IETF Logo Mail Archive

Re: [Dots] Call for adoption on draft-boucadair-dots-server-discovery

"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Tue, 15 January 2019 07:32 UTC

Return-Path: <TirumaleswarReddy_Konda@mcafee.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 502AB130DCB for <dots@ietfa.amsl.com>; Mon, 14 Jan 2019 23:32:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -11.553
X-Spam-Level:
X-Spam-Status: No, score=-11.553 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-4.553, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KvFtXFt6V01O for <dots@ietfa.amsl.com>; Mon, 14 Jan 2019 23:32:20 -0800 (PST)
Received: from MIVWSMAILOUT1.mcafee.com (mivwsmailout1.mcafee.com [161.69.47.167]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 20F06128B14 for <dots@ietf.org>; Mon, 14 Jan 2019 23:32:19 -0800 (PST)
X-NAI-Header: Modified by McAfee Email Gateway (5500)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=s_mcafee; t=1547537424; h=From: To:CC:Subject:Thread-Topic:Thread-Index:Date: Message-ID:References:In-Reply-To:Accept-Language: Content-Language:X-MS-Has-Attach:X-MS-TNEF-Correlator: dlp-product:dlp-version:dlp-reaction:x-originating-ip: x-ms-publictraffictype:x-microsoft-exchange-diagnostics: x-ms-exchange-antispam-srfa-diagnostics:x-ms-office365-filtering-correlation-id: x-microsoft-antispam:x-ms-traffictypediagnostic: x-microsoft-antispam-prvs:x-forefront-prvs: x-forefront-antispam-report:received-spf:authentication-results: x-ms-exchange-senderadcheck:x-microsoft-antispam-message-info: spamdiagnosticoutput:spamdiagnosticmetadata: Content-Type:MIME-Version:X-MS-Exchange-CrossTenant-Network-Message-Id: X-MS-Exchange-CrossTenant-originalarrivaltime: X-MS-Exchange-CrossTenant-fromentityheader: X-MS-Exchange-CrossTenant-id:X-MS-Exchange-Transport-CrossTenantHeadersStamped: X-OriginatorOrg:X-NAI-Spam-Flag:X-NAI-Spam-Level: X-NAI-Spam-Threshold:X-NAI-Spam-Score:X-NAI-Spam-Version; bh=7jAYk5hApqrDd7Upfg0L2nB2mlZIpRgecsj0HI eb4rw=; b=ZwmMDGAi285ogF5bWF3ssM7eSvxQYdIoXjiW7RyA zv+DMhSmOBg//xH+kMo8vrnjFZjxOT3IH3tUyCsU5jc4VDOUrz EROQwq4hHAX4jeqCvscfx7cnjio51jiu26LZtXZclLTqyS/0+d 0q6k5xibjYFGyPE2EOfQ/q06OIBYlZ8=
Received: from DNVEXAPP1N04.corpzone.internalzone.com (DNVEXAPP1N04.corpzone.internalzone.com [10.44.48.88]) by MIVWSMAILOUT1.mcafee.com with smtp (TLS: TLSv1/SSLv3,256bits,ECDHE-RSA-AES256-SHA384) id 7b8f_fc76_af756d6b_558c_4dec_b906_0b925a195c1d; Tue, 15 Jan 2019 01:30:23 -0600
Received: from DNVEXUSR1N08.corpzone.internalzone.com (10.44.48.81) by DNVEXAPP1N04.corpzone.internalzone.com (10.44.48.88) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Tue, 15 Jan 2019 00:28:12 -0700
Received: from DNVO365EDGE2.corpzone.internalzone.com (10.44.176.74) by DNVEXUSR1N08.corpzone.internalzone.com (10.44.48.81) with Microsoft SMTP Server (TLS) id 15.0.1347.2 via Frontend Transport; Tue, 15 Jan 2019 00:28:12 -0700
Received: from NAM05-BY2-obe.outbound.protection.outlook.com (10.44.176.240) by edge.mcafee.com (10.44.176.74) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Tue, 15 Jan 2019 00:28:12 -0700
Received: from BYAPR16MB2790.namprd16.prod.outlook.com (20.178.233.91) by BYAPR16MB2997.namprd16.prod.outlook.com (20.178.235.219) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1537.24; Tue, 15 Jan 2019 07:28:10 +0000
Received: from BYAPR16MB2790.namprd16.prod.outlook.com ([fe80::202f:5967:73ad:130f]) by BYAPR16MB2790.namprd16.prod.outlook.com ([fe80::202f:5967:73ad:130f%5]) with mapi id 15.20.1537.018; Tue, 15 Jan 2019 07:28:10 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: Daniel Migault <daniel.migault@ericsson.com>, Flemming Andreasen <fandreas@cisco.com>
CC: Roman Danyliw <rdd@cert.org>, "dots@ietf.org" <dots@ietf.org>
Thread-Topic: [Dots] Call for adoption on draft-boucadair-dots-server-discovery
Thread-Index: AdSI+mzom/yrMKu/SJm1ohZrl+sYtAfU6q3gAPglxQAAFMBEAAAHv+SQ
Date: Tue, 15 Jan 2019 07:28:10 +0000
Message-ID: <BYAPR16MB2790246424483E108EFFBBD7EA810@BYAPR16MB2790.namprd16.prod.outlook.com>
References: <359EC4B99E040048A7131E0F4E113AFC0184C52F1B@marathon> <359EC4B99E040048A7131E0F4E113AFC0184C733EB@marathon> <0b23b46d-2a41-eb04-3763-190a4448510f@cisco.com> <CADZyTkmDHOo3=mKAoMOcNFAVMvaPF1_+TJYsF_KoSC0XKQThSg@mail.gmail.com>
In-Reply-To: <CADZyTkmDHOo3=mKAoMOcNFAVMvaPF1_+TJYsF_KoSC0XKQThSg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.1.100.18
dlp-reaction: no-action
x-originating-ip: [185.221.69.46]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; BYAPR16MB2997; 6:T/S98bHNEGM05A2exGbmO+Zk2vp4aqkE7I+cfajsklTUDHuvBZzYyASz6SnbonPwvyjmsc1YVADjFbSUo5/nCEDGf8Xezfamh34fc34Cv3/S05ZZ2CV5PDLFuL3tmIyjuwy7TTiNXVHxGLqj6w90uoG8WzObpQWoR+YWKJtvfnfDHxo2ZtMSeQ3NcLTcmWTZkBbxX4Md2aHMCTAxiStgypBaVyr3U8i1/lLlCDgnpLbhIubEE8INkH1N1+6UxyTq7fk/Dcwh9ZXsCA/iO7Oi1SgBgbaMaHgKWooNd3Q8L+ZyepeDHwRpG6eBbmoJ5QapUUjTjSlMEnzXmJIyIbsEDznKOPKPvFK8j4/EUiP58S0L4niKd+cNCe7/XaSDPn3Na+ApkIsKu8kKBo+YVO6IOe80eDPfY8QDbLU6qaFvtiNvtwNXyaAucAu9CI0t6xMrN3H/ns5qVpQ8ugkp257SPw==; 5:cv9cyCHr2A2CdWAb1K/JnQmpqJQPqWukWzsrq3Ktb9Zo3jHfTLU16OsF00ee8wM0KQqkrzje9+TN9/e7HZ/M/VfWbeQ84qVUayGZp4ujuHuhVRnrExOYzHFx9J4URAFuxS1bzK8GcRL2sVUQpWM6HMAoUNGKxlgOHQedmDgQU5l1hzTvMj6ngYKmCqTiJDXqpyJSIP3g3146dLipNYlxSw==; 7:cvmsxgpCD/IuehAS4iGmzjMYPpRKHu5VLM414cSHkUP7piL8sVbiiOn6Rr4ZfGdM/y9m4GDH45FC2PROj1x2u2HBwzoZwuUanFREp1FkHvB6fAx/xWOrk0aPFNjJ1bSK9BaynahlvAgZJx/VY+bGkQ==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 4de25877-d081-40a6-441a-08d67abb0059
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600109)(711020)(2017052603328)(7153060)(7193020); SRVR:BYAPR16MB2997;
x-ms-traffictypediagnostic: BYAPR16MB2997:
x-microsoft-antispam-prvs: <BYAPR16MB2997194C4BF2BDE6B5A79A1FEA810@BYAPR16MB2997.namprd16.prod.outlook.com>
x-forefront-prvs: 0918748D70
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(376002)(396003)(136003)(39860400002)(346002)(32952001)(13464003)(189003)(199004)(26005)(53546011)(6346003)(102836004)(229853002)(53936002)(6506007)(446003)(966005)(11346002)(476003)(236005)(186003)(9686003)(54896002)(6306002)(74316002)(478600001)(4326008)(5660300001)(25786009)(66066001)(86362001)(2906002)(6246003)(76176011)(14454004)(6436002)(7696005)(72206003)(790700001)(7736002)(6116002)(3846002)(33656002)(8676002)(105586002)(99286004)(106356001)(316002)(110136005)(54906003)(97736004)(71200400001)(80792005)(606006)(71190400001)(8936002)(68736007)(9326002)(55016002)(81156014)(81166006)(256004)(5024004)(14444005)(93886005)(486006)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:BYAPR16MB2997; H:BYAPR16MB2790.namprd16.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: McAfee.com does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=TirumaleswarReddy_Konda@McAfee.com;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 886gSn8Hmhcb/O7iFa0ELjeH7INFscMkRwSSHHwJrWcgFUBymRm/eRGzrNnfFXOnmCmB1iWJHX1RYjL/41ezheeRQh/bQMskPCcnda3FMMAkypIZ2s5wHWmcPvQQoNPIl4WAgrVdYtc2zYf1oQton39FsaaoZ7DOAXieARIFNGAfnhrAu0bpgGZy/rWnODSUDbXJ6dzMbiQapiX9Xtdb7mFg5IHh9MUKgfFJwPGe7SahVJCsKnabn5+Wdvc389KabYaUMQLBNG8BJk2fvSc2gnS/9XPJMcW53/I2mvoPmLTiAEuGxMFQPwABIiol2FoTcNhWha9ZMRmCW8Y/9utjPjheHrNfTaBEn0Htejs8HRQMpLj4iKtM3s9dvrHjVT4TlLEpsWXrJ1iae/uX/S0ffLjIklhVnrbQmDPUHX6W/9w=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BYAPR16MB2790246424483E108EFFBBD7EA810BYAPR16MB2790namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 4de25877-d081-40a6-441a-08d67abb0059
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Jan 2019 07:28:10.1055 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR16MB2997
X-OriginatorOrg: mcafee.com
X-NAI-Spam-Flag: NO
X-NAI-Spam-Level:
X-NAI-Spam-Threshold: 15
X-NAI-Spam-Score: 0.1
X-NAI-Spam-Version: 2.3.0.9418 : core <6460> : inlines <6994> : streams <1810130> : uri <2780147>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/77o9fhPIIOiR070XbleP2tH5jrA>
Subject: Re: [Dots] Call for adoption on draft-boucadair-dots-server-discovery
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jan 2019 07:32:24 -0000

Hi Daniel,

After the discovery of the DOTS server, the DOTS client must authenticate the DOTS server and vice-versa. If the DOTS agents cannot mutually authenticate each other, the discovery mechanism is of no use.


The only way to automate the discovery of DOTS server and automatically configure the explicit trust anchor store for the attached domain on the DOTS client is to use BRSKI (see https://tools.ietf.org/html/draft-ietf-anima-bootstrapping-keyinfra-17), using BRSKI the device (co-located with DOTS client) would have already learned and validated the network domain name, and can use DNS-SD to discover the DOTS server.



Further, S-NAPTR lookup helps provision the preferred DOTS signal channel transport protocol b/w the client and server, and the destination port of the DOTS server.



I don’t see the need to support mDNS and “.local” or “.home.apra”.


Cheers,
-Tiru

From: Dots <dots-bounces@ietf.org> On Behalf Of Daniel Migault
Sent: Tuesday, January 15, 2019 8:54 AM
To: Flemming Andreasen <fandreas@cisco.com>
Cc: Roman Danyliw <rdd@cert.org>; dots@ietf.org
Subject: Re: [Dots] Call for adoption on draft-boucadair-dots-server-discovery


CAUTION: External email. Do not click links or open attachments unless you recognize the sender and know the content is safe.


________________________________
I support the adoption of the draft.

While this should not prevent the adoption, I would avoid mDNS and prefer the use of SD with unicast DNS. For homenet, .local should be replaced by home.arpa.  I am not sure NAPTR solution could not be replaced by DNS-SD as well. I am happy to look at these discussions.

Yours,
Daniel


On Mon, Jan 14, 2019 at 12:29 PM Flemming Andreasen <fandreas@cisco.com<mailto:fandreas@cisco.com>> wrote:
I support WG adoption of this draft.

Thanks

-- Flemming
On 1/9/19 2:17 PM, Roman Danyliw wrote:

Hello!



Excluding support from the draft authors, the interest in adoption (or any response) was low on the list (one) and also at IETF 103.  The previous discussion around this draft was more spirited.  My concern is that this call may have been lost in the end of year holidays.  To that end, I'm extending the call for adoption.



Please provide feedback to the list/chairs if you believe that this document should be adopted as a WG document.  This extended adoption call will end on Tuesday, January 22.



Regards,

Roman and Frank



-----Original Message-----

From: Dots [mailto:dots-bounces@ietf.org] On Behalf Of Roman Danyliw

Sent: Friday, November 30, 2018 5:22 PM

To: dots@ietf.org<mailto:dots@ietf.org>

Subject: [Dots] Call for adoption on draft-boucadair-dots-server-discovery



Hello!



This is the start of a two week call for input on the WG adoption of the

document:



draft-boucadair-dots-server-discovery

https://tools.ietf.org/html/draft-boucadair-dots-server-discovery-05



The document has been presented and discussed at IETF 103, IETF 100 and

IETF 99;  and revisions have been made based on WG feedback.  Discussion

of adoption of this draft was previously deferred pending submission of the

signal draft for publication (which occurred in September 2018).



At the IETF 103 meeting, there were not many participants who had read the

draft.



Please provide feedback to the list/chairs if you believe that this document

should be adopted as a WG document.  The adoption call will end on

December 14 2018.



Regards,

Roman and Frank



_______________________________________________

Dots mailing list

Dots@ietf.org<mailto:Dots@ietf.org>

https://www.ietf.org/mailman/listinfo/dots

_______________________________________________

Dots mailing list

Dots@ietf.org<mailto:Dots@ietf.org>

https://www.ietf.org/mailman/listinfo/dots

...



_______________________________________________
Dots mailing list
Dots@ietf.org<mailto:Dots@ietf.org>
https://www.ietf.org/mailman/listinfo/dots

v2.23.0 | Report a Bug | By Email