Re: [Int-area] The small address use case in FlexIP
Jiayihao <jiayihao@huawei.com> Mon, 08 February 2021 10:05 UTC
Return-Path: <jiayihao@huawei.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E4D3B3A1569; Mon, 8 Feb 2021 02:05:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qm6QFINUF6YB; Mon, 8 Feb 2021 02:05:11 -0800 (PST)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 057D53A156A; Mon, 8 Feb 2021 02:05:11 -0800 (PST)
Received: from fraeml703-chm.china.huawei.com (unknown [172.18.147.226]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4DZ1gb0pQwz67gQM; Mon, 8 Feb 2021 17:58:35 +0800 (CST)
Received: from dggemi709-chm.china.huawei.com (10.3.20.108) by fraeml703-chm.china.huawei.com (10.206.15.52) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2106.2; Mon, 8 Feb 2021 11:05:03 +0100
Received: from dggemi759-chm.china.huawei.com (10.1.198.145) by dggemi709-chm.china.huawei.com (10.3.20.108) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2106.2; Mon, 8 Feb 2021 18:05:01 +0800
Received: from dggemi759-chm.china.huawei.com ([10.1.198.145]) by dggemi759-chm.china.huawei.com ([10.1.198.145]) with mapi id 15.01.2106.006; Mon, 8 Feb 2021 18:05:01 +0800
From: Jiayihao <jiayihao@huawei.com>
To: Stewart Bryant <stewart.bryant@gmail.com>
CC: int-area <int-area@ietf.org>, "draft-jia-flex-ip-address-structure@ietf.org" <draft-jia-flex-ip-address-structure@ietf.org>, "draft-jia-scenarios-flexible-address-structure@ietf.org" <draft-jia-scenarios-flexible-address-structure@ietf.org>
Thread-Topic: The small address use case in FlexIP
Thread-Index: Adb+Adw1h3hprYj0RAOA+X+FLfv9gg==
Date: Mon, 08 Feb 2021 10:05:01 +0000
Message-ID: <1749aa4fe2f44eb8852d1914d2623cb3@huawei.com>
Accept-Language: en-US
Content-Language: zh-CN
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.108.167.116]
Content-Type: multipart/alternative; boundary="_000_1749aa4fe2f44eb8852d1914d2623cb3huaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/7VRkOzDq3gp5X6bPB9wKL1Aw2oE>
Subject: Re: [Int-area] The small address use case in FlexIP
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Feb 2021 10:05:14 -0000
Hi Stewart, As for address embedding public key, it need not to carry any algorithm in the address. It would be much better to carry the public key by address, while indicate the algorithm by protocol. I think CGA is a good instance for involve address in cryptography. For forwarding efficiency, a public key can be only set as a suffix, thus forwarder could process the prefix only, and thus the cryptography related stuff may not hinder the looking up efficiency. While for the prefix table lookup, method like Multi-Entrance-Trie (METrie) can be used to support fast table lookup (see https://dl.acm.org/doi/pdf/10.1145/3341558.3342204), the evaluation in this paper shows it is possible to achieve efficient packet forwarding for length variable IP address. Thanks, Yihao 发件人: Stewart Bryant [mailto:stewart.bryant@gmail.com] 发送时间: 2021年2月5日 22:59 收件人: Jiayihao <jiayihao@huawei.com> 抄送: Stewart Bryant <stewart.bryant@gmail.com>; int-area <int-area@ietf.org>; flexip@ietf.org; draft-jia-flex-ip-address-structure@ietf.org; draft-jia-scenarios-flexible-address-structure@ietf.org; sarikaya2012@gmail.com; Lin Han <lin.han@futurewei.com> 主题: Re: The small address use case in FlexIP On 5 Feb 2021, at 12:06, Jiayihao <jiayihao@huawei.com<mailto:jiayihao@huawei.com>> wrote: - Indeed, the network scale of limited domain is supposed to be less that IPv6, but it doesn't mean the address space should be strictly less than 128-bit. If the space of the address is abundant enough, the public key could be embedded without truncation (compare to CGA in IPv6) for certain security purpose. Interesting, what are the advantages in adding the signature of the address in the address as opposed to carrying it in a different field? The disadvantage is that you bind the address to the signature algorithm which you would not want to do since you would expect to change the signature algorithm during the lifetime of the protocol. Also would you really want to feed the signature into the longest match engine? Of course you could and there are some advantages in that you look up both the address and it signature, but I think you loose longest match capability and you significantly increase the size of the TCAM or other FIB design memory, and that memory is very expensive as it determines the line rate of the forwarder. So this points back to the need for a holistic discussion of what we are trying to achieve, the extent to which modifying existing protocols satisfies that need, and whether (given the presupposed need for a gateway) we should be looking for a single protocol, a family of protocols, or an adaptable protocol. I don’t think we can design the addressing system in the absence of a discussion on those points. Best regards Stewart
- [Int-area] The small address use case in FlexIP Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Behcet Sarikaya
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Lin Han
- Re: [Int-area] The small address use case in Flex… Jiayihao
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Dirk Trossen
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- [Int-area] 答复: The small address use case in Flex… Jiayihao
- Re: [Int-area] [Flexip] The small address use cas… Liguangpeng (Roc, Network Technology Laboratory)
- Re: [Int-area] The small address use case in Flex… Jiayihao
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Jiayihao
- Re: [Int-area] The small address use case in Flex… Kiran Makhijani
- Re: [Int-area] The small address use case in Flex… Dirk Trossen