IETF Logo Mail Archive

Re: [i2rs] draft-ietf-i2rs-ephemeral-state-07.txt - per-node transport security

"Susan Hares" <shares@ndzh.com> Thu, 26 May 2016 17:09 UTC

Return-Path: <shares@ndzh.com>
X-Original-To: i2rs@ietfa.amsl.com
Delivered-To: i2rs@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3ED1B12D7B7 for <i2rs@ietfa.amsl.com>; Thu, 26 May 2016 10:09:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.738
X-Spam-Level: *
X-Spam-Status: No, score=1.738 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DOS_OUTLOOK_TO_MX=2.845, RDNS_NONE=0.793] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QUvwy80zvzgW for <i2rs@ietfa.amsl.com>; Thu, 26 May 2016 10:09:04 -0700 (PDT)
Received: from hickoryhill-consulting.com (unknown [50.245.122.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B1A7312D7C1 for <i2rs@ietf.org>; Thu, 26 May 2016 10:09:02 -0700 (PDT)
X-Default-Received-SPF: pass (skip=loggedin (res=PASS)) x-ip-name=174.124.182.128;
From: Susan Hares <shares@ndzh.com>
To: 'Joel Halpern' <jmh@joelhalpern.com>, i2rs@ietf.org
References: <20160526013921.2840.56377.idtracker@ietfa.amsl.com> <1d33bfff-bd6c-f376-8c9c-aef611670311@joelhalpern.com>
In-Reply-To: <1d33bfff-bd6c-f376-8c9c-aef611670311@joelhalpern.com>
Date: Thu, 26 May 2016 13:08:57 -0400
Message-ID: <03fe01d1b771$4ac13ae0$e043b0a0$@ndzh.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQHWZbgrR/rETZCVhEoXYOsiMgM15wKIt/qen63PRFA=
Content-Language: en-us
X-Authenticated-User: skh@ndzh.com
Archived-At: <http://mailarchive.ietf.org/arch/msg/i2rs/ajZuDRLe1X2m9kdk5iskfDLuMZQ>
Subject: Re: [i2rs] draft-ietf-i2rs-ephemeral-state-07.txt - per-node transport security
X-BeenThere: i2rs@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Interface to The Internet Routing System \(IRS\)" <i2rs.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2rs>, <mailto:i2rs-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2rs/>
List-Post: <mailto:i2rs@ietf.org>
List-Help: <mailto:i2rs-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2rs>, <mailto:i2rs-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 May 2016 17:09:05 -0000

Joel: 

The purpose of allowing a non-security transport was to report status or
telemetry information.   This information may be in a specific model, or a
portion of a model.    While nodes may be too small an area, can you suggest
alternate wording here? 

Please look at Ephemeral-REQ-05 for context of the use of "object"

Sue 

-----------

   Ephemeral-REQ-06: Yang MUST have a way to indicate in a data model
   that nodes have the following properties: ephemeral, writable/not-
   writable, status/configuration, and secure/non-secure transport.  (If
   you desire examples, please see [I-D.hares-i2rs-protocol-strawman]
   for potential yang syntax).

  Ephemeral-REQ-05: The ability to augment an object with appropriate
   YANG structures that have the property of being ephemeral.  An object
   defined as Yang module, schema tree, a schema node, submodule or
   components of a submodule (derived types, groupings, data node, RPCs,
   actions, and notifications".


-----Original Message-----
From: i2rs [mailto:i2rs-bounces@ietf.org] On Behalf Of Joel Halpern
Sent: Wednesday, May 25, 2016 11:17 PM
To: i2rs@ietf.org
Subject: Re: [i2rs] draft-ietf-i2rs-ephemeral-state-07.txt - per-node
transport security

While I agree with the overall requirement that I2RS support both secured
and unsecured communication, I find Ephemeral-REQ-06 rather odd.  Trying to
have the module designer specify whether the usage of a node (get, set,
...?) must be via a secure or unsecure transport seems a very odd placement
of the control.

Why are we mandating this on a per-node level?

Thank you,
Joel

On 5/25/16 9:39 PM, internet-drafts@ietf.org wrote:
>
> A New Internet-Draft is available from the on-line Internet-Drafts
directories.
> This draft is a work item of the Interface to the Routing System of the
IETF.
>
>         Title           : I2RS Ephemeral State Requirements
>         Authors         : Jeff Haas
>                           Susan Hares
> 	Filename        : draft-ietf-i2rs-ephemeral-state-07.txt
> 	Pages           : 14
> 	Date            : 2016-05-25
>
> Abstract:
>    This document covers requests to the NETMOD and NETCONF Working
>    Groups for functionality to support the ephemeral state requirements
>    to implement the I2RS architecture.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-i2rs-ephemeral-state/
>
> There's also a htmlized version available at:
> https://tools.ietf.org/html/draft-ietf-i2rs-ephemeral-state-07
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-i2rs-ephemeral-state-07
>
>
> Please note that it may take a couple of minutes from the time of 
> submission until the htmlized version and diff are available at
tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> _______________________________________________
> I-D-Announce mailing list
> I-D-Announce@ietf.org
> https://www.ietf.org/mailman/listinfo/i-d-announce
> Internet-Draft directories: http://www.ietf.org/shadow.html or 
> ftp://ftp.ietf.org/ietf/1shadow-sites.txt
>

_______________________________________________
i2rs mailing list
i2rs@ietf.org
https://www.ietf.org/mailman/listinfo/i2rs

v2.23.0 | Report a Bug | By Email