IETF Logo Mail Archive

Re: [dhcwg] Ben Campbell's Discuss on draft-ietf-dhc-access-network-identifier-10: (with DISCUSS)

"Ben Campbell" <ben@nostrum.com> Mon, 14 December 2015 21:48 UTC

Return-Path: <ben@nostrum.com>
X-Original-To: dhcwg@ietfa.amsl.com
Delivered-To: dhcwg@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AC3501B2FA9; Mon, 14 Dec 2015 13:48:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ODpkfD3Zxmvj; Mon, 14 Dec 2015 13:48:48 -0800 (PST)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 007FC1B2FA6; Mon, 14 Dec 2015 13:48:47 -0800 (PST)
Received: from [10.0.1.10] (cpe-70-119-203-4.tx.res.rr.com [70.119.203.4]) (authenticated bits=0) by nostrum.com (8.15.2/8.14.9) with ESMTPSA id tBELmiOx029788 (version=TLSv1 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO); Mon, 14 Dec 2015 15:48:44 -0600 (CST) (envelope-from ben@nostrum.com)
X-Authentication-Warning: raven.nostrum.com: Host cpe-70-119-203-4.tx.res.rr.com [70.119.203.4] claimed to be [10.0.1.10]
From: Ben Campbell <ben@nostrum.com>
To: Sri Gundavelli <sgundave@cisco.com>
Date: Mon, 14 Dec 2015 15:48:44 -0600
Message-ID: <6D82F2D4-31FF-45CF-9914-1614D0EBACF8@nostrum.com>
In-Reply-To: <D28C940C.1FA5DF%sgundave@cisco.com>
References: <D28C940C.1FA5DF%sgundave@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; format="flowed"
X-Mailer: MailMate (1.9.3r5187)
Archived-At: <http://mailarchive.ietf.org/arch/msg/dhcwg/v2cPa686hr2vDEDm5Y95zgWLOSQ>
Cc: Bernie Volz <volz@cisco.com>, "dhc-chairs@ietf.org" <dhc-chairs@ietf.org>, "draft-ietf-dhc-access-network-identifier.shepherd@ietf.org" <draft-ietf-dhc-access-network-identifier.shepherd@ietf.org>, IESG <iesg@ietf.org>, "draft-ietf-dhc-access-network-identifier.ad@ietf.org" <draft-ietf-dhc-access-network-identifier.ad@ietf.org>, dhcwg@ietf.org, "draft-ietf-dhc-access-network-identifier@ietf.org" <draft-ietf-dhc-access-network-identifier@ietf.org>
Subject: Re: [dhcwg] Ben Campbell's Discuss on draft-ietf-dhc-access-network-identifier-10: (with DISCUSS)
X-BeenThere: dhcwg@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dhcwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dhcwg/>
List-Post: <mailto:dhcwg@ietf.org>
List-Help: <mailto:dhcwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dhcwg>, <mailto:dhcwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Dec 2015 21:48:49 -0000

Hi, thanks for the response. More comments inline. I removed sections 
that don't seem to need further discussion.

Thanks!

Ben.

On 8 Dec 2015, at 16:34, Sri Gundavelli (sgundave) wrote:

> Hi  Ben,
> -- 4.3.2
>
> The name of an 802.11 access point can imply the users location with a 
> fair bit of precision, making it effectively count as location data. 
> The draft needs  more discussion of the privacy implications of that.
>
>
> [Sri] I believe this issue is now resolved after discussions with 
> Alissa Cooper and the newly agreed text.
>

I saw proposed text clarifying the scope and making some of the security 
guidance normative. I support that in general, but I don't think it 
solves the specific privacy issue around 802.11 access point names. Did 
that discussion involve text describing the privacy implications of  
that? If so, I missed it. In any case, it would be helpful to see the 
new text in the context of a draft update.

>
>
> -- 6:
> This section seems underspecified. There seems to be a missing 
> discussion about interdependencies among options. For example, For 
> example, network name is meaningless without the technology type. What 
> is the minimum needed to be coherent?
>
>
> [Sri] Agree. Its mainly the ATT that must be present with certain 
> options. In each of those option section, we will state this 
> explicitly.

That will probably address this issue. Do you have proposed text (or a 
revised I-D)?


[...]
>
> -- 4.3.1:
> This mentions how to interpret the network name for 802.11, 3GPP, and 
> 3GPP2 networks. Is the use of this sub-option limited to those 
> technology types? How should it be interpreted for other types?
>
>
> [Sri] This covers all the currently defined access technologies in ATT 
> registry (CDMA, GSM and WLAN based access networks). For new ATT 
> values that are yet to be defined the network name has to be 
> interpreted as defined in the document that introduces those ATT 
> values.

Did I miss guidance to the expert reviewer for that registry that these 
things need to be defined? Does RFC 5213 have such guidance? That is, if 
someone registers a new ATT value for use with RFC 5213, would they know 
they need to define how to interpret the network name?

[...]
>
> -- 7, first sentence:
> This seems to be making a MUST level requirement for servers that do 
> not implement this draft. Is this a new MUST, or is already specified 
> elsewhere? (If the latter, then citation?)
>
>
> [Sri] I believe its existing behavior.
>
> RFC 3315 and RFC 2131 ? Bernie ?
>
> "If DHCPv4 server does not understand the option defined in Section 4
> it MUST ignore the DHCPv4 Access Network Identifier option received; 
> this is as specified in the base documents RFC2131 and RFC3315"

I suggest dropping the 2119 MUST. For example:

"RFCs 2131 and 3315 require that the DHCPv4 server ignore the DHCPv4 
Access Network Identifier option if it does not understand the option 
defined in Section 4"

[...]

v2.23.0 | Report a Bug | By Email