IETF Logo Mail Archive

Re: [hiprg] New ID: draft-wang-hiprg-service-overlay-00

Miika Komu <miika.komu@hiit.fi> Tue, 02 March 2010 14:30 UTC

Return-Path: <miika.komu@hiit.fi>
X-Original-To: hiprg@core3.amsl.com
Delivered-To: hiprg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9C2E63A8A85 for <hiprg@core3.amsl.com>; Tue, 2 Mar 2010 06:30:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.149
X-Spam-Level:
X-Spam-Status: No, score=-0.149 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_CHARSET_FARAWAY=2.45]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pkKL0R4njbU6 for <hiprg@core3.amsl.com>; Tue, 2 Mar 2010 06:30:05 -0800 (PST)
Received: from argo.otaverkko.fi (argo.otaverkko.fi [212.68.0.2]) by core3.amsl.com (Postfix) with ESMTP id 0FFED3A8A2F for <hiprg@irtf.org>; Tue, 2 Mar 2010 06:30:05 -0800 (PST)
Received: from [130.233.194.252] (tko-add-252.cs.hut.fi [130.233.194.252]) by argo.otaverkko.fi (Postfix) with ESMTP id 18D1D25ED20 for <hiprg@irtf.org>; Tue, 2 Mar 2010 16:30:05 +0200 (EET)
Message-ID: <4B8D20EC.40301@hiit.fi>
Date: Tue, 02 Mar 2010 16:30:04 +0200
From: Miika Komu <miika.komu@hiit.fi>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.9pre) Gecko/20100301 Shredder/3.0.4pre
MIME-Version: 1.0
To: hiprg@irtf.org
References: <OF5B3543C1.C1671D5C-ON482576DA.000713E8-482576DA.000DBFA3@zte.com.cn>
In-Reply-To: <OF5B3543C1.C1671D5C-ON482576DA.000713E8-482576DA.000DBFA3@zte.com.cn>
Content-Type: text/plain; charset="GB2312"
Content-Transfer-Encoding: 8bit
Subject: Re: [hiprg] New ID: draft-wang-hiprg-service-overlay-00
X-BeenThere: hiprg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: miika.komu@hiit.fi
List-Id: "Host Identity Protocol \(HIP\) Research Group" <hiprg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/hiprg>
List-Post: <mailto:hiprg@irtf.org>
List-Help: <mailto:hiprg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Mar 2010 14:30:06 -0000

On 03/02/2010 04:27 AM, shen.jiong@zte.com.cn wrote:

Hi,

are you familiar with the latest HIP overlay drafts? At least the first
comment...

#1.  Before one host wants to communicate with another host, it MUST
   initiate a HIP 4-way handshake, and then initiate a TCP handshake and
   other transport or application connections.  It leads to a long
   connection delay and downgrades the user experience.

...does not the take into count the following:

http://tools.ietf.org/html/draft-ietf-hip-hiccups-01

Please see also:

http://tools.ietf.org/html/draft-ietf-hip-reload-instance
http://tools.ietf.org/html/draft-ietf-hip-via

Regarding to the third comment, I thing certificates in SIM or smart
cards would do the trick:

   #3.  End-to-End communication model depends on the PKI
   infrastructure, but existing widely deployed telecomm network employs
   pre-shared key security mechanism rather than PKI.  So if HIP can
   support pre-shared key authentication, the existing infrastructure
   can be reused.

HIP keys can be also disseminated via DNS as described in RFC5205.

The RVS mechanism in RFC5204 with double jump support should cover the
following fourth comment:

 #4.  Since HIP mobility mechanism does not use any anchor point, if a
   HIP host's IP address changed, it must sends an update message to its
   connected peer.  Such design makes the mobility possible even if
   infrastructure does not involved, but it also causes two weaknesses:
   1)If the connection peer resides in a different continent or if the
   HIP host has too many connections, the update may be time-consuming
   and leads to very high handover delay. 2)If two hosts of one
   connection change their IP addresses simultaneously, the update could
   never be successful.


> Dear all,
> 
> A new Internet Draft entitled "HIP Service Overlay Study" has been 
> submitted. It can be accessed at:
> http://www.ietf.org/id/draft-wang-hiprg-service-overlay-00.txt
> 
> (filename: draft-wang-hiprg-service-overlay-00)
> It is a HIP service overlay study document, it presents several 
> disadvantages of current HIP protocol and then takes a brief 
> introduction of two existing alternative solutions. Finally, we propose 
> a HIP service overlay architecture.
> Your comments on the proposed mechanism would be highly appreciated. In 
> addition, I would be glad to make a small presentation and discuss it in 
> the upcoming IETF 77 meeting.
> 
> Regards,
> Jiong Shen
> 
> 
> 
> *IETF I-D Submission Tool <idsubmission@ietf.org>*
> 
> 2010-03-01 17:55
> 
> 	
> 收件人
> 	shen.jiong@zte.com.cn
> 抄送
> 	wang.jun17@zte.com.cn
> 主题
> 	New Version Notification for draft-wang-hiprg-service-overlay-00
> 
> 
> 	
> 
> 
> 
> 
> 
> 
> A new version of I-D, draft-wang-hiprg-service-overlay-00.txt has been 
> successfuly submitted by Jiong Shen and posted to the IETF repository.
> 
> Filename: draft-wang-hiprg-service-overlay
> Revision: 00
> Title: HIP Service Overlay Study
> Creation_date: 2010-03-01
> WG ID: Independent Submission
> Number_of_pages: 10
> 
> Abstract:
> This draft is a HIP service overlay study document, it presents
> several disadvantages of current HIP protocol and then takes a brief
> introduction of two existing alternative solutions. Finally, the
> authors propose a HIP service overlay architecture.
> 
> 
> 
> The IETF Secretariat.
> 
> 
> 
> 
> 
> --------------------------------------------------------
> ZTE  Information  Security  Notice:  The  information  contained  in  this  mail  is  solely  property  of  the  sender's  organization.  This  mail  communication  is  confidential.  Recipients  named  above  are  obligated  to  maintain  secrecy  and  are  not  permitted  to  disclose  the  contents  of  this  communication  to  others.
> This  email  and  any  files  transmitted  with  it  are  confidential  and  intended  solely  for  the  use  of  the  individual  or  entity  to  whom  they  are  addressed.  If  you  have  received  this  email  in  error  please  notify  the  originator  of  the  message.  Any  views  expressed  in  this  message  are  those  of  the  individual  sender.
> This  message  has  been  scanned  for  viruses  and  Spam  by  ZTE  Anti-Spam  system.
> 
> 
> 
> _______________________________________________
> hiprg mailing list
> hiprg@irtf.org
> https://www.irtf.org/mailman/listinfo/hiprg

v2.23.0 | Report a Bug | By Email