Re: [Hipsec] Fwd: New Version Notification for draft-moskowitz-hip-fast-mobility-03.txt

Robert Moskowitz <rgm@htt-consult.com> Mon, 06 April 2020 18:12 UTC

To: Jeff Ahrenholz <j.ahrenholz@Tempered.io>, HIP <hipsec@ietf.org>
References: <187f5430-1c5f-1ebe-7c81-1938fc7b9cd7@htt-consult.com> <245D00B8-98D9-4D3A-AAF6-DB16BE4C74FB@tempered.io>
From: Robert Moskowitz <rgm@htt-consult.com>
Message-ID: <0242b8df-50a6-fb8d-02fc-8a3f76a1836e@htt-consult.com>
Date: Mon, 06 Apr 2020 14:12:45 -0400
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0
MIME-Version: 1.0
In-Reply-To: <245D00B8-98D9-4D3A-AAF6-DB16BE4C74FB@tempered.io>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/hipsec/BXyuDYgjHGCB7FgPBS7yDGz1NMU>
Subject: Re: [Hipsec] Fwd: New Version Notification for draft-moskowitz-hip-fast-mobility-03.txt
Precedence: list

Jeff,

Thanks for the feedback.  After Passover, I will incorporate what I pull 
out of this.

Bob

On 4/6/20 1:51 PM, Jeff Ahrenholz wrote:
> Bob,
> Brief review below...
>
>> I have updated the hip-fast-mobility draft.
>>
>> I welcome review.
>>
>> It will be used in an upcoming DRIP N-RID secure transport draft that will also include secure C2 transport.
> General comments:
>
> - Overall I think the draft looks good, it is a short read and quite straightforward.
>    The TLDR:
>    1) include VIA_RVS more often (always in R1/I2), so peers always know how to reach you,
>    2) don't wait for complete address verification for using an address
>    3) piggyback upper layer data when possible
>
> - What about IPv4? There is no mention of it. And no extension header field like IPv6.
>
> - Did you consider the Credit-Based Authorization technique in section 3.3.2 of RFC 8046? You could maybe mention in this draft that it could optionally be used here? (Plays well / same concept as the send-before-verified.)
>        
> Section 5.4.1
> "the datagram is sent separately after receipt of the HIP UPDATE from Host B."
>
> This implies buffering packets after you've sent an UPDATE but waiting for UPDATE-ACK; we almost need a new association state "moving" because how long will you wait and buffer packets? What if the UPDATE-ACK is lost or not sent -- need to tear down?
>
> In practice, sometimes we're seeing dropped packets during mobility (depends on how quickly host can acquire a new address after losing the old address). Also we recently removed the initial-packet-embargo from our implementation (buffering packets while waiting for BEX to complete) as the complexity wasn't warranted (e.g. upper layers typically retransmit; packets likely to be stale.)
>
> Consider also switching interfaces, which may have differing MTUs (e.g. cellular/Ethernet failover.)
>
> Section 8 Security Considerations:
>
> Adding the VIA_RVS parameter to more packets -- any security considerations, since this is typically outside the signature? RFC 8004 indicates "The main goal of using the VIA_RVS parameter is to allow operators to diagnose possible issues" but here you're suggesting to use the address during shotgunning.
>
>
> Below are some editorial nits:
>
> Section 5.1
>
> consider replacing:
> "An implementation may be able to adjust the
>     transport window size downward so that the higher layer could still
>     fill it and the whole piece then still fit within the MTU."
> with:
> "An implementation may be able to adjust the
>     transport window size downward so that the higher layer could
>     fit its data plus the UPDATE payload within the MTU."
>     
> 5.2
> s/others RVS/other's RVS/
> 5.3 and 5.4
> s/of new address/of a new address/
>
> 5.5.1 and 5.5.2
> s/wait from HIP UPDATE/wait for HIP UPDATE/
>
> 7. IANA Considerations
> there is no PAYLOAD_MIC used here
>
> -Jeff
>

[Hipsec] Fwd: New Version Notification for draft-… Robert Moskowitz
Re: [Hipsec] Fwd: New Version Notification for dr… Jeff Ahrenholz
Re: [Hipsec] Fwd: New Version Notification for dr… Robert Moskowitz