Re: [dtn] BPv7 node ID and node identity
sburleig.sb@gmail.com Sat, 04 December 2021 00:30 UTC
Return-Path: <sburleig.sb@gmail.com>
X-Original-To: dtn@ietfa.amsl.com
Delivered-To: dtn@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D5D53A0C4A for <dtn@ietfa.amsl.com>; Fri, 3 Dec 2021 16:30:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gFH0du22gPr9 for <dtn@ietfa.amsl.com>; Fri, 3 Dec 2021 16:30:46 -0800 (PST)
Received: from mail-pf1-x432.google.com (mail-pf1-x432.google.com [IPv6:2607:f8b0:4864:20::432]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7DA723A0C48 for <dtn@ietf.org>; Fri, 3 Dec 2021 16:30:46 -0800 (PST)
Received: by mail-pf1-x432.google.com with SMTP id x5so4451867pfr.0 for <dtn@ietf.org>; Fri, 03 Dec 2021 16:30:46 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=from:to:references:in-reply-to:subject:date:message-id:mime-version :thread-index:content-language; bh=PFkOa4Rf7dalTiiN6ngE4Asngyx6/lT8gURtPCoKhNM=; b=Vi8C6+6l1Oxuj2sBVgyIxanZXjYxj+V3kwOSmIG/X+/EwhLYDqtCIPowoiRwLDWN3B lcnZ4njZ7n6axnknIOIl1l4sM6iuKkqMeSD6a3/ozi3QM7vFvAbL3SyoJ8nYyefl/oNr 2zZ+D9l+iFmtqzyqwhWa/9hZFz7Wp0PWE/jAMauiUcj/m59B54JPed/jynNv00BC3jgm YpbN0ayUvz59RMM6dUGFjlNlKL98k9jmHtKUb/fezD19Gj0JHtwjYtgU5vpSBEk3UVkV sgHlZw+GuYvgqZtbpBz9ef3Ercm7HF9jtH0OjAqgNdAYmU5d09SCtog5SIogbIwpBjFD 9HnA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:to:references:in-reply-to:subject:date :message-id:mime-version:thread-index:content-language; bh=PFkOa4Rf7dalTiiN6ngE4Asngyx6/lT8gURtPCoKhNM=; b=YE3wmbi97dkqHHNsK2BlsDiqSxG5mrYLp1EhRTnzSgs9TCrY72J/NXTP1incIV0uSa d4SkKuJoqGB1DgMAaBFXSbj6PDIDE5Rs/6xN/EMNBg9zmjb1tClPmVMK0A6toauy2TIT 37IMGQ91a3rgDxOkldbsHDGupGZKrhLsY0b4ci/GVK0gYT7TxXyZ2gFJyPHe5pNh2xMs /uYbTIG1sd4g5PqU4TYn0hWIb1uPPIqIYb8PnDp0dLXXN0o+QUbDWDHf5P2mQKekIlI9 G7HNoVyA5QkqIrR+2Gsm1/SeUTB17J5XF9zQzvMefQWEZaI0vAQp17xm6xhcOy+0ZaBp Y4cQ==
X-Gm-Message-State: AOAM531rwjpBN4yv/UEJZ5XP8Ixn1AbfObfjZWpsfE0e3ZbfM7crA1js IcBFa2OJBUvo8HR28iv0Tplqg4gCTvOvaw==
X-Google-Smtp-Source: ABdhPJx8Cci4yYjPVSJAQsOyX1W2jPUYkIoKmiDOm4g3ODTMl1Fy3w7xuDAZG2eI9YvHfvAneKykDg==
X-Received: by 2002:a62:dd54:0:b0:4a2:93f7:c20a with SMTP id w81-20020a62dd54000000b004a293f7c20amr22358091pff.46.1638577841076; Fri, 03 Dec 2021 16:30:41 -0800 (PST)
Received: from Nick (cpe-72-134-194-38.natsow.res.rr.com. [72.134.194.38]) by smtp.gmail.com with ESMTPSA id i1sm3495545pgs.50.2021.12.03.16.30.40 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 03 Dec 2021 16:30:40 -0800 (PST)
From: sburleig.sb@gmail.com
To: "'Sipos, Brian J.'" <Brian.Sipos@jhuapl.edu>, dtn@ietf.org
References: <8bff83552a054f32b1895e7917468035@jhuapl.edu>
In-Reply-To: <8bff83552a054f32b1895e7917468035@jhuapl.edu>
Date: Fri, 03 Dec 2021 16:30:42 -0800
Message-ID: <056e01d7e8a6$2beac3e0$83c04ba0$@gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_NextPart_000_056F_01D7E863.1DC89550"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQIqezm4aJgkymwU630R76jRybm8BKt8Td6A
Content-Language: en-us
Archived-At: <https://mailarchive.ietf.org/arch/msg/dtn/SeQpDaYU-riMNgbH9UhOuMHyaYo>
Subject: Re: [dtn] BPv7 node ID and node identity
X-BeenThere: dtn@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Delay Tolerant Networking \(DTN\) discussion list at the IETF." <dtn.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtn>, <mailto:dtn-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtn/>
List-Post: <mailto:dtn@ietf.org>
List-Help: <mailto:dtn-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtn>, <mailto:dtn-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Dec 2021 00:30:49 -0000
Hi, Brian. A couple of answers, which may or may not be helpful: 1. This is a recent change, responding to objections that disallowing demuxes (for the dtn scheme) and non-zero service numbers (for the ipn scheme) in the source node ID was unnecessarily restrictive - the identity of the node could be accurately determined by inspection even if those rules were violated. The BPv7 specification has been revised to state that any endpoint ID from which the identity of the node can be discerned without consulting any other information source may serve as a node ID. This is sort of by definition - it's a string that identifies the node, so it's a node ID, even if it contains some additional information that identifies a particular endpoint in which that node is registered. (Nodes have in fact always been able to have multiple administrative endpoints, hence multiple node ID strings, i.e., one for the dtn scheme and another for the ipn scheme.) 2. It is not required that a node be identifiable only by a single EID. 3. The ID of an administrative endpoint of a node may always be used to identify the node; such endpoints implicitly exist so long as the node itself exists. (That is, if and only if a node exists it is registered in its administrative endpoint(s).) Other EIDs may serve as node IDs as well - in particular, they may be cited as the sources of bundles - but the identified endpoints are not guaranteed to be in existence at any particular moment. (Nodes may register and unregister in other singleton endpoints at will.) Scott From: dtn <dtn-bounces@ietf.org> On Behalf Of Sipos, Brian J. Sent: Friday, December 3, 2021 12:55 PM To: dtn@ietf.org Subject: [dtn] BPv7 node ID and node identity All, After re-reading some of the to-be-RFC 9171 I realize that I had been making an incorrect assumption for a long time: that the administrative endpoint ID of a node is the same as its node ID. I see now that more technically that EID can be the node ID but doesn't have to be. In that light I have some deeper questions about a node and its node ID: 1. Is it operational practice that the administrative EID is in fact the node ID? Early examples that I read led me to expect this. 2. Is it required that a node has only a single node ID at any point-in-time? In many parts of the document (and other documents and discussions) the phrasing is ". the node ID ." and not ". a node ID ." or similar phrasing. 3. Is it expected or required that a node ID be stable over time for a node? If not, there seem to be operational issues related to how peers can identify a node with a time-varying node ID. This is especially the case with respect to node authentication and how an authority may grant identifier use to a node. These questions are coming up in the context of the "Node ID Validation" document [1] and its assumptions that the answer to all the above questions are "yes." There are definitely parts of that document which are ambiguous or incorrect now that I see it with the perspective that a node ID is not equivalent to the administrative EID. Thanks for any clarification, Brian S. [1] https://www.ietf.org/archive/id/draft-ietf-acme-dtnnodeid-07.html
- [dtn] BPv7 node ID and node identity Sipos, Brian J.
- Re: [dtn] BPv7 node ID and node identity sburleig.sb
- Re: [dtn] [EXT] RE: BPv7 node ID and node identity Sipos, Brian J.
- Re: [dtn] [EXT] RE: BPv7 node ID and node identity Birrane, Edward J.