Re: [CDNi] New version (and IPR statement) of draft-brandenburg-cdni-uri-signing-for-has
Kevin Ma J <kevin.j.ma@ericsson.com> Tue, 05 July 2016 21:43 UTC
Return-Path: <kevin.j.ma@ericsson.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F055112D0E7 for <cdni@ietfa.amsl.com>; Tue, 5 Jul 2016 14:43:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2JIuyaVC7XVs for <cdni@ietfa.amsl.com>; Tue, 5 Jul 2016 14:43:50 -0700 (PDT)
Received: from usplmg20.ericsson.net (usplmg20.ericsson.net [198.24.6.45]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 63E8012B032 for <cdni@ietf.org>; Tue, 5 Jul 2016 14:43:50 -0700 (PDT)
X-AuditID: c618062d-f79886d000002334-5a-577c1f7e8984
Received: from EUSAAHC003.ericsson.se (Unknown_Domain [147.117.188.81]) by usplmg20.ericsson.net (Symantec Mail Security) with SMTP id 53.31.09012.E7F1C775; Tue, 5 Jul 2016 22:58:38 +0200 (CEST)
Received: from EUSAAMB103.ericsson.se ([147.117.188.120]) by EUSAAHC003.ericsson.se ([147.117.188.81]) with mapi id 14.03.0294.000; Tue, 5 Jul 2016 17:43:48 -0400
From: Kevin Ma J <kevin.j.ma@ericsson.com>
To: "Brandenburg, R. (Ray) van" <ray.vanbrandenburg@tno.nl>, "cdni@ietf.org" <cdni@ietf.org>
Thread-Topic: New version (and IPR statement) of draft-brandenburg-cdni-uri-signing-for-has
Thread-Index: AQHRwy2I54wAQQPyYkOQMx8zvzoaI6AKgsGg
Date: Tue, 05 Jul 2016 21:43:48 +0000
Message-ID: <A419F67F880AB2468214E154CB8A556206E46700@eusaamb103.ericsson.se>
References: <90041886-D253-413F-B006-50BDA558EB12@tno.nl>
In-Reply-To: <90041886-D253-413F-B006-50BDA558EB12@tno.nl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [147.117.188.9]
Content-Type: multipart/alternative; boundary="_000_A419F67F880AB2468214E154CB8A556206E46700eusaamb103erics_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupgkeLIzCtJLcpLzFFi42KZXLonULdOvibc4N1FDYuns/+wWnzbfJ3R gcljyZKfTB4H111gDmCK4rJJSc3JLEst0rdL4Mp4/X4nS8G8RYwVP9+fZWtg/DKXsYuRk0NC wETix9FTzBC2mMSFe+vZuhi5OIQEjjJK7N+9mRXCWcYoce95PxNIFZuAlsTjr3/BbBGBOIkd x86ATRIWiJF4OXUFI0Q8VmLd9m1QtpHEvMdPgWwODhYBFYnlFzlAwrwCvhJvvs5lAbGFBCwl Pm36zw5icwpYSRx49RKslRHooO+n1oCtYhYQl7j1ZD4TxKECEkv2nIc6WlTi5eN/rBC2osS+ /unsEPX5EgvmbWSG2CUocXLmE5YJjCKzkIyahaRsFpKyWUCXMgtoSqzfpQ9RoigxpfshO4St IdE6Zy47svgCRvZVjBylxQU5uelGBpsYgfFzTIJNdwfj/emehxgFOBiVeHgXfK0OF2JNLCuu zD3EKMHBrCTCu0utJlyINyWxsiq1KD++qDQntfgQozQHi5I4r9gjxXAhgfTEktTs1NSC1CKY LBMHp1QDo7YLS6robvVvqQsyN7h81Jn8l9e6x2TmjJeydpu//ojMeHPmVlM7S/viSSXfTR2F /LMPfzL4vW5pRO321Qka/yTrYxrmcEht7xBWrF4xte72j36r7bwH182XDLx8ccXWF3l5UQvP n3H9mXrUy10oNyHq742H4lNSFtxmC7CtqHwwr25hqo2zmxJLcUaioRZzUXEiALrdjD+bAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/ANa6SJhYhJAsfOW6x_GJCY7qbI0>
Subject: Re: [CDNi] New version (and IPR statement) of draft-brandenburg-cdni-uri-signing-for-has
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jul 2016 21:43:54 -0000
Hi Ray, (As an individual) I finally found some time to read through the updated draft. Some comments and questions below. thanx! -- Kevin J. Ma - section 4.1, step 3.E: What if the user pauses, or there is an ad inserted, and the token expires? Understood that it's probably up to the media player to handle that case, but would they need to go back to the CP to get a new valid manifest URL? Which would have a token that is valid for the chunks as well? - section 4.1, steps 9, 11.B, 11.E, 12.B, and 12.F, section 7.1 step 1, section 7.2 steps 3.A.d and 3.B.d, and section 7.4 steps 10.A.2, 10.A.5, 10.B.2, and 10.B.6: Should the UPC be percent-encoded? And should CIP be encrypted? - section 4.1, steps 9, 11.B, 11.E, 12.B, 12.F, section 5.2, and section 7.1 step 1: If the token is only good for segments, but is attached to the manifest request, does that mean that there is no signature validation on the manifest request? In the 2xx non-redirect case, would you expect a v1 manifest signature be in the query string and a separate v2 chunk signature be in the cookie? - section 4.1, step 10, sections 5/6, and section 7.4 step 9: Seems like a chicken and egg problem. The STT says that the token is in the cookie, but the STT is in the token that's inside the cookie. Does the initial token always have to be in a token? Should the initial token always be in the query string to be compatible with v1, since the VER=2 is also inside the token inside the cookie? From the client perspective, should only subsequent tokens be in the cookie? From the CDN perspective, unless passed in the metadata, how will the CDN know where to look for the token, or does it always check everywhere? If the process is to always check the query string first and the cookie second, do we even need STT? New STT values are going to require and update to the procedure in section 6, as well as registration of new STT values? - section 5.2: The v1 draft also supports token as a path parameter; is that intentionally omitted here? - section 7.1 steps 2 and 3: I would expect that v2 would have a new GenericMetadata ptype (MI.UriSigning.v2?) and that ptype would tell the dCDN what it should expect in the token? It would be nice if the draft could define v2 such that it supported both VER=1 and VER=2, so that the MI.UriSigning.v2 metadata could be a superset of information needed to process all known token types, and make the token processing a runtime decision? - section 7.4, general: This draft removes the "Note that re-signing a URI MUST..." text from the v1 draft(section 3.1). Since this is about resigning, I think the text about maintaning the same values should be added here, specifically for KID/KID_NUM, HMAC, and DSA. - Do you have an idea as to what additional registries, metadata, and/or logging fields will be needed? Will the new ptype just be MI.UriSigning.v2? From: CDNi [mailto:cdni-bounces@ietf.org] On Behalf Of Brandenburg, R. (Ray) van Sent: Friday, June 10, 2016 11:34 AM To: cdni@ietf.org Subject: [CDNi] New version (and IPR statement) of draft-brandenburg-cdni-uri-signing-for-has Hi all, As you might have seen, I’ve recently uploaded a new version of draft-brandenburg-cdni-uri-signing-for-has (-03). https://tools.ietf.org/html/draft-brandenburg-cdni-uri-signing-for-has-03 What is important to note is that KPN has updated it’s IPR statement on this document to be in line with the IPR statements that have been filed on other CDNI documents (i.e. “Royalty-Free, Reasonable and Non-Discriminatory License to All Implementers”). Hopefully this clears up the lengthy IPR discussion we’ve been having around this document so that we can focus on the technical aspects again. Looking forward to your feedback, Ray This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. TNO accepts no liability for the content of this e-mail, for the manner in which you use it and for damage of any kind resulting from the risks inherent to the electronic transmission of messages.
- Re: [CDNi] New version (and IPR statement) of dra… Brandenburg, R. (Ray) van
- Re: [CDNi] New version (and IPR statement) of dra… Kevin Ma J
- Re: [CDNi] New version (and IPR statement) of dra… Brandenburg, R. (Ray) van
- Re: [CDNi] New version (and IPR statement) of dra… Francois Le Faucheur
- Re: [CDNi] New version (and IPR statement) of dra… Kevin Ma J
- [CDNi] New version (and IPR statement) of draft-b… Brandenburg, R. (Ray) van
- Re: [CDNi] New version (and IPR statement) of dra… Kevin Ma J
- Re: [CDNi] New version (and IPR statement) of dra… Brandenburg, R. (Ray) van
- Re: [CDNi] New version (and IPR statement) of dra… Phil Sorber