Re: [dhcwg] Fwd: New Version Notification for draft-ietf-dhc-sedhcpv6-20.txt

神明達哉 <jinmei@wide.ad.jp> Wed, 15 February 2017 19:42 UTC

Return-Path: <jinmei.tatuya@gmail.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 067FD129A2F for <dhcwg@ietfa.amsl.com>; Wed, 15 Feb 2017 11:42:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.597
X-Spam-Level:
X-Spam-Status: No, score=-2.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.001, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Bi7ks5KdcFVP for <dhcwg@ietfa.amsl.com>; Wed, 15 Feb 2017 11:42:31 -0800 (PST)
Received: from mail-qk0-x235.google.com (mail-qk0-x235.google.com [IPv6:2607:f8b0:400d:c09::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 356F8129A2A for <dhcwg@ietf.org>; Wed, 15 Feb 2017 11:42:31 -0800 (PST)
Received: by mail-qk0-x235.google.com with SMTP id u25so161896993qki.2 for <dhcwg@ietf.org>; Wed, 15 Feb 2017 11:42:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc; bh=TkB7KpUpC9jzYHpfDLXA5iDVrnYfe32V5v7ZBJdYtZA=; b=s9dQFFUioizL4NZ0vpJRexCaOC3i8qAFtSDR6LQTLjY9yRZ2NGwNakdAwNT8bB/WlB ZMgZa8v943+uDmnmCr6ooKDuAU8jjEQFR3S45ezH726N5E+s/UtxCeWU5Fv9lx9Bdiud k9cnscpjAEiIga42OKhi8OnRmW/x5S+ts+1rHhYnWtdzOW4EowZPswWtUGGdCMG4wfUV Lj34SdbE2fW39EULF302wN/teoCABmOyjtoIaOJF2i0EP0MuP0gQrT+7Dkd1mT01G+dR +1HTdvkLTNzeprg6gMFmA15Pdz/R/0SoEKePnPIchm7v4MSo5Crc4bD7193r+afQ7ToJ D9yQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to:cc; bh=TkB7KpUpC9jzYHpfDLXA5iDVrnYfe32V5v7ZBJdYtZA=; b=GLU+IclrJhh00VZFBhUjvxzkLl2DUk42NJFSBEkEkZ+/jJmVxayZzC1AzrcQXeoyo5 tpBJHnt719nkzOzJDyOSNlafPfnPTsirnJX5ZqbIQ6IGoa2KtAgJO1bPjJv7sCqgY+FO v3xD84lnTj+0dmd/dN6WJUT2w28TgRl0MQSbLd8lJy654gQ9mGBtlFVaLl6ChUUzIlU8 7OxmCzLu6HFzCq4p20EBwPpSk3vKTqKNSJ/ed9fSJ/bCBMx19WR/r7yzuf61yf8XZLpu 9BjqtXKi7ABCpg23HaOpXmOA1n8LAaZcdhKlisS3VM/olc/vYJO1cYKceL7Z5qjXhM3z W1Uw==
X-Gm-Message-State: AMke39marasLf87glQUaIy2m1oALi6i1HS5H/26rKrxTdOZ5udUr1TB4qSyO9sLOYRSPcIA0eSJ0fPMJqAjUbQ==
X-Received: by 10.55.123.129 with SMTP id w123mr33939201qkc.20.1487187750255; Wed, 15 Feb 2017 11:42:30 -0800 (PST)
MIME-Version: 1.0
Sender: jinmei.tatuya@gmail.com
Received: by 10.237.60.29 with HTTP; Wed, 15 Feb 2017 11:42:29 -0800 (PST)
In-Reply-To: <8549b0b78c2e47e1a1839133dbc5b73a@XCH15-06-08.nw.nos.boeing.com>
References: <148455739520.22478.14651605359463322132.idtracker@ietfa.amsl.com> <CAJ3w4NdCk8CBfNagcXT_VW_50+=xK=N7aB5HHqqn3stMt7Gy-Q@mail.gmail.com> <CAJE_bqf_AP9w1Bh_5kSB4YkLaV9XJ1tngufAiOMxVqQLwMruNA@mail.gmail.com> <aba52c11e462426bb3cbf66fcdca7783@XCH15-06-08.nw.nos.boeing.com> <CAJE_bqcG004FuUkKa0Xk1AiOo-bO4aHweYDpxMeeg+_=dSK6FQ@mail.gmail.com> <5c9ed55cfdc94456baf19740ba62910c@XCH15-06-08.nw.nos.boeing.com> <CAJE_bqeshAHmvGukto+PKs_skVPF5bnukvw8+5_04YEx_6m_sQ@mail.gmail.com> <8549b0b78c2e47e1a1839133dbc5b73a@XCH15-06-08.nw.nos.boeing.com>
From: =?UTF-8?B?56We5piO6YGU5ZOJ?= <jinmei@wide.ad.jp>
Date: Wed, 15 Feb 2017 11:42:29 -0800
X-Google-Sender-Auth: OvAYaXS0gxwsED8b43_5LZ3Y6xM
Message-ID: <CAJE_bqdvXwJjZJbwjC6eT6Fy6LQURDnmdBeP39g6WiaiPkJOiw@mail.gmail.com>
To: "Templin, Fred L" <Fred.L.Templin@boeing.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: <https://mailarchive.ietf.org/arch/msg/dhcwg/0srvt-85xz9lvrOknowiAi6kWRw>
Cc: dhcwg <dhcwg@ietf.org>
Subject: Re: [dhcwg] Fwd: New Version Notification for draft-ietf-dhc-sedhcpv6-20.txt
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Feb 2017 19:42:33 -0000

At Wed, 15 Feb 2017 18:51:26 +0000,
"Templin, Fred L" <Fred.L.Templin@boeing.com> wrote:

> > > > It's probably better to describe the issue in
> > > > sedhcpv6 with a reference to the RAAN draft as a possible future
> > > > solution to it if and when it's adopted and standardized.
> > >
> > > If sedhcpv6 will not support an authentication-only mode, then it
> > > can' t go forward until RAAN is adopted as a wg item. Otherwise,
> > > an encryption-only sedhcpv6 w/o RAAN would break DHCPv6 PD.
> >
> > I personally don't think it a blocking issue for sedhcpv6, but, of
> > course, the wg should decide it.
>
> Some uses of DHCPv6 PD require a secure exchange between the client and
> server supported by an LDRA [RFC6221] that is in the same physical stack as
> the server. The LDRA needs to peek into the server's Reply in order to discover
> the delegated prefixes for the purpose of configuring routes. This all needs to

Where in RFC6221 is that need described?  From a quick re-read of the
RFC I can't find it.  But in any case,

> work with a standards-compliant DHCPv6 server that implements both
> sedhcpv6 and RAAN. Meaning that sedhcpv6 and RAAN would need to be
> advanced together as standards.

I don't follow the logic of the final sentence.  I see this means
sedhcpv6 at least initially wouldn't work for a particular scenario
without RAAN.  But I don't think it automatically means sedhcpv6 can't
be standardized with that limitation.  It would depend on how this
incompatibility is critical for the overall purpose of sedhcpv6, and
it doesn't seem to be that substantial - we can eventually standardize
RAAN, and then update sedhcpv6 to fill the incompatibility.  I
understand you have a different opinion, but to me it's a matter of
opinion, not an only possible interpretation of this situation.  I'm
not insisting my opinion should win, of course, and that's why I said
the wg should decide it.

> Maybe better yet would be to bring the RAAN option into the sedhcpv6
> spec itself?

For the same reason I don't think so, but, again, it should be up to
the wg.

--
JINMEI, Tatuya