IETF Logo Mail Archive

Re: [core] WGA of draft-dijk-core-groupcomm-bis-03

Esko Dijk <esko.dijk@iotconsultancy.nl> Tue, 24 March 2020 10:37 UTC

Return-Path: <esko.dijk@iotconsultancy.nl>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F84E3A121B for <core@ietfa.amsl.com>; Tue, 24 Mar 2020 03:37:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.889
X-Spam-Level:
X-Spam-Status: No, score=-1.889 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iotconsultancynl.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sxvNqx-JgUp8 for <core@ietfa.amsl.com>; Tue, 24 Mar 2020 03:37:57 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2105.outbound.protection.outlook.com [40.107.21.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B0CF23A121E for <core@ietf.org>; Tue, 24 Mar 2020 03:37:55 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=d0vys0TOwJ0ybGN0J+rYFRqCOgA9tRa9Skvz7Zd2KcCI6uHcUru+hp45FO+0ery3Xf9sPtR+HsS1SYeZjDWqrpnv6Pxfl3owBuEaPsrbfjJCEKuiIOiUoTh/m3NSdZdS0sO6hg5hV48M5had7dTaQK5UBbdS1gKFDLUNu9p16fDMXGDGHjm73mRksNK8xgPgN66P3Z9ZjWUCBwEYmvULGOeRddrYA97Cvw14QVdo1Qgd0YxGsgi4BVOmhJZ0es1z5Rvgnh/rNostoRsFtvh4lgYPvt6P+ulKk7GTLskjmsIsLhopqCf9V/lXiK7CLajaB76bu64ADZNdRKV/cuf+JQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=fWlIwBqD6vDgrgl+Nts1SyrNeNIxwZU1kpy9F4Cs/3E=; b=L58UdtSkKMXknk6YPn7aqU39NKoOdWzic1THRB6FNYt6HttCC1sGOdM77T6pHsGwcoU6oILsi4oPrF/Dw1kcy3DJvxYVB2UfX3DvPZJoRpYCmYsYvIqP2U29TfiAu/Dz4XS7FQAVKSRVZe8TQxEstcF5XzzSegSe2YTFTQ0cgiEOsXC3nHIsvUqLRu1UgplmobMn/PgSLIh5EvhAQzzocZb+wqW5Fq2wPHeSFXWN/AxIllHX41Hyt7Hq7cp2f1rbVKL6n2GYoqhtYp9eOyNJigbkLHXPExtqvpbyhR03NKvIQFKa6p7ky6dYa0bWg5K/kgWLnLSU8Crg/+/S6fpuNg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=iotconsultancy.nl; dmarc=pass action=none header.from=iotconsultancy.nl; dkim=pass header.d=iotconsultancy.nl; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iotconsultancynl.onmicrosoft.com; s=selector2-iotconsultancynl-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=fWlIwBqD6vDgrgl+Nts1SyrNeNIxwZU1kpy9F4Cs/3E=; b=Qk7zoX0TTUNox4obHfrJL539nx+qJPP91tA5Efjv0eq+7mj1xqe+XhKgdcRvuD7zN23FwY02NLTC0s7yt0MKi2KOvu6hdw2AYCaK1ocspvWRVdNSc+iwHamxtRhEq1FMIYLD9e3fcNjaWMAUeqzr5aKsfaEV39xwBBg1IoR2HFA=
Received: from AM5P190MB0275.EURP190.PROD.OUTLOOK.COM (10.161.62.28) by AM5P190MB0243.EURP190.PROD.OUTLOOK.COM (10.161.89.140) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2835.20; Tue, 24 Mar 2020 10:37:52 +0000
Received: from AM5P190MB0275.EURP190.PROD.OUTLOOK.COM ([fe80::8c96:a66b:e170:bf8f]) by AM5P190MB0275.EURP190.PROD.OUTLOOK.COM ([fe80::8c96:a66b:e170:bf8f%3]) with mapi id 15.20.2835.021; Tue, 24 Mar 2020 10:37:52 +0000
From: Esko Dijk <esko.dijk@iotconsultancy.nl>
To: Achim Kraus <achimkraus@gmx.net>, "core@ietf.org" <core@ietf.org>
Thread-Topic: [core] WGA of draft-dijk-core-groupcomm-bis-03
Thread-Index: AQHV/pLXsckhDMGydE+8oEftag9izahXiknQ
Date: Tue, 24 Mar 2020 10:37:52 +0000
Message-ID: <AM5P190MB0275B59658F7D1C48CC5D7D6FDF10@AM5P190MB0275.EURP190.PROD.OUTLOOK.COM>
References: <1492100a-361b-d2ca-e1a1-f8086dfa858f@gmx.net>
In-Reply-To: <1492100a-361b-d2ca-e1a1-f8086dfa858f@gmx.net>
Accept-Language: en-US, nl-NL
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=esko.dijk@iotconsultancy.nl;
x-originating-ip: [85.147.167.236]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 41ad114e-b1ab-4eb5-0652-08d7cfdf6831
x-ms-traffictypediagnostic: AM5P190MB0243:
x-microsoft-antispam-prvs: <AM5P190MB0243E64FCE88E79EE1DF2EC7FDF10@AM5P190MB0243.EURP190.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 03524FBD26
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(346002)(39830400003)(396003)(366004)(136003)(26005)(6506007)(53546011)(9686003)(55016002)(81166006)(71200400001)(110136005)(8936002)(186003)(316002)(44832011)(8676002)(33656002)(7696005)(81156014)(52536014)(2906002)(5660300002)(76116006)(64756008)(66476007)(66946007)(966005)(66556008)(66446008)(508600001)(86362001); DIR:OUT; SFP:1102; SCL:1; SRVR:AM5P190MB0243; H:AM5P190MB0275.EURP190.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords;
received-spf: None (protection.outlook.com: iotconsultancy.nl does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: ywV7mLhwbAIh0UUruT1qqNq4aq38aTg1nWwrKvhWcpW5IhGTUYc2hP65tak79hugjthWgX4zDVIPorDt3zQXr98Xbz4t4uMD1uVFYKNMOfqglzkCabgqO5ahUZv8UKd69JxHdERs8sM8vNZ/4MOpSw==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: iotconsultancy.nl
X-MS-Exchange-CrossTenant-Network-Message-Id: 41ad114e-b1ab-4eb5-0652-08d7cfdf6831
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Mar 2020 10:37:52.7811 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 58bbf628-15d2-46bc-820b-863b6774d44b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: q3OkuQTmDAGNYwla2l4xAk0+W7b6RJPCYeoJayO/USi5McDxn6fNRFwGpZlUBS814Pik3tMf2dyay2nsZ/LDXzNth8URNptkhjXbVbFJN7c=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM5P190MB0243
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/fbCOLyvzF16zbmc_9ZxKORowm7w>
Subject: Re: [core] WGA of draft-dijk-core-groupcomm-bis-03
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Mar 2020 10:38:11 -0000

Hello Achim,

Thanks for your email and raising this point. The groupcomm-bis-03 draft now defines more explicitly the concepts of CoAP group, application group and security group.
If the CoAP group cannot be determined by the server, that should not be a problem when considering these 3 group concepts. By the fact that the message is received, the server knows that the message is targeting at least one CoAP group that it has joined.

How the server handles the request is not determined by the CoAP group but normally by the URI path (indicating the resource) and the URI query options (if any).
In groupcomm-bis we indicate that the application group may be optionally encoded in the URI path (e.g. /lights/g4/brightness to control brightness of all application-group g4 lights within a single luminaire device) or in the URI query (e.g. /lights/brightness?grp=g4) .

In addition, also security group needs to be considered. The server will need to check that the right security group is present in the request before processing the request for a specific resource or resource-plus-application-group indicator.
(For example, only an authenticated client that is member of group 'g4' can make a request to the /lights/g4/...  set of resources. CoAP group is then not so relevant anymore.)

You mention the "Uri-Host" option used to select a destination group, that is certainly possible - it influences the choice of application group according to the definitions in groupcomm-bis. (Maybe we should explain this in the draft also. Thomas had also a Uri-Host comment!)
So by looking at the value of "Uri-Host", a server can decide on different processing of the request. (For example, a request to resource /lights/brightness could operate differently depending on the contents of Uri-Host e.g. "g4" and also have different security requirements depending on that value. So each virtual server in the same endpoint serves resources for a different application group.).
The reason that "Uri-Host" does not impact selection of CoAP group is because CoAP group is defined at endpoint level only; and multiple virtual servers are within the same endpoint.

All in all, the server's processing of the request depends on URI path / URI query in a particular security context - and the CoAP group should not play a role in that anymore as this is more about getting the message to the right set of nodes.  If it does play a role then what you are really selecting is different application groups (that might be named after CoAP groups - but still they are application groups) and for that we have various tools at the moment: URI path, URI query and URI host option. Adding another tool to this like a "group selection option" would be possible though I feel URI path is the most logical place to encode application group!

Best regards
Esko

-----Original Message-----
From: core <core-bounces@ietf.org> On Behalf Of Achim Kraus
Sent: Friday, March 20, 2020 09:37
To: core@ietf.org
Subject: Re: [core] WGA of draft-dijk-core-groupcomm-bis-03

Hello list,

the draft "draft-dijk-core-groupcomm-bis-03" mention in
2.1 Group Definition

"An endpoint may be a member of multiple CoAP groups by subscribing to
multiple IP multicast groups."

At least for java, we (Eclipse Californium) didn't find a way for the
server-side, to determine, for which multicast group the message was
received. We even didn't find a way to distinguish on the server-side,
if the message was received through a multicast group or uni-cast
address. An approach, which uses "many ports", and so different
endpoints, has it's downsides (the document mentions them).
To overcome that for a "private deployment", I started to use the
"Uri-Host" option to send he destination "multicast group" as convention.

Maybe, if group communication gets more elaborated, the core wg consider
to spend a specific (new) option "multicast-group" in order to make it
easier/possible, to implement a proper server-side.

best regards
Achim Kraus

_______________________________________________
core mailing list
core@ietf.org
https://www.ietf.org/mailman/listinfo/core

v2.23.0 | Report a Bug | By Email