Re: [dtn-security] Newbie seeking some security related advice

"Jason Redi" <redi@bbn.com> Thu, 28 May 2009 00:25 UTC

Received: from mx3.bbn.com (mx3.bbn.com [128.33.1.81]) by maillists.intel-research.net (8.13.8/8.13.8) with ESMTP id n4S0PVMA028077 for <dtn-security@maillists.intel-research.net>; Wed, 27 May 2009 17:25:31 -0700
Received: from mproxy02.bbn.com ([192.1.122.24]) by mx3.bbn.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.63) (envelope-from <jredi@bbn.com>) id 1M9TOP-0002Kl-BK; Wed, 27 May 2009 20:22:45 -0400
Received: from [173.48.210.200] (helo=Oteil) by mproxy02.bbn.com with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.69 (FreeBSD)) (envelope-from <jredi@bbn.com>) id 1M9TOP-000AGm-D8; Wed, 27 May 2009 20:22:45 -0400
From: "Jason Redi" <redi@bbn.com>
To: "'Armando Caro'" <acaro@bbn.com>, "'Ivancic, William D. \(GRC-RHN0\)'" <william.d.ivancic@nasa.gov>
References: <89E48AE60E64EF4E8EB32B0B7EC74920A1B0F5@EVS-EC1-NODE2.surrey.ac.uk> <4A12195A.6000207@LeonixSolutions.com> <3A5AA67A8B120B48825BFFCF5443856137E0B06196@NDJSSCC03.ndc.nasa.gov> <4A1DD73F.50000@bbn.com>
In-Reply-To: <4A1DD73F.50000@bbn.com>
Date: Wed, 27 May 2009 20:22:35 -0400
Organization: BBN Technologies
Message-ID: <023601c9df2a$694fd5b0$3bef8110$@com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 12.0
Thread-Index: AcnfKURXRvAJwX5wS8Kln/JWAG910gAAC6Rg
Content-Language: en-us
Cc: dtn-security@maillists.intel-research.net
Subject: Re: [dtn-security] Newbie seeking some security related advice
X-BeenThere: dtn-security@maillists.intel-research.net
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: redi@bbn.com
List-Id: DTN Security Discussion <dtn-security.maillists.intel-research.net>
List-Unsubscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=unsubscribe>
List-Archive: <http://maillists.intel-research.net/pipermail/dtn-security>
List-Post: <mailto:dtn-security@maillists.intel-research.net>
List-Help: <mailto:dtn-security-request@maillists.intel-research.net?subject=help>
List-Subscribe: <http://maillists.intel-research.net/mailman/listinfo/dtn-security>, <mailto:dtn-security-request@maillists.intel-research.net?subject=subscribe>
X-List-Received-Date: Thu, 28 May 2009 00:25:31 -0000

Minor comment to Armando's email:

> -----Original Message-----
> From: dtn-security-bounces@maillists.intel-research.net [mailto:dtn-
> security-bounces@maillists.intel-research.net] On Behalf Of Armando
> Caro
> Sent: Wednesday, May 27, 2009 8:14 PM
> To: Ivancic, William D. (GRC-RHN0)
> Cc: dtn-security@maillists.intel-research.net
> Subject: Re: [dtn-security] Newbie seeking some security related advice
> 
> Ivancic, William D. (GRC-RHN0) wrote:
> > I believe DARPA is using DTN for voice networks but I believe the
> disruption is expected to be very quick fades and the like or perhaps
> that voice simply will not make sense at certain times.
> 
> I believe you are referring to the work that BBN is doing for the DARPA
> WNaN program. For this program, we run IP over DTN and use VoIP without
> modifications to the VoIP application. We are using the BPA as a
> forwarding engine that works in both connected and disconnected
> scenarios. VoIP traffic (and other delay sensitive traffic) are only
> routed/forwarded to destinations that are currently connected, since
> VoIP doesn't make sense for disconnected destinations. If a node
> receives VoIP traffic for a disconnected destination, the traffic is
> dropped.

As Armando describes, we are currently using streaming voice over BP.
Individual packets contain 20-100ms of voice, so sending those individual
buffers in an individual disrupted fashion would not make a whole lot of
sense.  Note that we are also working on providing voice-snippets of 1-10s
that could be sent in a disrupted fashion over the network.  But ultimately
that's just data like any other bundle.  The only real "work" there is in
the application, not the BP.   

The key point is that voice can either be streaming as little snippets or
buffered as a big blob.  If it is a big blob, it's just another bundle.  If
it is streaming, then one needs to make sure you have a BPA/router that adds
only a minimal amount of additional overhead to the forwarding process.  (as
Armando says below)
 
> One important take-away from this work... the motivation of DTN is to
> support delay/disrupted scenarios and apps that can operate in that
> regime, but it is possible to implement a DTN stack that can also deal
> with time-sensitive traffic.
> 
> Armando
> _______________________________________________
> dtn-security mailing list
> dtn-security@maillists.intel-research.net
> http://maillists.intel-research.net/mailman/listinfo/dtn-security