IETF Logo Mail Archive

Re: [Detnet] Alissa Cooper's Discuss on draft-ietf-detnet-architecture-11: (with DISCUSS and COMMENT)

János Farkas <janos.farkas@ericsson.com> Mon, 15 April 2019 21:08 UTC

Return-Path: <Janos.Farkas@ericsson.com>
X-Original-To: detnet@ietfa.amsl.com
Delivered-To: detnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC67812023E for <detnet@ietfa.amsl.com>; Mon, 15 Apr 2019 14:08:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.301
X-Spam-Level:
X-Spam-Status: No, score=-4.301 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LgerTSvEklrc for <detnet@ietfa.amsl.com>; Mon, 15 Apr 2019 14:08:09 -0700 (PDT)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C145212022A for <detnet@ietf.org>; Mon, 15 Apr 2019 14:08:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/relaxed; q=dns/txt; i=@ericsson.com; t=1555362483; x=1557954483; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=zBMa7UxyCU+0F0kY3obQfVtc2FWRZu6Rf6E715VQC/c=; b=UlDPDUfATUPD9tt/eFx8ZRPZzJHEwjmVwvvN6ZcuAtu9dOe0tJUoMYmEyY7vbKFo YG6oBMCNpchtTAcHFAJMVLTYgB+7ePKWD8KLk+BeVzNG1w4xoPe7+39BtcXkivGM 1Lxlpph0jhk07ZFc43391TSE9vEXwvwD43aKZr5mmpQ=;
X-AuditID: c1b4fb25-49dff70000001b0f-5f-5cb4f2b347a7
Received: from ESESSMB503.ericsson.se (Unknown_Domain [153.88.183.121]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 2C.3F.06927.3B2F4BC5; Mon, 15 Apr 2019 23:08:03 +0200 (CEST)
Received: from ESESBMR501.ericsson.se (153.88.183.129) by ESESSMB503.ericsson.se (153.88.183.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Mon, 15 Apr 2019 23:08:02 +0200
Received: from ESESSMB501.ericsson.se (153.88.183.162) by ESESBMR501.ericsson.se (153.88.183.129) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Mon, 15 Apr 2019 23:08:02 +0200
Received: from [100.94.57.128] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.189) with Microsoft SMTP Server id 15.1.1713.5 via Frontend Transport; Mon, 15 Apr 2019 23:08:02 +0200
References: <155067447797.31337.768983002923056061.idtracker@ietfa.amsl.com> <40b28261-5f04-7fcd-4f4f-ce243f32a808@labn.net> <1AA376D8-DE94-4FAF-B9D2-CC4E155CEC85@cooperw.in> <ec41b988-8f3c-4ae0-fc65-1269bf33f93e@labn.net> <b1c6345f-d3f1-735c-04cd-81c5a405ef11@ericsson.com> <0f7e2d9a-bf74-b5ea-6898-29ad2129a0c0@ericsson.com> <CCCB305C-257F-4436-8C6C-CAEBD2137B9D@cooperw.in>
From: János Farkas <janos.farkas@ericsson.com>
To: Alissa Cooper <alissa@cooperw.in>
CC: Lou Berger <lberger@labn.net>, draft-ietf-detnet-architecture@ietf.org, detnet@ietf.org, IESG <iesg@ietf.org>, "detnet-chairs@ietf.org" <detnet-chairs@ietf.org>
Message-ID: <ddfc0ddb-3ac6-d4dc-da6e-8c9889dd77c4@ericsson.com>
Date: Mon, 15 Apr 2019 23:08:02 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.2.1
MIME-Version: 1.0
In-Reply-To: <CCCB305C-257F-4436-8C6C-CAEBD2137B9D@cooperw.in>
Content-Type: multipart/alternative; boundary="------------C355BA2408FBC393368D660E"
Content-Language: en-US
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprFIsWRmVeSWpSXmKPExsUyM2J7pe7mT1tiDLpX81tMP/OX0eJa/w8W i9+fZrNYfPg2k8Vixp+JzBYdzW9ZHNg8vjx5yeSxZMlPJo8Pm5rZApijuGxSUnMyy1KL9O0S uDI2nogqmHeEqeLvx0nMDYyvDjN2MXJySAiYSEzvXsPcxcjFISRwlFHibvcXFgjnG6PEzze7 mOCcrfcvsYC0CAkcYZS4848DxBYWKJDov7Acqr2FWaJ7+iR2kASbgL3E3UsbmEFsEQFViavH frCBFDELrGGU6NzwHizBC1R0oLkbzGYBKjq5ZAMTiC0qECvx6cpiqBpBiZMzn4Bt5hSwk2ib uxDMZhYIk7g1ZworhC0ucevJfCaI69Qk3jfcYZzAKDQLSfssJC2zkLRA2BYSM+efZ4Sw5SWa t85mhrA1JFrnzGVHFl/AyL6KUbQ4tTgpN93IWC+1KDO5uDg/Ty8vtWQTIzDGDm75rbqD8fIb x0OMAhyMSjy8f+5siRFiTSwrrsw9xCjBwawkwuuYAhTiTUmsrEotyo8vKs1JLT7EKM3BoiTO +0dIMEZIID2xJDU7NbUgtQgmy8TBKdXA2OjINOXisrmPFp6Yb6uj0MqrsOLF3jdf1bmTfHvV zqjdOfl92t3eoDNGZTwHss4o73+6+96G6tVu887tzRdfdE7FWrZFPk1i1neW21V+jxi2xlz5 sS37srKm0oKDhxfebG8/cqf91lMV9/38T/P9gpLSZ+epM/+x+piUWdcdst3w7bXtLRpuxUos xRmJhlrMRcWJAKfHkAitAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/detnet/I1mbEN2YnzdEJHy4HHJGvJk8hw0>
Subject: Re: [Detnet] Alissa Cooper's Discuss on draft-ietf-detnet-architecture-11: (with DISCUSS and COMMENT)
X-BeenThere: detnet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussions on Deterministic Networking BoF and Proposed WG <detnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/detnet>, <mailto:detnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/detnet/>
List-Post: <mailto:detnet@ietf.org>
List-Help: <mailto:detnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/detnet>, <mailto:detnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Apr 2019 21:08:12 -0000

Hi Alissa,

Please see in-line.

On 4/12/2019 7:08 PM, Alissa Cooper wrote:
> Hi János,
>
>
>> On Mar 25, 2019, at 12:16 PM, János Farkas <janos.farkas@ericsson.com 
>> <mailto:janos.farkas@ericsson.com>> wrote:
>>
>> Hi Alissa,
>>
>> We believe that we have addressed your comments in the most recent 
>> revision: 
>> https://tools.ietf.org/html/draft-ietf-detnet-architecture-12. 
>> (https://mailarchive.ietf.org/arch/msg/detnet/utVL9ZVGcOeGtRIASRFx5WT_ErM)
>>
>> Please let us know what else you would like to see done before you 
>> clear your DISCUSS.
>>
>> I/we would be happy to meet with you this week if there is anything 
>> you would like to discuss.
>>
>> Regards,
>> Janos
>>
>>
>> On 2/26/2019 2:20 PM, János Farkas wrote:
>>> Hi Alissa,
>>>
>>> Thank you for your review!
>>>
>>> We can replace
>>> "DetNet is provides a Quality of Service (QoS), and as such, does not
>>>    directly raise any new privacy considerations."
>>> with
>>> "DetNet provides a Quality of Service (QoS), and as such, is not 
>>> expected to
>>>    directly raise any new privacy considerations.”
>
> I don’t understand why this is not expected. From what I can tell, the 
> architecture allows for the use off domain- or app-flow-specific IDs. 
> These seem like a new potential vector for tracking, and one that not 
> every QoS architecture requires.
As far as I understood from below, you were happy with the change to "is 
not expected".

Combined that with this discussion on the related text:
https://mailarchive.ietf.org/arch/msg/detnet/-L_wsGPMqNEOtPMgsGYaJ30nFXk

We came to the current text:
    DetNet provides a Quality of Service (QoS), and as such, is not
    expected to directly raise any new privacy considerations, the
    generic considerations for such mechanisms apply.  In particular,
    such markings allow for an attacker to correlate flows or to select
    particular types of flow for more detailed inspection.


Flow ID and associated QoS is not a new concept introduced by DetNet; 
therefore, does not expected to raise new concerns.

What specific further changes do you suggest to this text?

>
> This edit also doesn’t seem to cover the potential for additional 
> privacy exposure implied by the discussion of OAM in Section 4.1.1:
Thank you for making clear that this is the text you mean under "novel 
flow IDs and OAM tags" below. It was not clear to me because the 
architecture document does not contain either new / novel   Flow ID / 
OAM tag.

>
> "OAM can involve specific tagging added in the packets for tracing 
> implementation or
> network configuration errors; traceability enables to find whether a 
> packet is a replica, which DetNet relay node performed the 
> replication, and which segment was intended for the replica.

This text is there since: 
https://tools.ietf.org/html/draft-finn-detnet-architecture-05.

> Active and hybrid OAM methods require additional bandwidth to perform 
> fault management and performance monitoring of the DetNet domain. OAM 
> may, for instance, generate special test probes or add OAM information 
> into the data packet.”
This was added based on 
https://www.ietf.org/mail-archive/web/detnet/current/msg01577.html.

This paragraph reads to me as pretty generic text on OAM.

What specific cahnge would you like to see made to this text?

Should we, e.g., update the first sentence of the paragraph to:
    OAM can support tracing implementation or
    network configuration errors. Traceability enables to find whether a
    packet is a replica, which DetNet relay node performed the
    replication, and which segment was intended for the replica.

?

Regards,
János



> Thanks,
> Alissa
>
>>>
>>> I'm not sure what "references to new flow IDs and OAM tags should be 
>>> removed"?
>>>
>>> Could you point to the text that should be changed?
>>>
>>> Thank you!
>>> Janos
>>>
>>>
>>> On 2/20/2019 4:39 PM, Lou Berger wrote:
>>>>
>>>>
>>>> On 2/20/2019 10:25 AM, Alissa Cooper wrote:
>>>>>
>>>>>
>>>>>> On Feb 20, 2019, at 7:17 AM, Lou Berger <lberger@labn.net 
>>>>>> <mailto:lberger@labn.net>> wrote:
>>>>>>
>>>>>> Hi Alissa,
>>>>>>
>>>>>> Thanks for the comments - see below.
>>>>>>
>>>>>> On 2/20/2019 9:54 AM, Alissa Cooper wrote:
>>>>>>> Alissa Cooper has entered the following ballot position for
>>>>>>> draft-ietf-detnet-architecture-11: Discuss
>>>>>>>
>>>>>>> When responding, please keep the subject line intact and reply 
>>>>>>> to all
>>>>>>> email addresses included in the To and CC lines. (Feel free to 
>>>>>>> cut this
>>>>>>> introductory paragraph, however.)
>>>>>>>
>>>>>>>
>>>>>>> Please refer to 
>>>>>>> https://www.ietf.org/iesg/statement/discuss-criteria.html
>>>>>>> for more information about IESG DISCUSS and COMMENT positions.
>>>>>>>
>>>>>>>
>>>>>>> The document, along with other ballot positions, can be found here:
>>>>>>> https://datatracker.ietf.org/doc/draft-ietf-detnet-architecture/
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> ----------------------------------------------------------------------
>>>>>>> DISCUSS:
>>>>>>> ----------------------------------------------------------------------
>>>>>>>
>>>>>>> = Section 6 =
>>>>>>>
>>>>>>> "DetNet is provides a Quality of Service (QoS), and as such, 
>>>>>>> does not
>>>>>>>    directly raise any new privacy considerations."
>>>>>>>
>>>>>>> This seems like a false statement given the possibility that 
>>>>>>> DetNet may require
>>>>>>> novel flow IDs and OAM tags that create additional 
>>>>>>> identification and
>>>>>>> correlation risk beyond existing fields used to support QoS today.
>>>>>>
>>>>>> Based on the other work in the WG, I think "is not expected" is 
>>>>>> more accurate than "does not". This is based on the WG solutions 
>>>>>> for the DetNet data plane using existing IP (v4 or 6) headers or 
>>>>>> MPLS labels for flow identification.
>>>>>
>>>>> If that is the case then the references to new flow IDs and OAM 
>>>>> tags should be removed from the architecture.
>>>>
>>>> sounds reasonable.  Can you point to the specific offending text?
>>>>
>>>> Thanks,
>>>>
>>>> Lou
>>>>
>>>>>
>>>>>>
>>>>>> Would changing to "is not expected" address your concern?
>>>>>
>>>>> Combined with the above removals, that would work for me.
>>>>>
>>>>> Thanks,
>>>>> Alissa
>>>>>
>>>>>>
>>>>>> Thanks,
>>>>>>
>>>>>> Lou
>>>>>
>>>>>
>>>>> _______________________________________________
>>>>> detnet mailing list
>>>>> detnet@ietf.org
>>>>> https://www.ietf.org/mailman/listinfo/detnet
>>>
>>
>

v2.23.0 | Report a Bug | By Email