Re: [Dots] draft-ietf-dots-signal-channel-23: application/cbor media types
Benjamin Kaduk <kaduk@mit.edu> Tue, 04 September 2018 19:24 UTC
Return-Path: <kaduk@mit.edu>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD1DC130F93 for <dots@ietfa.amsl.com>; Tue, 4 Sep 2018 12:24:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.198
X-Spam-Level:
X-Spam-Status: No, score=-4.198 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UGoi7Sf9OlUR for <dots@ietfa.amsl.com>; Tue, 4 Sep 2018 12:24:21 -0700 (PDT)
Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D17BB130FBF for <dots@ietf.org>; Tue, 4 Sep 2018 12:24:20 -0700 (PDT)
X-AuditID: 1209190e-63dff70000002437-59-5b8edbe23dab
Received: from mailhub-auth-4.mit.edu ( [18.7.62.39]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id D9.A3.09271.3EBDE8B5; Tue, 4 Sep 2018 15:24:19 -0400 (EDT)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-4.mit.edu (8.13.8/8.9.2) with ESMTP id w84JOFSX006727; Tue, 4 Sep 2018 15:24:16 -0400
Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w84JOBM1021187 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 4 Sep 2018 15:24:13 -0400
Date: Tue, 04 Sep 2018 14:24:11 -0500
From: Benjamin Kaduk <kaduk@mit.edu>
To: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
Cc: Klaus Hartke <klaus.hartke@ericsson.com>, "dots@ietf.org" <dots@ietf.org>
Message-ID: <20180904192411.GL91593@kduck.kaduk.org>
References: <e9cf1bf596b34fad8b36df6afd9bdb0e@ericsson.com> <BN6PR16MB142517B24FF91082BEFD865EEA090@BN6PR16MB1425.namprd16.prod.outlook.com> <4296b2c10f6e4d159b4b0b655432c7ea@ericsson.com> <BN6PR16MB14256E6E3BE5797E7C1DC2A3EA090@BN6PR16MB1425.namprd16.prod.outlook.com> <cc660f0b0fc94f4b94cd05194e79fb24@ericsson.com> <BN6PR16MB1425441397C1DC26D198E06CEA030@BN6PR16MB1425.namprd16.prod.outlook.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <BN6PR16MB1425441397C1DC26D198E06CEA030@BN6PR16MB1425.namprd16.prod.outlook.com>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupgleLIzCtJLcpLzFFi42IRYrdT1318uy/aYM1JPYu1b46wWhzd3sFs 8fvgeTYHZo9fX6+yeSxZ8pPJo3nzQ5YA5igum5TUnMyy1CJ9uwSujBlnNjIXLOSvaLz3mq2B cRlPFyMnh4SAicTtqbOYuxi5OIQEFjNJrGx8wwjhbGCUOPH1HROEc4VJov3tC0aQFhYBFYmm z33MIDYbkN3QfRnMFhFwkbh9fweYzSzgK/Fi0WGwemGBUInN17+yg9i8QOsef9nKCjF0BrPE tTV7mCESghInZz5hgWjWkrjx7yXQZg4gW1pi+T8OkDCnQKzE3fPHmEBsUQFlib19h9gnMArM QtI9C0n3LITuBYzMqxhlU3KrdHMTM3OKU5N1i5MT8/JSi3SN9XIzS/RSU0o3MYKCl1OSbwfj pAbvQ4wCHIxKPLw3OvqihVgTy4orcw8xSnIwKYnyOlwHCvEl5adUZiQWZ8QXleakFh9ilOBg VhLhjW4ByvGmJFZWpRblw6SkOViUxHkdz7VGCwmkJ5akZqemFqQWwWRlODiUJHhZgVEqJFiU mp5akZaZU4KQZuLgBBnOAzT82y2Q4cUFibnFmekQ+VOMxhzzjk6dxMzx5z2QFGLJy89LlRLn 3QhSKgBSmlGaBzcNlIAksvfXvGIUB3pOmNcAZCkPMHnBzXsFtIoJaNWSAz0gq0oSEVJSDYz7 JBM+5x2O6H9xfaH/XLmTxdW5fB8ZC12Eec65/3iw/nLjmVS27Wpmzew7bjxunm54LeDh7JlT UrYcv6s9YdrjmgV86lyi8ccvvl/690Pvjg89oY/PTbvjsVezu1pdiVVG5ZPHy1fCD1apOL+q MJV+kfa2VfL2sU8VP0RVZui8E5l9mqvIZJelEktxRqKhFnNRcSIA6RszghsDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/1BvOJnMFumkl2fudSOiVqUz70AY>
Subject: Re: [Dots] draft-ietf-dots-signal-channel-23: application/cbor media types
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Sep 2018 19:24:23 -0000
On Tue, Sep 04, 2018 at 07:27:07AM +0000, Konda, Tirumaleswar Reddy wrote: > > -----Original Message----- > > From: Klaus Hartke <klaus.hartke@ericsson.com> > > Sent: Monday, September 3, 2018 5:04 PM > > To: Konda, Tirumaleswar Reddy <TirumaleswarReddy_Konda@McAfee.com>; > > dots@ietf.org > > Subject: RE: draft-ietf-dots-signal-channel-23: application/cbor media types > > > > This email originated from outside of the organization. Do not click links or > > open attachments unless you recognize the sender and know the content is safe. > > > > Konda, Tirumaleswar Reddy wrote: > > > By default DOTS signal Channel uses port number 4646 assigned by IANA > > > and the DOTS server knows only DOTS requests will arrive on this port, > > > and "DOTS Signal Channel Claims" registry will be created (just like > > > it's done in > > > https://tools.ietf.org/html/rfc8392) to accommodate new fields. Do > > > you still see a need to define specific media types for DOTS ? > > > > In short: Yes, because "we know it from the context" is exactly what is known to > > cause problems, e.g., when you want to take the information out of this context > > or evolve the application later. > > I don't get your comment, It is mandatory for the DOTS server to listen on port 4646 and DOTS client must only send mitigation requests to 4646. Further, the destination port is not multiplexed > with any other protocol. What problems do you see (an example probably will help understand the problem better) ? I think the claim is that you can't be sure there will not be some future usage scenario that involves conveying this data structure within some additional (supplementary?) data stream. In effect, you are assuming the invariants that this data structure only goes on port 4646 and nothing else goes on port 4646; while the latter is likely to hold, I think that skepticism of the former is pretty reasonable. -Ben
- [Dots] draft-ietf-dots-signal-channel-23: applica… Klaus Hartke
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Konda, Tirumaleswar Reddy
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Klaus Hartke
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Konda, Tirumaleswar Reddy
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Klaus Hartke
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Konda, Tirumaleswar Reddy
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Benjamin Kaduk
- Re: [Dots] draft-ietf-dots-signal-channel-23: app… Konda, Tirumaleswar Reddy