Re: [Lsr] Tsvart last call review of draft-ietf-lsr-isis-rfc7810bis-03
"Les Ginsberg (ginsberg)" <ginsberg@cisco.com> Thu, 06 December 2018 00:51 UTC
Return-Path: <ginsberg@cisco.com>
X-Original-To: lsr@ietfa.amsl.com
Delivered-To: lsr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CAF3B12D4ED; Wed, 5 Dec 2018 16:51:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.96
X-Spam-Level:
X-Spam-Status: No, score=-15.96 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gti_53clxajH; Wed, 5 Dec 2018 16:51:54 -0800 (PST)
Received: from rcdn-iport-5.cisco.com (rcdn-iport-5.cisco.com [173.37.86.76]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AAFDD1286E3; Wed, 5 Dec 2018 16:51:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6570; q=dns/txt; s=iport; t=1544057513; x=1545267113; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=afS4pbbJPnZi+CcWhY9A1srkF4lKymxeHa8Sv7BvwO8=; b=RUT5sOkAXC8zHNtk3AT0hD1bMzA1QruODixryVzk3e9L6mZYEyS77yXg 7BZFDHT1ALo218UgqMHtylJqOITR72htnzD+CW68ws+VIAMnXGAnY/nhk DZCP2Gy7rACzItII4Mt5Qz3dfJTwum5b5pp3bpWCJHDKnXlqAwAWPMmso Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0ADAABkcQhc/5xdJa1kGQEBAQEBAQEBAQEBAQcBAQEBAQGBUQQBAQEBAQsBggNmgQInCoNwiBmOGoNFlAeBegsBASWERwIXgnoiNAkNAQMBAQIBAQJtHAyFPAEBAQEDIxFFDAQCAQgRBAEBAwImAgICMBUICAIEAQ0FCIMaggEPpguBL4oqBYELiEuCSBeBQD+BEAGDEoMeAQECAYF1D4JeglcCiSE+liJVCQKHAYo3IIFbhRSKQIkJhGmKZQIRFIEnHziBVXAVO4JsixyFP0ExikGBHwEB
X-IronPort-AV: E=Sophos;i="5.56,320,1539648000"; d="scan'208";a="274043834"
Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by rcdn-iport-5.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 06 Dec 2018 00:51:52 +0000
Received: from XCH-RCD-003.cisco.com (xch-rcd-003.cisco.com [173.37.102.13]) by rcdn-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id wB60pqtU027590 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 6 Dec 2018 00:51:52 GMT
Received: from xch-aln-001.cisco.com (173.36.7.11) by XCH-RCD-003.cisco.com (173.37.102.13) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Wed, 5 Dec 2018 18:51:51 -0600
Received: from xch-aln-001.cisco.com ([173.36.7.11]) by XCH-ALN-001.cisco.com ([173.36.7.11]) with mapi id 15.00.1395.000; Wed, 5 Dec 2018 18:51:51 -0600
From: "Les Ginsberg (ginsberg)" <ginsberg@cisco.com>
To: Yoshifumi Nishida <nishida@wide.ad.jp>, "tsv-art@ietf.org" <tsv-art@ietf.org>
CC: "lsr@ietf.org" <lsr@ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "draft-ietf-lsr-isis-rfc7810bis.all@ietf.org" <draft-ietf-lsr-isis-rfc7810bis.all@ietf.org>
Thread-Topic: Tsvart last call review of draft-ietf-lsr-isis-rfc7810bis-03
Thread-Index: AQHUjM5a8eQq42aaJEev+sbr2yTKKqVw2iZA
Date: Thu, 06 Dec 2018 00:51:51 +0000
Message-ID: <347556ed4ea34fa7844085e5a6639f13@XCH-ALN-001.cisco.com>
References: <154403709395.31955.8914260506541556177@ietfa.amsl.com>
In-Reply-To: <154403709395.31955.8914260506541556177@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.24.92.2]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Outbound-SMTP-Client: 173.37.102.13, xch-rcd-003.cisco.com
X-Outbound-Node: rcdn-core-5.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lsr/sOUZs7IR_z-Xf_cgLpeNqrE_JIM>
Subject: Re: [Lsr] Tsvart last call review of draft-ietf-lsr-isis-rfc7810bis-03
X-BeenThere: lsr@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Link State Routing Working Group <lsr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lsr>, <mailto:lsr-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lsr/>
List-Post: <mailto:lsr@ietf.org>
List-Help: <mailto:lsr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lsr>, <mailto:lsr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Dec 2018 00:51:59 -0000
Yoshi - Thanx for taking the time to review. I can appreciate that this may the first time you have looked at RFC7810 - let alone the bis draft. As a result you have commented on content which is common to the bis draft and the RFC it is modifying (RFC 7810). While your questions in isolation may be interesting, I believe they are out of scope for the review of the bis draft. What the bis draft is doing is addressing two modest errata - details of which can be found in https://tools.ietf.org/html/draft-ietf-lsr-isis-rfc7810bis-03#appendix-A Comments on content not related to those changes is out of scope. If you have an interest in this topic and want to comment on the substance of RFC 7810 and its companion document for OSPF RFC 7471, I encourage you to do so. Note that all of your comments (save the one on Security) are also applicable to RFC 7471 - so any agreed upon modification would need to be made to both documents. But I do not want to even start discussing such changes in the context of reviewing the bis draft changes. I hope you can understand why. As regards your Security comment, I am not sure I understand what you are suggesting. As IGP info is flooded hop-by-hop, man-in-the-middle attacks have to be able to insert themselves on an IGP enabled link. Use of cryptographic authentication prevents untrusted sources from being accepted - which is the point being made. Les > -----Original Message----- > From: Yoshifumi Nishida <nishida@wide.ad.jp> > Sent: Wednesday, December 05, 2018 11:12 AM > To: tsv-art@ietf.org > Cc: lsr@ietf.org; ietf@ietf.org; draft-ietf-lsr-isis-rfc7810bis.all@ietf.org > Subject: Tsvart last call review of draft-ietf-lsr-isis-rfc7810bis-03 > > Reviewer: Yoshifumi Nishida > Review result: Almost Ready > > This document has been reviewed as part of the transport area review > team's > ongoing effort to review key IETF documents. These comments were written > primarily for the transport area directors, but are copied to the document's > authors and WG to allow them to address any issues raised and also to the > IETF > discussion list for information. > > When done at the time of IETF Last Call, the authors should consider this > review as part of the last-call comments they receive. Please always CC > tsv-art@ietf.org if you reply to or forward this review. > > Summary: This document is almost ready for publication, but several points > need > to be clarified. > > 1: In Section 1: > "While this document does not specify how the performance information > should be obtained, the > measurement of delay SHOULD NOT vary significantly based upon the > offered > traffic load." > > It is not clear to me that why the measurement of delay should not vary > here. Also, queuing delay might be useful info to infer path status. Could > you elaborate the delays that the draft tries to capture? > > 2: In Section 1: > "Thus, queuing delays SHOULD NOT be included in the delay > measurement. " > > Is it clear for expected readers how to exclude queuing delays in their > measurements? Don't we need to provide any guidances or references > here? > Also, what they should do if they cannot exclude it? > > 3: In Section 2: > > "All values (except residual bandwidth) MUST be calculated as rolling > averages where the > averaging period MUST be a configurable period of time." > > This requirement is a bit different from the following texts in Section 5: > Also, does this mean only simple moving average must be used or any > forms of > moving average is acceptable? > > "The values advertised in all sub-TLVs (except min/max delay and > residual bandwidth) MUST represent an average over a period or be > obtained by a filter that is reasonably representative of an average. > For example, a rolling average is one such filter." > > 4: In Section 4.3: > > "This sub-TLV advertises the average link delay variation between two > directly connected IS-IS neighbors. The delay variation advertised > by this sub-TLV MUST be the delay from the local neighbor to the > remote one (i.e., the forward-path latency)." > > Sorry.. I am not sure how to measure delay variation here. I think more > explanation is needed. It seems that it is not variance as the unit is sec. > > 5: In Section 11: > > "The use of Link State PDU cryptographic authentication allows mitigation > the risk of man-in- > the-middle attack." > > When there is a risk for man-in-the-middle attack, don't we need more > strong > requirements for the use of security mechanisms? > > Thanks, > -- > Yoshi
- [Lsr] Tsvart last call review of draft-ietf-lsr-i… Yoshifumi Nishida
- Re: [Lsr] Tsvart last call review of draft-ietf-l… Les Ginsberg (ginsberg)
- Re: [Lsr] [Tsv-art] Tsvart last call review of dr… Spencer Dawkins at IETF
- Re: [Lsr] [Tsv-art] Tsvart last call review of dr… Les Ginsberg (ginsberg)
- Re: [Lsr] [Tsv-art] Tsvart last call review of dr… Spencer Dawkins at IETF
- Re: [Lsr] Tsvart last call review of draft-ietf-l… Alvaro Retana
- Re: [Lsr] Tsvart last call review of draft-ietf-l… Yoshifumi Nishida
- Re: [Lsr] Tsvart last call review of draft-ietf-l… Les Ginsberg (ginsberg)
- Re: [Lsr] Tsvart last call review of draft-ietf-l… stefano previdi
- Re: [Lsr] Tsvart last call review of draft-ietf-l… Les Ginsberg (ginsberg)
- Re: [Lsr] Tsvart last call review of draft-ietf-l… John E Drake