[homenet] draft-ietf-homenet-front-end-naming-delegation
Daniel Migault <mglt.ietf@gmail.com> Fri, 09 October 2020 17:22 UTC
Return-Path: <mglt.ietf@gmail.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E5DB13A0121 for <homenet@ietfa.amsl.com>; Fri, 9 Oct 2020 10:22:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nev71EZca6B6 for <homenet@ietfa.amsl.com>; Fri, 9 Oct 2020 10:22:08 -0700 (PDT)
Received: from mail-ua1-x92d.google.com (mail-ua1-x92d.google.com [IPv6:2607:f8b0:4864:20::92d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 250E13A0D3A for <homenet@ietf.org>; Fri, 9 Oct 2020 10:22:08 -0700 (PDT)
Received: by mail-ua1-x92d.google.com with SMTP id f15so3283001uaq.9 for <homenet@ietf.org>; Fri, 09 Oct 2020 10:22:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=dI/kLVTmMuSTEPbBudwrsRTnKwPewh+u38wCrDzu0Ww=; b=ohPDqmOR9AkW63UcZJeU/h3UJjEcdLvf46iCzGkQOsPLCk0w9bJhNC+WfCivahkzS1 LDpjK4T9BX8MoZHdRTqD3HnDmP+ZpKUI4uSKjXnQI07taEfkkjsaPOvXqUo2+wD8Ep/Z e96AmUdEO9biFcKFihQ272zcuaGgZhMK2UFTQQC9ltWep7lF8EC1XnAzMTEkBLeinOpU ycV1Pl4U5dMcZCeed33mo2bne/tXJ8ObM34VwzGA35B5yCeimvB9IzIr8V3VfzjU6Eer opZyw+UA5zopVb+UYRwvn627gglB/c3pwR6iGkzTLNaSjTuUKpJr5LQKH0wgilogNKzf xUIw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=dI/kLVTmMuSTEPbBudwrsRTnKwPewh+u38wCrDzu0Ww=; b=tWhpqgHT2OAZ87y+7cV89oE+9wWdo5cVxZBUF/fcE2UxQ3nR1/59nmP6TBEj26+vbE kH3NXN5dYT3KYiAdNzXQPsP7+m2BQDPI4yZ7RWxedfGTcuwD07gNNQ3T2FLiFFJ/i8DF 9nORa0UUGQcoTliNTqZAsB45oaYc9K5eqojQTkiFpKwKJ/wq0aHYQRlrdNX0byPnkF2a OOBQShY9SuIAojEK0VTzA0ZkgdwGVs/oo31WVtMx4Jkt3JdnNXhnqNC+rhNtiA3NjR+J 3Qfqc/4P+jad3dj6ZNxIns4JSBbzILyd4+Ksjy/s3yXRaW4vxzKDP7qrXnU/DGk5iUrE CRmg==
X-Gm-Message-State: AOAM532OmlgpNZI8gxKhKlAn+J/rxOlMAXMTUlbPrHwBumhuKvHJXolA WoVn+ASvFkzrper3IgwUuBreGrK4ri+gQJk6VLbsdR+tEVtTKg==
X-Google-Smtp-Source: ABdhPJzzicje+8bqcAHvoLxwgPPj3GJeJxs3+W7wHiFY7trBOYubay/O+OP1wp2iWJfx22sxHiVZTPSG6UHYrt5luHE=
X-Received: by 2002:ab0:2982:: with SMTP id u2mr8905485uap.68.1602264126842; Fri, 09 Oct 2020 10:22:06 -0700 (PDT)
MIME-Version: 1.0
From: Daniel Migault <mglt.ietf@gmail.com>
Date: Fri, 09 Oct 2020 13:21:55 -0400
Message-ID: <CADZyTkn_Adc7sPSTJOZiqkT9Vt8Fu+nLQi-U17wmXraKQVvCSA@mail.gmail.com>
To: homenet <homenet@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000001decad05b140304e"
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet/htvDjLyrk3Jj3S7vNdkgC4TUlqM>
Subject: [homenet] draft-ietf-homenet-front-end-naming-delegation
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Oct 2020 17:22:10 -0000
Hi, I have reviewed the draft. I have addressed some nits and clarification. I believe the draft is in a good shape and should be ready for WGLC soon. It seems to me that the only thing to do is to document how provisioning the HNA can be done automatically or at least requiring a minimal configuration steps from the end user. I expect this to be set in the next two weeks and a clean version being published. Initially, we wanted to request an authorization token to establish the channel between the HNA and the DM. However, we have not seen any mechanisms that enable to carry this OAUTH token via TLS -only. As a result, we envisioned the end user authenticate to a registrar, provide a token to the HNA. The HNA uses that token to a resource server from where the DM retrieves the certificate used for its authentication by the DM. Please find other comments below: [1] https://datatracker.ietf.org/doc/draft-ietf-homenet-front-end-naming-delegation/ 1. """ The main one is that the Dynamic DNS update would also update the zone's NS records, while the goal is to update the Distribution Master's configuration files. """ We maybe need to clarify why the zone's NS RRset needs to be updated. 2. This specification also assumes the same transport protocol and ports used by the DM to serve the Control Channel and by the HNA to serve the Synchronization Channel are the same. I think the sentence can be clarified. I think what we want to say is that the specification assumes that: * the DM serves both the Control Channel and Synchronization Channel on a single IP address, single port and with a single transport protocol. * the HNA uses a single IP address for both the Control and Synchronization channel by default. However, the HNA MAY use disctinct IP addresses - see section {{sec-sync}} for more details. I would like to add that DNS over TLS SHOULD be supported. 3. Should we replace Outsroucing Infrastructure by OI ? At some point I believe that would ease the reading. Ss most of the document describes interactions between DM and HNA and the DM belongs to the Outsourcing Infratsructure. 4. It seems that the Envisionned deployment scenarios section can be removed or at least merged with hna-provisionning section. 5. section "Example: HNA necessary parameters for outsourcing {#sec-configuration-parameters}" may also be removed / merged with hna-provisionning 6. Maybe hna-provisionning section can be put in the appendix. -- Daniel Migault Ericsson
- [homenet] draft-ietf-homenet-front-end-naming-del… Daniel Migault
- Re: [homenet] draft-ietf-homenet-front-end-naming… Eric Vyncke (evyncke)
- Re: [homenet] draft-ietf-homenet-front-end-naming… Daniel Migault
- Re: [homenet] draft-ietf-homenet-front-end-naming… Michael Richardson
- Re: [homenet] draft-ietf-homenet-front-end-naming… Daniel Migault