IETF Logo Mail Archive

Re: [Hipsec] Re-doing the IESG ballot for draft-ietf-hip-native-nat-traversal

Miika Komu <miika.komu@ericsson.com> Fri, 21 February 2020 14:21 UTC

Return-Path: <miika.komu@ericsson.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 62928120849; Fri, 21 Feb 2020 06:21:15 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 50LX-RWQRjlC; Fri, 21 Feb 2020 06:21:13 -0800 (PST)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-eopbgr150044.outbound.protection.outlook.com [40.107.15.44]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B7F31120033; Fri, 21 Feb 2020 06:21:12 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JXDHouopp8qvm45L2R5yZ58LkbCZ+o3G8NuhmDkmBE6II5Gr/jN/0r7wkN+G3owFXrMGiMCJ0LcQALdt8YsIRikMAhBKf1WtNpB4qF+VKH2JX6qerl7nCHD5+zAQhHDSZbp+eWB4WCZruRCqwQQryPDbEQ6cOIEtkaxNAZ7t+rcGQzFPi1YIXU0H6++bzcrpHRalql1BQQQrL6sEqN58YrNW3uBbw+2vo0eut+U3XvMO+Wg9s4jymDfUpCsUcpkPVXJkan0bFluu0was32h1QfBdgNCb7fYSb9nWuEBBJYwCfeUcTBUIDMdXXoM55+tj5sTGvL4Q4Za/nm7NaIVfXA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ICE443B48ujRlFTnXuSXH5tC8rD4br0TXJQdjIqd06M=; b=mxmcqQF92SUJNe1M9vD3/QKAplIpoVGdkWys7Y9bX7vVyRSr7hiMaftgjYkczZPPcEGZKk6p6E+3OY2NyYmsbTbGfoPlusdnGpyNnp6gLET/OYFjFEkVRyNO9UIW42iCSGRmk+BcACkuxn9arlQ8eXYyCVZM1END6JZoWu1N+sp4hJmVgIZCsu7ucykMerw+9ipp/fCeJwKmwOPTzA43LjdOaG4fmK7XYhZho0oi7FkwjC7YmLo25w4DBT3VJ3njBeVRdC1T28UtX/IZ+m20WUhxCHAtsk8UU/QOD6ZPxO6iVkQpoKAwf1CAn3FdWHoXWthc51zfG7C6JjeufW/TkQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ICE443B48ujRlFTnXuSXH5tC8rD4br0TXJQdjIqd06M=; b=K5fYT8VCTrG4RrEVsMSZ6jRci1yBuIQvKpPyzidQjRGbF5MzV+p9MwEHO8NT2rT+CoTi3rWNrJFkOahaz8d961br75mrYkGazwR4TgVMS1JVKvMSO3qfNcpEvZoWJpnQlhA4dXLCu3e9uuZDasoH6SC9zG3BMPYFlxOW7tBWHdE=
Received: from AM0PR07MB3876.eurprd07.prod.outlook.com (52.134.81.144) by AM0PR07MB5122.eurprd07.prod.outlook.com (20.178.19.75) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2750.14; Fri, 21 Feb 2020 14:21:10 +0000
Received: from AM0PR07MB3876.eurprd07.prod.outlook.com ([fe80::790c:4b51:77d2:7767]) by AM0PR07MB3876.eurprd07.prod.outlook.com ([fe80::790c:4b51:77d2:7767%5]) with mapi id 15.20.2750.016; Fri, 21 Feb 2020 14:21:10 +0000
From: Miika Komu <miika.komu@ericsson.com>
To: "ekr@rtfm.com" <ekr@rtfm.com>, "evyncke@cisco.com" <evyncke@cisco.com>
CC: "ben@nostrum.com" <ben@nostrum.com>, "iesg@ietf.org" <iesg@ietf.org>, "spencerdawkins.ietf@gmail.com" <spencerdawkins.ietf@gmail.com>, "hipsec@ietf.org" <hipsec@ietf.org>
Thread-Topic: [Hipsec] Re-doing the IESG ballot for draft-ietf-hip-native-nat-traversal
Thread-Index: AQHV6LNXTPJ5sPPEeki3PMuG1vvLV6glpxWAgAAL1oA=
Date: Fri, 21 Feb 2020 14:21:10 +0000
Message-ID: <5af46503372ca0d50540abcb93c931231499aeb2.camel@ericsson.com>
References: <884374EF-7488-4C00-BDB7-CE203414197E@cisco.com> <CABcZeBOSEwMWhQrKsD19=-4k+gHcv=RyqzV12GXR_ySLY-oz=g@mail.gmail.com>
In-Reply-To: <CABcZeBOSEwMWhQrKsD19=-4k+gHcv=RyqzV12GXR_ySLY-oz=g@mail.gmail.com>
Accept-Language: fi-FI, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Evolution 3.28.5-0ubuntu0.18.04.1
authentication-results: spf=none (sender IP is ) smtp.mailfrom=miika.komu@ericsson.com;
x-originating-ip: [88.148.205.35]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 21f1de18-5cc9-4bcf-0c80-08d7b6d94cba
x-ms-traffictypediagnostic: AM0PR07MB5122:
x-microsoft-antispam-prvs: <AM0PR07MB51229C780FFFBB67179D301DFC120@AM0PR07MB5122.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 0320B28BE1
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(136003)(396003)(39860400002)(346002)(366004)(199004)(189003)(66946007)(66446008)(64756008)(66476007)(66556008)(8676002)(110136005)(2906002)(8936002)(81166006)(54906003)(71200400001)(966005)(478600001)(6512007)(81156014)(53546011)(6486002)(186003)(6506007)(36756003)(26005)(44832011)(2616005)(76116006)(4326008)(316002)(86362001)(5660300002)(91956017)(99106002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM0PR07MB5122; H:AM0PR07MB3876.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: NgzHy6mQuWTSW9dGju9EBDcX5hmPvbZMOB3KtDTujAjucbNr4rIea527xAxNrcBLTtjqLpttjcvErzAEwOnoDqHTyz+w4sUq3LAmZ/RXGqWv7xUWpeR+i77cwA17OVyS2IgiIaUNrsTMgyfdWvqBGw==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <C91A919B1F54214E8CE5B44EE39135EB@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 21f1de18-5cc9-4bcf-0c80-08d7b6d94cba
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Feb 2020 14:21:10.6484 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Ay4H11qqcV9EYpfMXuUw8blxSBpijrg9/j0u0xsIjPGawpiixpPcXvreuUgiHhSjogFo5o9mY292BLyVhMKuXQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR07MB5122
Archived-At: <https://mailarchive.ietf.org/arch/msg/hipsec/SOTUbuCJ7NbqG6WMguUMU8hDMbQ>
Subject: Re: [Hipsec] Re-doing the IESG ballot for draft-ietf-hip-native-nat-traversal
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Feb 2020 14:21:28 -0000

Hi Eric,

I disagree about the overhead occuring only during set up time because
STUN message format is incompatible with ESP formatting, so an
implementation needs to constantly monitor and intercept STUN packets
from the data-plane traffic. This causes a continuous overhead to the
data plane, so it is not only about set up time. Please check the draft
or hipsec mailing for more detailed discussion on this.

pe, 2020-02-21 kello 05:38 -0800, Eric Rescorla kirjoitti:
> I would like to note for the record that I do not find the arguments
> in the applicability statement at all persuasive. They are
> principally about performance but ICE occurs at setup time (so CPU
> performance is not much of an issue) and is inherently so, with
> pacing and RTT the dominant factors (and so the system architecture
> issues are unpersuasive). As I am no longer an AD, this is just
> opinion, but were I the AD,  I would insist on a strong rationale.
> 
> -Ekr
> 
> 
> On Fri, Feb 21, 2020 at 4:35 AM Eric Vyncke (evyncke) <
> evyncke@cisco.com> wrote:
> > Hi,
> >  
> > The first IESG ballot for the draft-ietf-hip-native-nat-traversal
> > was done in May 2018 and was blocked by a couple of DISCUSS by the
> > 2018 IESG. The main issue IMHO was around “why not reusing plain
> > ICE?”; the authors in discussion with Adam Roach have provided an
> > applicability statement and a justification on why “plain ICE” does
> > not work efficiently when combined with HIP + additional text or
> > replies for the remaining DISCUSS & COMMENT.
> >  
> > The diff are 
> > https://www.ietf.org/rfcdiff?url2=draft-ietf-hip-native-nat-traversal-30&url1=draft-ietf-hip-native-nat-traversal-28
> >  
> > I have reviewed all COMMENT and DISCUSS from 2 years ago and it
> > appears to me that they are all addressed (including those from
> > 2018 AD who are no more AD in 2020 – they are in cc). The changes
> > in the document are minor and I am confident that neither a WG Last
> > Call not an IETF Last Call is required. I am therefore placing the
> > document in the next IESG telechat and opening a new IESG ballot.
> >  
> > Thank you for the authors on their energy to keep the document
> > useful,
> >  
> > Regards,
> >  
> > -éric
> >  
> 
> _______________________________________________
> Hipsec mailing list
> Hipsec@ietf.org
> https://www.ietf.org/mailman/listinfo/hipsec

v2.23.0 | Report a Bug | By Email