Re: [CDNi] Kathleen Moriarty's No Objection on draft-ietf-cdni-metadata-18: (with COMMENT)

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Tue, 05 July 2016 20:16 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B8EF412B03E; Tue, 5 Jul 2016 13:16:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PSCrI7O2xPPO; Tue, 5 Jul 2016 13:16:40 -0700 (PDT)
Received: from mail-vk0-x236.google.com (mail-vk0-x236.google.com [IPv6:2607:f8b0:400c:c05::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A166B12B050; Tue, 5 Jul 2016 13:16:40 -0700 (PDT)
Received: by mail-vk0-x236.google.com with SMTP id m127so219741239vkb.3; Tue, 05 Jul 2016 13:16:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=HH6a4nmuwfBSe2ENBBjiVmFaRnJ+obKyEj+1HClOz7A=; b=mqc8oposmUKiAoM6JShAuH9V1wukkta6Y8xlkJxml8GLaeZVjbsiHxj2OGKavcAvVs BJ/p4pLLFLRdDH29WoCMR/HvowjzDdvVHFOJLL0LfoB11JTD0o/jRd5PgV7/tPbAfFM1 TfQrOwpeErPUCiSzfVp4VHzidgkap9R3VsabunznXUqb29TR2CB6uSM71ouXJXSVAWdY FviV8iMUWMSeSU/Dugh7tPNPkYJGhk8xgCoCTkvmLFpnCuiLE08r+RnKT/+ovmjsbHMe +meoYHVouhsRxC4BPTcL9gYWOdvtupx3lyFWf7vgutjMi4YEtATeBdpZ6lHvPsJJ63vV 366g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=HH6a4nmuwfBSe2ENBBjiVmFaRnJ+obKyEj+1HClOz7A=; b=VbvoCig4nn2QpTa3GTntPLiTGPom1GSgWTDSA8bomD2qHKWzkNRNwWUHvExF7gkENr m+OaNwMsEDFQXUD3XeezMW8Kx8TJ1QYU8yeHGQqMonpjJCuwhQPWL21BDv8cNpDzpNk1 eUWxzK1MJOHVpex4//MWxAV9FRimn4YOxKU7y81g/nPWo+4SG7H/wk6hJF3SD4urcrHm hT4MW+U7cbiciRxgfffYNyNH+lvuIKFWZojddHwKonuRl68ZNax0ak63X3pAzhzluFrj qmpWSJW5foWt2QNBj8bZddKlFLE8fPXH/akrOlNOnXyT804JYMv5sUeDB0qtjYMHJUcm BnVQ==
X-Gm-Message-State: ALyK8tJQm3CnM+SI4tyuPltHsfNQK0K+3b3T9rWs0TXWYywMC586WYhnHEaUCleJHaf+RyOeIMjB41Wqs6rEsg==
X-Received: by 10.176.0.66 with SMTP id 60mr8011465uai.15.1467749799726; Tue, 05 Jul 2016 13:16:39 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.159.36.236 with HTTP; Tue, 5 Jul 2016 13:16:39 -0700 (PDT)
In-Reply-To: <A419F67F880AB2468214E154CB8A556206E462E8@eusaamb103.ericsson.se>
References: <20160705200035.22399.13041.idtracker@ietfa.amsl.com> <A419F67F880AB2468214E154CB8A556206E462E8@eusaamb103.ericsson.se>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Date: Tue, 05 Jul 2016 16:16:39 -0400
Message-ID: <CAHbuEH4d38vsVfnCFbxj48j=KEJZGFjh7gXJ0bEt4iBvsm4Cag@mail.gmail.com>
To: Kevin Ma J <kevin.j.ma@ericsson.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/DgwxkYnaEyKSXMNWkhKttrWitdc>
Cc: "flefauch@cisco.com" <flefauch@cisco.com>, "cdni@ietf.org" <cdni@ietf.org>, The IESG <iesg@ietf.org>, "draft-ietf-cdni-metadata@ietf.org" <draft-ietf-cdni-metadata@ietf.org>, "cdni-chairs@ietf.org" <cdni-chairs@ietf.org>
Subject: Re: [CDNi] Kathleen Moriarty's No Objection on draft-ietf-cdni-metadata-18: (with COMMENT)
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jul 2016 20:16:42 -0000

On Tue, Jul 5, 2016 at 4:06 PM, Kevin Ma J <kevin.j.ma@ericsson.com> wrote:
> Hi Kathleen,
>
>   Thanks for the review.  Could you expand on your thoughts wrt billing/theft?  I think the idea for billing was that it would be based on the logging data, not metadata.  DoS against metadata could prevent the content delivery and therefore prevent content owners and CDNs from recognizing revenue, but I'm not sure if that's the theft angle to which you refer?

I was wondering if there were attacks possible other than DoS.  I was
surprised I didn't see any related to theft of service if there was a
way to do that with metadata.  I didn't realize logging information
was used for billing and had assumed metadata would wind up being
logged and could cause an issue.  If that's not possible, that's fine
and that's why I just included this question as a comment.

Thanks,
Kathleen


>
> thanx!
>
> --  Kevin J. Ma
>
>> -----Original Message-----
>> From: Kathleen Moriarty [mailto:Kathleen.Moriarty.ietf@gmail.com]
>> Sent: Tuesday, July 05, 2016 4:01 PM
>> To: The IESG
>> Cc: draft-ietf-cdni-metadata@ietf.org; cdni-chairs@ietf.org;
>> flefauch@cisco.com; cdni@ietf.org
>> Subject: Kathleen Moriarty's No Objection on draft-ietf-cdni-metadata-18:
>> (with COMMENT)
>>
>> Kathleen Moriarty has entered the following ballot position for
>> draft-ietf-cdni-metadata-18: No Objection
>>
>> When responding, please keep the subject line intact and reply to all
>> email addresses included in the To and CC lines. (Feel free to cut this
>> introductory paragraph, however.)
>>
>>
>> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
>> for more information about IESG DISCUSS and COMMENT positions.
>>
>>
>> The document, along with other ballot positions, can be found here:
>> https://datatracker.ietf.org/doc/draft-ietf-cdni-metadata/
>>
>>
>>
>> ----------------------------------------------------------------------
>> COMMENT:
>> ----------------------------------------------------------------------
>>
>> I can see why unauthorized access to content isn't a concern since this
>> draft is just about the metadata, but wouldn't billing/theft be a
>> possible avenue of attack to be listed as a consideration through
>> alterations of the metadata?
>>
>



-- 

Best regards,
Kathleen