[hiprg] comments on draft-irtf-hiprg-revocation-02.txt

"Henderson, Thomas R" <thomas.r.henderson@boeing.com> Mon, 28 March 2011 14:11 UTC

Return-Path: <thomas.r.henderson@boeing.com>
X-Original-To: hiprg@core3.amsl.com
Delivered-To: hiprg@core3.amsl.com
Received: from localhost (localhost []) by core3.amsl.com (Postfix) with ESMTP id 688F83A684A for <hiprg@core3.amsl.com>; Mon, 28 Mar 2011 07:11:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.126
X-Spam-Status: No, score=-106.126 tagged_above=-999 required=5 tests=[AWL=-0.326, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, SARE_SUB_RAND_LETTRS4=0.799, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([]) by localhost (core3.amsl.com []) (amavisd-new, port 10024) with ESMTP id yyZqPQW0GYtN for <hiprg@core3.amsl.com>; Mon, 28 Mar 2011 07:11:37 -0700 (PDT)
Received: from blv-smtpout-01.boeing.com (blv-smtpout-01.boeing.com []) by core3.amsl.com (Postfix) with ESMTP id 77BCB3A6849 for <hiprg@irtf.org>; Mon, 28 Mar 2011 07:11:36 -0700 (PDT)
Received: from slb-av-01.boeing.com (slb-av-01.boeing.com []) by blv-smtpout-01.ns.cs.boeing.com (8.14.4/8.14.4/8.14.4/SMTPOUT) with ESMTP id p2SEBcFp023945 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Mon, 28 Mar 2011 07:11:41 -0700 (PDT)
Received: from slb-av-01.boeing.com (localhost []) by slb-av-01.boeing.com (8.14.4/8.14.4/DOWNSTREAM_RELAY) with ESMTP id p2SEBc3o012355; Mon, 28 Mar 2011 07:11:38 -0700 (PDT)
Received: from XCH-NWHT-07.nw.nos.boeing.com (xch-nwht-07.nw.nos.boeing.com []) by slb-av-01.boeing.com (8.14.4/8.14.4/UPSTREAM_RELAY) with ESMTP id p2SEBbha012333 (version=TLSv1/SSLv3 cipher=RC4-MD5 bits=128 verify=OK); Mon, 28 Mar 2011 07:11:37 -0700 (PDT)
Received: from XCH-NW-10V.nw.nos.boeing.com ([]) by XCH-NWHT-07.nw.nos.boeing.com ([]) with mapi; Mon, 28 Mar 2011 07:11:37 -0700
From: "Henderson, Thomas R" <thomas.r.henderson@boeing.com>
To: "'Dacheng Zhang'" <zhangdacheng@huawei.com>, "'dmitriy.kuptsov@hiit.fi'" <dmitriy.kuptsov@hiit.fi>, "shenshuo@cnnic.cn" <shenshuo@cnnic.cn>
Date: Mon, 28 Mar 2011 07:11:36 -0700
Thread-Topic: comments on draft-irtf-hiprg-revocation-02.txt
Thread-Index: AcvtUgr0JPTQnn+KSBOKCovcRAefjg==
Message-ID: <7CC566635CFE364D87DC5803D4712A6C4CED25B071@XCH-NW-10V.nw.nos.boeing.com>
Accept-Language: en-US
Content-Language: en-US
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "hiprg@irtf.org" <hiprg@irtf.org>
Subject: [hiprg] comments on draft-irtf-hiprg-revocation-02.txt
X-BeenThere: hiprg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Host Identity Protocol \(HIP\) Research Group" <hiprg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/hiprg>
List-Post: <mailto:hiprg@irtf.org>
List-Help: <mailto:hiprg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Mar 2011 14:11:44 -0000

Dacheng and all,

Here are some comments on the latest version of your document.  I think that the draft could be improved by more careful definition of and distinction between the host identity and host identifier (see RFC4423), and to summarize  more clearly (in the introduction) the main issues that this draft is concerned with:

1) what does it mean for two or more different hosts to have the same host identifier?  Here there are two cases:  1a) there is a trusted third party who can resolve this, and 1b) there is no such arbitrator

2) what does it mean for one host to have multiple host identifiers associated with the same host identity; can these be associated together and can they be expired or deprecated similar to how locators are deprecated?

I think that the draft has some clear solutions for some of the above questions but less clear for others, so it would be useful to also summarize in section 1 which of the questions are well answered and which will require further study.

It is time to start filling in the terminology section more fully (Section 2).

Where you say in Section 5:  "Until now, the ID to Locator mapping solution in HIP has not been standardized yet.  We argue that it is desired to integrate the implicit key revocation functionality into such systems."  I would suggest to clarify that you are not talking about DNS here but instead about something like the DHT lookup.

In section 6 paragraph 2, I did not understand how this case could handle the situation when the reason to remove the HI was due to key compromise-- perhaps clarify this point here.

In section 8, the end of this section ends prematurely.  The paragraph that starts "Because the HI of a HIP host acts as both the identity and the public key of the HIP host at the same time." does not contain complete sentences and has some of the terminology problems that I mentioned above.

In section 10 (Security considerations), I think you need to start filling it out, rather than the blanket statement that you have there.  Perhaps a way to start is to review this RFC:  http://www.ietf.org/rfc/rfc3552.txt

- Tom