Re: [Dots] TR: New Version Notification for draft-reddy-dots-telemetry-04.txt

H Y <yuuhei.hayashi@gmail.com> Wed, 13 November 2019 22:54 UTC

Return-Path: <yuuhei.hayashi@gmail.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 979D612022E; Wed, 13 Nov 2019 14:54:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QLv0oGzetCaM; Wed, 13 Nov 2019 14:53:58 -0800 (PST)
Received: from mail-lj1-x236.google.com (mail-lj1-x236.google.com [IPv6:2a00:1450:4864:20::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 38E0F120127; Wed, 13 Nov 2019 14:53:58 -0800 (PST)
Received: by mail-lj1-x236.google.com with SMTP id v8so4458410ljh.5; Wed, 13 Nov 2019 14:53:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=/D+iArAFJgQcBiEhShTHJmcpg97Tj9vMl0nWm5wh4aU=; b=dGoOwWnZGVwLPLyaKWytw2vJnwV35MJSCd9/I7fcSXW8s1ZvW7kX+TI33HOAMOonTb +m0AH9bEkc2ucQdnmVVdK3GO8G5/QFOAZ6Ix7Dey5nlB2ENaLqumSLhOPjsnZnn8UoMI yizy8NuGZRFwu0+H/1WHJeeDFLA8NSRsO+1s551IvUM5PTZ3rdrQPNNHcS2yhxHONxC2 6HZODvJ/analeownbjHT0d/ZThwx3h6PyWHM+PnUGu5KLLBsfTefLDcuH1TqPnIAjFR/ EI9xOuPj2aQqakG8/HrIEjNgu1GCNGD/t09bl9QLxc5FwzMneu1xYpxZ8kI5B1SAjz5H Dl6Q==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=/D+iArAFJgQcBiEhShTHJmcpg97Tj9vMl0nWm5wh4aU=; b=KsHV+2PzXTMm4jPVEOBAh/meaPwNEhWrFTFmmINL3WgqscNS+lNETp+snfKG2a40Mf y8CMDSJzn87gMoJPyKRCPTB6e6iLAikTOss7BTro8ue8rIhRngW+bNp84twcGxmcVBcD 4dr/QpSUN9Dzek6xJFGXykSsNwQ/qQMsaZLNZSGXgYwNfHG8KoMtDjV9bQgTdQ6w4kG7 2r/dmwF0BIIRBgnJrxyA25od6+lv4gtPUgNDdbE8pUvbKf05C0g6mHWGfc1c6pRwxrMy Qb0dkp6XKMtONjLm9/6MlscJILn4PC+r0UYBKQ3l+R8h7t4rLtkDIR/L1/QucAgre9nw Ei1A==
X-Gm-Message-State: APjAAAXcuWhk8nOYnMLG1gONPK8cDnxg7e0c8Pew2XqlYGk28TsmDAkX mcjYl1VZXygZAGiYg5EuLE6bgVFrGftofz79jh4=
X-Google-Smtp-Source: APXvYqzdJIdNoe088Z87995zD2ozDRIbO5PGb3mqtINE21A+6GRTKTxj2ViWpkJGL0BHHTRovZayhpnDsieQZlstsJw=
X-Received: by 2002:a2e:888a:: with SMTP id k10mr4254261lji.195.1573685636347; Wed, 13 Nov 2019 14:53:56 -0800 (PST)
MIME-Version: 1.0
References: <157139119677.3853.16590465405127507911.idtracker@ietfa.amsl.com> <787AE7BB302AE849A7480A190F8B9330313410DA@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <CAA8pjUM2gRESrirgTux=RzDN8nWn89C+ptd1gDZnDZahoh7Q8A@mail.gmail.com> <787AE7BB302AE849A7480A190F8B9330313CD681@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <CY4PR1601MB12543A0ABAAE8321FE4EEE22EA760@CY4PR1601MB1254.namprd16.prod.outlook.com>
In-Reply-To: <CY4PR1601MB12543A0ABAAE8321FE4EEE22EA760@CY4PR1601MB1254.namprd16.prod.outlook.com>
From: H Y <yuuhei.hayashi@gmail.com>
Date: Thu, 14 Nov 2019 07:53:45 +0900
Message-ID: <CAA8pjUPKf5e5DkD6JYpnFMtdn91O8OFDe=gp-wKrmRjsfc2ZKQ@mail.gmail.com>
To: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@mcafee.com>, "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>
Cc: "draft-reddy-dots-telemetry@ietf.org" <draft-reddy-dots-telemetry@ietf.org>, "dots@ietf.org" <dots@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/2QGow5gzIPudPkqdETFClsIo1Jg>
Subject: Re: [Dots] TR: New Version Notification for draft-reddy-dots-telemetry-04.txt
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Nov 2019 22:54:01 -0000

Hi Med, Tiru

Thank you for the quick response. :-) That question of mine has been
almost solved.

> > The YANG module allows to return many pre-mitigations; each with a target
> > clause:
I missed it. I understand it as below now.

> > >  1) Top-talker of victims.
> > >  2) Top-talker of each victim.
To send 1), several target victim (target) addresses should be
included in the target-prefix*.
To send 2), each target victim (target) address should be included in
the list of target-prefix* in each pre-mitigation, and several
pre-mitigations should be included in the pre-mitigation*.

Thanks,
Yuhei

2019年11月13日(水) 18:45 Konda, Tirumaleswar Reddy
<TirumaleswarReddy_Konda@mcafee.com>om>:
>
> In addition, the attack details can be sent by the DOTS client or the DOTS server. The client can also choose to send the attack details per target or aggregate top talkers for all talkers of a domain.
>
> -Tiru
>
> > -----Original Message-----
> > From: Dots <dots-bounces@ietf.org> On Behalf Of
> > mohamed.boucadair@orange.com
> > Sent: Wednesday, November 13, 2019 3:10 PM
> > To: H Y <yuuhei.hayashi@gmail.com>om>; draft-reddy-dots-telemetry@ietf.org
> > Cc: dots@ietf.org
> > Subject: Re: [Dots] TR: New Version Notification for draft-reddy-dots-
> > telemetry-04.txt
> >
> > CAUTION: External email. Do not click links or open attachments unless you
> > recognize the sender and know the content is safe.
> >
> > Hi Yuhei,
> >
> > A victim (target) can be identified by one or + target-prefixes.
> >
> > The YANG module allows to return many pre-mitigations; each with a target
> > clause:
> >
> >              +--rw pre-mitigation* [telemetry-id]
> >                 +--rw telemetry-id                     uint32
> >                 +--rw target
> >                 ...
> >                 +--ro attack-detail
> >                    ...
> >                    |
> >                    +--ro top-talker
> >
> > A server can aggregate top-talkers for all targets of a domain, or when
> > justified, send specific information (including top-talkers) per individual
> > targets.
> >
> > Cheers,
> > Med
> >
> > > -----Message d'origine-----
> > > De : H Y [mailto:yuuhei.hayashi@gmail.com] Envoyé : mercredi 13
> > > novembre 2019 10:19 À : draft-reddy-dots-telemetry@ietf.org
> > > Cc : dots@ietf.org
> > > Objet : Re: [Dots] TR: New Version Notification for draft-reddy-dots-
> > > telemetry-04.txt
> > >
> > > Hi draft authors,
> > >
> > > Thank you for updating the draft. I have a question about YANG module
> > > of current DOTS telemetry, especially about top-talker.
> > >
> > > I think that top-talker has several meaning in general. Which
> > > top-talker can the YANG module explain?
> > >  1) Top-talker of victims.
> > >  2) Top-talker of each victim.
> > > # IMO, current YANG module can explain 1) , but can not 2) when
> > > target-prefix* has several elements.
> > >
> > > I attached a slide about the question. I'm glad if you answer the question.
> > >
> > > Thanks,
> > > Yuhei
> > >
> > > 2019年10月18日(金) 18:38 <mohamed.boucadair@orange.com>om>:
> > > >
> > > > Hi all,
> > > >
> > > > Although we are waiting for a call for adoption for this draft, we
> > > > made
> > > some changes which you can track with the diff provided below.
> > > >
> > > > Cheers,
> > > > Med
> > > >
> > > > > -----Message d'origine-----
> > > > > De : internet-drafts@ietf.org [mailto:internet-drafts@ietf.org]
> > > > > Envoyé : vendredi 18 octobre 2019 11:33 À : chenmeiling; BOUCADAIR
> > > > > Mohamed TGI/OLN; Meiling Chen; Tirumaleswar Reddy; Ehud Doron;
> > > > > Reddy K Objet : New Version Notification for
> > > > > draft-reddy-dots-telemetry-04.txt
> > > > >
> > > > >
> > > > > A new version of I-D, draft-reddy-dots-telemetry-04.txt has been
> > > > > successfully submitted by Mohamed Boucadair and posted to the IETF
> > > > > repository.
> > > > >
> > > > > Name:         draft-reddy-dots-telemetry
> > > > > Revision:     04
> > > > > Title:                Distributed Denial-of-Service Open Threat
> > > Signaling (DOTS)
> > > > > Telemetry
> > > > > Document date:        2019-10-18
> > > > > Group:                Individual Submission
> > > > > Pages:                41
> > > > > URL:            https://www.ietf.org/internet-drafts/draft-reddy-dots-
> > > > > telemetry-04.txt
> > > > > Status:         https://datatracker.ietf.org/doc/draft-reddy-dots-
> > > > > telemetry/
> > > > > Htmlized:       https://tools.ietf.org/html/draft-reddy-dots-telemetry-
> > > 04
> > > > > Htmlized:       https://datatracker.ietf.org/doc/html/draft-reddy-dots-
> > > > > telemetry
> > > > > Diff:           https://www.ietf.org/rfcdiff?url2=draft-reddy-dots-
> > > > > telemetry-04
> > > > >
> > > > > Abstract:
> > > > >    This document aims to enrich DOTS signal channel protocol with
> > > > >    various telemetry attributes allowing optimal DDoS attack
> > > > > mitigation
> > _______________________________________________
> > Dots mailing list
> > Dots@ietf.org
> > https://www.ietf.org/mailman/listinfo/dots
>


-- 
----------------------------------
Yuuhei HAYASHI
08065300884
yuuhei.hayashi@gmail.com
iehuuy_0220@docomo.ne.jp
----------------------------------