Re: [ippm] Questions on draft-morton-ippm-capacity-metric-protocol-01
Lincoln Lavoie <lylavoie@iol.unh.edu> Wed, 20 October 2021 19:53 UTC
Return-Path: <lylavoie@iol.unh.edu>
X-Original-To: ippm@ietfa.amsl.com
Delivered-To: ippm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1844A3A08A9 for <ippm@ietfa.amsl.com>; Wed, 20 Oct 2021 12:53:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.989
X-Spam-Level:
X-Spam-Status: No, score=-1.989 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_REMOTE_IMAGE=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iol.unh.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nxl2XEW_Oat0 for <ippm@ietfa.amsl.com>; Wed, 20 Oct 2021 12:53:26 -0700 (PDT)
Received: from mail-ed1-x52b.google.com (mail-ed1-x52b.google.com [IPv6:2a00:1450:4864:20::52b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 70CD43A1031 for <ippm@ietf.org>; Wed, 20 Oct 2021 12:52:56 -0700 (PDT)
Received: by mail-ed1-x52b.google.com with SMTP id r4so1162888edi.5 for <ippm@ietf.org>; Wed, 20 Oct 2021 12:52:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iol.unh.edu; s=unh-iol; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=YZhbdvOP7Itfmkb4P0c4+W3j1P8iPLciE8XS7iYF8mQ=; b=aoSy7+B4Mp9ZEx3Eo49MWV1fvcJCa/+OcbgTY/klf9Xk00i2v3sBwH/eJBpIY0Ue17 p1XkLvXqX9SEKofPsf2BRTdzAuqk9sbCiy02Gj4WdwYeQHWXvFUTh2mq1pf7KxtKVA8b o0LYfAIs1yEnZxUihUjRBiIVphCBm/ex50uoc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=YZhbdvOP7Itfmkb4P0c4+W3j1P8iPLciE8XS7iYF8mQ=; b=Z/JVYgeKU2mLEZWPLD0QPqFwFdU83wwK1UXxlkX2q+xxxQGbxgjKGSeKeeh2Uo8nru KWmjj7CzatXeT3mRVNUp9c8ZewMYBYT9OUO52NBgtWnqB5zMbhvl5kbeSKl9GpoEqeFA xDkJLmNNzLdqvEhW7ljwN5hVR9G2GKHl/yzlq4NdBRHKgeGDUNeVbpWdgQSBYbdRSuhp Zb8LqLetO7R5EY0MsR4JV1wEakDdECfSt+Yg74x+iIKGoLUZi//Mc559xMYl9phjpaZr UIudZ170BztHU/F/rn8R4dtq0dw9Gty3mQXkP0QUabkd+z7D+igOdMnu1wuHkgrPbnkg iuKQ==
X-Gm-Message-State: AOAM5322a3EtD3o9J/m2yM0kHVvRBuED7PUxDmomyMypGJmGLIPq198F +B4kh00oT5Sy+pQRoCLCtYjw+L4j+TrX+UfCrrTgYDxdcSI=
X-Google-Smtp-Source: ABdhPJxg3T8e2QSKALS03d0AjCaKGamlzuW1dVK5xXdC1o6O+Q7FU4pG0XsA0xQ0/67xDG1exk3I3Gex3tTaQj/7yOc=
X-Received: by 2002:a17:906:ae53:: with SMTP id lf19mr1681679ejb.97.1634759572370; Wed, 20 Oct 2021 12:52:52 -0700 (PDT)
MIME-Version: 1.0
References: <SJ0PR02MB78533269DB297F70106A8FE1D3BD9@SJ0PR02MB7853.namprd02.prod.outlook.com>
In-Reply-To: <SJ0PR02MB78533269DB297F70106A8FE1D3BD9@SJ0PR02MB7853.namprd02.prod.outlook.com>
From: Lincoln Lavoie <lylavoie@iol.unh.edu>
Date: Wed, 20 Oct 2021 15:52:41 -0400
Message-ID: <CAOE1vsP=pKgOx0g1Jj4e73wSaDn15U4dDZ7rSwT6DqKgLe-VvA@mail.gmail.com>
To: IETF IPPM WG <ippm@ietf.org>
Cc: "MORTON JR., AL" <acmorton@att.com>
Content-Type: multipart/alternative; boundary="0000000000009ad27605cece1fbd"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ippm/qDDz0AsLgL8F4BPGGpYW7I56ma8>
Subject: Re: [ippm] Questions on draft-morton-ippm-capacity-metric-protocol-01
X-BeenThere: ippm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF IP Performance Metrics Working Group <ippm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ippm>, <mailto:ippm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ippm/>
List-Post: <mailto:ippm@ietf.org>
List-Help: <mailto:ippm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ippm>, <mailto:ippm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Oct 2021 19:53:32 -0000
Hello Al (and everyone), I give a quick read through and have some comments and questions on the current draft. Section 3, Phase Item 1: It’s not clear if the expectation is for alignment of the mentioned items, i.e. both the client and server must support jumbo datagrams, or for a mismatch the connection is rejected. Put another way, is this a negotiation phase, where options are mutually agreed between client and server? This is more clear in the setup section below, in terms of an “AND” type requirement. Section 3, Phase Item 2: The set up of firewall rules. It is unclear if this is a requirement or informative, such that linkage between the client implementation and a device's firewall might be required. Similarly, careful security considerations should be taken here, akin to duration of those “openings” Should a comment be added to Item 4 about closing of firewall rules, etc. I'm thinking about this separately then the opening of a socket / network port and the creation of the actual firewall rule allowing access to that port. In section 7.1, is the watchdog timer updated each time a test PDU is received, or each time a test PDU or status message is received. In the case of downstream testing, for example, the server is sending down test PDUs and receiving upstream status information from the client. If the client or its connection were to die, the server should be able to detect this, from a lack of upstream status messages. It is not clear if / how this is accomplished only at the receiver of test PDUs. For the Setup Command Response Codes in Section 5, these seem to be indicated as an ENUM type parameter, but as an example, what if there were multiple conditions to be indicated to the client. Could these be made into “flags” such that multiple could be set. The consequence would be limiting the maximum number within the 8-bit size (which is already exceeded). Currently none of the status messages are protected against bit errors (i.e. no checksum or similar). Would there be benefit in adding that level of protection to the control channel? This would protect against a bit flip that could cause "misalignment" between what the client / server are "doing." Also within the Section 5 Setup Command I’m guessing the authDigest of the setup request message is intended as a sort of “shared password” the valid clients would use to identify themselves. Would it make sense to mention, as an informative comment it might be worth setting more unique credentials per client via an out of band mechanism, like TR-069, assuming tests are being directed by someone like a service provider? I know security is a much larger topic, but discouraging any type of shared credential is always good practice in my opinion. Please let me know if there are any other ways I can help out, great start on the protocol! Cheers, Lincoln On Tue, Oct 19, 2021 at 6:32 PM MORTON JR., AL <acmorton@att.com> wrote: > Hi IPPM, > > Len Ciavattone and I am looking for some feedback on our protocol [0] > designed to help measure the Maximum IP-Layer Capacity Metric (which will > be published as an RFC shortly). > > We are asking folks to take a look at the draft, because we are fairly > sure you will have some questions! > > One area where we know more development is required is the Modes of > operation, which essentially describes how the different aspects/exchanges > of the protocol will be made secure. This is pretty-much a green-field in > our specification, so suggestions are very welcome. Section 10 currently > describes the different modes that we imagined to be useful (A through F > below), but practical aspects of any proposed solution might indicate modes > that should be combined, split-up, or new modes. > > So, please give the draft and/or the list below a look, and let us know > what you think. > > thanks! > Al > > > [0] > https://datatracker.ietf.org/doc/html/draft-morton-ippm-capacity-metric-protocol-01.txt > > 3. Client-server authentication and integrity protection for > feedback messages conveying measurements is RECOMMENDED. To > accomodate different host limitations and testing circumstances, > different modes of operation are recommended: > > A. Un-authenticated mode (for all phases) > AND > B. OPTIONAL Authenticated set-up only > SHA-256 HMAC time-window verification (5 min time stamp verification) > (could add silent failure option) > > -=-=-=-=-=-=-=-=-=- > > C. Encrypted setup and test-activation > (currently using OpenSSL Library, so KISS, but may be too slow for > test packets) > > -=-=-=-=--=- Old/low-power host performance impacts -=-=-=-=-=-=- > > D. Encrypted feedback messages > > E. Integrity protection for test packets SHA-256 HMAC > > F. Encrypted test packets (maybe also valuable to defeat compression on > links) > > _______________________________________________ > ippm mailing list > ippm@ietf.org > https://www.ietf.org/mailman/listinfo/ippm > -- *Lincoln Lavoie* Principal Engineer, Broadband Technologies 21 Madbury Rd., Ste. 100, Durham, NH 03824 lylavoie@iol.unh.edu https://www.iol.unh.edu +1-603-674-2755 (m) <https://www.iol.unh.edu>
- Re: [ippm] Questions on draft-morton-ippm-capacit… MORTON JR., AL
- [ippm] Questions on draft-morton-ippm-capacity-me… MORTON JR., AL
- Re: [ippm] Questions on draft-morton-ippm-capacit… Lincoln Lavoie
- Re: [ippm] Questions on draft-morton-ippm-capacit… Ruediger.Geib
- Re: [ippm] Questions on draft-morton-ippm-capacit… can desem
- Re: [ippm] Questions on draft-morton-ippm-capacit… MORTON JR., AL
- Re: [ippm] Questions on draft-morton-ippm-capacit… MORTON JR., AL
- Re: [ippm] Questions on draft-morton-ippm-capacit… Ruediger.Geib
- Re: [ippm] Questions on draft-morton-ippm-capacit… Greg Mirsky