Re: [Int-area] The small address use case in FlexIP
Kiran Makhijani <kiranm@futurewei.com> Tue, 09 February 2021 04:47 UTC
Return-Path: <kiranm@futurewei.com>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A8A133A18F4; Mon, 8 Feb 2021 20:47:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.089
X-Spam-Level:
X-Spam-Status: No, score=-2.089 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XULJ2e1F4K_F; Mon, 8 Feb 2021 20:47:47 -0800 (PST)
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (mail-mw2nam10on2108.outbound.protection.outlook.com [40.107.94.108]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8FDBB3A18F3; Mon, 8 Feb 2021 20:47:47 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=edCwKTBpbrJILMtapdyI5UowRxTIyeDog6HPLdgzUX0IR7+bZGSZsibPb95fTjVWVcS5lYVefVv4KKmna5vmpH+kRImh5StQ67gOcK5zgXuntnCE4dU2SzRckSKDJ8ZYOixYwyEaw8ecFPzdUBTCpYWcZlg5xf0KtOSRE5B0sAfhQxVvInJ+EGIJksayU2seaVEug7OYtwxXFHcSLafZMyx+64mo8RgEqssp6vwPs4tpTDV42317Ft81ZQrFa8W66LQMpwcZNZkCx/v5z9y6auyoOV96w/Ss0Z76OK2U+JR6rHdEGdCu1h8EdXkvbclaYKNFOyGpBqsOuYRpEC8kIw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NbCApFdMYUr6Kc7Bk/HKOzHLB6t661ZkEcxMS0cjWQE=; b=PbQpgJdYpQwW0fOrKTDn0ih6CB1spSWgepBGyCl8bFN4Ku9sQnKbthbe0j09/dlfOuXWmlFCwpbufX/Kz3nJg7MIBKgiAgHgr7c2RL8yn/RPuwerFEE5eUaMveZ75WPeRt25ETcwYSmI1x/kVuegzRpAAMnfEGTOydgYVLjrnrg/m4GuAsrSd4guZ7rZfMihhnzHhvNK06PQtVE8VDUvSJnigq6LwlAwnka+Vu97wmdeqtBNEASzMrAkfcZIdMIRUw+MBi1HJ9Ua+zRoAXHsUrKJ7HdYYXmKz68tEJA/nskiqjpKoyZXzESIoZTO1qFKUr19RwQUva9yzTCH1Zg3yQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=NbCApFdMYUr6Kc7Bk/HKOzHLB6t661ZkEcxMS0cjWQE=; b=OkdaUQ0Dwy2YjS25ZeY9lUIEs80Mj2km9WODxHWEiy3QLWDYH384iiB7fdLcwNLiW7zZs3ixPmBcfQVt2ggomr30BvqHIYA+YHtoGCiJospZJk839tVWyuKVLBMVa+Pz6h2HgourQMfJiEnjwmyx8TROfqk7znrJUIbcx2X4XDQ=
Received: from (2603:10b6:a03:107::31) by BY5PR13MB2919.namprd13.prod.outlook.com (2603:10b6:a03:188::28) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3846.10; Tue, 9 Feb 2021 04:47:44 +0000
Received: from BYAPR13MB4197.namprd13.prod.outlook.com ([fe80::9572:7eaf:9d32:31ec]) by BYAPR13MB4197.namprd13.prod.outlook.com ([fe80::9572:7eaf:9d32:31ec%5]) with mapi id 15.20.3846.025; Tue, 9 Feb 2021 04:47:44 +0000
From: Kiran Makhijani <kiranm@futurewei.com>
To: Stewart Bryant <stewart.bryant@gmail.com>, Jiayihao <jiayihao@huawei.com>
CC: "draft-jia-scenarios-flexible-address-structure@ietf.org" <draft-jia-scenarios-flexible-address-structure@ietf.org>, int-area <int-area@ietf.org>, "draft-jia-flex-ip-address-structure@ietf.org" <draft-jia-flex-ip-address-structure@ietf.org>
Thread-Topic: [Int-area] The small address use case in FlexIP
Thread-Index: Adb+Adw1h3hprYj0RAOA+X+FLfv9ggADB8wAACP6K0U=
Date: Tue, 09 Feb 2021 04:47:43 +0000
Message-ID: <BYAPR13MB41971789F8DEF433558B9E4BD98E9@BYAPR13MB4197.namprd13.prod.outlook.com>
References: <1749aa4fe2f44eb8852d1914d2623cb3@huawei.com>, <1A1B8B65-5806-42FA-9E4D-893855653E98@gmail.com>
In-Reply-To: <1A1B8B65-5806-42FA-9E4D-893855653E98@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=futurewei.com;
x-originating-ip: [73.202.182.183]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b7688a5b-050e-4930-f8ee-08d8ccb5d6fe
x-ms-traffictypediagnostic: BY5PR13MB2919:
x-microsoft-antispam-prvs: <BY5PR13MB2919129A0C5D9373ED8A759FD98E9@BY5PR13MB2919.namprd13.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR13MB4197.namprd13.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(136003)(39840400004)(376002)(396003)(346002)(7696005)(66446008)(66946007)(66556008)(76116006)(64756008)(316002)(86362001)(110136005)(66476007)(54906003)(478600001)(9686003)(33656002)(6506007)(186003)(26005)(4326008)(8936002)(53546011)(2906002)(9326002)(71200400001)(8676002)(5660300002)(52536014)(55016002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_BYAPR13MB41971789F8DEF433558B9E4BD98E9BYAPR13MB4197namp_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BYAPR13MB4197.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b7688a5b-050e-4930-f8ee-08d8ccb5d6fe
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Feb 2021 04:47:43.9617 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: g4NTseAbtdD8Nw9nqhuY2cDNgBSroiSKUMjFglfTg5RZZvlk3GsngwUZVOsvPE2G5hCCNs2KzF3EYRuj1xy9iQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR13MB2919
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/vSoJ6dJXsqdktUSTHn6by4D3p9s>
Subject: Re: [Int-area] The small address use case in FlexIP
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Feb 2021 04:47:50 -0000
Hi Stewart, Isn’t it good to have separate crypto functions for the payload and the address? With separate public keys, for payload they are only exchanged between the 2 end points and for addresses by select entities responsible for forwarding. -Kiran From: Int-area <int-area-bounces@ietf.org> on behalf of Stewart Bryant <stewart.bryant@gmail.com> Date: Monday, February 8, 2021 at 03:32 To: Jiayihao <jiayihao@huawei.com> Cc: draft-jia-scenarios-flexible-address-structure@ietf.org <draft-jia-scenarios-flexible-address-structure@ietf.org>, int-area <int-area@ietf.org>, draft-jia-flex-ip-address-structure@ietf.org <draft-jia-flex-ip-address-structure@ietf.org> Subject: Re: [Int-area] The small address use case in FlexIP The problem with this approach is that you only secure the address and not the rest of the packet, so you end up with two crypto functions to execute. Also there are other contenders for the suffix such as the arrival action as per network programming, and the perhaps per hop action as per foam. Now I suppose that this simply means a much longer address and the semantics of the stuff that follows the prefix is defined by the address, but then I think that it is better to simply call that a blob defined by the prefix rather with no formal semantics in the protocol and leave the definition of the blob to the network application designers. There is clearly quite a lot to study in terms of multi-semantics which I think really should be taken out and put in its own draft. - Stewart On 8 Feb 2021, at 10:05, Jiayihao <jiayihao@huawei.com<mailto:jiayihao@huawei.com>> wrote: As for address embedding public key, it need not to carry any algorithm in the address. It would be much better to carry the public key by address, while indicate the algorithm by protocol. I think CGA is a good instance for involve address in cryptography. For forwarding efficiency, a public key can be only set as a suffix, thus forwarder could process the prefix only, and thus the cryptography related stuff may not hinder the looking up efficiency.
- [Int-area] The small address use case in FlexIP Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Behcet Sarikaya
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Lin Han
- Re: [Int-area] The small address use case in Flex… Jiayihao
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Dirk Trossen
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- [Int-area] 答复: The small address use case in Flex… Jiayihao
- Re: [Int-area] [Flexip] The small address use cas… Liguangpeng (Roc, Network Technology Laboratory)
- Re: [Int-area] The small address use case in Flex… Jiayihao
- Re: [Int-area] The small address use case in Flex… Stewart Bryant
- Re: [Int-area] The small address use case in Flex… Jiayihao
- Re: [Int-area] The small address use case in Flex… Kiran Makhijani
- Re: [Int-area] The small address use case in Flex… Dirk Trossen