it may "negatively affect the long-term business > relationship". > I see. > > Yours, >> Daniel >> >> >> >> _______________________________________________ >> CDNi mailing list >> CDNi@ietf.org >> https://www.ietf.org/mailman/listinfo/cdni >> > _______________________________________________ > CDNi mailing list > CDNi@ietf.org > https://www.ietf.org/mailman/listinfo/cdni > -- Daniel Migault Ericsson
- [CDNi] Secdir last call review of draft-ietf-cdni… Daniel Migault via Datatracker
- Re: [CDNi] Secdir last call review of draft-ietf-… Nir Sopher
- Re: [CDNi] Secdir last call review of draft-ietf-… Daniel Migault