IETF Logo Mail Archive

Re: [IPsec] Discussion about solving ESP limitations with parallel processing, handling QoS classes etc.

"Paul Ponchon (pponchon)" <pponchon@cisco.com> Thu, 27 October 2022 12:23 UTC

Return-Path: <pponchon@cisco.com>
X-Original-To: ipsec@ietfa.amsl.com
Delivered-To: ipsec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE477C14F746 for <ipsec@ietfa.amsl.com>; Thu, 27 Oct 2022 05:23:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.603
X-Spam-Level:
X-Spam-Status: No, score=-14.603 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=BUhvvD2o; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=jDX5fVDj
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 946P64x5w2s7 for <ipsec@ietfa.amsl.com>; Thu, 27 Oct 2022 05:23:47 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D87EFC14F727 for <ipsec@ietf.org>; Thu, 27 Oct 2022 05:23:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14468; q=dns/txt; s=iport; t=1666873426; x=1668083026; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=qL96bj7Xf/HgoRxlTuWlws+Ad05Smau6GLBs3rLHwK0=; b=BUhvvD2ovquomjF/V65X2Lz9jdFx88oFqyDGTFuMUZvMOC8B11l4cvJt T/o4OSzODNSaYcm9V3ExZyGbg6W3KTeu4gDV79696IuPotkFD1jp8BVbF NN6CiZosRWuTMVl4guD/7bWdCqbN82tikmhRlpytNVZ6qjh7jcoF/MI+F E=;
IronPort-PHdr: A9a23:VPZqbx1LG+llCHrDsmDPr1BlVkEcU/3cMg0U788hjLRDOuSm8o/5NUPSrfNqkBfSXIrd5v4F7oies63pVWEap5rUtncEfc9AUhYfgpAQmAotSMeOFUz8KqvsaCo3VMRPXVNo5Te1K09QTc3/fFbV5Ha16G16Jw==
IronPort-Data: A9a23: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
IronPort-HdrOrdr: A9a23:hIf2Cqmao9NModDkhp68RP2dVvrpDfOrimdD5ihNYBxZY6Wkfp+V8sjzhCWatN9OYh0dcIi7SdS9qADnhOJICOgqTP2ftWzd2VdAQ7sSlLcKrweQeREWs9Qtr5uIEJIOReEYb2IK9foSiTPQe71Lrbn3k5xAx92utEuFJjsaD52Imj0JbDpzZXcGIzWua6BJcaa0145inX6NaH4XZsO0Cj0uRO7YveDGk5rgfFovGwMnwBPmt0Ll1JfKVzyjmjsOWTJGxrkvtULflRbi26mlu/anjjfBym7o6YhMkteJ8KoNOCXMsLlaFtzfsHfpWG1TYczAgNnzmpDs1L8eqqiMn/7nBbU315qeRBDwnfKn4Xie7N9n0Q6d9bbfuwqlnSQ8LwhKUvaoQuliA13kAgMbzaBB+bMO0GSDu5VNCxTc2Cz7+tjTThlv0lG5uHw4jIco/jViuKYlGchsRLYkjTVoOYZFGDi/5JEsEeFoAs2Z7PFKcUmCZ3ScumV02tSjUnk6Ax/DGyE5y4eo+ikTmGo8w1oTxcQZkHtF/JUhS4Nc7+CBNqhzjrlBQsIfcKo4DuYcRsm8DHDLXHv3QSqvCEWiELtCN2PGqpbx7rlw7Oa2eIYQxJ93g5jFWEMwjx9HR6svM7z64HRmyGG+fIzmZ0Wc9ih33ekLhoHB
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: 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
X-IronPort-AV: E=Sophos;i="5.91,230,1647302400"; d="scan'208,217";a="1064598279"
Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by rcdn-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 27 Oct 2022 12:23:45 +0000
Received: from mail.cisco.com (xfe-rcd-004.cisco.com [173.37.227.252]) by rcdn-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id 29RCNjDu016149 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Thu, 27 Oct 2022 12:23:45 GMT
Received: from xfe-rtp-004.cisco.com (64.101.210.234) by xfe-rcd-004.cisco.com (173.37.227.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1118.9; Thu, 27 Oct 2022 07:23:44 -0500
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (64.101.32.56) by xfe-rtp-004.cisco.com (64.101.210.234) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1118.9 via Frontend Transport; Thu, 27 Oct 2022 08:23:44 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IM3+CJm4p+FWFZaKE3TYgoRmfYXl2HxBAPyrn7lf3daq4qYlqa9xjSwItucm7smCU/RaTyO/6aqDtPd66/RooNLjuh0Iro4QJFxpNU4xfahc6hwsiN/KKbyB80RXyHGJny3p5ousVHw5j/xUGwyJE9HYe2b2bOtyqCn1LbJtFb7CF6Gi52g9ph068Q/P4h5Asx8MbOAjqS+yu2pTlje5DyN0VxPzupuMSu4liy9m3BEV9HqBh6AkYJeLnIlkaOtz87iHw1CXURRFwavUT+vEfhIOBd3vdIy5/c70CdelDzlI8PJWqJPLCLPOWkqiY6eN3gIvkNIkKbsJCh9pTmT4zA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=f7QxG6bC3Ei6H8sb1gy6lbKJKFb/ELzLkL95DxOYTnQ=; b=j9g7qyPOqY8PwXNb8bTWJLtmXFBVPbWBbY59e63vlun8oSmvepBELjJQIo1SiOQ4N8mShsaJ7fzDAzPTMGzzQFrtUF7hK79CNxZhV6YPZbfY1T1dvpp2Fi2VmLXc6tcxUgnQIK85H4bPv5juUuVeL0vcpIyKg53ikHRsvR5VR0tSYN6O0BokQpSpJB7fLEkj2QqJdZDBgNKA8ywIgQyn4qsmRnso/Ui19LP31iCqRRdGQEq5gT7swOOAUew7rNlY038ijfmXIUQU5qOJocqvk6Nw720GUliNI4NGHBFIzaN8dVqlpjHAgrRPgNs8SlC13RKikOHpWAXQvfugjQL8pA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=f7QxG6bC3Ei6H8sb1gy6lbKJKFb/ELzLkL95DxOYTnQ=; b=jDX5fVDjWrPTQP+OTYv0Qi3AU5KiTOmekt44xhXXJbL9QTEPgf6H8agFqby9drDe0aH/eBeIP7Qm7AueQFaQJ/o9eLKR7vlfJ4K5w3ugZOXpu98ayfMad2z+dkyJVYu+FzUz6EO+08ReePbTfbTx6+OXTvxfczl0h0zFNhnPr+o=
Received: from DM6PR11MB4531.namprd11.prod.outlook.com (2603:10b6:5:2a5::19) by SA1PR11MB7132.namprd11.prod.outlook.com (2603:10b6:806:29e::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5746.26; Thu, 27 Oct 2022 12:23:43 +0000
Received: from DM6PR11MB4531.namprd11.prod.outlook.com ([fe80::80c3:ee31:7f03:49e3]) by DM6PR11MB4531.namprd11.prod.outlook.com ([fe80::80c3:ee31:7f03:49e3%4]) with mapi id 15.20.5723.034; Thu, 27 Oct 2022 12:23:43 +0000
From: "Paul Ponchon (pponchon)" <pponchon@cisco.com>
To: Steffen Klassert <steffen.klassert@secunet.com>, "ipsec@ietf.org" <ipsec@ietf.org>
Thread-Topic: [IPsec] Discussion about solving ESP limitations with parallel processing, handling QoS classes etc.
Thread-Index: AQHY6TWFO8mkZaVW10avy6WTxUwKn64iKcuP
Date: Thu, 27 Oct 2022 12:23:42 +0000
Message-ID: <DM6PR11MB4531E7B2AB1FE2E8ECCD54C9CB339@DM6PR11MB4531.namprd11.prod.outlook.com>
References: <20221026122119.GA2602992@gauss3.secunet.de>
In-Reply-To: <20221026122119.GA2602992@gauss3.secunet.de>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR11MB4531:EE_|SA1PR11MB7132:EE_
x-ms-office365-filtering-correlation-id: 8bbbce76-8f03-4129-ec9f-08dab8161659
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR11MB4531.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(366004)(376002)(39860400002)(136003)(346002)(396003)(451199015)(7696005)(110136005)(55016003)(76116006)(8936002)(38100700002)(122000001)(33656002)(66446008)(83380400001)(41300700001)(91956017)(2906002)(8676002)(66556008)(64756008)(186003)(316002)(66946007)(5660300002)(66476007)(86362001)(71200400001)(38070700005)(166002)(6506007)(9686003)(966005)(478600001)(52536014); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DM6PR11MB4531E7B2AB1FE2E8ECCD54C9CB339DM6PR11MB4531namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR11MB4531.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8bbbce76-8f03-4129-ec9f-08dab8161659
X-MS-Exchange-CrossTenant-originalarrivaltime: 27 Oct 2022 12:23:42.9360 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Ivg75Bdv+Xp2JvSOBbtfibAubRMvu3Ed1XpuwTt8GvxL/8mN07TcpMKmV/rR+TAaRi6S9xFIjYLCm5YTuPT6sw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA1PR11MB7132
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.227.252, xfe-rcd-004.cisco.com
X-Outbound-Node: rcdn-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipsec/ZIbq8zYTzoH2A-KxWX-sz9TNUHs>
Subject: Re: [IPsec] Discussion about solving ESP limitations with parallel processing, handling QoS classes etc.
X-BeenThere: ipsec@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Discussion of IPsec protocols <ipsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipsec/>
List-Post: <mailto:ipsec@ietf.org>
List-Help: <mailto:ipsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Oct 2022 12:23:50 -0000

Hello Steffen,

Thanks for sharing these references. I would be very interested in discussing these matters during the next meeting.

We have only been following the group activity since very recently, so please apologize us if the new ipsecme-anti-replay-subspaces ID felt like yet-another proposal to the same problem.

Our main concern was that the latest discussions we saw on the list were going towards a solution which involved creating more SAs, which we believe would have a significant performance impact. I would really like to be able to discuss more about this, and the pros and cons of the different proposals with you.

Looking forward to meeting you in London.

Paul

Steffen Klassert <steffen.klassert@secunet.com<mailto:steffen.klassert@secunet.com>> writes:

> Hi,
>
> over the last years, quite some work was done from different parties
> to overcome some limitations of ESP to handle parallel datapaths,
> QoS classes etc.
>
> Chronologically ordered, we have:
>
> November 2019:
>
> https://datatracker.ietf.org/doc/html/draft-mglt-ipsecme-multiple-child-sa-00
>
> That was replaced in November 2020 by:
>
> htpps://datatracker.ietf.org/doc/draft-pwouters-multi-sa-performance/
>
> At IETF 108 in July 2020 there was this proposal:
>
> https://datatracker.ietf.org/meeting/108/materials/slides-108-ipsecme-proposed-improvements-to-esp-01
>
> October 2022:
>
> https://www.ietf.org/archive/id/draft-ponchon-ipsecme-anti-replay-subspaces-00.txt
>
> Aditionally, Google published the PSP Security Protocol (PSP) for
> datacenters in April 2022:
>
> https://github.com/google/psp
>
> All these proposals try to solve related problems in different ways.
> They all have pros and cons, but the number of proposals shows that
> there is a real need to solve these problems better sooner than later.
>
> So instead of creating even more proposals, we maybe should take a
> step back and try to do a clear problem statement. Based on that
> we then can rethink about possible solutions.
>
> The next possibiltiy to sit together for an 'in person' discussion
> would be at the IETF Meeting in London. Is there anyone interested
> in a sidemeeting about that topic?
>
> Steffen
>
>
> ______________________________________________
> IPsec mailing list
> IPsec@ietf.org
> https://www.ietf.org/mailman/listinfo/ipsec

v2.23.0 | Report a Bug | By Email