Re: [Hipsec] submission of a new I-D:"Delivering Geographic Location in Host Identity Protocol (HIP)"
"Feng Cao (fcao)" <fcao@cisco.com> Thu, 23 October 2008 18:44 UTC
Return-Path: <hipsec-bounces@ietf.org>
X-Original-To: hip-archive@lists.ietf.org
Delivered-To: ietfarch-hip-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 0D19E3A6838; Thu, 23 Oct 2008 11:44:08 -0700 (PDT)
X-Original-To: hipsec@core3.amsl.com
Delivered-To: hipsec@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 7D9A73A6838 for <hipsec@core3.amsl.com>; Thu, 23 Oct 2008 11:44:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yFxk4LPrW3A8 for <hipsec@core3.amsl.com>; Thu, 23 Oct 2008 11:44:05 -0700 (PDT)
Received: from sj-iport-2.cisco.com (sj-iport-2.cisco.com [171.71.176.71]) by core3.amsl.com (Postfix) with ESMTP id 2D7B73A67E4 for <hipsec@ietf.org>; Thu, 23 Oct 2008 11:44:05 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.33,471,1220227200"; d="scan'208";a="98226692"
Received: from sj-dkim-3.cisco.com ([171.71.179.195]) by sj-iport-2.cisco.com with ESMTP; 23 Oct 2008 18:44:55 +0000
Received: from sj-core-1.cisco.com (sj-core-1.cisco.com [171.71.177.237]) by sj-dkim-3.cisco.com (8.12.11/8.12.11) with ESMTP id m9NIitxe024790; Thu, 23 Oct 2008 11:44:55 -0700
Received: from xbh-sjc-231.amer.cisco.com (xbh-sjc-231.cisco.com [128.107.191.100]) by sj-core-1.cisco.com (8.13.8/8.13.8) with ESMTP id m9NIitmG021189; Thu, 23 Oct 2008 18:44:55 GMT
Received: from xmb-sjc-224.amer.cisco.com ([128.107.191.98]) by xbh-sjc-231.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Thu, 23 Oct 2008 11:44:55 -0700
X-Mimeole: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Thu, 23 Oct 2008 11:44:54 -0700
Message-ID: <5F16CF3DBBC7EE45BF6E136F13F5CFEA07131A1F@xmb-sjc-224.amer.cisco.com>
In-Reply-To: <49005B7A.2020900@hiit.fi>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [Hipsec] submission of a new I-D:"Delivering Geographic Location in Host Identity Protocol (HIP)"
Thread-Index: Ack0//btq9yLJ5NTR7uKXKlcWc/qtAAOOCsw
From: "Feng Cao (fcao)" <fcao@cisco.com>
To: Varjonen Samu <samu.varjonen@hiit.fi>
X-OriginalArrivalTime: 23 Oct 2008 18:44:55.0345 (UTC) FILETIME=[71191210:01C9353F]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=6049; t=1224787495; x=1225651495; c=relaxed/simple; s=sjdkim3002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=fcao@cisco.com; z=From:=20=22Feng=20Cao=20(fcao)=22=20<fcao@cisco.com> |Subject:=20RE=3A=20[Hipsec]=20submission=20of=20a=20new=20 I-D=3A=22Delivering=20Geographic=20Location=20in=20Host=20Id entity=20Protocol=20(HIP)=22 |Sender:=20; bh=F7fn6XmUTsnj8yoGzDzXDvrqlf55A6euLEAWop1LP9A=; b=JvXYUQ6IGOnLNVx95Klvmsoen10xx/NokdP2GeDS32LatNK1NOgaXknf4Y 3/NPKzt8ACV2k8bVefuYACkLdVY9KdNn6ChkxpacMs1fCn/FJC0R66DwM7Jm uiadjmb4Ql;
Authentication-Results: sj-dkim-3; header.From=fcao@cisco.com; dkim=pass ( sig from cisco.com/sjdkim3002 verified; );
Cc: hipsec@ietf.org
Subject: Re: [Hipsec] submission of a new I-D:"Delivering Geographic Location in Host Identity Protocol (HIP)"
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/hipsec>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: hipsec-bounces@ietf.org
Errors-To: hipsec-bounces@ietf.org
Hi Varjonen, Thanks for your review and good catches on the errors. Will incorporate most of your comments and submit the updated draft. --Feng -----Original Message----- From: Varjonen Samu [mailto:samu.varjonen@hiit.fi] Sent: Thursday, October 23, 2008 4:10 AM To: Suping ZHAI Cc: Feng Cao (fcao); hipsec@ietf.org Subject: Re: [Hipsec] submission of a new I-D:"Delivering Geographic Location in Host Identity Protocol (HIP)" Hi, Suping ZHAI wrote: > Hi Feng, > One comment with respect of the parameter geolocation. In the location-based services, the location can be identified by the LOCATOR which is defined in RFC5206, it can also provide the privacy and authentication. So what's the preference of the GEOLOCATION comparing with the LOCATOR? > Also to me the LOCATOR seems like a better place for this stuff as geo-loc information is a "locator". If IPs are used as the means to offer location LOCATOR would be straight forward. What if the location is based on GPS coordinates, well, lets add a new type to LOCATOR to inform about geographical location and define that these are NOT to be used for sending traffic. I would have liked to see a use case about why would I want to send geoloc information in HIP control packets. To me it seems that the application using HIP is more interested in the geoloc information. Or is this something that could be used with HIP Bone to offer locality based optimation for the overlay? Anyway some motivational stuff in the beginning would be nice. In introduction, in the end, ENCRYPTED not ENCRPTED. In the terminology I found that defining HIT is useless because if you need this draft you probably already know about HITs. But it does no harm in the list. In the terminology I noticed a term Peer connection. It sounded a lot like Host Association. Should it be HA? Also about the terminology usage in the draft, RFC 5204 defines Rendezvous extension not Rendevous extension. At least in sections 4.2, 4.3, 4.4, 4.5 and 5, the "z" char is missing. I would remove all the new words from the paper. They did not give any extra information on the parameter. To my opinion it can be just like "this paper describes parameter called GEOLOC". The newness of the parameter does not offer anything. In the figs correct the explanations, for example in fig 1 (which does not have a label) the Length is explained as 16, yes it is 16 bits long but it would be nicer to see it like "Length in octets, excluding Type, and Padding". Same goes for the LocationFormat. The length can be read from the fig. Could also be mentioned in the fig but after the content explanation. About the LocationFormat, should the bit defining LbyV/LbyR be separated from it because it does not change the location format. It changes how you use the LocationPayload and the LocationFormat would just say how you read it. Now ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | LocationFormat | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | ... After ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |L| LocationFormat | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | ... L LbyV if 0 and LbyR if 1 ... Or ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |L| Reserved | LocationFormat | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ ... L LbyV if 0 and LbyR if 1 I would lose the quotation marks from around the field names. The fig for ENCRYPTED can be seen in RFC 5201 in section 5.2.15 and reference to that should do the trick. It was quite clear the the Encrypted payload was the GEOLOC parameter even without the fig. Section 3.4. "The (new) GEOLOC_REQ parameter are defined" There is only one GEOLOC_REQ so "is" not "are" and the fig does not have a label. About the usage of the GEOLOC_REQ. Is it always used with the RVS or can I ask CNs location. Whose location can I ask from RVS? There is HIT present but can it be any HIT RVS knows. What if the HIT queried does not support GEOLOC, how RVS answers then? Section 4.3. "RVS can server as Location" should be "can serve as" "It is similar that GEOLOC can be embedded..." is repeated three times in the text in sections 4.3., 4.4. and 4.5. It is already stated in section 3.3. and it is NOT necessary to repeat it. Security considerations: You can always rate limit the control packets (quick and dirty solution). How about if one is lying about the location? BR, Samu Varjonen > Best Regards, > Suping > ---original message--- > From: fcao@cisco.com > Sent: 2008-10-22 10:21:00 > Subject:[Hipsec] submission of a new I-D:"Delivering Geographic Location in Host Identity Protocol (HIP)" > >> Hi all, >> >> A new I-D, draft-cao-hip-geolocation-00, was just submitted to IETF >> HIP WG. Your comments are always welcome. >> >> Here is the staging URL for now: >> http://www3.ietf.org/proceedings/staging/draft-cao-hip-geolocation-00 >> .tx >> t >> <http://www3.ietf.org/proceedings/staging/draft-cao-hip-geolocation-0 >> 0.t >> xt> >> >> Abstract: This document defines a new parameter for delivering >> geographic location in Host Identity Protocol (HIP). For mobile users >> using HIP, one generic mechanism is proposed to share or update their >> geo- location information with either rendezvous servers or their peers. >> In addition, geo-location privacy is also protected with the help of >> the ENCRYPTED parameter. >> >> Thanks, >> >> --Feng >> _______________________________________________ >> Hipsec mailing list >> Hipsec@ietf.org >> https://www.ietf.org/mailman/listinfo/hipsec > > > > _______________________________________________ > Hipsec mailing list > Hipsec@ietf.org > https://www.ietf.org/mailman/listinfo/hipsec _______________________________________________ Hipsec mailing list Hipsec@ietf.org https://www.ietf.org/mailman/listinfo/hipsec
- Re: [Hipsec] submission of a new I-D:"Delivering … Suping ZHAI
- Re: [Hipsec] submission of a new I-D:"Delivering … Varjonen Samu
- Re: [Hipsec] submission of a new I-D:"Delivering … Feng Cao (fcao)
- Re: [Hipsec] submission of a new I-D:"Delivering … Feng Cao (fcao)