Re: [Ila] [5gangip] Identifier size
Behcet Sarikaya <sarikaya2012@gmail.com> Wed, 31 January 2018 22:18 UTC
Return-Path: <sarikaya2012@gmail.com>
X-Original-To: ila@ietfa.amsl.com
Delivered-To: ila@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29DD112F5DB; Wed, 31 Jan 2018 14:18:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.448
X-Spam-Level:
X-Spam-Status: No, score=-2.448 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id If-047-rxXDl; Wed, 31 Jan 2018 14:17:57 -0800 (PST)
Received: from mail-lf0-x235.google.com (mail-lf0-x235.google.com [IPv6:2a00:1450:4010:c07::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A160D12FAED; Wed, 31 Jan 2018 14:17:56 -0800 (PST)
Received: by mail-lf0-x235.google.com with SMTP id t139so23143511lff.0; Wed, 31 Jan 2018 14:17:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:reply-to:in-reply-to:references:from:date:message-id :subject:to:cc; bh=Cecbk1QRwpBEtRyymlkJNUteKXAm1z0onk9/oA2B+Hw=; b=JoZ7XNUfVtu7mucV0pR8ApIk80plBtCZQcaH5b/bvvE7vLtQi/Ng5YchocKlgNgscq BVXDK+VmgquxKgQLMLj0oy1pXkVT5bY2hgjL/RPaiWZewE75Uxyu7vDk6LAIxGmn42UG ICuNq5HFS39wmF473gBFwG9HacBthqPZypMth6bf16oDs9EuPACchZAgTbhyzGLexrpl hTF+eehGxOmAljiLdVrqNblhDP//phEyIgusMQnas07gkfIhicPfCpU3rgqhd5kElSa8 d5Wp4XV+4viyhXVCsbrV25oEnZ1cAFv+8sqjtf2YJEooUkcNfeLHl63VqOC7Z/LdXSGP GICg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:reply-to:in-reply-to:references :from:date:message-id:subject:to:cc; bh=Cecbk1QRwpBEtRyymlkJNUteKXAm1z0onk9/oA2B+Hw=; b=eNi2orImZVzdRWCrMMMbxlnaMMhRhAU4kytpkDrkTpP1hsofv2iWsDBNr+JsBPDTpR pythaactWuPJG1u2/bSBVO3mNf5Ey8JcodcDvxKzmTvZMgYhfj5s9qGh2ABztX6kJ0Mf Zv2aA64qNy3mOJPmrKsmMRklE117+ugDNWsCVS899TPZmJwxxUYWS0WmC3cy2dogYzBL ExBOkyX48qso/sInEFHjNUHWmON3lHWKcxf+1qwn/9u7xp2C6xISeTrV2wTPyrJ6FtNE YPcdOpCJZHa6lV9wHOqLKjHCa5oAQOf2UotBb5u6Wnl5S/Tnuu6C13JzstmrGEIjLnfn UKTw==
X-Gm-Message-State: AKwxytdlEsihXLwkFecr+ghNYmNgzUdem+4JHrhRSoi3kQeTIuju2FdZ 8RHNTyNi7tfQvThoz3RFFr7D/+nh52hH1fL61KY=
X-Google-Smtp-Source: AH8x225s4DADlwfRvXeAwR6Acq6qvnZzuCtYLU6aXSS+Kl7T72Xhf4GjVwZySDPgAkQvYdNbxQIshvZv245jpe0v4HE=
X-Received: by 10.46.43.216 with SMTP id r85mr14322842ljr.135.1517437074896; Wed, 31 Jan 2018 14:17:54 -0800 (PST)
MIME-Version: 1.0
Received: by 10.46.89.5 with HTTP; Wed, 31 Jan 2018 14:17:54 -0800 (PST)
Reply-To: sarikaya@ieee.org
In-Reply-To: <7696CF50-AAA1-477A-A1B3-12DD546C8610@gmail.com>
References: <CAC8QAcfTg_osQe4HGF8w-j_w_=2rwUv9-j=M-NhKyV7GVMxFPQ@mail.gmail.com> <CALx6S35zOpTDEP2VJB2NcoDXMQrG9KF20xFqaZhfv=vqAayrUg@mail.gmail.com> <01D3C9D2-5DF2-4372-9393-8EE03CC2657A@gmail.com> <SN6PR1501MB196608E8DCE3116A80476C44D0FB0@SN6PR1501MB1966.namprd15.prod.outlook.com> <SN6PR1501MB1966BF6D467D955C4770CEC8D0FB0@SN6PR1501MB1966.namprd15.prod.outlook.com> <7696CF50-AAA1-477A-A1B3-12DD546C8610@gmail.com>
From: Behcet Sarikaya <sarikaya2012@gmail.com>
Date: Wed, 31 Jan 2018 16:17:54 -0600
Message-ID: <CAC8QAcfjdaRz2nWpaByxAsWPUgUJw74jg6z-Cxndb-3W9HhqYw@mail.gmail.com>
To: Dino Farinacci <farinacci@gmail.com>
Cc: David Allan I <david.i.allan@ericsson.com>, Tom Herbert <tom@herbertland.com>, 5GANGIP <5gangip@ietf.org>, "ila@ietf.org" <ila@ietf.org>
Content-Type: multipart/alternative; boundary="001a114d69eed17a9c056419d92f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ila/pWfrGA__yp3VJJ0n4vM4yelzFP8>
Subject: Re: [Ila] [5gangip] Identifier size
X-BeenThere: ila@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Identifier Locator Addressing <ila.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ila>, <mailto:ila-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ila/>
List-Post: <mailto:ila@ietf.org>
List-Help: <mailto:ila-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ila>, <mailto:ila-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 31 Jan 2018 22:18:00 -0000
On Wed, Jan 31, 2018 at 4:12 PM, Dino Farinacci <farinacci@gmail.com> wrote: > > My bad, statement below should be end-system and correspondents would > need to be directly attached to TRs in order to use all 128 bits of an > IPv6 address field as a crypto assigned EID. > > Right, my reference was when LISP ran on the UE. We are interested in LISP running on UE. Behcet > When it ran in the network, the RLOCs would be the xTRs in the network. > And the EIDs on the UE could still be loopback or one of the SLAAC > addresses. It doesn’t matter which ones, even if provider-assigned, because > those addresses, used as EIDs wouldn’t have to be advertised into the > non-PA assigned attachment carriers. > > Dino > > > > > Cheers > > D > > > > -----Original Message----- > > From: 5gangip [mailto:5gangip-bounces@ietf.org] On Behalf Of David > Allan I > > Sent: Wednesday, January 31, 2018 1:18 PM > > To: Dino Farinacci <farinacci@gmail.com>; Tom Herbert < > tom@herbertland.com> > > Cc: 5GANGIP <5gangip@ietf.org>; Behcet Sarikaya <sarikaya@ieee.org>; > ila@ietf.org > > Subject: Re: [5gangip] [Ila] Identifier size > > > > For my edification, that would only be true if the end system was > directly attached to the TR. Addressing would need to conform to > established norms if that was not the case. Correct? > > > > Rgds > > Dave > > > > -----Original Message----- > > From: 5gangip [mailto:5gangip-bounces@ietf.org] On Behalf Of Dino > Farinacci > > Sent: Wednesday, January 31, 2018 10:11 AM > > To: Tom Herbert <tom@herbertland.com> > > Cc: 5GANGIP <5gangip@ietf.org>; Behcet Sarikaya <sarikaya@ieee.org>; > ila@ietf.org > > Subject: Re: [5gangip] [Ila] Identifier size > > > > For LISP, you can assign an EID to the loopback interface, all 128-bits. > And then the interface addresses that are either statically conifgured or > learned by SLAAC are 128-bit RLOCs. > > > > You can assign multiple EIDs to the loopback interface, be them > crypto-EIDs or not, or a combination of either. > > > > If ILA (or ILNP) useds 64-bit identifiers, those can be regsitered to > the LISP mapping system and return 128-bit RLOCs. Or for that matter, > return any size you want. To be used by how any data-plane wants to use the > addresses. > > > > Dino > > > >> On Jan 31, 2018, at 9:12 AM, Tom Herbert <tom@herbertland.com> wrote: > >> > >> > >> > >> On Wed, Jan 31, 2018 at 8:27 AM, Behcet Sarikaya < > sarikaya2012@gmail.com> wrote: > >> Hi Tom, all, > >> > >> I changed this tread to identifier size issue. > >> > >> What is the motivation for crypto-graphic identifiers? Is the idea to > give each device a master identifier and then it can use the a crypto > graphic function to independently create its own unique identifiers for use > in communications. That would be good for address per connection and 80 > bits might be doable in ILA. > >> > >> Saleem pointed out that: > >> ILNPv6 will not work with more than 64 bits in the NID, and that is > >> consistent with RFC8200/STD86 (which refers to RFC4291, for the use of > a 64 bit ID). > >> > >> > >> So my question is the identifier in identifier - locator separation > equal to the interface id in RFC 8200? > >> > >> No, it's not. This is where one of the problems with identifier locator > address split arises. SLAAC performs /64 address assignments. This is > assigning a subnet to a device with the expectation that IIDs in the > subnet (lower 64 bits) are assigned by the device receiving the > assignment, Many mobile providers use SLAAC to assign /64 to UEs. This is > in contrast to using DHCPv6 to get singleton addresses. The IID space is > used by the UE for assigning addresses to downstream devices (like in > tethering) as well randomizing address for local binding as a means to > mitigate address scanning attacks (address scanning was used in WannaCry > attack). In this sort of address assignment it's the upper sixty-four bits > that identify the mobile device, the identifier for identifier/locator > split would be derived from the upper sixty-four bits. > >> > >> Sixty-four bits isn't enough to encode both a locator and identifier, > but I think a level of indirection will work. This is my description of > that: > >> > >> A device may be assigned a /64 address via SLAAC as is common in many > provider networks. In this scenario, the low order sixty-four bits contains > IIDs arbitrarily assigned by devices for its purposes; so these bits cannot > be used as an identifier in ILA. The alternative to support /64 prefix > assignment is to encode an identifier in the upper sixty-four bits. Since > only a subset of bits are available, a level of indirection is used so > that when ILA transformed the upper sixty four bits contains both a > locator and an index into a locator (ILA-N) specific table. The entry in > the table provides the original sixty-four bit prefix so that ILA to SIR > transformation can be done. > >> > >> If yes, then what happens if the UE has more than one interfaces? > >> > >> This makes it the uniqueness of the IID and the identifier is the same > problem? > >> > >> In ILA, identifiers need to be unique with an ILA domain. Normally, > this will mean it is unique with one SIR prefix. That is analogous to an > IID being unique within a subnet. > >> > >> Tom > >> > >> _______________________________________________ > >> ila mailing list > >> ila@ietf.org > >> https://www.ietf.org/mailman/listinfo/ila > > > > _______________________________________________ > > 5gangip mailing list > > 5gangip@ietf.org > > https://www.ietf.org/mailman/listinfo/5gangip > > > > _______________________________________________ > > 5gangip mailing list > > 5gangip@ietf.org > > https://www.ietf.org/mailman/listinfo/5gangip > >
- Re: [Ila] Identifier size Tom Herbert
- Re: [Ila] Identifier size Dino Farinacci
- Re: [Ila] [5gangip] Identifier size David Allan I
- Re: [Ila] [5gangip] Identifier size David Allan I
- Re: [Ila] [5gangip] Identifier size Dino Farinacci
- Re: [Ila] [5gangip] Identifier size Behcet Sarikaya
- Re: [Ila] [5gangip] Identifier size Dino Farinacci
- Re: [Ila] [5gangip] Identifier size Dirk.von-Hugo
- Re: [Ila] [5gangip] Identifier size Dino Farinacci