IETF Logo Mail Archive

Re: [ipwave] Intdir early review of draft-ietf-ipwave-ipv6-over-80211ocb-34

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Thu, 28 March 2019 10:29 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: its@ietfa.amsl.com
Delivered-To: its@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 100AD120267 for <its@ietfa.amsl.com>; Thu, 28 Mar 2019 03:29:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Level:
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=ZCU9TQvj; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=dmSdIAeq
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Su6gH-vjyeU2 for <its@ietfa.amsl.com>; Thu, 28 Mar 2019 03:28:59 -0700 (PDT)
Received: from rcdn-iport-6.cisco.com (rcdn-iport-6.cisco.com [173.37.86.77]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BBC4E12024B for <its@ietf.org>; Thu, 28 Mar 2019 03:28:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=23849; q=dns/txt; s=iport; t=1553768938; x=1554978538; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=WELCnySMM54oNvMq65Y6EoAYaUozHjqqvEqKrid5gCI=; b=ZCU9TQvjSBmFP6yQ7WMlW2j2kHdNgkW7Ku8XVw5aOpajR/xgqxd2Eh6Q FwuuJIkU42g4WwN1T++niDSTwrdQE91XJTT/uYwQ99pqQy/XWu/Q5U03t C5dXnL/Bggk8apI4ZhhuAv9jdQxTUQ8gRcTH/j9sVMoiTbm+3KKISJts5 0=;
IronPort-PHdr: 9a23:dBozFRbzEP7t+UZuKPej4Bv/LSx94ef9IxIV55w7irlHbqWk+dH4MVfC4el20gabRp3VvvRDjeee87vtX2AN+96giDgDa9QNMn1NksAKh0olCc+BB1f8KavycywnFslYSHdu/mqwNg5eH8OtL1A=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0ANAAD1oJxc/4MNJK1jGwEBAQEDAQEBBwMBAQGBUQYBAQELAYE9KScDaHQECycKhASDRwOEUopYjA+JDYRJNXmBJANUDQEBIwmEQAIXhRgiNAkNAQEDAQEJAQMCbRwMhUsGIx0BATAHAQ8CAQg/AwICAh8RFBECBA4FG4MHAYERTAMVAQIBC55jAooUcYEvgngBAQWCR4JBDQuCDAMFgS8BiGeCSheBQD+BEScfgkw+ghpHAQEDgXWCczGCJoojEhKCNYQik1o2CQKHaoQNhA+DPxqCA4NIgjoFjAKRNYE8iRqCWwIEAgQFAg4BAQWBTTiBVnAVZQGCDQEzggqBIwECgkiFFIU/coEojS4BgR4BAQ
X-IronPort-AV: E=Sophos;i="5.60,280,1549929600"; d="scan'208,217";a="540812639"
Received: from alln-core-1.cisco.com ([173.36.13.131]) by rcdn-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 28 Mar 2019 10:28:56 +0000
Received: from XCH-RCD-010.cisco.com (xch-rcd-010.cisco.com [173.37.102.20]) by alln-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id x2SASuED015804 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 28 Mar 2019 10:28:56 GMT
Received: from xhs-aln-001.cisco.com (173.37.135.118) by XCH-RCD-010.cisco.com (173.37.102.20) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 28 Mar 2019 05:28:55 -0500
Received: from xhs-rcd-001.cisco.com (173.37.227.246) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Thu, 28 Mar 2019 05:28:55 -0500
Received: from NAM03-BY2-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-001.cisco.com (173.37.227.246) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Thu, 28 Mar 2019 05:28:55 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector1-cisco-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=WELCnySMM54oNvMq65Y6EoAYaUozHjqqvEqKrid5gCI=; b=dmSdIAeqwWIq8AUUAB5fDrG/uRFBAg+1Yf0wHBipKozFK4kla5Gz8VdyW5S8bewVwoYLvPrhko5SCQh11KSRCmU8Yqt7I/lRQdWQMdYbfDXPDgxE82AuDOUVaSWKmbpTr/774Z+43CE5dN4fbMG89DHKFDBNNA8Kp8CSf/7BJSY=
Received: from BYAPR11MB3558.namprd11.prod.outlook.com (20.178.206.75) by BYAPR11MB3813.namprd11.prod.outlook.com (20.178.239.87) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1730.18; Thu, 28 Mar 2019 10:28:54 +0000
Received: from BYAPR11MB3558.namprd11.prod.outlook.com ([fe80::a07b:c022:56cf:60fb]) by BYAPR11MB3558.namprd11.prod.outlook.com ([fe80::a07b:c022:56cf:60fb%6]) with mapi id 15.20.1750.017; Thu, 28 Mar 2019 10:28:54 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Alexandre Petrescu <alexandre.petrescu@gmail.com>
CC: "its@ietf.org" <its@ietf.org>
Thread-Topic: Intdir early review of draft-ietf-ipwave-ipv6-over-80211ocb-34
Thread-Index: AQHU5U4SPOcIZ52P4EC65h2BrzII1KYg13kj
Date: Thu, 28 Mar 2019 10:28:54 +0000
Message-ID: <27AE185B-1D95-4DCD-8C76-AECE90E46802@cisco.com>
References: <155169869045.5118.3508360720339540639@ietfa.amsl.com>, <9d5c8168-a915-358e-d7eb-0362cad96d81@gmail.com>
In-Reply-To: <9d5c8168-a915-358e-d7eb-0362cad96d81@gmail.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [62.168.35.67]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 2a833344-69c1-40f8-d206-08d6b3682da3
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600127)(711020)(4605104)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:BYAPR11MB3813;
x-ms-traffictypediagnostic: BYAPR11MB3813:
x-ms-exchange-purlcount: 3
x-microsoft-antispam-prvs: <BYAPR11MB3813F6A6F51E0623FBEF74C2D8590@BYAPR11MB3813.namprd11.prod.outlook.com>
x-forefront-prvs: 0990C54589
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(346002)(39860400002)(396003)(366004)(136003)(199004)(189003)(966005)(97736004)(99286004)(606006)(106356001)(6512007)(6486002)(6506007)(236005)(6436002)(2616005)(6246003)(105586002)(476003)(54896002)(6306002)(102836004)(229853002)(3846002)(6916009)(71200400001)(71190400001)(83716004)(186003)(26005)(8676002)(14444005)(36756003)(76176011)(8936002)(256004)(81156014)(6116002)(86362001)(33656002)(486006)(66574012)(7736002)(4326008)(53936002)(81166006)(66066001)(68736007)(82746002)(25786009)(14454004)(316002)(446003)(478600001)(11346002)(2906002)(5660300002)(244885003); DIR:OUT; SFP:1101; SCL:1; SRVR:BYAPR11MB3813; H:BYAPR11MB3558.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: IBpT4iJiLl4bFuKVpOppZV4yJB9tQiEpWKSOCqRNlIRya0u4FOusKtEo6bClPQOiwMmtX0Y/TGurks0xY3gMY0aB29ccuRhmhaY4Z8yswYqMZqKAf1VbK/YVQnh/ZXnsfe6Ov4yRLknVDCu0fXIPhIRyfts6EZC7zKnUpIHbiQ0J4SUaW0M+X1tH5ZoYZBHnTEvQFwnW8bmz9UG/qtDNK2RtMuv0Qh3PM7lfBY5gsOznKLX4SCT8+UlBqSVbUPOjOosSb6KHUQs/egCEvE/jVXXMu7oeVQ1jkOkm609oLum7n9gxoTkDiZNt2aiuqcpS8VuE87eDQlO8YF4V4K2RYQeQTsPSKYul1BmuG1Oweou0/6V9CdI6lI704X2/QiMeWuDl5uFRfo/YHLO0qE44+OiUNiPtGltrJHUdxSltjVg=
Content-Type: multipart/alternative; boundary="_000_27AE185B1D954DCD8C76AECE90E46802ciscocom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 2a833344-69c1-40f8-d206-08d6b3682da3
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Mar 2019 10:28:54.1554 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3813
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.20, xch-rcd-010.cisco.com
X-Outbound-Node: alln-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/its/lfhzHPjrh4tAwt15PUQ4oL7T1uY>
Subject: Re: [ipwave] Intdir early review of draft-ietf-ipwave-ipv6-over-80211ocb-34
X-BeenThere: its@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPWAVE - IP Wireless Access in Vehicular Environments WG at IETF <its.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/its>, <mailto:its-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/its/>
List-Post: <mailto:its@ietf.org>
List-Help: <mailto:its-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/its>, <mailto:its-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Mar 2019 10:29:02 -0000

Yes Alex. Also as an offer to help...


Regards,

Pascal

Le 28 mars 2019 à 11:08, Alexandre Petrescu <alexandre.petrescu@gmail.com<mailto:alexandre.petrescu@gmail.com>> a écrit :


Pascal,

Should we treat these two reviews (iotdir and intdir reviews) as just one?

The contents appear to me to be the same.

Alex

Le 04/03/2019 à 12:24, Pascal Thubert a écrit :

Reviewer: Pascal Thubert
Review result: Not Ready

Reviewer: Pascal Thubert
Review result: Not ready. Need to clarify IEEE relationship, IOW which SDO
defines the use of L2 fields, what this spec enforces vs. recognizes as being
used that way based on IEEE work. The use of IPv6 ND requires a lot more
thoughts, recommendation to use 6LoWPAN ND. The definition of a subnet is
unclear. It seems that RSUs would have prefixes but that is not discussed.

I am an assigned INT and IOT directorates reviewer for <
draft-ietf-ipwave-ipv6-over-80211ocb-34 >. These comments were written
primarily for the benefit of the Internet Area Directors. Document editors and
shepherd(s) should treat these comments just like they would treat comments
from any other IETF contributors and resolve them along with any other Last
Call comments that have been received. For more details on the INT Directorate,
see https://datatracker.ietf.org/group/intdir/about/

Majors issues
-----------------

“

o  Exceptions due to different operation of IPv6 network layer on
      802.11 than on Ethernet.

“
Is this doc scoped to OCB or 802.11 in general? Is there an expectation that an
implementer of IPv6 over Wi-Fi refers to this doc? Spelled as above, it seems
that you are defining the LLC. Figure 1 shows the proposed adaptation layer as
IEEE LLC work. Who defines those fields, IETF or IEEE, or mixed? Who defines
their use? If this spec defines a new LLC header (vs. how to use an IEEE field)
 then it should be very clear, and the newly defined fields should be isolated
from IEEE fields.

"
   The IPv6 packet transmitted on 802.11-OCB MUST be immediately
   preceded by a Logical Link Control (LLC) header and an 802.11 header.

"
Is there anything new or specific to OCB vs. classical 802.11 operations?
If/when this is echoing the IEEE specs then this text should not use uppercase
but say something like: 'Per IEEE Std 802.11, the IPv6 packet transmitted on
802.11-OCB is immediately  preceded by a Logical Link Control (LLC) header and
an 802.11 header ...'

different things? Why define both?

"   An 'adaptation' layer is inserted between a MAC layer and the
   Networking layer.  This is used to transform some parameters between
   their form expected by the IP stack and the form provided by the MAC
   layer.
"
Is this different from what an AP does when it bridges Wi-Fi to Ethernet? Is
this IETF business?

"
   The Receiver and Transmitter Address fields in the 802.11 header MUST
   contain the same values as the Destination and the Source Address
   fields in the Ethernet II Header, respectively.
"
Same,  this is IEEE game isn't it?

"

Solutions for these problems SHOULD
   consider the OCB mode of operation.
"
This is not specific enough to be actionable. I suggest to remove this sentence.
It would be of interest for the people defining those solutions to understand
the specific needs of OCB vs. Wi Fi, but I do not see text about that.

"

The method of forming IIDs
   described in section 4 of [RFC2464] MAY be used during transition
   time.
"
Contradicts section 4.3 that says
"
Among these types of
   addresses only the IPv6 link-local addresses MAY be formed using an
   EUI-64 identifier.
"

"

This
   subnet MUST use at least the link-local prefix fe80::/10 and the
   interfaces MUST be assigned IPv6 addresses of type link-local.
"
If this is conforming IPv6 then the MUST is not needed.

"
   A subnet is formed by the external 802.11-OCB interfaces of vehicles
   that are in close range (not by their in-vehicle interfaces).
"
Is the definition transitive? Do we really get a subnet?
 A is close to  B who is close to C .... to Z, makes Paris one subnet! Are you
 talking about a link, rather?

"
   The Neighbor Discovery protocol (ND) [RFC4861] MUST be used over
   802.11-OCB links.
"

IPv6 ND is not suited for a non-broadcast network. How does DAD work?
Maybe you could consider RFC 6775 / RFC 8505 instead.

"
In the moment the MAC address is changed
   on an 802.11-OCB interface all the Interface Identifiers of IPv6
   addresses assigned to that interface MUST change.
"
Why is that? This is unexpected, and hopefully wrong.

Minor issues
---------------

"   OCB (outside the context of a basic service set - BSS): A mode of
   operation in which a STA is not a member of a BSS and does not
   utilize IEEE Std 802.11 authentication, association, or data
   confidentiality.

   802.11-OCB: mode specified in IEEE Std 802.11-2016 when the MIB
   attribute dot11OCBActivited is true.  Note: compliance with standards
   and regulations set in different countries when using the 5.9GHz
   frequency band is required.
"

Are these 2 different things?

"
Among these types of
 addresses only the IPv6 link-local addresses MAY be formed using an
  EUI-64 identifier.
"
This text should not be in a LL specific section since it deals with the other
addresses. Maybe rename the section to "addressing" or something?

"
   For privacy, the link-local address MAY be formed according to the
   mechanisms described in Section 5.2.
"
The MAY is not helpful. I suggest to remove the sentence that does not bring
value vs. 5.2

Could you make sections 4.3 and 4.5 contiguous?

"
If semantically
   opaque Interface Identifiers are needed, a potential method for
   generating semantically opaque Interface Identifiers with IPv6
   Stateless Address Autoconfiguration is given in [RFC7217].

   Semantically opaque Interface Identifiers, instead of meaningful
   Interface Identifiers derived from a valid and meaningful MAC address
   ([RFC2464], section 4), MAY be needed in order to avoid certain
   privacy risks.

...

   In order to avoid these risks, opaque Interface Identifiers MAY be
   formed according to rules described in [RFC7217].  These opaque
   Interface Identifiers are formed starting from identifiers different
   than the MAC addresses, and from cryptographically strong material.
   Thus, privacy sensitive information is absent from Interface IDs, and
   it is impossible to calculate the initial value from which the
   Interface ID was calculated.

"
Duplicate and mis ordered text, isn't it?

" For this reason, an attacker may realize many
   attacks on privacy.
"
Do we attack privacy? Maybe say that privacy is a real concern, and maybe move
that text to security section?

"
   The way Interface Identifiers are used MAY involve risks to privacy,
   as described in Section 5.1.
"
Also duplicate

Nits
------

"
   IP packets MUST be transmitted over 802.11-OCB media as QoS Data
   frames whose format is specified in IEEE Std 802.11.
"
Please add link to the reference

" the 802.11 hidden node"
Do not use 802.11 standalone (multiple occurrences).
=> "the IEEE Std. 802.11 [ ref ] hidden node", or just "the hidden terminal".

BCP 14 text:

Suggest to use this text:
“
   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
   "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and
   "OPTIONAL" in this document are to be interpreted as described in
   https://tools.ietf.org/html/bcp14 https://tools.ietf.org/html/bcp14
   [https://tools.ietf.org/html/rfc2119][RFC8174] when, and only when, they
   appear in all capitals, as shown here.

“

All the best

Pascal

v2.23.0 | Report a Bug | By Email