Re: [lisp] Request to LISP working group for GB-LISP ATN use cases to facilitate its adoption in ICAO.
Dino Farinacci <farinacci@gmail.com> Mon, 11 April 2022 20:49 UTC
Return-Path: <farinacci@gmail.com>
X-Original-To: lisp@ietfa.amsl.com
Delivered-To: lisp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 696A23A1968 for <lisp@ietfa.amsl.com>; Mon, 11 Apr 2022 13:49:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.109
X-Spam-Level:
X-Spam-Status: No, score=-2.109 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X-L8w5mEcUt1 for <lisp@ietfa.amsl.com>; Mon, 11 Apr 2022 13:49:08 -0700 (PDT)
Received: from mail-pg1-x531.google.com (mail-pg1-x531.google.com [IPv6:2607:f8b0:4864:20::531]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3B49A3A1967 for <lisp@ietf.org>; Mon, 11 Apr 2022 13:49:08 -0700 (PDT)
Received: by mail-pg1-x531.google.com with SMTP id q142so15181290pgq.9 for <lisp@ietf.org>; Mon, 11 Apr 2022 13:49:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=hgL/8hMi1ZNAMhDQHv+RRwBPYztfdfeYSKxi3ZRIKUM=; b=knAxchub/ZmXt39pTpCcbMp65cH7FRFZuw0hjbmePATrJ33E/wTCWBBY7AKgvrb0Jr q2Fxi4E7ZHnMIb6iViWS8M9qA3r5wyKYGTQb1533sYcqchWPCC4I8UpAog/EKx38kjZr E5c3B7Q+NZLLj2ukytKM8EZ7g0Ufxn7YPyTdshy1lTf5gHIcYpPgErRcVn8+pQ/4Spv8 eaBuCZWk1e2w3cuoOUfuTW4gxZ69R/TqnSRa6Exx/edh/jNfStXlhGSASVM4l4XF10bj iy7WE1ZpmuZ/bk//jncQnyhPU5DhjstLoRd0kFvJjTYKrr8iBUkMP2289/5tfrfGwImh l0oA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=hgL/8hMi1ZNAMhDQHv+RRwBPYztfdfeYSKxi3ZRIKUM=; b=g80yjZOIT//+7Lzf57GIyt/f9PQL6ftCAr6e5ZpNUXRlMIpc92v4x/N8bd9+esOKdn Jv5hrAA3EMH6a4fYMKJB/dXsuxknaOdSrX7QVL+Ycha0ZmFJWQZHeM29oi4YluRTZZQg e3TvUxWuK6ohmPpyGDwEkjHAsm4Q5HjvRtNwLnH0VTvTk7DRT2bZCevtreBf632znYoI As4L5sD21VdYwWDp9p31jrag10Ue326PDTMY+3grwwKOK+U+no3sDFSFwuOcc0kkndEV 3dElNa0YEQUdYqWtAK3hMTq37IolllM1AmNzdFe3Z1TtzGfsrdP7jWMEDrjAW7KchQbg Scng==
X-Gm-Message-State: AOAM531/Z9ClGIWN/w2ECPxAQ4uLLyPSNVS0i7PWyhamM7NDMKB0mRO0 NchgNOPlz/L9foMfOOjfROo=
X-Google-Smtp-Source: ABdhPJwcdmZPOJuVE+592Y7xauS7TDbpzfuvULYQRcWd+l/bHQIcxMXkzlWHeGPoyZkh2hHkYGgsAw==
X-Received: by 2002:a05:6a00:10d3:b0:4fe:5d:75c8 with SMTP id d19-20020a056a0010d300b004fe005d75c8mr34027616pfu.6.1649710146806; Mon, 11 Apr 2022 13:49:06 -0700 (PDT)
Received: from smtpclient.apple ([2601:642:4c04:2759:913a:126b:473d:8922]) by smtp.gmail.com with ESMTPSA id m10-20020a17090a414a00b001cb776494a5sm368056pjg.0.2022.04.11.13.49.05 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 11 Apr 2022 13:49:06 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 15.0 \(3693.60.0.1.1\))
From: Dino Farinacci <farinacci@gmail.com>
In-Reply-To: <AS4PR01MB9181DA148F485C1FB110D68E89EA9@AS4PR01MB9181.eurprd01.prod.exchangelabs.com>
Date: Mon, 11 Apr 2022 13:49:04 -0700
Cc: "lisp@ietf.org" <lisp@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <DD328923-8708-4CE9-B819-6F1E943123E9@gmail.com>
References: <AS4PR01MB91814DD1C86353D50E598E2F891A9@AS4PR01MB9181.eurprd01.prod.exchangelabs.com> <A9A345B8-83A6-416D-987A-A3CA00A05839@gmail.com> <AS4PR01MB9181DA148F485C1FB110D68E89EA9@AS4PR01MB9181.eurprd01.prod.exchangelabs.com>
To: HAINDL Bernhard <Bernhard.HAINDL@frequentis.com>
X-Mailer: Apple Mail (2.3693.60.0.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/lisp/6u-PT0wiYZPFhstgr5ZoGpJZNGA>
Subject: Re: [lisp] Request to LISP working group for GB-LISP ATN use cases to facilitate its adoption in ICAO.
X-BeenThere: lisp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: List for the discussion of the Locator/ID Separation Protocol <lisp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lisp>, <mailto:lisp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lisp/>
List-Post: <mailto:lisp@ietf.org>
List-Help: <mailto:lisp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lisp>, <mailto:lisp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Apr 2022 20:49:12 -0000
> thanks for your feedback. Please find hereafter my response. Thanks for the response Bernhard. See responses inline. >> >> Well since the subscription state is stored in the map-server for the >> registration, when the registration goes away there will be no more Map- >> Notifies going to the subscribers. Except for the last one when the RLOC-set >> goes from its current state to an empty RLOC-set (since the deregistration >> indicates to remove the entire EID entry). >> >> What do you mean by your last two points "explicit selective unsubscription" >> and "wildcard …". Are you asking what happens to these subscription types >> when a deregitration occurs? > > The request refers to an explicit unsubscribe from an EID (range of EIDs) although these EIDs are still registered. > E.g. if the aircraft is no longer in the responsibility of the corresponding user. If you send a Map-Request for the EID with the subscribe bit set to 0, that clears the subscription. Was this not clear in the specifications? > >>> • Include network mobility features to draft-ietf-lisp-eid-mobility >>> o Add network mobility support – flag network prefixes as fixed or mobile >> to automatic remove all longer sub-prefixes inside the mapping system >> >> I know two implementations that already do this. Maybe we haven't spec'ed >> it well, please confirm. But when a host EID is dynamically learned, the xTR >> can be configured to register a network prefix instead of the host EID. > > Aircraft have /60 IPv6 prefixes and besides these sometimes /64 sub-prefixes are registered as EIDs. > (This is mainly used to set different LISP priorities for certain sub-prefixes) > If these /60 prefixes can be marked as mobile networks, then the mapping system could handle such EIDs specifically. > (e.g. remove all longer sub-prefixes inside the mapping system, if the corresponding connection is lost to the aircraft) I am not sure I get the gist of the answer. Are you saying the ground-based xTRs learn the /64s of the aircraft, and when they do, you want the /60 registered? If so that is supported. > > >>> • Transport more information inside LISP >>> o 4D trajectory snapshot = timestamp (in seconds) + aircraft 3D >> coordinates >>> o Digital signature from the aircraft for the AGMI Request message >>> o “Suggest” messages on foreign report received instead of direct >> deregistration of a foreign link -> “Solicit Deregistration” >> >> Look at the functionality that draft-kowal-lisp-policy-distribution-02 is >> spec'ing. Using JSON-formatted RLOC encodings, you can encode the >> attributes you list above. We can do digital signatures for Map-Requests and >> Map-Registers. Did you need it for another LISP packet type? > > Thanks Dino. We will check your proposal. > Regarding the aircraft digital signature: This is a very domain specific functionality. We need to forward a signed message from another protocol (AGMI) via LISP to the corresponding XTRs so that they can check whether the sender of the message (AGMI message) was the aircraft. So I have been involved in deployments, where the public-key can be registered to the mapping system and a signer of a Map-Register or Map-Request can be verified. In your case, the public-key is registered and can be looked up by your domain-specific functionality to verify whatever the domain-specific signature data runs over. See this LISP WG presentation I have given in the past on the former: https://www.dropbox.com/s/gx5kpzaog8qgump/lisp-lisp-ecdsa-ietf-sin.pdf > >> Please explain your last bullet in more detail so we can get a better >> understanding about the functionality you are requesting. > > This is also a domain specific functionality. I will try to explain it with an example: When an aircraft is connected to the ground via two different A/G links, the aircraft EID is registered by two ETRs (ETR1 and ETR2). Sometimes the aircraft detects a link failure much faster than the ground infrastructure and therefore it reports via the remaining active A/G link (to the ETR -> e.g. ETR2) that the other link is no longer available ("foreign report"). In LISP we should now have the possibility to inform (from ETR2) the corresponding ETR (where the A/G link loss occurred -> ETR1) about this link error, so that the ETR (ETR1) removes its EID/RLOC mapping after appropriate check. I see, you want an alternative source that detects link faster than the ETR to tell the ETR to deregister. Got it. Is it possible to use a restful/MIB/Yang interface to take the link down in the ETR, so the protocol and implementation will naturally deregister the EID? Dino
- [lisp] Request to LISP working group for GB-LISP … HAINDL Bernhard
- Re: [lisp] Request to LISP working group for GB-L… Dino Farinacci
- Re: [lisp] Request to LISP working group for GB-L… HAINDL Bernhard
- Re: [lisp] Request to LISP working group for GB-L… Dino Farinacci