[ippm] DEX Draft Updated

Tal Mizrahi <tal.mizrahi.phd@gmail.com> Thu, 01 July 2021 12:54 UTC

Return-Path: <tal.mizrahi.phd@gmail.com>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id DDF933A0CA4; Thu, 1 Jul 2021 05:54:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id HDom9JN6lnb5; Thu, 1 Jul 2021 05:54:46 -0700 (PDT)
Received: from mail-wr1-x435.google.com (mail-wr1-x435.google.com [IPv6:2a00:1450:4864:20::435]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 56B9C3A0CA8; Thu, 1 Jul 2021 05:54:46 -0700 (PDT)
Received: by mail-wr1-x435.google.com with SMTP id u8so8075124wrq.8; Thu, 01 Jul 2021 05:54:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=0ov/y4FAie7GlFtHztRBMBt7Vk6Q7M0/xdwXWP8I13Q=; b=BPC5tRdYLr5/3hHFWkNhLt+LkZAfGEvhwfjNTNtKZZyTnVE3Mq1yNIsZE0pr13KaLH 81iQo9O8Uvhl+B5/8zQEkucpfyfTvKjCMYG2RN7UvPd7RL1Mzf5pjSf4P3YyMCNCzTCB c3aSxg3FylwR0C4qGxnrepEhtxmzsOntSRMAXUFjirvwfyMJrbUGBhsJM9K/vuXCtsLB UnP7XdmLcVJkoBBWSKmPZxVvksZHykvbGzlPY1W/uyEJL0vXhvNh7RhkhoAbNLhlBYg5 HCacrvsOdsLzCfexPdoyTOPYSn8043MQjzCFWjAFLTxmxhyKoA1CBf9Pr4h2R6QcIMKI e4sA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=0ov/y4FAie7GlFtHztRBMBt7Vk6Q7M0/xdwXWP8I13Q=; b=F81sxl77j2usF/GDToCkP6SjY91cY5sjhDEo3Y6OHb7uWtj5laUUvqsMGuRbCT0chS NNfAo5+mCYhJO0ocYJmUJqtwVkwkbeCG+eEX+8whVqkM1hHGB8yev+I8T8tVrD+EdtUx +1cw1DehBINxhGBfKoLpQx/ZXVP/kBbPqcUyGaZfo822gdR8SxQg8kjwLVZmz4CRztmG jNG5NUi/+2yMuWCoLwDF455uxqwk9u3Q2kQFYh5UFhOPXsrvXWsBX1HdLf8JT4kNbpz7 WK76YgRiY9sOsAyEcS2q86DkTU3vOwjNGlW5l4yI5NbsYTIVX3oJ7rBmDsAwNZ0+Sbti BNAQ==
X-Gm-Message-State: AOAM532nzURNgLLEbI/1YRcotYzAQWLcErFJnbsEigTnZEzsz75Z5e3K BCEspKmn8fD5RbEgt0j2PiD499/j+6GGERmZl38wNuBW/uA=
X-Google-Smtp-Source: ABdhPJyzkn/OoFxWn8cLuMKD+r3AYWWbMryVPtvNM/9ufDeRluV2C0N6p210Z1hNSCSRbhsqofNhisqzDTVrS67h/SA=
X-Received: by 2002:a5d:6e81:: with SMTP id k1mr45703767wrz.144.1625144083637; Thu, 01 Jul 2021 05:54:43 -0700 (PDT)
MIME-Version: 1.0
References: <162514156275.10687.5210311195217579136@ietfa.amsl.com>
In-Reply-To: <162514156275.10687.5210311195217579136@ietfa.amsl.com>
From: Tal Mizrahi <tal.mizrahi.phd@gmail.com>
Date: Thu, 1 Jul 2021 15:54:30 +0300
Message-ID: <CABUE3Xki7N77Z1cKUtg6Y_VcGnH4nZ_b7ae6LcTxLUiac==Dvg@mail.gmail.com>
To: IETF IPPM WG <ippm@ietf.org>, IPPM Chairs <ippm-chairs@ietf.org>, Martin Duke <martin.h.duke@gmail.com>, Mirja Kuehlewind <ietf@kuehlewind.net>
Cc: Barak Gafni <gbarak@nvidia.com>, Frank Brockners <fbrockne@cisco.com>, Haoyu Song <haoyu.song@huawei.com>, Ramesh Sivakolundu <sramesh@cisco.com>, Shwetha Bhandari <shwetha.bhandari@thoughtspot.com>, Tianran Zhou <zhoutianran@huawei.com>, Zhenbin Li <lizhenbin@huawei.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/JNiX94A7fN6tUPsA-VQizQEBWms>
X-Mailman-Approved-At: Thu, 01 Jul 2021 07:03:07 -0700
Subject: [ippm] DEX Draft Updated
X-BeenThere: ippm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ippm>, <mailto:ippm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm/>
List-Post: <mailto:ippm@ietf.org>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ippm>, <mailto:ippm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Jul 2021 12:54:51 -0000


The draft was significantly revised (see links below) following the
security-related feedback from the last IETF meeting, and based on
further discussion that were held at the IOAM design team meetings.

Thanks again, Martin and Mirja, for your feedback.

The main changes compared to the previous version:
- Two sections were added, "DEX Packet Selection", and "Responding to
the DEX Trigger". These two sections are specifically intended to
address Martin's feedback regarding amplification attacks.
- New requirements were added to the security consideration section in
response to the comments in the last IETF meeting:
  - Selective DEX at IOAM encapsulating nodes - in response to
Martin's comments.
  - Rate limiting at IOAM transit nodes - in response to Martin's comments.

  - Avoid pushing the DEX option onto exported packets - in response
to Martin's comments.

  - Only export to trusted nodes - in response to Mirja's comments.

Please let us know if there are further comments, and specifically
regarding the security aspects of the draft.


On Thu, Jul 1, 2021 at 3:12 PM <internet-drafts@ietf.org> wrote:
> A new version of I-D, draft-ietf-ippm-ioam-direct-export-04.txt
> has been successfully submitted by Tal Mizrahi and posted to the
> IETF repository.
> Name:           draft-ietf-ippm-ioam-direct-export
> Revision:       04
> Title:          In-situ OAM Direct Exporting
> Document date:  2021-07-01
> Group:          ippm
> Pages:          12
> URL:            https://www.ietf.org/archive/id/draft-ietf-ippm-ioam-direct-export-04.txt
> Status:         https://datatracker.ietf.org/doc/draft-ietf-ippm-ioam-direct-export/
> Htmlized:       https://datatracker.ietf.org/doc/html/draft-ietf-ippm-ioam-direct-export
> Diff:           https://www.ietf.org/rfcdiff?url2=draft-ietf-ippm-ioam-direct-export-04
> Abstract:
>    In-situ Operations, Administration, and Maintenance (IOAM) is used
>    for recording and collecting operational and telemetry information.
>    Specifically, IOAM allows telemetry data to be pushed into data
>    packets while they traverse the network.  This document introduces a
>    new IOAM option type called the Direct Export (DEX) option, which is
>    used as a trigger for IOAM data to be directly exported or locally
>    aggregated without being pushed into in-flight data packets.  The
>    exporting method and format are outside the scope of this document.
> The IETF Secretariat