Re: [Ideas] Your Input requested: Charter Proposal New Version
Uma Chunduri <uma.chunduri@huawei.com> Wed, 09 August 2017 22:30 UTC
Return-Path: <uma.chunduri@huawei.com>
X-Original-To: ideas@ietfa.amsl.com
Delivered-To: ideas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1DB1313239B for <ideas@ietfa.amsl.com>; Wed, 9 Aug 2017 15:30:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.221
X-Spam-Level:
X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nANzyNx5HTkO for <ideas@ietfa.amsl.com>; Wed, 9 Aug 2017 15:30:25 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 111BE13228D for <ideas@ietf.org>; Wed, 9 Aug 2017 15:30:24 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml706-cah.china.huawei.com) ([172.18.7.190]) by lhrrg01-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id DTB54081; Wed, 09 Aug 2017 22:30:22 +0000 (GMT)
Received: from SJCEML701-CHM.china.huawei.com (10.208.112.40) by lhreml706-cah.china.huawei.com (10.201.108.47) with Microsoft SMTP Server (TLS) id 14.3.301.0; Wed, 9 Aug 2017 23:30:21 +0100
Received: from SJCEML703-CHM.china.huawei.com ([169.254.5.240]) by SJCEML701-CHM.china.huawei.com ([169.254.3.13]) with mapi id 14.03.0301.000; Wed, 9 Aug 2017 15:30:13 -0700
From: Uma Chunduri <uma.chunduri@huawei.com>
To: "Diego R. Lopez" <diego.r.lopez@telefonica.com>, Tom Herbert <tom@herbertland.com>, Padma Pillay-Esnault <padma.ietf@gmail.com>
CC: "ideas@ietf.org" <ideas@ietf.org>
Thread-Topic: [Ideas] Your Input requested: Charter Proposal New Version
Thread-Index: AQHTDzzgNVx45kpBtkOBA2pvgY37Y6J5ePoAgAAJlQCAAxvyUA==
Date: Wed, 09 Aug 2017 22:30:12 +0000
Message-ID: <25B4902B1192E84696414485F572685401A3A234@SJCEML703-CHM.china.huawei.com>
References: <CAG-CQxpxDXxLXdu0a2GdBRfTFLM_C+jqCz58HoNim52C7Yzr8g@mail.gmail.com> <CALx6S34hbV5D84RZQ1+V3zFz+VNeJsDn0rsr-PN6Wg4b1gdSpA@mail.gmail.com> <83622B5F-A2D0-40A4-BD75-BC6222754059@telefonica.com>
In-Reply-To: <83622B5F-A2D0-40A4-BD75-BC6222754059@telefonica.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.212.246.1]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
X-Mirapoint-Virus-RAPID-Raw: score=unknown(0), refid=str=0001.0A020206.598B8CFF.0076, ss=1, re=0.000, recu=0.000, reip=0.000, cl=1, cld=1, fgs=0, ip=169.254.5.240, so=2013-06-18 04:22:30, dmn=2013-03-21 17:37:32
X-Mirapoint-Loop-Id: 018e6e1cce410ee72e0571540e9b9256
Archived-At: <https://mailarchive.ietf.org/arch/msg/ideas/ZMhuYzoc-LRaOKMPmCDbVfkJVc8>
Subject: Re: [Ideas] Your Input requested: Charter Proposal New Version
X-BeenThere: ideas@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discussions relating to the development, clarification, and implementation of control-plane infrastructures and functionalities in ID enabled networks." <ideas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ideas>, <mailto:ideas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ideas/>
List-Post: <mailto:ideas@ietf.org>
List-Help: <mailto:ideas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ideas>, <mailto:ideas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Aug 2017 22:30:28 -0000
In-line -----Original Message----- From: Ideas [mailto:ideas-bounces@ietf.org] On Behalf Of Diego R. Lopez Sent: Monday, August 07, 2017 8:57 AM To: Tom Herbert <tom@herbertland.com>; Padma Pillay-Esnault <padma.ietf@gmail.com> Cc: ideas@ietf.org Subject: Re: [Ideas] Your Input requested: Charter Proposal New Version Hi, On 7/8/2017, 17:23, "Ideas on behalf of Tom Herbert" <ideas-bounces@ietf.org on behalf of tom@herbertland.com> wrote: On Sun, Aug 6, 2017 at 10:20 PM, Padma Pillay-Esnault <padma.ietf@gmail.com> wrote: > Dear IDEAS, > > Thanks to everyone who sent their comments and feedback both on the list and > off the list. > > This new version should address comments from: > - Michael Menth. Michael, please let us know if this revision address some > of your comments on clarity. > - Alex Clemm. Alex , please chime on the revision regarding your addition. > - Tom Herbert. Tom, Some of your suggestions are incorporated in this > version. > -Tom and Alex, this version include specific working that the framework is > modular. The set of areas to be covered has been reordered to put the basic > identifier protocol common infrastructure first and then the new identity > concept and functionalities. > - Georgios Karagiannis, Uma Chundhuri. Georgios, Uma, there is still an > ongoing discussion about the framework. This version is flexible enough to > accommodate the work to be done on defining the framework. > - Uma Chundhuri. Uma, the pub/sub reference should cover the inter-grids > aspect if needed. > > Please find the new version below: > > IDEAS: “IDentity EnAbled networkS” > > > > Proposed Charter > > > > Network solutions based on the concept of Identifier-Locator separation are > increasingly considered to support mobility and multi-homing across > heterogeneous access networks. Identifier-locator separation protocols > require infrastructure that allows nodes to discover the network topological > location(s) of its peer(s) for packet delivery. A common infrastructure and > protocol could be used by identifier/locator protocols as well as network > virtualization. However, additional infrastructure and new protocol > extensions are needed to address new requirements that go well beyond the > traditional discovery service and mapping of identifier-to-location for > packet delivery. > > > > At the same time, end users require greater privacy for their networking > information and protection from outside threats, while operators demand > greater operational efficiency. Identity-enabled networks aim to enable > networking applications and services that provide a high degree of privacy > and control of end points over their networking data, coupled with greater > inherent security than provided by today’s networks. > > > > To this end, the working group shall: > > - define a framework for the development of an identifier/locator mapping > system that provides a common solution for all identifier/locator mapping > protocols and network virtualization. > > > > - in addition, introduce the concept of identity-identifier split and new > mechanisms that let endpoints dynamically change identifiers. These new > functionalities may, for example, facilitate anonymity through obscurity > while preventing security issues that might result from abuse, ensuring that > information about actual endpoints and their location is revealed only on a > need-to-know basis. > Padma, I don't think this goes far enough in terms of protections for users against the potential abuse of something that might be able to individually and persistently identify them on the Internet. First, it's not clear what network layer identity means in this context. I hope it refers to an ad hoc collection of identifiers as opposed to the identity of individual users or devices. In any case maybe a definition of identity might be in order here. Secondly, I think it should be stated up front that identity cannot in any way be used to identify individual users, it cannot be used to create a global database of Internet users, in no way can it be used by networks or governments to track or block individuals, nor can it ever be required for communications. That implies network layer identities cannot contain PII (personally identifiable information) and cannot be permanently assigned to users or devices (in the same spirit that Ethernet addresses were removed from IIDs because of privacy concerns). Thanks, Tom When it comes to these concerns I’d strongly recommend to have a look at how identity attributes were exchanged and trust established within the ABFAB framework (https://tools.ietf.org/wg/abfab/) [Uma]: Though this is not about SSOs or application stuff, thanks for the pointer. I always believed EAP has a role to play for IDy auth procedures and lot of concerns brought out here (especially related to Identity-privacy) are effectively taken care with existing mechanisms. Be goode,
- [Ideas] Your Input requested: Charter Proposal Ne… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Yingzhen Qu
- Re: [Ideas] Your Input requested: Charter Proposa… Michael Menth
- Re: [Ideas] Your Input requested: Charter Proposa… Tom Herbert
- Re: [Ideas] Your Input requested: Charter Proposa… Diego R. Lopez
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Tom Herbert
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Alexander Clemm
- Re: [Ideas] Your Input requested: Charter Proposa… Padmadevi Pillay Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Alexander Clemm
- Re: [Ideas] Your Input requested: Charter Proposa… Padmadevi Pillay Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Sam Sun
- Re: [Ideas] Your Input requested: Charter Proposa… Padmadevi Pillay Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Alexander Clemm
- Re: [Ideas] Your Input requested: Charter Proposa… Uma Chunduri
- Re: [Ideas] Your Input requested: Charter Proposa… Uma Chunduri
- Re: [Ideas] Your Input requested: Charter Proposa… Diego R. Lopez
- Re: [Ideas] Your Input requested: Charter Proposa… Uma Chunduri
- Re: [Ideas] Your Input requested: Charter Proposa… Lan Gao
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Robert Moskowitz
- Re: [Ideas] Your Input requested: Charter Proposa… Dino Farinacci
- Re: [Ideas] Your Input requested: Charter Proposa… Shreyasee Mukherjee
- Re: [Ideas] Your Input requested: Charter Proposa… Di Ma
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Dino Farinacci
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Padma Pillay-Esnault
- Re: [Ideas] Your Input requested: Charter Proposa… Alexander Clemm
- Re: [Ideas] Your Input requested: Charter Proposa… Dipankar Raychaudhuri
- Re: [Ideas] Your Input requested: Charter Proposa… Robert Moskowitz
- Re: [Ideas] Your Input requested: Charter Proposa… Liubingyang (Bryan)
- Re: [Ideas] Your Input requested: Charter Proposa… Dipankar Raychaudhuri
- Re: [Ideas] Your Input requested: Charter Proposa… Albert Cabellos