IETF Logo Mail Archive

Re: [Ila] [5gangip] Identifier size

David Allan I <david.i.allan@ericsson.com> Wed, 31 January 2018 21:25 UTC

Return-Path: <david.i.allan@ericsson.com>
X-Original-To: ila@ietfa.amsl.com
Delivered-To: ila@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 84EC112FABF for <ila@ietfa.amsl.com>; Wed, 31 Jan 2018 13:25:47 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.32
X-Spam-Level:
X-Spam-Status: No, score=-4.32 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=dc/sE0FH; dkim=pass (1024-bit key) header.d=ericsson.com header.b=TSMtn2yr
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AzAUvFUNHSnF for <ila@ietfa.amsl.com>; Wed, 31 Jan 2018 13:25:45 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 84DB612FAAD for <ila@ietf.org>; Wed, 31 Jan 2018 13:25:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1517433929; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=awaPehONq4eyETtTkWSYLYzz0wFna6TJbQTRsQ4nHhs=; b=dc/sE0FHb+4rknbhMXBZ0hD0roPE/lLrkKEYkj9QUxvUVcKM68TocPjcfBVIdqg6 6/4BXOhuJPSjDWeIjke1ad7Vlj2ePvck7PPEOCVvjTFynURQyQdDrcV9AZKmqSgY VU1diRo0RaTSP/7I1zRAjKxk5of8dQMftvtf5qr6yKo=;
X-AuditID: c1b4fb25-48bff7000000341b-22-5a7234482b7d
Received: from ESESSHC010.ericsson.se (Unknown_Domain [153.88.183.48]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 33.BE.13339.844327A5; Wed, 31 Jan 2018 22:25:29 +0100 (CET)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (153.88.183.145) by oa.msg.ericsson.com (153.88.183.48) with Microsoft SMTP Server (TLS) id 14.3.352.0; Wed, 31 Jan 2018 22:25:28 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=wWELWGb3ZDqc42aZjczzF7rd6M09z9MIH/uAZ76A8Co=; b=TSMtn2yraQIzeZA3me+aZ9GHSV2sKtPwPZim+ai4Hb53S/oXnuOiYvThACIWCLxwF/EXtxED79etQz0gOPPMfvoRBEnBtSNal2YF/Nu6Ax7G/jzg6bjJ3UXdMNJ6iq2tM94mbfSUhwRa+6FHFD0NSjGCjnk87uFrXyBA+9FFc2k=
Received: from SN6PR1501MB1966.namprd15.prod.outlook.com (52.132.118.149) by SN6PR1501MB1997.namprd15.prod.outlook.com (52.132.118.156) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.444.14; Wed, 31 Jan 2018 21:25:25 +0000
Received: from SN6PR1501MB1966.namprd15.prod.outlook.com ([fe80::48f2:fdb3:8d6c:92fe]) by SN6PR1501MB1966.namprd15.prod.outlook.com ([fe80::48f2:fdb3:8d6c:92fe%13]) with mapi id 15.20.0444.016; Wed, 31 Jan 2018 21:25:25 +0000
From: David Allan I <david.i.allan@ericsson.com>
To: David Allan I <david.i.allan@ericsson.com>, Dino Farinacci <farinacci@gmail.com>, Tom Herbert <tom@herbertland.com>
CC: 5GANGIP <5gangip@ietf.org>, Behcet Sarikaya <sarikaya@ieee.org>, "ila@ietf.org" <ila@ietf.org>
Thread-Topic: [5gangip] [Ila] Identifier size
Thread-Index: AQHTmr8FAxRy01AXGEqRWJeY87oA0aOOe/rQgAABk4A=
Date: Wed, 31 Jan 2018 21:25:25 +0000
Message-ID: <SN6PR1501MB1966BF6D467D955C4770CEC8D0FB0@SN6PR1501MB1966.namprd15.prod.outlook.com>
References: <CAC8QAcfTg_osQe4HGF8w-j_w_=2rwUv9-j=M-NhKyV7GVMxFPQ@mail.gmail.com> <CALx6S35zOpTDEP2VJB2NcoDXMQrG9KF20xFqaZhfv=vqAayrUg@mail.gmail.com> <01D3C9D2-5DF2-4372-9393-8EE03CC2657A@gmail.com> <SN6PR1501MB196608E8DCE3116A80476C44D0FB0@SN6PR1501MB1966.namprd15.prod.outlook.com>
In-Reply-To: <SN6PR1501MB196608E8DCE3116A80476C44D0FB0@SN6PR1501MB1966.namprd15.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=david.i.allan@ericsson.com;
x-originating-ip: [129.192.183.10]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; SN6PR1501MB1997; 6:aSAq6wUe20Mky17LMD47Nl7jyD4DYK5viDF9G8gHNAGoi7QwYGtWGrjQ7iLUQNqanDrhVq11ttn7xyenDJAGW83GJ92aUBDgTVcSlSadSEElo/gKrb+osM5s78OaScHExs83RIjMY2uZAjDtFTeFgKhzaUvdh+txboG+nsEMnI4DYugRYMvYl/vvEsD7bXUzO8U0NQ/7KvlLPKaX32kHUPM8GSlD8jZWa7VtOWRsXJA0d//8lLhOijObDn7KH5p3/sznTuNun61ILbxpoCrx9/vFKeWYI2C28QgJ0kQOADnRQpAVj9AzD4pGS5Hn/RASImemOdKZq94vKXSX1PcCaxdLLhHwo42X9QPKry+084XwPCV8GYOVEQ/fPLkL+NQP; 5:GwrLS9GxV6iSicBVQSu403ZX1PjmnhoO1/E8tHf1BymkhHyXzzfZVGde+PN6egi8uTqq6KQSshSoe6iRk2TV3XalKnkUErTNe9D3tDR0hsymf/7rhXuWdfY3LWAflss5KmX+wwgx3QoN0RyuQRMOIhL0AGcK1xbcFROfCqqvyFg=; 24:nGmTWiJRSiF1TtMs1vLGlYGI0xlt9KyAt0EyY/9YvyUB6RUrRqe/l4aanmnuTKwlbizXHd4IpUxU5KCmfOS+YTgZ5ikfKbL7klrxFofES6U=; 7:N3CJCjqX8vAl1Vd/wdiKlQ98T6LOV5JheyctoeDn8yatOhNGY8QAe1iHs2sRlKSjdPLPBseOiU3g5nEWzs79P6cZiwXYHjpbMvr5u05nkJkYeE3IKXC2IsXD0DWBqNTDREaJd+qs6pjEsxRhnEAg/lCW1Y8cnw+lPqCkssAz6X5/VNrq9FB2hTiqvs2fbYy2GH2T/YwzJugrQv4DPI7onCoHzT4hbAHtII6Q3yf0KUmfUQ/YsyYx9L2qfPMLbY/v
x-ms-exchange-antispam-srfa-diagnostics: SSOS;SSOR;
x-forefront-antispam-report: SFV:SKI; SCL:-1; SFV:NSPM; SFS:(10009020)(366004)(396003)(39860400002)(39380400002)(376002)(346002)(13464003)(189003)(199004)(9686003)(6306002)(2950100002)(53936002)(5660300001)(54906003)(110136005)(3846002)(8936002)(229853002)(478600001)(6116002)(4326008)(106356001)(33656002)(305945005)(81156014)(102836004)(86362001)(7736002)(316002)(99286004)(5250100002)(5890100001)(105586002)(25786009)(81166006)(6246003)(7696005)(6506007)(76176011)(39060400002)(53546011)(59450400001)(26005)(68736007)(2940100002)(966005)(97736004)(2900100001)(55016002)(8676002)(2906002)(66066001)(74316002)(14454004)(93886005)(3660700001)(3280700002)(6436002); DIR:OUT; SFP:1101; SCL:1; SRVR:SN6PR1501MB1997; H:SN6PR1501MB1966.namprd15.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
x-ms-office365-filtering-correlation-id: 438f27f2-0d0f-45b7-cf84-08d568f1249b
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(3008032)(2017052603307)(7153060)(7193020); SRVR:SN6PR1501MB1997;
x-ms-traffictypediagnostic: SN6PR1501MB1997:
x-microsoft-antispam-prvs: <SN6PR1501MB199709280B25631894964F54D0FB0@SN6PR1501MB1997.namprd15.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(85827821059158);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040501)(2401047)(5005006)(8121501046)(10201501046)(93006095)(93001095)(3002001)(3231101)(2400082)(944501161)(6041288)(20161123558120)(20161123562045)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(6072148)(201708071742011); SRVR:SN6PR1501MB1997; BCL:0; PCL:0; RULEID:; SRVR:SN6PR1501MB1997;
x-forefront-prvs: 056929CBB8
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: KYh1VYxtfHZh1lItjkg7D5/VF+VvJgg7rLSV5UfIjf49GtnEWkZqmbrTK8MyJfhp00DItrZz7Kc743EWPIkCgQ==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 438f27f2-0d0f-45b7-cf84-08d568f1249b
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Jan 2018 21:25:25.2609 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR1501MB1997
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA02SfUhTURjGOffe3V1Hq+PUfNUCGYRY89s/hpYZgU1IsP9iFTrzppJf3Jml EBhJkeIHFeJ05aypy5zWslTcAjUz7UNQkTCM1A0pDUpNkZnldhb03+99nofnPS8cjpYZRIFc Tn4RL+RrcuWshNGd7okMS44V1JEP7oiVY79mWeXN/mmk1C/OiJSNVW8Z5eTEPJ0oUvU1zIpV VffqRCpH7QClMho3qVRGLTmcyefmFPNCREK6JHtkXCcudIZcWa7sEpchW3AF8uIAx8KzcSdb gSScDA8haDE/pMnwBkGnftg9MHiFgt+GV2LiNFHwab7NE1tE0G9pZV1lLI4E65815GJfXAJz jp9upnEm3Da1iVzsgxXwebmDIpkwmFrd9HAczFnsbmbwAahpvsZUII6T4nTYcsjIrmYKHNVT 7k4vrIEfdY/ceYT3wsYY6aSxP8zYmyhyHAajdZwm7AdfF7ZFJH8O5ofLWKLL4ft6O0N4P0w0 VSLXMsAfxWAZW/IUxUBFrVVEjPssdLabxcRIgfJ3NpYYdQjuTnZ7ahWwemuFcp0AuADqa5KI HAfGIaeY5PU0bD1ZQrUoouG/lxNWgKF/hSV8CFqbl2gXS7E3jOrsjAEx7chPy2sz8rKiY8J5 Iee8VluQH57PF1nQzr8Z6HYe6EWTy8cGEeaQfJe0LVRQy0SaYm1J3iACjpb7Sp/67kjSTE1J KS8UpAmXcnntIAriGLm/dDRZqpbhLE0Rf5HnC3nhn0txXoFl6FR14mjLyfWR93y6SbKuS7mx Ya3PfbHnTER8XoudMsQ380E9zyMFv8Xg6ZFt/dHNlMYvc0l5AcqqhNKME+GmxIVviqi640bb vphM7w9dTIZPABu6MG1zni1jkzp8hfDXE2tB9sflF8wd10NDjqSm9e1O2zC9bL1a03u5zRxt QXJGm62JOkgLWs1fvx5DFzMDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/ila/6-y90Z--odDouBVRPnOLt83TTUE>
Subject: Re: [Ila] [5gangip] Identifier size
X-BeenThere: ila@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Identifier Locator Addressing <ila.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ila>, <mailto:ila-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ila/>
List-Post: <mailto:ila@ietf.org>
List-Help: <mailto:ila-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ila>, <mailto:ila-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Jan 2018 21:25:47 -0000

My bad,  statement below should be end-system and correspondents would need to be directly attached to TRs  in order to use all 128 bits of an IPv6 address field as a crypto assigned EID. 

Cheers
D

-----Original Message-----
From: 5gangip [mailto:5gangip-bounces@ietf.org] On Behalf Of David Allan I
Sent: Wednesday, January 31, 2018 1:18 PM
To: Dino Farinacci <farinacci@gmail.com>; Tom Herbert <tom@herbertland.com>
Cc: 5GANGIP <5gangip@ietf.org>; Behcet Sarikaya <sarikaya@ieee.org>; ila@ietf.org
Subject: Re: [5gangip] [Ila] Identifier size

For my edification, that would only be true if the end system was directly attached to the TR.  Addressing would need to conform to established norms if that was not the case. Correct?

Rgds
Dave

-----Original Message-----
From: 5gangip [mailto:5gangip-bounces@ietf.org] On Behalf Of Dino Farinacci
Sent: Wednesday, January 31, 2018 10:11 AM
To: Tom Herbert <tom@herbertland.com>
Cc: 5GANGIP <5gangip@ietf.org>; Behcet Sarikaya <sarikaya@ieee.org>; ila@ietf.org
Subject: Re: [5gangip] [Ila] Identifier size

For LISP, you can assign an EID to the loopback interface, all 128-bits. And then the interface addresses that are either statically conifgured or learned by SLAAC are 128-bit RLOCs.

You can assign multiple EIDs to the loopback interface, be them crypto-EIDs or not, or a combination of either.

If ILA (or ILNP) useds 64-bit identifiers, those can be regsitered to the LISP mapping system and return 128-bit RLOCs. Or for that matter, return any size you want. To be used by how any data-plane wants to use the addresses.

Dino

> On Jan 31, 2018, at 9:12 AM, Tom Herbert <tom@herbertland.com> wrote:
> 
> 
> 
> On Wed, Jan 31, 2018 at 8:27 AM, Behcet Sarikaya <sarikaya2012@gmail.com> wrote:
> Hi Tom, all,
> 
> I changed this tread to identifier size issue.
> 
> What is the motivation for crypto-graphic identifiers?  Is the idea to give each device a master identifier and then it can use the a crypto graphic function to independently create its own unique identifiers for use in communications. That would be good for address per connection and 80 bits might be doable in ILA.
> 
> Saleem pointed out that:
> ILNPv6 will not work with more than 64 bits in the NID, and that is 
> consistent with RFC8200/STD86 (which refers to RFC4291, for the use of a 64 bit ID).
> 
> 
> So my question is the identifier in identifier - locator separation equal to the interface id in RFC 8200?
> 
> No, it's not. This is where one of the problems with identifier locator address split arises. SLAAC performs /64 address assignments. This is assigning a  subnet to a device with the expectation that IIDs in the subnet (lower 64 bits) are assigned by the device receiving the assignment,  Many mobile providers use SLAAC to assign /64 to UEs. This is in contrast to using DHCPv6 to get singleton addresses. The IID space is used by the UE for assigning addresses to downstream devices (like in tethering) as well randomizing address for local binding as a means to mitigate address scanning attacks (address scanning was used in WannaCry attack). In this sort of address assignment it's the upper sixty-four bits that identify the mobile device, the identifier for identifier/locator split would be derived from the upper sixty-four bits.
> 
> Sixty-four bits isn't enough to encode both a locator and identifier, but I think a level of indirection will work. This is my description of that:
> 
> A device may be assigned a /64 address via SLAAC as is common in many provider networks. In this scenario, the low order sixty-four bits contains IIDs arbitrarily assigned by devices for its purposes; so these bits cannot be used as an identifier in ILA. The alternative to support /64 prefix assignment is to encode an identifier in the upper sixty-four bits. Since only a subset of bits are available, a level of indirection is used so that  when ILA transformed the upper sixty four bits contains both a locator and an index into a locator (ILA-N) specific table. The entry in the table provides the original sixty-four bit prefix so that ILA to SIR transformation can be done.
> 
> If yes, then what happens if the UE has more than one interfaces?
> 
> This makes it the uniqueness of the IID and the identifier is the same problem?
> 
> In ILA, identifiers need to be unique with an ILA domain. Normally, this will mean it is unique with one SIR prefix. That is analogous to an IID being unique within a subnet.
>   
> Tom
> 
> _______________________________________________
> ila mailing list
> ila@ietf.org
> https://www.ietf.org/mailman/listinfo/ila

_______________________________________________
5gangip mailing list
5gangip@ietf.org
https://www.ietf.org/mailman/listinfo/5gangip

_______________________________________________
5gangip mailing list
5gangip@ietf.org
https://www.ietf.org/mailman/listinfo/5gangip

v2.23.0 | Report a Bug | By Email