IETF Logo Mail Archive

Re: [DMM] DMM Interim call #2 - agenda forming

"Templin, Fred L" <Fred.L.Templin@boeing.com> Thu, 11 September 2014 18:03 UTC

Return-Path: <Fred.L.Templin@boeing.com>
X-Original-To: dmm@ietfa.amsl.com
Delivered-To: dmm@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2516B1A8AB3 for <dmm@ietfa.amsl.com>; Thu, 11 Sep 2014 11:03:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.853
X-Spam-Level:
X-Spam-Status: No, score=-5.853 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-1.652, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uuuDEkVwckzj for <dmm@ietfa.amsl.com>; Thu, 11 Sep 2014 11:03:06 -0700 (PDT)
Received: from stl-mbsout-02.boeing.com (stl-mbsout-02.boeing.com [130.76.96.170]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C04A1A8BC1 for <dmm@ietf.org>; Thu, 11 Sep 2014 11:00:20 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by stl-mbsout-02.boeing.com (8.14.4/8.14.4/DOWNSTREAM_MBSOUT) with SMTP id s8BI0JYS007625; Thu, 11 Sep 2014 13:00:19 -0500
Received: from XCH-BLV-303.nw.nos.boeing.com (xch-blv-303.nw.nos.boeing.com [130.247.25.215]) by stl-mbsout-02.boeing.com (8.14.4/8.14.4/UPSTREAM_MBSOUT) with ESMTP id s8BI0C3s007572 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=OK); Thu, 11 Sep 2014 13:00:13 -0500
Received: from XCH-BLV-504.nw.nos.boeing.com ([169.254.4.62]) by XCH-BLV-303.nw.nos.boeing.com ([169.254.3.55]) with mapi id 14.03.0181.006; Thu, 11 Sep 2014 11:00:11 -0700
From: "Templin, Fred L" <Fred.L.Templin@boeing.com>
To: "Sri Gundavelli (sgundave)" <sgundave@cisco.com>, Jouni Korhonen <jouni.nospam@gmail.com>, "sarikaya@ieee.org" <sarikaya@ieee.org>
Thread-Topic: [DMM] DMM Interim call #2 - agenda forming
Thread-Index: AQHPzSY685cNtlvM5kaPQ9fwALiOyZv6soAwgAFMcQCAAC5BQA==
Date: Thu, 11 Sep 2014 18:00:11 +0000
Message-ID: <2134F8430051B64F815C691A62D9831832D1672B@XCH-BLV-504.nw.nos.boeing.com>
References: <2134F8430051B64F815C691A62D9831832D1590D@XCH-BLV-504.nw.nos.boeing.com> <D036931B.163120%sgundave@cisco.com>
In-Reply-To: <D036931B.163120%sgundave@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.247.104.6]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-TM-AS-MML: disable
Archived-At: http://mailarchive.ietf.org/arch/msg/dmm/YvKaSqmSsILjXHbIlcW49HNm24w
Cc: Dapeng Liu <liudapeng@chinamobile.com>, "dmm@ietf.org" <dmm@ietf.org>
Subject: Re: [DMM] DMM Interim call #2 - agenda forming
X-BeenThere: dmm@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Distributed Mobility Management Working Group <dmm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmm>, <mailto:dmm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dmm/>
List-Post: <mailto:dmm@ietf.org>
List-Help: <mailto:dmm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmm>, <mailto:dmm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Sep 2014 18:03:18 -0000

Hi Sri,

See below for some follow-up:

> -----Original Message-----
> From: Sri Gundavelli (sgundave) [mailto:sgundave@cisco.com]
> Sent: Thursday, September 11, 2014 12:28 AM
> To: Templin, Fred L; Jouni Korhonen; sarikaya@ieee.org
> Cc: Dapeng Liu; dmm@ietf.org
> Subject: Re: [DMM] DMM Interim call #2 - agenda forming
> 
> Hi Fred,
> 
> The below comment from you made me thinking. I must admit I'm not much
> familiar with Aero, have not seen its references in CDMA, WiMAX,
> CableLabs, WLAN or LTE architectures.  But, if it has all the mobility
> features and you believe this can conclude the WG, I thought I will
> explore this a bit. I started reviewing the charts that you sent and
> started browsing some of the specs. Few high-level questions, if you can
> answer or point me to some documents, it will be great.
> 
> 
> 1.) What is the interface between the Aero Server and the client ? Is it
> just DHCPv6 ? There is no other signaling interface ?

DHCPv6 is used for PD as well as mobility signaling. IPv6 ND messaging
is used for NUD, route optimization, and the functional equivalent of
a "binding update" via the use of unsolicited Neighbor Advertisements.
 
> 2.) What is the service authorization model for a Aero client ? How is the
> client identified by the server ? What is the security model ?

The Client is identified by the server via the DHCPv6 DUID. The DUID
is most likely based on some serial number or ID that is assigned to
the Client by the AERO service administrative staff.

The security model is based on a multi-tiered layered security approach.
First, the Client must authenticate itself to the network using whatever
access layer securing mechanisms that are available, e.g., IEEE802.1x.
For Clients that are coming into the network from the Internet, the
Client establishes a VPN link to a security gateway at the network
border.

Second, the Client must prove to the Server that it is authorized to
perform DHCPv6 signaling using DHCPv6 Auth or some other DHCPv6
securing mechanism. This is only to protect against an "insider
attack" in which a different Client pretends to be the authorized
Client in order to hijack the authorized Client's prefix, siphon
traffic, etc. Hence, a "better than nothing" authentication such
as DHCPv6 Auth is really all that is needed.

Third, the network must ensure that link-layer addresses cannot
be spoofed. Here, the "link-layer address" is the IP source
address of the encapsulating tunnel header. This is typically
done through proper application of BCP ingress filtering
practices.

Finally, the AERO Server/Relay infrastructure provides a trust
anchor to facilitate Client-to-Client route optimizations. In
particular, Clients trust their Servers but cannot trust each
other initially. If a Client receives a route optimization
signal from its trusted Server, however, it can safely engage
in the route optimization since a chain-of-trust was followed. 

> 3.) Can the Aero solution support IP nodes that do not have Aero client
> stack ?

Proxy AERO could be applied in the same manner as for PMIP,
but the document does not fully investigate that option at
this time.

> 4.) If a mobile or a cable SP deploys Aero, where is their point of
> control ? Where can they do Accounting, Lawful interception ?

Lawful intercept, accounting, etc. can be done at the AERO Servers.
In case these functions are mandatory, direct Client-to-Client route
optimizations would not be permitted in those environments. However,
Client-to-Server-to-Client route optimizations would still be used
to reduce path stretch and reduce load on critical infrastructure.

> 5.) I assume Aero client can be IPv4 or an IPv6 device ? For an IPv4-only
> legacy device, is the interface DHCPv4 ?

The AERO data plane can be either IPv4 or IPv6, and can be tunneled
over either IPv4 or IPv6 access networks. The AERO control plane is
always DHCPv6 and IPv6 ND. In particular, DHCPv6 PD can be used to
delegate IPv4 prefixes in the same way that it can delegate IPv6
prefixes. So no; DHCPv4 is not used in the control plane.

> 6.) Can an operator enable location-based services for a Aero client ?

AERO Clients discover and associate with AERO Servers that are
"nearby". They discover nearby Servers by resolving the DNS
FQDN "linkupnetworks.[domain]" where "[domain]" is a link-
specific DNS suffix. This would provide topological proximity
and I guess most often also geographic proximity. Is that what
you were asking?

> 7.) How can an operator enable IP Flow Mobility type features in an Aero
> system ?

I am not familiar with IP Flow Mobility, but does it mean spreading
traffic load across multiple access links? Like maybe sending streaming
video across WLAN while posting short text messages via 4G? If so,
AERO supports the use of multiple simultaneous access links - like,
keeping both the WLAN and 4G interfaces active at the same time. Or
maybe I am mis-understanding IP Flow Mobility?
 
> 8.) Taking a mobile router scenario, how does Aero client support
> multi-tenancy ? Is there a single tunnel between the client and the server

Again, I am not familiar with the term multi-tenancy, or at least not
with its use within this context. In terms of tunnels, however, the
tunnel is non-broadcast, multiple access (NBMA) and not point-to-point.
So each AERO node sees other AERO nodes as neighbors on the NBMA link.
The AERO interface therefore maintains a neighbor cache the same as
any IP interface, and uses the neighbor cache entries to track the
current L3/L2 address mappings. These mappings may change over time,
e.g., as the result of a mobility event.

Thanks - Fred
fred.l.templin@boeing.com

> ?
> 
> 
> Regards
> Sri
> 
> 
> 
> 
> On 9/10/14 11:43 AM, "Templin, Fred L" <Fred.L.Templin@boeing.com> wrote:
> 
> >Hi Jouni,
> >
> >I'd like to propose a slightly different charter:
> >
> >  "AERO already solves distributed mobility management and provides a
> >   a comprehensive mobility solution for any mobile device. AERO should
> >   therefore be approved as the mobility management solution for DMM.
> >   Publication of AERO will therefore conclude the working group's
> >   activity."
> >
> >Can we have this on the agenda?
> >
> >Thanks - Fred
> >fred.l.templin@boeing.com
> >
> >> -----Original Message-----
> >> From: dmm [mailto:dmm-bounces@ietf.org] On Behalf Of Jouni Korhonen
> >> Sent: Wednesday, September 10, 2014 11:37 AM
> >> To: sarikaya@ieee.org
> >> Cc: Dapeng Liu; dmm@ietf.org
> >> Subject: Re: [DMM] DMM Interim call #2 - agenda forming
> >>
> >>
> >> What do you mean by no agenda? To me it clearly says we use the call #2
> >> for setting up the work split.
> >>
> >> - Jouni
> >>
> >> 9/10/2014 9:06 PM, Behcet Sarikaya kirjoitti:
> >> > Jouni, why don't we cancel this one (#2) and do the next one (#3) with
> >> > an agenda?
> >> > I hope Alper can attend :-)
> >> >
> >> > Regards,
> >> >
> >> > Behcet
> >> >
> >> > On Wed, Sep 10, 2014 at 1:02 PM, Jouni Korhonen
> >><jouni.nospam@gmail.com> wrote:
> >> >>
> >> >> It seems I sent this to a wrong receiver.. that explains why it did
> >>not
> >> >> appear on the list.
> >> >>
> >> >> - Jouni
> >> >>
> >> >> -------- Alkuperäinen viesti / Orig.Msg. --------
> >> >> Aihe: DMM Interim call #2 - agenda forming
> >> >> Päiväys: Mon, 08 Sep 2014 23:43:24 +0300
> >> >> Lähettäjä: Jouni Korhonen <jouni.nospam@gmail.com>
> >> >> Vastaanottaja: dmm-ads@tools.ietf.org
> >> >> CC: jouni.nospam@gmail.com, Dapeng Liu <liudapeng@chinamobile.com>
> >> >>
> >> >> Folks,
> >> >>
> >> >> The next interim is close. Assuming there are no overwhelming amount
> >>of
> >> >> comments to the re-charter text, we are ready to start setting up the
> >> >> work split on the solution space! Remember the discussion and the
> >> >> minutes from the IETF#90 Friday session. No other agenda items are
> >> >> planned for the next interim.
> >> >>
> >> >> - Jouni & Dapeng
> >> >>
> >> >>
> >> >> _______________________________________________
> >> >> dmm mailing list
> >> >> dmm@ietf.org
> >> >> https://www.ietf.org/mailman/listinfo/dmm
> >>
> >> _______________________________________________
> >> dmm mailing list
> >> dmm@ietf.org
> >> https://www.ietf.org/mailman/listinfo/dmm
> >_______________________________________________
> >dmm mailing list
> >dmm@ietf.org
> >https://www.ietf.org/mailman/listinfo/dmm

v2.23.0 | Report a Bug | By Email