IETF Logo Mail Archive

Re: [Dots] Opsdir last call review of draft-ietf-dots-requirements-16

Benjamin Kaduk <kaduk@mit.edu> Sun, 25 November 2018 20:33 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F1981277C8; Sun, 25 Nov 2018 12:33:43 -0800 (PST)
X-Quarantine-ID: <Kya2gKEXkn_H>
X-Virus-Scanned: amavisd-new at amsl.com
X-Amavis-Alert: BAD HEADER SECTION, Non-encoded 8-bit data (char 9C hex): Received: ...s kaduk@ATHENA.MIT.EDU)\n\t\234by outgoing.mit[...]
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kya2gKEXkn_H; Sun, 25 Nov 2018 12:33:42 -0800 (PST)
Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE6721274D0; Sun, 25 Nov 2018 12:33:41 -0800 (PST)
X-AuditID: 1209190e-6e9ff70000005c94-f4-5bfb07246527
Received: from mailhub-auth-1.mit.edu ( [18.9.21.35]) (using TLS with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id 29.A7.23700.4270BFB5; Sun, 25 Nov 2018 15:33:40 -0500 (EST)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-1.mit.edu (8.14.7/8.9.2) with ESMTP id wAPKXcwk003175; Sun, 25 Nov 2018 15:33:38 -0500
Received: from kduck.kaduk.org (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) �by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id wAPKXYaR017898 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Sun, 25 Nov 2018 15:33:36 -0500
Date: Sun, 25 Nov 2018 14:33:34 -0600
From: Benjamin Kaduk <kaduk@mit.edu>
To: Scott Bradner <sob@sobco.com>
Cc: ops-dir@ietf.org, draft-ietf-dots-requirements.all@ietf.org, ietf@ietf.org, dots@ietf.org
Message-ID: <20181125203333.GC70217@kduck.kaduk.org>
References: <154309157569.4300.10419245253211850237@ietfa.amsl.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <154309157569.4300.10419245253211850237@ietfa.amsl.com>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupnleLIzCtJLcpLzFFi42IR4hRV1lVh/x1t8Oi+mMXaN0dYLW5fW8ts 8WzjfBaL3qYlzBbHO5UdWD2WLPnJ5PHiwDfmAKYoLpuU1JzMstQifbsEroypHw6yFqzmqfi8 o4ulgfETZxcjJ4eEgInE26kbWLoYuTiEBNYwSRxet5QRJCEksJFR4s+GOojEXSaJaxv2soAk WARUJdpa37CD2GwCKhIN3ZeZQWwRAUWJo+v+M4HYzAJpEudO3QarERZwlzhyaCtrFyMHBy/Q tj0nIiHmO0tsvr8ZrJxXQFDi5MwnLBCt6hJ/5l1iBilnFpCWWP6PAyIsL9G8dTbYJk4BF4nt X+6DnSkqoCyxt+8Q+wRGwVlIJs1CMmkWwqRZSCYtYGRZxSibklulm5uYmVOcmqxbnJyYl5da pGusl5tZopeaUrqJERzuknw7GCc1eB9iFOBgVOLhnfDrV7QQa2JZcWXuIUZJDiYlUd75jkAh vqT8lMqMxOKM+KLSnNTiQ4wSHMxKIrw89j+jhXhTEiurUovyYVLSHCxK4ry/RB5HCwmkJ5ak ZqemFqQWwWRlODiUJHg3sP6OFhIsSk1PrUjLzClBSDNxcIIM5wEaPhOkhre4IDG3ODMdIn+K UVFKnJeVDSghAJLIKM2D6wWlI4ns/TWvGMWBXhHmVQGp4gGmMrjuV0CDmYAGy8//DjK4JBEh JdXAmCN87k5ni7F84KXDz99vOLT6yM+Z4Vl5M3/t3MLp3uIuK8DecNNDYYpqHOdMG8+WVRZB 2QuzV0/fsPHUlT7+I3/MV93fwtg565Vyy83XC6Q+HWLaw5myb1PjJqnzvBf4LWblTOC7U+MR 99jc5Fr9VEfVuALOhFsT1xp/KlXQuJvy/cuWJ1pflJVYijMSDbWYi4oTAXRHshciAwAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/CEYRj7dcJc3XJZR71jq-hvzedEY>
Subject: Re: [Dots] Opsdir last call review of draft-ietf-dots-requirements-16
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 25 Nov 2018 20:33:44 -0000

Hi Scott,

On Sat, Nov 24, 2018 at 12:32:55PM -0800, Scott Bradner wrote:
> Reviewer: Scott Bradner
> Review result: Has Nits
> 
> This is an OPS-DIR review of Distributed Denial of Service (DDoS) Open Threat
> Signaling Requirements (draft-ietf-dots-requirements)
> 
> This document lists requirements for a protocol to used between providers of
> DDOS mitigation services and users of such services, as such there can be no
> direct operational issues with the document.  I also did not find any indirect
> operational issues.
> 
> I think the document would benefit from the addition of a section before the
> requirements section that specifically describes the setup assumed by the
> document. The descriptions before there hint at a presumed setup but a new
> section that clearly states the setup would be helpful. (the setup appears to
> be one where all network traffic to and from a protected entity flows through a
> DDoS mitigation service provider.  The provider includes one or more DOTS
> servers.  The protected entity includes one or more DOTS clients that
> communicate with the DOTS servers)

Just to double-check: you think that the reference to
draft-ietf-dots-architecture is insufficient in this regard?

Thanks,

Ben

> Requirement SIG-005 addresses channel redirection – maybe there needs to be a
> way that clients can move to a new server on their own if they lose hearbeat
> from the server they were using – that might include a way for a server to
> provide a list of alternative servers to the clients
> 
>

v2.23.0 | Report a Bug | By Email