IETF Logo Mail Archive

Re: [homenet] Introduction to draft-ietf-homenet-simple-naming

Ted Lemon <mellon@fugue.com> Tue, 19 June 2018 16:17 UTC

Return-Path: <mellon@fugue.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CE23130F56 for <homenet@ietfa.amsl.com>; Tue, 19 Jun 2018 09:17:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fugue-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sSrFVjVcCLkb for <homenet@ietfa.amsl.com>; Tue, 19 Jun 2018 09:17:18 -0700 (PDT)
Received: from mail-io0-x230.google.com (mail-io0-x230.google.com [IPv6:2607:f8b0:4001:c06::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BCACB130DE1 for <homenet@ietf.org>; Tue, 19 Jun 2018 09:17:18 -0700 (PDT)
Received: by mail-io0-x230.google.com with SMTP id g22-v6so728585iob.7 for <homenet@ietf.org>; Tue, 19 Jun 2018 09:17:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fugue-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=Zv/BAbOldJuUiPyJDuRFI69eSTw641r0LHAG16iT4UQ=; b=v8yVMe4UQG24yQuVRQyM1jMFQRTvko0nv8VS/mfXSdqKbAo/34DeODsHWBM4aD7Ran fzVj1fDoZdDUIIXecIWKrl90TThMn0Octa8CnRA3X3M7Q5MEnn9Fu33nvaJDYcSrfei/ 6Fsd+saq2Ce4gXW4PB3UCsjn/QR2lCPgUYYsC8B9qsDuWTP3G0h8UzgJ081JTSB2SEGo wjt2xGlnssYbSRdVYCr6oomQ5cptgZ7pBXYnpw5qmbbYe3/3iG+FeO1bxFI3MDEGyZPD oh3A3p6/Rs93neM5m8YnAqqZcaDkfH4l89qLbpt1Oxf3C7aDjzkxgDiMdOWUKGaByX+G 6Ngw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=Zv/BAbOldJuUiPyJDuRFI69eSTw641r0LHAG16iT4UQ=; b=QivMykerr5yztGjHLoW4Fby8SFihsqcFhzoO+3TvwvOscvY/cXbzhCPQpDeZohUemN p1ss3Et5dflchNa0F7wp5x1CFB8hzI6Xq7zJKlbMd+/Rbw3CX7Xxna0PmNZ8lW5LfeIc G75HiBXPZOD7bkIB6V84UASXl8AbhwB1xuJWcw4VhlZTYRlt+cJd1LtQTcaMjn2oZFoJ 1GILvy0fsU2Uob+ycYPgyi6t7xlqlQwSLJtMZ5YtYVBFWq20LRUtiba0mmwIxZ622x+r uDkJhjHS5LLImcnayfbcx7kjUmP8f/7xT48ONw56RZjlQuKv9NRqRl8/pYpEoFDVuJvO YgFw==
X-Gm-Message-State: APt69E0SoSkkojTFVm+pmfDRtXXxvkxoFxBpLjaXZYusoRaIiDbFdddJ aFUR8gx+2suPRBYv+gWNgvO6JwGon5uzg04Pn8IuckM9
X-Google-Smtp-Source: ADUXVKI9JnacBYplgR3WTCTiaxaKopCcJJ8/ZV3DjF9NmziqSGvnpIvtCDMFmcGqnDKQWDLKk1HHJi9Zg8yqurLNTL4=
X-Received: by 2002:a6b:be05:: with SMTP id o5-v6mr13989200iof.45.1529425038117; Tue, 19 Jun 2018 09:17:18 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a4f:6f86:0:0:0:0:0 with HTTP; Tue, 19 Jun 2018 09:16:37 -0700 (PDT)
In-Reply-To: <20180619155048.GI18989@mx4.yitter.info>
References: <1F6977CE-A176-432C-85EC-92CDACA71C02@orandom.net> <35df1f70-c900-501e-7014-eae265d8ebdf@gmail.com> <CAPt1N1nHMS42F9Qke8wWHhTSF_Szr9AGao+ZxftwDavZAkztCQ@mail.gmail.com> <69d6999b-af05-c38d-56e2-6f391f6bcf05@mtcc.com> <CAPt1N1=s+x26pPk2-kP7vgHMs6R=0zG6ZoXevKymbf1EwbqTMw@mail.gmail.com> <a75e515f-0d67-10c4-326a-0c4f70d8b888@mtcc.com> <CB6C0B26-CF8C-4713-94F0-86F06819FF3C@fugue.com> <20694.1527865346@localhost> <2D09D61DDFA73D4C884805CC7865E6114DE01573@GAALPA1MSGUSRBF.ITServices.sbc.com> <20815.1529361146@localhost> <20180619155048.GI18989@mx4.yitter.info>
From: Ted Lemon <mellon@fugue.com>
Date: Tue, 19 Jun 2018 12:16:37 -0400
Message-ID: <CAPt1N1=xw+LbOx_SXrv3WjGwzOpkGpWioFkVNEqSUPWaM42KAg@mail.gmail.com>
To: Andrew Sullivan <ajs@anvilwalrusden.com>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, HOMENET <homenet@ietf.org>, "STARK, BARBARA H" <bs7652@att.com>
Content-Type: multipart/alternative; boundary="0000000000001bc13f056f0104bb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet/Io3wXg6suWXlFnJml6gLljZdulY>
Subject: Re: [homenet] Introduction to draft-ietf-homenet-simple-naming
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Jun 2018 16:17:25 -0000

FWIW, on the particular topic of name stability, it might be worth
consulting https://tools.ietf.org/html/draft-sctl-service-registration-00,
particularly section 5, which talks about first-come, first-served name
registration.   The document is expired because we've been distracted by
implementation recently, but a new version should be coming out shortly.
This is of course an extension to DNSSD, and therefore can't be counted on
to be present in existing devices, so for those devices the security of
names isn't really possible to guarantee in any meaningful way—as you've
both said, neither the MAC address nor the IP address can be used as an
identifier with any confidence.

On Tue, Jun 19, 2018 at 11:50 AM, Andrew Sullivan <ajs@anvilwalrusden.com>
wrote:

> On Mon, Jun 18, 2018 at 06:32:26PM -0400, Michael Richardson wrote:
> > Users need to be able to connect policies (including, but not just
> security
> > policies) to both pretty names ("the office printer"),  and to stable
> > identies.   Neither thing should have anything to do with IP addresses
> > (which get renumbered), nor to MAC addresses (which may be more
> frequently
> > randomized, even for things like printers).
>
> I think this is right, but it seems to me we could be slightly more
> formal.
>
> Over time, a device has one of more MAC address; the MAC address must
> not be treated as a stable identifier because it may change over time.
>
> At a given time, a given MAC address may have 0 or more IP addresses
> assigned.  If any MAC address has an IP address assigned to it, that
> address is expected to be assigned automatically.  It is expected to
> change.  An {IP, MAC} tuple should not be treated as a stable
> identifier because both elements of the identifier may change over
> time.
>
> Each device will have at least one name.
>
> Some names are automatically assigned through the workings of mDNS or
> hybrid multicast DNS (or both).  In particular, when devices are
> available by mDNS they are available by name, but the names are
> checked (and if need be changed) algorithmically in order to prevent
> duplication.  Names are unique within the scope of the homenet, and
> devices will change their names in the event of collision.
>
> Some names are generated by users, and assigned to devices, depnding
> on whether the device supports that functionality.  These names MUST
> NOT be changed algorithmically by devices, and MUST NOT collide with
> automatically-generated names.  These names may be globally-unique, or
> may be unique only in the scope of the homenet.
>
>
> I _think_ that covers all the cases, but I might have missed
> something.
>
> A
>
> --
> Andrew Sullivan
> ajs@anvilwalrusden.com
>
> _______________________________________________
> homenet mailing list
> homenet@ietf.org
> https://www.ietf.org/mailman/listinfo/homenet
>

v2.23.0 | Report a Bug | By Email