Re: [i2rs] I2RS Requriements - secure transfer
Jeffrey Haas <jhaas@pfrc.org> Tue, 31 May 2016 21:00 UTC
Return-Path: <jhaas@slice.pfrc.org>
X-Original-To: i2rs@ietfa.amsl.com
Delivered-To: i2rs@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3ABF812D8E5 for <i2rs@ietfa.amsl.com>; Tue, 31 May 2016 14:00:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.328
X-Spam-Level:
X-Spam-Status: No, score=-3.328 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-1.426, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 75vXH5yDD1Dx for <i2rs@ietfa.amsl.com>; Tue, 31 May 2016 14:00:27 -0700 (PDT)
Received: from slice.pfrc.org (slice.pfrc.org [67.207.130.108]) by ietfa.amsl.com (Postfix) with ESMTP id B99FC12D8CC for <i2rs@ietf.org>; Tue, 31 May 2016 14:00:27 -0700 (PDT)
Received: by slice.pfrc.org (Postfix, from userid 1001) id 670791E335; Tue, 31 May 2016 17:06:00 -0400 (EDT)
Date: Tue, 31 May 2016 17:06:00 -0400
From: Jeffrey Haas <jhaas@pfrc.org>
To: "Joel M. Halpern" <jmh@joelhalpern.com>
Message-ID: <20160531210600.GN10531@pfrc.org>
References: <000601d1bad5$70523090$50f691b0$@ndzh.com> <20160531063840.GA21289@elstar.local> <20160531193640.GL17462@pfrc.org> <92905b12-3422-316c-67e9-1aefbbebc035@joelhalpern.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <92905b12-3422-316c-67e9-1aefbbebc035@joelhalpern.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <http://mailarchive.ietf.org/arch/msg/i2rs/CEjo0Vm98HikI4nEfw8JoBrdDBo>
Cc: i2rs@ietf.org, Susan Hares <shares@ndzh.com>
Subject: Re: [i2rs] I2RS Requriements - secure transfer
X-BeenThere: i2rs@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Interface to The Internet Routing System \(IRS\)" <i2rs.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2rs>, <mailto:i2rs-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2rs/>
List-Post: <mailto:i2rs@ietf.org>
List-Help: <mailto:i2rs-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2rs>, <mailto:i2rs-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2016 21:00:29 -0000
Joel, On Tue, May 31, 2016 at 04:17:50PM -0400, Joel M. Halpern wrote: > The more I read the text about marking secure or insecure > transports, the I wonder whether it is an I2RS requirement at all. > that is, I2RS requires the ability to send notifications via an > insecure channel. The requirements have been getting written in a very proscriptive manner for the cases when security *is* required. We have had numerous discussions about other transports, which *might not* be secured. If your argument is that because we MUST support the secured cases that we don't need to cover the insecure cases, I strongly disagree. > I don't think I2RS cares what granularity this is marked at. I2RS doesn't give a darn. Models and security folk reviewing the models do. > So lets not state a requirement on it? Let's not try to brush it off. > Jeff, you allude to using a protocol like IPFIX. Given that IPFix > won't be reading these YANG models at all, it seems that the > requirement as stated (marking in the YANG which nodes are allowed > to be transferred insecurely) won't help solve the problem. Please try to have paid attention to the discussion the last two years about pub-sub mechanisms for telemtry data. We have more than one vendor which has implemented some form of telemetry state coverable by yang modeling with alternate presentation or transport layers. The most common example regularly cited has been GRPC with protobufs encoding. Discussion has happened in-hallway, on-list and between vendors about the potential programmatic mapping layers between things like protobufs, thrift and even IPFIX and yang although to my knowledge only protobufs and thrift had gotten more than a smattering of attention. > I also wonder if the very notion of an I2RS protocol is getting in > the way. If the insecure transfer we envision is some protocol > other than NetConf / RestConf, then we seem to be stating the > requirement in the wrong place. IMO, calling it an "I2RS protocol" was mistaken. The minute we decided we were going to attempt to leverage existing mechanisms such as netconf and restconf, the framing should have simply been "extensions to support i2rs cases". If netconf proved intransigent against the changes in question, it was likely at some point that the vendor set implementing i2rs mechanisms would eventually chosen to have forked netconf protocol behaviors to support their code and use cases for ephemeral state. Thus far, it appears that each has chosen to stay with their own internal forms of ephemeral configuration and avoid exposing netconf mappings until these issues have resolved. -- Jeff
- [i2rs] I2RS Interim Meeting - June 1, 2016 - 10:0… Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Joel M. Halpern
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Andy Bierman
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Joel M. Halpern
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Jeffrey Haas
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Jeffrey Haas
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Jeffrey Haas
- Re: [i2rs] Ephemeral State Requirements discussion Joel M. Halpern
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Joel M. Halpern
- Re: [i2rs] I2RS Requriements - secure transfer Joel M. Halpern
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] I2RS Requriements - secure transfer Jeffrey Haas
- Re: [i2rs] I2RS Requriements - secure transfer Joel M. Halpern
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Andy Bierman
- [i2rs] Can I2RS focus on the "Over the Wire" data… Linda Dunbar
- Re: [i2rs] Can I2RS focus on the "Over the Wire" … Andy Bierman
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] Can I2RS focus on the "Over the Wire" … Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Can I2RS focus on the "Over the Wire" … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Andy Bierman
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] Can I2RS focus on the "Over the Wire" … Jeffrey Haas
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Jeffrey Haas
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Andy Bierman
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Jeffrey Haas
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Joel Halpern Direct
- Re: [i2rs] Can I2RS focus on the "Over the Wire" … Linda Dunbar
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Susan Hares
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Jeffrey Haas
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Eric Voit (evoit)
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Joel M. Halpern
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] I2RS Interim Meeting - June 1, 2016 - … Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Fedyk, Don
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares
- Re: [i2rs] Ephemeral State Requirements discussion Juergen Schoenwaelder
- Re: [i2rs] Ephemeral State Requirements discussion Susan Hares