Re: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles
<mohamed.boucadair@orange.com> Fri, 26 July 2019 11:33 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6DD9F1202E5 for <dots@ietfa.amsl.com>; Fri, 26 Jul 2019 04:33:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.597
X-Spam-Level:
X-Spam-Status: No, score=-2.597 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id st_kd5Kcw7Bx for <dots@ietfa.amsl.com>; Fri, 26 Jul 2019 04:33:22 -0700 (PDT)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.70.35]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48AD112024F for <dots@ietf.org>; Fri, 26 Jul 2019 04:33:22 -0700 (PDT)
Received: from opfednr06.francetelecom.fr (unknown [xx.xx.xx.70]) by opfednr20.francetelecom.fr (ESMTP service) with ESMTP id 45w6Qm2kpmz1y6Z; Fri, 26 Jul 2019 13:33:20 +0200 (CEST)
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.76]) by opfednr06.francetelecom.fr (ESMTP service) with ESMTP id 45w6Ql6dpHzDq93; Fri, 26 Jul 2019 13:33:19 +0200 (CEST)
Received: from OPEXCAUBMA2.corporate.adroot.infra.ftgroup ([fe80::e878:bd0:c89e:5b42]) by OPEXCAUBM7E.corporate.adroot.infra.ftgroup ([::1]) with mapi id 14.03.0439.000; Fri, 26 Jul 2019 13:33:20 +0200
From: mohamed.boucadair@orange.com
To: "Panwei (William)" <william.panwei@huawei.com>, "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>, Valery Smyslov <smyslov.ietf@gmail.com>, "dots@ietf.org" <dots@ietf.org>
Thread-Topic: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles
Thread-Index: AdVC85i4bFch/Zy8RxyBqvTQ1hxRMP//l+iAgAD+xQCAABi9gIAAAsKAgACskTT///rvIA==
Date: Fri, 26 Jul 2019 11:33:19 +0000
Message-ID: <787AE7BB302AE849A7480A190F8B9330312E9518@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
References: <787AE7BB302AE849A7480A190F8B9330312E88FA@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <01db01d54302$9bef3b40$d3cdb1c0$@gmail.com> <787AE7BB302AE849A7480A190F8B9330312E9380@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> <DM5PR16MB17050CF9AF89A83E5425C4A5EAC00@DM5PR16MB1705.namprd16.prod.outlook.com>, <787AE7BB302AE849A7480A190F8B9330312E9427@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> 2426C851-FB5E-4031-B64B-1C8166491C2A
In-Reply-To: 2426C851-FB5E-4031-B64B-1C8166491C2A
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.114.13.247]
Content-Type: multipart/alternative; boundary="_000_787AE7BB302AE849A7480A190F8B9330312E9518OPEXCAUBMA2corp_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/JCrvE67gbTQaFrE9eHU3i_N6X-c>
Subject: Re: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Jul 2019 11:33:25 -0000
Re-, What about adding the following to the terminology section? 'DOTS signal channel Call Home' refers to a DOTS signal channel established at the initiative of a DOTS server. That is, the DOTS server (a.k.a., Call Home DOTS server) initiates a secure connection to a DOTS client (a.k.a., Call Home DOTS client), and uses that connection to receive the attack traffic information from the Call Home DOTS client. More details are provided in Section 3. Cheers, Med De : Panwei (William) [mailto:william.panwei@huawei.com] Envoyé : vendredi 26 juillet 2019 13:12 À : BOUCADAIR Mohamed TGI/OLN; Konda, Tirumaleswar Reddy; Valery Smyslov; dots@ietf.org Objet : RE: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles Hi, I agree with Med. This maybe confused for people who are not familiar with this spec. The confusing part can be at the situation where base siganl channel and call home channel are used at the same time. In this case there are two kinds of DOTS client/server, we must emphasize DOTS client used in base signal channel and DOTS client used in call home signal channel to separate them. I think the new terms will make this difference better for both understanding and expressing. BTW, I suggest giving 'Call Home Signal Channel' a term definition at the same time. -------------------------------------------------- 潘伟 William Mobile: +86-18551640326<tel:+86-18551640326> Email: william.panwei@huawei.com<mailto:william.panwei@huawei.com> 发件人:mohamed.boucadair@orange.com <mohamed.boucadair@orange.com> 收件人:Konda, Tirumaleswar Reddy <TirumaleswarReddy_Konda@McAfee.com>;Valery Smyslov <smyslov.ietf@gmail.com>;dots@ietf.org <dots@ietf.org> 时间:2019-07-26 04:54:48 主 题:Re: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles Re-, Please see inline. Cheers, Med De : Dots [mailto:dots-bounces@ietf.org] De la part de Konda, Tirumaleswar Reddy Envoyé : vendredi 26 juillet 2019 10:45 À : BOUCADAIR Mohamed TGI/OLN; Valery Smyslov; dots@ietf.org Objet : Re: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles I don’t see any such terminology used in other specifications like https://tools.ietf.org/html/rfc8071. Why do we need “Call Home” prefix even after the text clarifies the roles clearly ? [Med] For us who are familiar with the text, there is no confusion. But I hear the comment from Valery as this may be confusing in some places. It is worth to clarify at this stage rather than spending extra cycles when the document advances in the process. If we go with this change all the figures needs to modified, and these terms need to be defined before being used. [Med] No all of the figures, but only when there is a confusion. Cheers, -Tiru From: Dots <dots-bounces@ietf.org> On Behalf Of mohamed.boucadair@orange.com Sent: Friday, July 26, 2019 12:46 PM To: Valery Smyslov <smyslov.ietf@gmail.com>; dots@ietf.org Subject: Re: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles CAUTION: External email. Do not click links or open attachments unless you recognize the sender and know the content is safe. ________________________________ Hi Valery, We didn’t consider the use of new terms because we thought this may be interpreted as if we are defining new DOTS roles (which we don’t). The text uses “in the call home scenario” to make that distinction in some places, but I understand this may not be sufficient. I’m OK to go with “Call Home DOTS *”. I updated the terminology section with the following: DOTS agents involved in the DOTS Call Home adhere to the DOTS roles as defined in [RFC8612]. For clarity, this document uses "Call Home DOTS client" (or "Call Home DOTS server") to refer to a DOTS client (or DOTS server) deployed in a Call Home scenario. and changed the text when it makes sense. The full diff is available at: https://github.com/boucadair/dots-call-home/blob/master/wdiff%20draft-ietf-dots-signal-call-home-04.txt%20draft-ietf-dots-signal-call-home-05.pdf candidate -05: https://github.com/boucadair/dots-call-home/blob/master/draft-ietf-dots-signal-call-home-05.txt Please let us know if this is better. Thank you. Cheers, Med De : Valery Smyslov [mailto:smyslov.ietf@gmail.com] Envoyé : jeudi 25 juillet 2019 18:04 À : BOUCADAIR Mohamed TGI/OLN; dots@ietf.org<mailto:dots@ietf.org> Objet : RE: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles Hi Med, thank you for adding this section, it really helps. However, I was asking for more - did you consider changing the terminology in such a way, that Call Home use case is not mixed with basic DOTS use case? For example, calling entities not just DOTS Client and DOTS Server, but say Call Home DOTS Client and Call Home DOTS Server? (actually I don't like these ad hoc names, probably you can invent better term).. Regards, Valery. From: Dots <dots-bounces@ietf.org<mailto:dots-bounces@ietf.org>> On Behalf Of mohamed.boucadair@orange.com<mailto:mohamed.boucadair@orange.com> Sent: Thursday, July 25, 2019 5:17 PM To: dots@ietf.org<mailto:dots@ietf.org> Subject: [Dots] draft-ietf-dots-call-home: Clarify DOTS Agent Roles Re-, There was a comment raised during the meeting asking to further clarify the role of the various DOTS agent in the call home. We added an new section to address this comment: https://tools.ietf.org/html/draft-ietf-dots-signal-call-home-04#section-1.4 Cheers, Med
- [Dots] draft-ietf-dots-call-home: Clarify DOTS Ag… mohamed.boucadair
- Re: [Dots] draft-ietf-dots-call-home: Clarify DOT… Valery Smyslov
- Re: [Dots] draft-ietf-dots-call-home: Clarify DOT… mohamed.boucadair
- Re: [Dots] draft-ietf-dots-call-home: Clarify DOT… Konda, Tirumaleswar Reddy
- Re: [Dots] draft-ietf-dots-call-home: Clarify DOT… mohamed.boucadair
- Re: [Dots] draft-ietf-dots-call-home: Clarify DOT… Panwei (William)
- Re: [Dots] draft-ietf-dots-call-home: Clarify DOT… mohamed.boucadair