Re: [Hipsec] draft-ietf-hip-dex-24 need multiple changes

Gonzalo Camarillo <gonzalo.camarillo@ericsson.com> Mon, 26 July 2021 08:21 UTC

Return-Path: <gonzalo.camarillo@ericsson.com>
X-Original-To: hipsec@ietfa.amsl.com
Delivered-To: hipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0580D3A2091; Mon, 26 Jul 2021 01:21:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.552
X-Spam-Level:
X-Spam-Status: No, score=-2.552 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n1nqYFvDcX9k; Mon, 26 Jul 2021 01:21:39 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2089.outbound.protection.outlook.com [40.107.22.89]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5482E3A208E; Mon, 26 Jul 2021 01:21:36 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WGxxjD3vVqfQl8F+/nF5jcfVm9QWkxaJlDn0x0jPr5ok7tXa4SmWJ9uc/NE9bYR9Kt2pfUAWzYxUxoigeXtHmaatKqNzXMgm7EnSnqL4HfoFS32CqoBiB7xXqfo6V6eE70itRStpZWs3lzqCBmii5Dur5uVcGrIDGMaeMcLyokK1tEk0RwGh6sJRlCrFqOGJXyCdJK/FOYZmC2CNVZ/clTxNCzXn87lWKD8m1P9pBIs+biQchFNBsx7/Zo+mjpCUSMp+mvnfr2Ab3ijEmfV6nJ97Qb0kg/ip3BKoZ1xP93ROubP1JWBklOVxjU4DUzXVGvdqeRa94FK7bp4TubEwcQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KMyawbwoV/h7/aFvXkd8QXbG3kNKvX9hqHT44dtNNB0=; b=VN2OFA4Jx4TXgY0gLR4pMgFFIvGYegQdUqeViaNmn67KlKA4NOtu92wfYCj5ECoDfavUh1O/mr8PdaoBLWWJI1Qn4d5sPHt5Rt+yI18kG63kxh2wIc79Fcv47zfw/P+2oI62nsyAvi13Cmi03GE84LEgPckrA3ef6mN8syY5hbap8/ehJFFKn31am2FnxArKV0ehViHdzh2ifrARF/0Z+ptKDKYVpBn+1fyPxMdrITp3kzymZU7p2qwh0v9LUhcAokxINUms9CRTmiHd/E02WZdp6QcPx6BTEyFQ84LHvmjy7UJeCQzMkLgcpPUcxBaCk5DySPzsCam6WHmZNWWNbg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KMyawbwoV/h7/aFvXkd8QXbG3kNKvX9hqHT44dtNNB0=; b=meQGP5Q2oHU/sUwBL0hoxFZP3UJ1xD5vaf706fl6/PYLW4/m9S2X3pwk7YgTa/cnnsabGq3vNaMAOPe+2Az95lE3/i4iKpiYC26Bdjoy7sa5YcHL7Z6TN1rdq599Z9s7LdMpDpynWAePAqOiFn3ggyZfe9IXnExYV75q5SigIMA=
Received: from HE1PR07MB3355.eurprd07.prod.outlook.com (2603:10a6:7:2b::32) by HE1PR0701MB2362.eurprd07.prod.outlook.com (2603:10a6:3:6d::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.11; Mon, 26 Jul 2021 08:21:33 +0000
Received: from HE1PR07MB3355.eurprd07.prod.outlook.com ([fe80::2899:6052:1242:5236]) by HE1PR07MB3355.eurprd07.prod.outlook.com ([fe80::2899:6052:1242:5236%7]) with mapi id 15.20.4373.016; Mon, 26 Jul 2021 08:21:33 +0000
From: Gonzalo Camarillo <gonzalo.camarillo@ericsson.com>
To: "Eric Vyncke (evyncke)" <evyncke@cisco.com>, "hipsec@ietf.org" <hipsec@ietf.org>, "draft-ietf-hip-dex.all@ietf.org" <draft-ietf-hip-dex.all@ietf.org>
CC: "rgm@htt-consult.com" <rgm@htt-consult.com>, "rene.hummen@belden.com" <rene.hummen@belden.com>, Miika Komu <miika.komu@ericsson.com>, "sec-ads@ietf.org" <sec-ads@ietf.org>, Terry Manderson <terry.manderson@icann.org>
Thread-Topic: draft-ietf-hip-dex-24 need multiple changes
Thread-Index: AQHXIZZmiPly9U30W0SUsdNOxhafsKtVqdLA
Date: Mon, 26 Jul 2021 08:21:33 +0000
Message-ID: <HE1PR07MB3355187EEBDD6AEF3F411E0883E89@HE1PR07MB3355.eurprd07.prod.outlook.com>
References: <2A533A3D-D822-4048-9187-E84B26245AF1@cisco.com> <145FE89A-760C-4C88-8A8C-026A9DA121E5@cisco.com>
In-Reply-To: <145FE89A-760C-4C88-8A8C-026A9DA121E5@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: cbacb529-3dfb-4121-dd54-08d9500e60f1
x-ms-traffictypediagnostic: HE1PR0701MB2362:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <HE1PR0701MB2362A3FD865A6C4F70D9E34383E89@HE1PR0701MB2362.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB3355.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(346002)(136003)(366004)(376002)(396003)(316002)(9686003)(8936002)(166002)(83380400001)(2906002)(9326002)(55236004)(44832011)(71200400001)(54906003)(76116006)(110136005)(6506007)(26005)(53546011)(64756008)(66476007)(66946007)(66446008)(66556008)(33656002)(186003)(5660300002)(55016002)(38100700002)(478600001)(7696005)(52536014)(966005)(86362001)(8676002)(4326008)(122000001)(38070700004); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_HE1PR07MB3355187EEBDD6AEF3F411E0883E89HE1PR07MB3355eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB3355.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: cbacb529-3dfb-4121-dd54-08d9500e60f1
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Jul 2021 08:21:33.4374 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 1oT3JKucfSV2/+IgpTSUZxSocWE4+e8LQu5v6WoJkkwGAzwD+dD5tOweWNjPiFFXxwTKY2H+5sIzmuQNMJJerQRowVegaOKGKWjYguigNJ0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2362
Archived-At: <https://mailarchive.ietf.org/arch/msg/hipsec/k6hLLUE2tNFVc4l6QPqVrKjkw10>
Subject: Re: [Hipsec] draft-ietf-hip-dex-24 need multiple changes
X-BeenThere: hipsec@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is the official IETF Mailing List for the HIP Working Group." <hipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/hipsec>, <mailto:hipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/hipsec/>
List-Post: <mailto:hipsec@ietf.org>
List-Help: <mailto:hipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hipsec>, <mailto:hipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Jul 2021 08:21:45 -0000

Hi Eric,

so far, the authors have not addressed the points you identified (see below). In addition, they have let the draft expire (3 days ago) :
https://datatracker.ietf.org/doc/draft-ietf-hip-dex/

So, I assume unless the authors take care of all this during the week (you gave them the *end* of IETF 111 as the deadline), you intend to declare this expired-draft dead and close the HIP Working Group, right? Please, let me know if you need anything else from me at this point. Thanks.

Cheers,

Gonzalo

From: Eric Vyncke (evyncke) <evyncke@cisco.com>
Sent: Friday, July 16, 2021 17:50
To: hipsec@ietf.org; draft-ietf-hip-dex.all@ietf.org
Cc: rgm@htt-consult.com; rene.hummen@belden.com; Miika Komu <miika.komu@ericsson.com>; sec-ads@ietf.org; Terry Manderson <terry.manderson@icann.org>
Subject: Re: draft-ietf-hip-dex-24 need multiple changes

Dear DEX authors, dear HIP WG members,


It is nearly 4 months since I sent the email below. I also sent a reminder on the 26th of June https://mailarchive.ietf.org/arch/msg/hipsec/FkZLcSN1trbRqwq02LrefhPpnuw/ still waiting for one author’s reply.



Without a plan and a commitment by the authors (or the WG) to work on HIP-DEX to address all points (in addition to go to ‘experimental’) before the end of IETF-111, I am afraid that, as the responsible AD, I will have no choice but declaring this I-D ‘dead’, i.e., no work will be done any more on it. BTW, with the increase of CPU power in constrained networks/devices, we can also wonder whether DEX is still required as BEX could possibly be used in this context.



Looking forward to reading authors’ plan and commitment,



Regards



-éric


From: Eric Vyncke <evyncke@cisco.com<mailto:evyncke@cisco.com>>
Date: Thursday, 25 March 2021 at 17:46
To: "hipsec@ietf.org<mailto:hipsec@ietf.org>" <hipsec@ietf.org<mailto:hipsec@ietf.org>>, "draft-ietf-hip-dex.all@ietf.org<mailto:draft-ietf-hip-dex.all@ietf.org>" <draft-ietf-hip-dex.all@ietf.org<mailto:draft-ietf-hip-dex.all@ietf.org>>
Cc: "rgm@htt-consult.com<mailto:rgm@htt-consult.com>" <rgm@htt-consult.com<mailto:rgm@htt-consult.com>>, "rene.hummen@belden.com<mailto:rene.hummen@belden.com>" <rene.hummen@belden.com<mailto:rene.hummen@belden.com>>, "miika.komu@ericsson.com<mailto:miika.komu@ericsson.com>" <miika.komu@ericsson.com<mailto:miika.komu@ericsson.com>>, "sec-ads@ietf.org<mailto:sec-ads@ietf.org>" <sec-ads@ietf.org<mailto:sec-ads@ietf.org>>, Terry Manderson <terry.manderson@icann.org<mailto:terry.manderson@icann.org>>
Subject: draft-ietf-hip-dex-24 need multiple changes
Resent-From: <alias-bounces@ietf.org<mailto:alias-bounces@ietf.org>>
Resent-To: <rgm@htt-consult.com<mailto:rgm@htt-consult.com>>, <rene.hummen@belden.com<mailto:rene.hummen@belden.com>>, <miika.komu@ericsson.com<mailto:miika.komu@ericsson.com>>, <gonzalo.camarillo@ericsson.com<mailto:gonzalo.camarillo@ericsson.com>>, Eric Vyncke <evyncke@cisco.com<mailto:evyncke@cisco.com>>, <ek.ietf@gmail.com<mailto:ek.ietf@gmail.com>>, Gonzalo Camarillo <gonzalo.camarillo@ericsson.com<mailto:gonzalo.camarillo@ericsson.com>>
Resent-Date: Thursday, 25 March 2021 at 17:46

Bob, René, Miika, dear HIP WG members,

The HIP-DEX went through a third (!) IESG evaluation this Thursday and it was not approved.

The document clearly needs to change its intended status to experimental from standard track. This will clear some DISCUSS points but not all: many of them will still need to be addressed (notably the crypto-related ones).

The point about ‘is it really required to drop security from HIP-BEX ?’ was also raised by several ADs. In short, the usefulness of HIP-DEX is clearly questioned. This could be addressed by either declaring this document ‘dead’ (won’t be published) or providing actual performance numbers on real implementation on recent CPU (hint such as those used in drones).

As you will see, I am sending this hip-dex document back to the HIP WG to fix the above points (another IETF Last Call will be required once the changes are written). I am also taking actions to release the NAT traversal and the 4423-bis documents waiting in the RFC Editor queue.

Can we get from the authors an estimation of the resolution of all above points ? (including the actual performance numbers)

Sorry for bringing bad news...

Regards

-éric