Re: [Dots] AD Review of draft-ietf-dots-architecture-14
"Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com> Sat, 11 January 2020 06:21 UTC
Return-Path: <tirumaleswarreddy_konda@mcafee.com>
X-Original-To: dots@ietfa.amsl.com
Delivered-To: dots@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52D86120128 for <dots@ietfa.amsl.com>; Fri, 10 Jan 2020 22:21:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mcafee.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BgL_q3EBNS3B for <dots@ietfa.amsl.com>; Fri, 10 Jan 2020 22:21:13 -0800 (PST)
Received: from us-smtp-delivery-140.mimecast.com (us-smtp-delivery-140.mimecast.com [216.205.24.140]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70C19120127 for <dots@ietf.org>; Fri, 10 Jan 2020 22:21:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mcafee.com; s=mimecast20190606; t=1578723672; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=XFSyIgZ+GGdEzVxbN9RL3dtqqKW2H5K3q3Dfb5a8fm0=; b=JMQ+tnA4thDSRL7yubGtYx0uXZFLNx7q+AuVvi70qc4oI15WyV/NgzkIitepakeUIzPmaK xFfMSADmdTdVO+uHjyNPbtd1neMP78mOKnpGBItfOZAL3McW+SL6ELlLQxY3MqLwiHLEOm 8zsPVQedCWTmL1ixhslJPKtkIGOy75A=
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (mail-bn7nam10lp2100.outbound.protection.outlook.com [104.47.70.100]) (Using TLS) by relay.mimecast.com with ESMTP id us-mta-305-OPkEOxCMODKGQG2oZ156qw-1; Sat, 11 Jan 2020 01:21:10 -0500
Received: from DM5PR1601MB1259.namprd16.prod.outlook.com (10.172.87.13) by DM5PR1601MB1178.namprd16.prod.outlook.com (10.172.85.137) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2602.13; Sat, 11 Jan 2020 06:21:09 +0000
Received: from DM5PR1601MB1259.namprd16.prod.outlook.com ([fe80::949b:6afa:b9ba:f4e4]) by DM5PR1601MB1259.namprd16.prod.outlook.com ([fe80::949b:6afa:b9ba:f4e4%3]) with mapi id 15.20.2623.013; Sat, 11 Jan 2020 06:21:09 +0000
From: "Konda, Tirumaleswar Reddy" <TirumaleswarReddy_Konda@McAfee.com>
To: "mohamed.boucadair@orange.com" <mohamed.boucadair@orange.com>, Roman Danyliw <rdd@cert.org>, "dots@ietf.org" <dots@ietf.org>
Thread-Topic: AD Review of draft-ietf-dots-architecture-14
Thread-Index: AdXHMmoiRx3D3KUrRUiecOSiRVyATgAQ2HbAAAi9PtAAK44p4A==
Date: Sat, 11 Jan 2020 06:21:09 +0000
Message-ID: <DM5PR1601MB1259C1C4E30335BE1C38574AEA3B0@DM5PR1601MB1259.namprd16.prod.outlook.com>
References: <359EC4B99E040048A7131E0F4E113AFC01E7100170@marchand> <DM5PR1601MB1259400B085262756BF3C125EA380@DM5PR1601MB1259.namprd16.prod.outlook.com> <787AE7BB302AE849A7480A190F8B9330314072F3@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
In-Reply-To: <787AE7BB302AE849A7480A190F8B9330314072F3@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.4.0.45
dlp-reaction: no-action
x-originating-ip: [49.37.206.28]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e5543fa5-6a7c-46b6-363e-08d7965e72c4
x-ms-traffictypediagnostic: DM5PR1601MB1178:
x-microsoft-antispam-prvs: <DM5PR1601MB1178376A2DE8F292D6428B35EA3B0@DM5PR1601MB1178.namprd16.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:2733;
x-forefront-prvs: 0279B3DD0D
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(39860400002)(136003)(366004)(346002)(396003)(376002)(189003)(199004)(32952001)(52536014)(33656002)(5660300002)(86362001)(53546011)(6506007)(186003)(478600001)(55016002)(316002)(26005)(8936002)(9686003)(110136005)(66446008)(66556008)(66946007)(64756008)(7696005)(76116006)(66476007)(8676002)(81166006)(2906002)(81156014)(71200400001)(85282002); DIR:OUT; SFP:1101; SCL:1; SRVR:DM5PR1601MB1178; H:DM5PR1601MB1259.namprd16.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 9nDSTmajhsNRkG56FVfPhreJxQefUz5BhKdpERoMXJczccwYhHKy14Oh3+T91Zd2rujYanQKmZZswnCiETRhF4j1oy+L2R6y+EWxyhEs1tGyQwgqPqn5abCmtDOhj2gW55I0OD0fhSrax1ylaQogOVTAUJNwqPbLFZfyVIGgAU9AGFCgH1858yHgIDF6+srmNsOUyGWsv+7qsobXbSWkiB3ckvtQVmhPx9I7fgaK7xEAyf6S0ngZsR+8zeLHbSoiI8Yn/JDPH3Sceifq58MjuG+AQu0VjKInsgRK7fa2LsYB3ono0BdDCEhck2SlTpUUQLz8aAF6Vnq0Zj/R1IQIt3ZmCmRe5j9ogDnfmh6kwag6WReCFjpS4H7HIdebEZVQlR5bTQdVoywFXrswtjF8KwLCmJ6F3NGTyBD9+bG3uo3cNC9TE6uqKJIfgYLQoJB36D2cA0jjy/pjmFpcui8IwfidRHe34w0SuMcZJ6+3zOMaywigvDJggWMzWTcDxqiDQrdRwM1Gz/SUAdcV9SipPA==
x-ms-exchange-transport-forked: True
MIME-Version: 1.0
X-OriginatorOrg: mcafee.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e5543fa5-6a7c-46b6-363e-08d7965e72c4
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Jan 2020 06:21:09.1738 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4943e38c-6dd4-428c-886d-24932bc2d5de
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: zrwoL4KKJdMYrCOq2p8uGsT2mAzjXDSx+x0CQBMK/kidRYDWM3HXRv/A69+Jx8st3UMsb2c1dSV7PSDK6dWE3kTLFhsBU++NVx6L3MSz6FBPhxJkjCEggVvHVbcKNRlh
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR1601MB1178
X-MC-Unique: OPkEOxCMODKGQG2oZ156qw-1
X-Mimecast-Spam-Score: 0
Content-Type: text/plain; charset="WINDOWS-1252"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/dots/KlGy5VGUHQm2OMhqLcLFBVZZB1I>
Subject: Re: [Dots] AD Review of draft-ietf-dots-architecture-14
X-BeenThere: dots@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "List for discussion of DDoS Open Threat Signaling \(DOTS\) technology and directions." <dots.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dots>, <mailto:dots-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dots/>
List-Post: <mailto:dots@ietf.org>
List-Help: <mailto:dots-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dots>, <mailto:dots-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 11 Jan 2020 06:21:16 -0000
Thanks Med, will update text. Cheers, -Tiru > -----Original Message----- > From: mohamed.boucadair@orange.com > <mohamed.boucadair@orange.com> > Sent: Friday, January 10, 2020 3:19 PM > To: Konda, Tirumaleswar Reddy > <TirumaleswarReddy_Konda@McAfee.com>; Roman Danyliw > <rdd@cert.org>; dots@ietf.org > Subject: RE: AD Review of draft-ietf-dots-architecture-14 > > CAUTION: External email. Do not click links or open attachments unless you > recognize the sender and know the content is safe. > > Hi Tiru, all, > > Two minor comments inline. > > Cheers, > Med > > > -----Message d'origine----- > > De : Dots [mailto:dots-bounces@ietf.org] De la part de Konda, > > Tirumaleswar Reddy Envoyé : vendredi 10 janvier 2020 10:05 À : Roman > > Danyliw; dots@ietf.org Objet : Re: [Dots] AD Review of > > draft-ietf-dots-architecture-14 > > > > Hi Roman, > > > > Thanks for the review. Please see inline > > > > > -----Original Message----- > > > From: Dots <dots-bounces@ietf.org> On Behalf Of Roman Danyliw > > > Sent: Friday, January 10, 2020 3:00 AM > > > To: dots@ietf.org > > > Subject: [Dots] AD Review of draft-ietf-dots-architecture-14 > > > > > > CAUTION: External email. Do not click links or open attachments > > > unless > > you > > > recognize the sender and know the content is safe. > > > > > > Hello! > > > > > > The following is my AD review of draft-ietf-dots-architecture-14: > ... > > > > > > ** Section 2.1 Per "It is not until this point that the mitigation > > service is > > > available for use.", this closing point about a mitigation service > > follows from > > > the previous description. However, I wanted to point out, the > > > notion > > of a > > > "mitigation service" being available after a fully configured DOTS > > client is not > > > a construct previously used in the document or the terminology. > > > It's > > likely > > > worth relating it to the previously defined terms like mitigator. > > > > "mitigation service" is already used in Sections 2 and 1.2 > > [Med] Given that only "mitigation" and "mitigator" are defined in the > terminology inherited from RFC8612, I suggest to make this simple change: > > OLD: > A simple example instantiation of the DOTS architecture could be an > enterprise as the attack target for a volumetric DDoS attack, and an > upstream DDoS mitigation service as the mitigator. > > NEW: > A simple example instantiation of the DOTS architecture could be an > enterprise as the attack target for a volumetric DDoS attack, and an > upstream DDoS mitigator. The service provided by the mitigator is called: > DDoS mitigation service. > > > > > > > > > ** Section 2.1. To avoid confusion on terms (i.e., from HTTP), > > perhaps > > > replace s/basic authorization/authorization/. > > > > Okay, replaced. > > > > > > > > ** Section 2.2.2. Per "For a given DOTS client (administrative) > > domain, the > > > DOTS server needs to be able to determine whether a given target > > resource > > > is in that domain.", what is a "target resource" isn't clear. I > > > think > > it is meant to > > > be the resource that is the target of the attack (that the DOTS > > > client > > is > > > signaling about). > > > > Yes. > > > > > Also, the idea that DOTS clients have "domains" is a new concept > > > here that needs clarification. > > > > I have simplified the text as follows: > > For a given DOTS client (administrative) domain, the DOTS server needs > > to be able to determine whether a given resource is in that domain. > > For example, this could take the form of associating a set of IP > > addresses and/or prefixes per DOTS client domain. > > [Med] Please make sure that the same wording is consistently used in the > document. Typically, please make these changes in many places of the > document: > > s/DOTS client's domain/DOTS client domain s/DOTS server's domain/DOTS > server domain > > This is also to be aligned with the signal channel document. Thanks.
- [Dots] AD Review of draft-ietf-dots-architecture-… Roman Danyliw
- Re: [Dots] AD Review of draft-ietf-dots-architect… Roman Danyliw
- Re: [Dots] AD Review of draft-ietf-dots-architect… Konda, Tirumaleswar Reddy
- Re: [Dots] AD Review of draft-ietf-dots-architect… mohamed.boucadair
- Re: [Dots] AD Review of draft-ietf-dots-architect… Konda, Tirumaleswar Reddy