IETF Logo Mail Archive

RE: [Hipsec] Base draft & ESP draft: snapshots

"Henderson, Thomas R" <thomas.r.henderson@boeing.com> Thu, 18 August 2005 13:59 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1E5kvM-0000pl-IN; Thu, 18 Aug 2005 09:59:16 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1E5kvL-0000pG-6r for hipsec@megatron.ietf.org; Thu, 18 Aug 2005 09:59:15 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id JAA05946 for <hipsec@ietf.org>; Thu, 18 Aug 2005 09:59:13 -0400 (EDT)
Received: from stl-smtpout-01.boeing.com ([130.76.96.56]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1E5lV2-0001Z7-9k for hipsec@ietf.org; Thu, 18 Aug 2005 10:36:12 -0400
Received: from blv-av-01.boeing.com ([192.42.227.216]) by stl-smtpout-01.boeing.com (8.9.2.MG.10092003/8.8.5-M2) with ESMTP id IAA17618; Thu, 18 Aug 2005 08:58:53 -0500 (CDT)
Received: from XCH-NWBH-11.nw.nos.boeing.com (localhost [127.0.0.1]) by blv-av-01.boeing.com (8.11.3/8.11.3/MBS-AV-LDAP-01) with ESMTP id j7IDwrs28566; Thu, 18 Aug 2005 06:58:53 -0700 (PDT)
Received: from XCH-NW-5V1.nw.nos.boeing.com ([130.247.55.44]) by XCH-NWBH-11.nw.nos.boeing.com with Microsoft SMTPSVC(6.0.3790.211); Thu, 18 Aug 2005 06:58:53 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.5.7226.0
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Subject: RE: [Hipsec] Base draft & ESP draft: snapshots
Date: Thu, 18 Aug 2005 06:58:52 -0700
Message-ID: <77F357662F8BFA4CA7074B0410171B6D512B21@XCH-NW-5V1.nw.nos.boeing.com>
Thread-Topic: [Hipsec] Base draft & ESP draft: snapshots
Thread-Index: AcWj9pPkfiQJJhWYSUaNoAJ6NHkjDAABCqnw
From: "Henderson, Thomas R" <thomas.r.henderson@boeing.com>
To: Pekka Nikander <pekka.nikander@nomadiclab.com>, Petri Jokela <petri.jokela@nomadiclab.com>
X-OriginalArrivalTime: 18 Aug 2005 13:58:53.0095 (UTC) FILETIME=[F7980B70:01C5A3FC]
X-Spam-Score: 0.0 (/)
X-Scan-Signature: c0bedb65cce30976f0bf60a0a39edea4
Content-Transfer-Encoding: quoted-printable
Cc: hipsec@ietf.org
X-BeenThere: hipsec@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.lists.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/hipsec>
List-Post: <mailto:hipsec@lists.ietf.org>
List-Help: <mailto:hipsec-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@lists.ietf.org?subject=subscribe>
Sender: hipsec-bounces@lists.ietf.org
Errors-To: hipsec-bounces@lists.ietf.org

 

> -----Original Message-----
> From: Pekka Nikander [mailto:pekka.nikander@nomadiclab.com] 
> Sent: Thursday, August 18, 2005 6:12 AM
> To: Petri Jokela
> Cc: hipsec@ietf.org
> Subject: Re: [Hipsec] Base draft & ESP draft: snapshots
> 
> >> There appears to be a minor problem between 6.13 and 6.14. 
>  6.13 says 
> >> that CLOSE may be answered with an ICMP, 6.14 that they 
> are dropped.
> >>
> >
> > Actually, there is a whole section "5.4.4  Non-existing HIP 
> > Association"
> > that discusses about responding to CLOSE and NOTIFY 
> messages with an 
> > ICMP if we do not have any state with that peer. In Paris, 
> I think we 
> > agreed that we are not going to respond to an incoming 
> CLOSE with any 
> > message. Should we ignore also incoming NOTIFYs if there is no 
> > association? Is there any reason why we would like to answer to 
> > NOTIFYs in UNASSOCIATED state?
> 
> Good question.  I don't have any strong opinion; I'm just 
> worried about us not being consistent.
> 

I would suggest not responding to NOTIFY (i.e., no change to current
text).

As for 6.14, I think it should be aligned to 5.4.4 which is the newer
text on this matter.

> >> Need to specify "LSI" briefly in Section 2 as it is used in 6.1
> >>
> >
> > Should we remove all text related to LSIs, and concentrate only on 
> > HITs in this draft? All LSI related stuff would be in 
> > draft-henderson-hip-applications.
> 
> Either way works for me.  I'd slightly prefer rewriting 6.1. and
> 6.2 so that they don't refer to LSIs as all, because IMHO those
> two sections should be completely rewritten anyway.   They are
> currently crumby, as a remaining issue resulting from the 
> document split.

I think we need some section in this document that at least hints at how
one might map from applications (and application-level names for hosts)
to host identities, even if it mostly points to a separate document.
Note that the document it is pointing to is not in the current WG
charter to develop, but has instead been sent to the RG based on
Minneapolis meeting discussions.

I actually don't have a problem with how 6.1 and 6.2 are currently
written, except that they don't really allow for some of the
opportunistic HIP scenarios (e.g., HIT in TCP option) that have been
recently discussed (in which case, the address used by the application
may really be an IP address and not an LSI or HIT).  This part of HIP
implementation will likely be quite different from implementation to
implementation, so it seems best to keep it as a loose sketch of how
processing might be done.

Tom

_______________________________________________
Hipsec mailing list
Hipsec@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/hipsec

v2.23.0 | Report a Bug | By Email