Re: [Insipid] WG Last Call: draft-ietf-insipid-logme-reqs

"Arun Arunachalam (carunach)" <carunach@cisco.com> Tue, 18 October 2016 14:02 UTC

Return-Path: <carunach@cisco.com>
X-Original-To: insipid@ietfa.amsl.com
Delivered-To: insipid@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 334E012964B for <insipid@ietfa.amsl.com>; Tue, 18 Oct 2016 07:02:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.952
X-Spam-Level:
X-Spam-Status: No, score=-14.952 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.431, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XxO2wmGw9Mu3 for <insipid@ietfa.amsl.com>; Tue, 18 Oct 2016 07:02:25 -0700 (PDT)
Received: from rcdn-iport-6.cisco.com (rcdn-iport-6.cisco.com [173.37.86.77]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 627F4129474 for <insipid@ietf.org>; Tue, 18 Oct 2016 07:02:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=18738; q=dns/txt; s=iport; t=1476799345; x=1478008945; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=X3AwOV6dcUkF2MDtdgIM30cCm+InGVl4oCgUCv8UJjs=; b=H+inmwRnS0i2BhI5CGWtbWdrWe4m2t4giyCf3GNvrfDhSBBBOl4L4LtE 8+qg7/kNS+NE0GRQNcWNcbfkcVIJ4DpfUdwS9UeV1uEPswc9QPR43RVOa saeQ21S52OWdQEAyeEtP2Ik9mM7I81mrpAS/1FE9jDNvOKuMqaTfRsWcc M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0BJAQB9KgZY/4ENJK1QCQMZAQEBAQEBA?= =?us-ascii?q?QEBAQEHAQEBAQGDPAEBAQEBHVdtDweNLZcFh16MWoIIKIV6AhqBZzgUAQIBAQE?= =?us-ascii?q?BAQEBXieEYQEBAQMBHQYRRQUJAgIBCBEEAQEBAgIjAwICAhkGERQBCAgCBAoEB?= =?us-ascii?q?RkCiB0DDwgOtWyJBA2DVQEBAQEBAQEBAQEBAQEBAQEBAQEBARgFBYEChzMIglC?= =?us-ascii?q?CR4FNARwGEAcQChcCDYI9LIIvBY4/hVeFOzUBjHWDDoFuhGeEOoRmhxCBVYQWg?= =?us-ascii?q?38BHjZSgn4cgVNyAYdVgQABAQE?=
X-IronPort-AV: E=Sophos;i="5.31,362,1473120000"; d="scan'208";a="161052977"
Received: from alln-core-9.cisco.com ([173.36.13.129]) by rcdn-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 18 Oct 2016 14:02:23 +0000
Received: from XCH-ALN-015.cisco.com (xch-aln-015.cisco.com [173.36.7.25]) by alln-core-9.cisco.com (8.14.5/8.14.5) with ESMTP id u9IE2NfF010403 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 18 Oct 2016 14:02:23 GMT
Received: from xch-aln-015.cisco.com (173.36.7.25) by XCH-ALN-015.cisco.com (173.36.7.25) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Tue, 18 Oct 2016 09:02:22 -0500
Received: from xch-aln-015.cisco.com ([173.36.7.25]) by XCH-ALN-015.cisco.com ([173.36.7.25]) with mapi id 15.00.1210.000; Tue, 18 Oct 2016 09:02:22 -0500
From: "Arun Arunachalam (carunach)" <carunach@cisco.com>
To: "Gonzalo Salgueiro (gsalguei)" <gsalguei@cisco.com>
Thread-Topic: [Insipid] WG Last Call: draft-ietf-insipid-logme-reqs
Thread-Index: AQHSKUclXX38ShlVy0KkTjzLT6S1yqCukcCA
Date: Tue, 18 Oct 2016 14:02:22 +0000
Message-ID: <42DD128C-8884-4846-B100-962C993655A3@cisco.com>
References: <4C52DDE4-07CF-4F5F-8DB7-8CEB51119A6A@cisco.com> <7FA11A21-D8BC-4829-B6D5-EE2B44200D8E@cisco.com> <984E4584-C850-4198-8F78-1839A027C36A@cisco.com> <79D6B8EF-4C53-40B1-A7B9-C8C8479E153B@cisco.com> <38281C26-6FDD-4755-AFBB-F6AC93D2EC48@cisco.com> <F5241F4A-B1FE-41D9-BD20-6C31B67B80A5@cisco.com> <6EE9E419-BCE8-4E5A-B0F1-2E0AE53C8BF0@cisco.com> <C0EB6615-9318-453E-B784-ECACAAC4856C@cisco.com> <4A4F136CBD0E0D44AE1EDE36C4CD9D99C8B72473@VOEXM31W.internal.vodafone.com> <CAHH1jkMVARqfAOaABHhtOgzCE0k26reWP4f-XgaenaxbheLMCw@mail.gmail.com> <4A4F136CBD0E0D44AE1EDE36C4CD9D99C8B8E102@VOEXM31W.internal.vodafone.com> <CAHH1jkP1=jcaooqv+E8taxRZz66j5C7scUrZE4bwcoUs8BNenw@mail.gmail.com> <4A4F136CBD0E0D44AE1EDE36C4CD9D99C8BA0FAD@VOEXM31W.internal.vodafone.com> <AF3F3215-3C3E-48CE-8315-F1B9FB775B0A@cisco.com>
In-Reply-To: <AF3F3215-3C3E-48CE-8315-F1B9FB775B0A@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.150.53.37]
Content-Type: text/plain; charset="utf-8"
Content-ID: <330920B69E5C0841A8AEED5A7A94EDE5@emea.cisco.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/insipid/NZjbiYLi6SUQEMIjmbQ3kyhrRtA>
Cc: "ben@nostrum.com" <ben@nostrum.com>, "Arun Arunachalam \(carunach\)" <carunach@cisco.com>, "brett@broadsoft.com" <brett@broadsoft.com>, "Dawes, Peter, Vodafone Group" <Peter.Dawes@vodafone.com>, "pkyzivat@alum.mit.edu" <pkyzivat@alum.mit.edu>, "insipid@ietf.org" <insipid@ietf.org>, Alberto Llamas <albertollamaso@gmail.com>, "Paul Giralt \(pgiralt\)" <pgiralt@cisco.com>
Subject: Re: [Insipid] WG Last Call: draft-ietf-insipid-logme-reqs
X-BeenThere: insipid@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: SIP Session-ID discussion list <insipid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/insipid>, <mailto:insipid-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/insipid/>
List-Post: <mailto:insipid@ietf.org>
List-Help: <mailto:insipid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/insipid>, <mailto:insipid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Oct 2016 14:02:30 -0000

Sure. Thanks Gonzalo!

Thanks to all the reviewers and working group members for their great feedback !

Peter & Arun

> On Oct 18, 2016, at 9:54 AM, Gonzalo Salgueiro (gsalguei) <gsalguei@cisco.com> wrote:
> 
> Thanks, Peter.  At this point it seems that -09 addresses all issues raised during WGLC.  I will write up the PROTO and take this document forward for publication.
> 
> At this point I’d also ask the authors to please focus on finalizing the logme solution draft. Let’s raise any open issues with the WG in a timely fashion and try and build consensus on some finalized text.
> 
> Thanks,
> 
> Gonzalo
> 
>> On Oct 18, 2016, at 5:28 AM, Dawes, Peter, Vodafone Group <Peter.Dawes@vodafone.com> wrote:
>> 
>> Hi All,
>> Revision -09 (https://www.ietf.org/id/draft-ietf-insipid-logme-reqs-09.txt) is uploaded with the occurrence of “proxy” corrected to “intermediary” in REQ9 and the revised text “logging on to the SIP entity or entities that contain the logs” in clause 4.3 which acknowledges that multiple entities can contain logs.
>> 
>> Thanks,
>> Peter
>> 
>> From: Alberto Llamas [mailto:albertollamaso@gmail.com] 
>> Sent: 11 October 2016 09:01
>> To: Dawes, Peter, Vodafone Group
>> Cc: insipid@ietf.org; Gonzalo Salgueiro (gsalguei); ben@nostrum.com; pkyzivat@alum.mit.edu; brett@broadsoft.com; Arun Arunachalam (carunach); Paul Giralt (pgiralt)
>> Subject: Re: [Insipid] WG Last Call: draft-ietf-insipid-logme-reqs
>> 
>> Completely agree.
>> 
>> Albert
>> 
>> On Fri, Oct 7, 2016 at 3:56 PM, Dawes, Peter, Vodafone Group <Peter.Dawes@vodafone.com> wrote:
>> Hello Alberto,
>> Thanks for checking the latest draft. For 4.3, 5.1, I agree with your point and we can change the text from “logging on to the SIP entity that contains the logs” to “logging on to the SIP entity or entities that contain the logs”.
>> 
>> For stop events, as you suggest, a dialog end is required to be the end of logging (REQ11):
>> 
>> REQ11: "log me" marking of requests and responses MUST be applied
>>      on a per-dialog granularity.  If applied, "log me" marking MUST
>>      begin with the dialog-creating request and SHOULD continue to the
>>      dialog end. "log me" marking SHOULD be applied to in-dialog
>>      requests and responses in either direction. "log me" marking MUST
>>      NOT be stopped and re-started on a given dialog.
>> 
>> ‘stop events’ other than dialog end could be almost anything. Perhaps logging stops after 5 minutes, or when video media is removed from a session, or as soon as a call is answered. I think all of these things could be configured without new functionality so the requirements draft can give a hint at such possibilities but should not try to formalize them.
>> 
>> Regards,
>> Peter
>> 
>> 
>> From: Alberto Llamas [mailto:albertollamaso@gmail.com] 
>> Sent: 06 October 2016 13:46
>> To: Dawes, Peter, Vodafone Group
>> Cc: insipid@ietf.org; Gonzalo Salgueiro (gsalguei); ben@nostrum.com; pkyzivat@alum.mit.edu; brett@broadsoft.com; Arun Arunachalam (carunach); Paul Giralt (pgiralt)
>> 
>> Subject: Re: [Insipid] WG Last Call: draft-ietf-insipid-logme-reqs
>> 
>> Hi Peter, it looks very good. I just have couple of comments you would take in consideration:
>> 
>> 	• In points 4.3 and 5.1 the sentence:
>> 
>> logging on to the SIP entity that contains the logs
>> Maybe could be change for something like:
>> 
>> logging on to any or all SIP entity that contains the logs
>> 	• In points 4.3 and 5.3:
>> You are referring to the 'stop event' that cause logging to stop. In this draft and also in 'draft-ietf-insipid-logme-marking-05' I don't find any explanation about what a stop event is and/or how to detect it. There is a short example that a stop event could be "typically expiry of a certain amount of time". From my point of view stop events should be defined somewhere or at least define a single stop event as an end of the dialog.
>> 
>> 
>> 
>> Regards,
>> 
>> 
>> 
>> 
>> On Mon, Oct 3, 2016 at 4:09 PM, Dawes, Peter, Vodafone Group <Peter.Dawes@vodafone.com> wrote:
>> Hello All,
>> Thanks to everyone who reviewed and commented on the logme requirements draft, we have uploaded revision -08 (https://www.ietf.org/id/draft-ietf-insipid-logme-reqs-08.txt) with the changes summarized below that aim to resolve the issues raised. Some of the changes are taken from e-mail exchanges here on the insipid list but some of the text (and structure) is new so it would be good to hear whether the revised draft is now OK.
>> 
>> (a)  Expanded REQ8 (was REQ5 in revision -07) to explicitly mention gateways and B2BUAs. (commented by Alberto Llamas and Paul Giralt)
>> (b)  Example debugging procedure given its own subclause and simplified to make it clear that it is only an example and does not contain any requirements. (commented by Paul Kyzivat)
>> (c)  Requirements split into 3 groups depending on whether they apply to SIP entities, the logging procedure, or the logme marker itself. (commented by Paul Kyzivat)
>> (d)  New subclause added that defines a network boundary. (commented by Paul Kyzivat)
>> (e)  New subclause added that defines a trust domain as it applies to logme (commented by Paul Kyzivat)
>> (f)  All requirements in the descriptive clause moved to the requirements clause (commented by Paul Kyzivat)
>> (g)  Changed "proxy" to "intermediary" in requirements related to whether SIP entities are stateful or stateless in terms of their logging behaviour. (commented by Paul Kyzivat and Paul Giralt)
>> (h)  Reworded requirement on form of logged message to say that messages should be logged in the form that they appear in the signaling. (commented by Brett Tate)
>> (i)   References to draft-insipid-session-id updated to the latest version. (commented by Brett Tate)
>> (j)  Added the sentence: ""log me" marking SHOULD be applied to in-dialog requests and responses in either direction. " to the requirement about per-dialog granularity. (commented by Paul Giralt)
>> (k)  Changed wording in introduction to use a more general description than "service providers" to include enterprises and other operators of SIP networks. (commented by Paul Giralt)
>> (l)  Wording changed to "Header fields SHOULD be logged in the form in which they appear in the message, they SHOULD NOT be converted between long and compact forms..." (commented by Paul Giralt)
>> (m)  Added the sentence ""log me" marking SHOULD be applied to in-dialog requests and responses in either direction." (commented by Paul Giralt)
>> (n)  Section 6.2.1 revised to capitalize normative words (MUST etc.). Also text related to sending logged information to a server removed. (commented by Paul Giralt)
>> (o)  Changed text in "Trust Domain" subclause of the "Security" clause to say SHOULD NOT rather than "might not": "If a prior agreement to log sessions exists with the next hop network then the "log me" marker SHOULD NOT be removed". (authors change)
>> (p)  Revised the 6.2.2 "Sending Logged Information" to "Logged Information" and changed the description to state that unauthorized parties should not have access to the logged information. (Related to comment by Paul Giralt on solutions draft)
>> (q)  Changed the format of cross references so that the reference name is not repeated. (Related to comment by Paul Giralt on solutions draft)
>> (r)  REQ5 (was REQ8 in revision -07) updated to have test identifier as a random value instead of human readable name due to Session-ID privacy requirements defined in REQ 4 of RFC7206. (commented by Paul Giralt)
>> (s)  REQ9 (was REQ6 in revision -07) updated with an additional use case in which intermediaries continue to mark logme for related sessions. (commented by Paul Giralt)
>> (t)  Acknowledgments updated to include reviewers who provided comments during last call.
>> 
>> 
>> Thanks and regards,
>> Peter (on behalf of the co-authors)
>> 
>> 
>> 
>> From: Paul Giralt (pgiralt) [mailto:pgiralt@cisco.com]
>> Sent: 29 September 2016 19:15
>> To: Arun Arunachalam (carunach)
>> Cc: Gonzalo Salgueiro (gsalguei); insipid@ietf.org; ben@nostrum.com; Dawes, Peter, Vodafone Group
>> Subject: Re: [Insipid] WG Last Call: draft-ietf-insipid-logme-reqs
>> 
>> Looks good to me. 
>> 
>> -Paul
>> 
>> On Sep 29, 2016, at 2:13 PM, Arun Arunachalam (carunach) <carunach@cisco.com> wrote:
>> 
>> Thanks Paul !
>> 
>> (1) Agree, let’s have a random test id given REQ 4 of RFC 7206.
>> 
>> (2) We can update REQ 6 as shown below to incorporate your comment:
>> 
>> REQ6: A SIP intermediary MAY insert a "log me" marker into requests and
>>      responses.  The typical case for which a intermediary needs to insert a
>>      "log me" marker is for compatibility with UAs that have not
>>      implemented "logme" marking, i.e. when a UA has not marked a
>>      request or when responses received on a dialog of interest for
>>      logging do not contain an echoed "log me" marker.  Another use 
>>      case is when the session origination UA that inserted log me marker
>>      is no longer participating in the session (e.g: call transfer scenarios)
>>      and the intermediary adds "log me" marker in related sessions to enable
>>      end-to-end signaling analysis. In these cases, the entity that inserts a
>>      "log me" marker is stateful inasmuch as it must remember when a dialog is
>>      of interest for logging.  An entity that inserts a "log me" marker 
>>      SHOULD also log the SIP request or response as per REQ4.
>> 
>> 
>> Arun
>> 
>> 
>> 
>> 
>> On Sep 29, 2016, at 11:57 AM, Paul Giralt (pgiralt) <pgiralt@cisco.com> wrote:
>> 
>> Hi Arun, 
>> 
>> Sorry for not replying earlier. Inline… 
>> 
>> 
>> On Sep 22, 2016, at 10:13 AM, Arun Arunachalam (carunach) <carunach@cisco.com> wrote:
>> 
>> Hi Paul,
>> 
>> Please see inline.
>> 
>> On Sep 14, 2016, at 7:30 PM, Paul Giralt (pgiralt) <pgiralt@cisco.com> wrote:
>> 
>> Thanks Arun. See below… 
>> 
>> On Sep 14, 2016, at 6:36 PM, Arun Arunachalam (carunach) <carunach@cisco.com> wrote:
>> 
>> REQ8: Should update to latest session-id draft. Also, I have some concerns about using Session-ID as the test case identifier. The Session-ID can change (in fact will change for every session because the initial INVITE will have a null remote UUID). 
>> 
>> How about using the local UUID of the Session-ID generated by the originating UA / proxy as a test identifier (if the admin wants the system to auto-generate a test ID)?
>> 
>> 
>> I think using just the local UUID makes more sense because this will be consistent throughout the life of the session as long as the originating endpoint is still in the call. It’s possible that some B2BUA could remove the originator from the session (e.g. call gets transferred) but at that point, the device that requested the session be logged is no longer in an active session anyway. 
>> 
>> That said, what if the admin doesn’t want the system to auto-generate a test ID? Where would that go? The local UUID must be in a very specific format to comply with drafy-ietf-insipid-session-id, so you can’t put any arbitrary text in for the local UUID. I think either you need to stipulate that the test ID will always be automatically generated or find some other place to put it. 
>> 
>> I think there is value in giving the admin the ability to specify their own identifier.
>> 
>> One option would be to have a user defined test identifier as shown below:
>> 
>>   test-identifier = (alphanum / "_") *(alphanum "_")
>> 
>> If the user defined test identifier is not present, the log analysis server would use the local UUID of the originator’s Session-ID as the test identifier.
>> 
>> 
>> 
>> I like this in concept. The concern I have is whether it meets the privacy requirements stipulated for additional parameters in the Session-ID header. If someone puts a value of the person’s name or perhaps a ticket number, that could be considered personally identifiable information which is not allowed to be present in the Session-ID header. I’m not sure how we’d reconcile these requirements. We may have to just live with the test ID being something random. 
>> 
>> 
>> 
>> 
>> Also, should intermediaries be required to or at least allowed to continue indicating log me markings on other messages related to the session even if the originating device is no longer participating in the session? 
>> 
>> This will be useful to perform an end-to-end call flow analysis. 
>> 
>> The good thing about originator based log me marking is the “ability / control” to disable logging simply by disconnecting the call at the originator (the device requesting to enable logging). 
>> 
>> This control no longer exists if we allow the intermediaries to continue marking even after the originator is no longer in the session.
>> 
>> I guess this could be left up to the implementation of the intermediary. It is free to add a logme marker to whatever it wants to, so even if the originator drops off, there is no reason why it can’t add the identifier to related sessions. This is probably something worth mentioning in the draft, but might not be necessary in the requirements doc. 
>> 
>> -Paul
>> 
>> 
>> 
>> 
>> 
>> 
>> -- 
>> Alberto Llamas
>> Phone: +1-786-805-6003
>> Telecommunications Engineer
>> Digium Certified Asterisk Professional (dCap)
>> 
>> 
>> 
>> 
>> -- 
>> Alberto Llamas
>> Phone: +1-786-805-6003
>> Telecommunications Engineer
>> Digium Certified Asterisk Professional (dCap)
>