IETF Logo Mail Archive

Re: [Ideas] Mapping System Requirements and draft-padma-ideas-problem-statement-00.txt

Dino Farinacci <farinacci@gmail.com> Wed, 28 September 2016 20:24 UTC

Return-Path: <farinacci@gmail.com>
X-Original-To: ideas@ietfa.amsl.com
Delivered-To: ideas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4720E12B2C4; Wed, 28 Sep 2016 13:24:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pvYc7g0tcpTt; Wed, 28 Sep 2016 13:24:42 -0700 (PDT)
Received: from mail-pf0-x22b.google.com (mail-pf0-x22b.google.com [IPv6:2607:f8b0:400e:c00::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 91F93127058; Wed, 28 Sep 2016 13:24:42 -0700 (PDT)
Received: by mail-pf0-x22b.google.com with SMTP id 21so20823136pfy.0; Wed, 28 Sep 2016 13:24:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=ggzbmrr+znHGrbOtAA9QCo4ZlWm4oc7rDg5fA/IVJF4=; b=dT37GfdwW/Tf6GTa0NlZHuS98e8NROcGAcFQzI7/pHqMJCZpcSqkRiCNBGSSgw+0fk XzAZcS1BK7aoEo7gjdG/FrQsIQ5w6fK+umUDHklIdtj4t3Wd+3HNhMmHbIPhiJvY3FK8 8SS8Ex03mziWsFYH3FOP8IpPVAAO747WVZB4fEb9Wg57LE94+8VgMbNg0IGog3W0uf87 yGmCzv6qnqNtF1c0ub3N4oFxG8shlKLCQdVjpZTie6wClYJ1DI8XCw1bL2zSD28o7Cag cFFkXUhkxxpHi+A7Bph5/WvtcnCZxWofYWgvmq0BW4h/0UFFEU4HaUH5Nczis4fAkw7x i3FA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=ggzbmrr+znHGrbOtAA9QCo4ZlWm4oc7rDg5fA/IVJF4=; b=V9uu/yW/gz8tmCChymPU0Yb1ouJqDmCjaJxY80JkDhNNYIhsNYche0z5CxguVkdBGl nNmN8fUDfS0PRjjwawEBkVaOlREJFjvFQPamaaYEpcfDPEdXrSdeCjf5kHcEabFh89rK r2szjPxD1O8EFYOZynaZjcu9L4T4I/I+rM//85JilGaD+o++RVX/keJ5Mlec//Q9hRz9 Zi+hQLpAg2gI4cFVfMdTJp242GPZ0wD0GxeQAUI+z83t3ecnCiSut4UmWkfcQrIbdomD LKaN7ly17nhq3o9MwKh3eiROSlG+B3BnmZ2WIwOtaDTleOVtQLgVeKveYm23K77TR7Io jT/A==
X-Gm-Message-State: AE9vXwMzUKJl53s5tbamyCapuxgaMYhGJU/+HOmF3ICFMb48Zdo1ep6DkvCLKLao0WpY2Q==
X-Received: by 10.98.155.7 with SMTP id r7mr59931543pfd.171.1475094282171; Wed, 28 Sep 2016 13:24:42 -0700 (PDT)
Received: from [10.197.31.157] ([216.216.202.69]) by smtp.gmail.com with ESMTPSA id 28sm14551129pfp.33.2016.09.28.13.24.40 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Wed, 28 Sep 2016 13:24:41 -0700 (PDT)
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Dino Farinacci <farinacci@gmail.com>
In-Reply-To: <57EB6840.1070808@uni-tuebingen.de>
Date: Wed, 28 Sep 2016 13:24:31 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <737C63AF-6C5B-480C-B1EF-29AEBE0434EB@gmail.com>
References: <32C28142-350A-4242-A9C6-9E32D9966601@gmail.com> <1D30AF33624CDD4A99E8C395069A2A162A600B3E@SJCEML701-CHM.china.huawei.com> <ADE71A46-ABEC-4043-B740-6FEF3ACBE035@gmail.com> <57EB6840.1070808@uni-tuebingen.de>
To: Michael Menth <menth@uni-tuebingen.de>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ideas/0nMU2wvrnPpM3CSWBv3tHY-cPv0>
X-Mailman-Approved-At: Thu, 29 Sep 2016 15:46:55 -0700
Cc: "beta@lispers.net" <beta@lispers.net>, "ideas@ietf.org" <ideas@ietf.org>, LISP mailing list list <lisp@ietf.org>, NVO3 <nvo3@ietf.org>, "lisp-alpha@external.cisco.com" <lisp-alpha@external.cisco.com>, LISPmob <users@lispmob.org>, "5gangip@ietf.org" <5gangip@ietf.org>, "lisp-ops@external.cisco.com" <lisp-ops@external.cisco.com>, Lin Han <Lin.Han@huawei.com>
Subject: Re: [Ideas] Mapping System Requirements and draft-padma-ideas-problem-statement-00.txt
X-BeenThere: ideas@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Discussions relating to the development, clarification, and implementation of control-plane infrastructures and functionalities in ID enabled networks." <ideas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ideas>, <mailto:ideas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ideas/>
List-Post: <mailto:ideas@ietf.org>
List-Help: <mailto:ideas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ideas>, <mailto:ideas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Sep 2016 20:24:44 -0000

>> If registrations and requests are encrypted, then anyone could run the roots and the what goes in and out of the mapping system stays private. But there needs to be competition so the level of service stays at a high-quality production level.
> What is your vision? How much of the mapping data can be encrypted and
> how much information about the mapping owner can be hidden from the

Well I think we can encrypt the transport of messages from LISP sites to the mapping system. As to encrypting the stored state at the map-servers could also be done but here are some caveats:

(1) If the MSP is providing proxy-reply services it has to return Map-Replies to ITRs/PITRs. It can do so with lisp-sec for security. But the information needs to be stored in plaintext.

(2) All the map-servers need to know when they are not proxy-replying is to know the RLOCs of the ETRs of the site that registered the information (and not so much all of the RLOC-records that were registered) so the map-servers can forward Map-Requests to the ETRs so they can Map-Reply.

> mapping system operator? The ID cannot be encrypted as it is used as
> retrieval key. When we want to make sure that only rightful owners of

Right. At a minimum, the amount of plaintext that is stored in the map-servers are EID-prefix and the RLOCs in the RLOC-set (for case (2) above).

> IDs can register, the mapping system provider needs to authenticate the

That is done today with a Map-Register that contains an authentication hash across the entire Map-Register message.

> mapping owner. Can you elaborate the problem you are tackling and the
> solution in more detail?

I was solely asking if the messaging to the mapping system should be confidential.

Dino

v2.8.7 | Report a Bug | By Email