[homenet] Alissa Cooper's No Objection on draft-ietf-homenet-hncp-09: (with COMMENT)

"Alissa Cooper" <alissa@cooperw.in> Wed, 18 November 2015 19:42 UTC

Return-Path: <alissa@cooperw.in>
X-Original-To: homenet@ietf.org
Delivered-To: homenet@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id A19AC1A90CF; Wed, 18 Nov 2015 11:42:59 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: "Alissa Cooper" <alissa@cooperw.in>
To: "The IESG" <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 6.10.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20151118194259.6263.86399.idtracker@ietfa.amsl.com>
Date: Wed, 18 Nov 2015 11:42:59 -0800
Archived-At: <http://mailarchive.ietf.org/arch/msg/homenet/rNg-dRxQuYsNZX-PT1t2CvOx0cw>
Cc: homenet-chairs@ietf.org, homenet@ietf.org, mark@townsley.net, draft-ietf-homenet-hncp@ietf.org
Subject: [homenet] Alissa Cooper's No Objection on draft-ietf-homenet-hncp-09: (with COMMENT)
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.15
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Nov 2015 19:42:59 -0000

Alissa Cooper has entered the following ballot position for
draft-ietf-homenet-hncp-09: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)

Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.

The document, along with other ballot positions, can be found here:


-- How does a node end up in the leaf or guest category? Is it only if a
fixed category is configured? If so, who decides that that configuration
should happen? I think this info belongs in the draft.

-- Section 5.1 says:

"Guest category:  This declares an interface used by untrusted client
      devices only.  In addition to the restrictions of the Leaf
      category, HNCP routers MUST filter traffic from and to the
      interface such that connected devices are unable to reach other
      devices inside the HNCP network or query services advertised by
      them unless explicitly allowed."

What is the mechanism for explicitly allowing selective access for guest
nodes? Is this left for firewall policy configuration? I think this
warrants some explanation.

-- In Sec 6.4, I'm unclear on whether the address selection process
specified in the bulleted list would ever be used to obtain a IPv6
address. If not, then this comment is not relevant. But if it might be
used in some case where the node is using v6 but for some reason cannot
use the mechanism specified in RFC7217, I think additional guidance is
needed here about self-assignment, in line with the ongoing work on
draft-ietf-6man-default-iids. Nodes might be tempted to embed a
link-layer address in the IID as a means of ensuring that their
self-assigned addresses do not collide with others, but they should be
discouraged from doing so. So I think some text to the effect that nodes
SHOULD assign themselves semantically opaque addresses even if they
cannot use the RFC7217 mechanism and SHOULD NOT embed the underlying
link-layer address in the IID is warranted here.