IETF Logo Mail Archive

Re: [mif-arch-dt] Strawman solution proposals for DHCPv6 and RA support for multiple provisioning domains

Dmitry Anipko <Dmitry.Anipko@microsoft.com> Fri, 22 November 2013 20:57 UTC

Return-Path: <Dmitry.Anipko@microsoft.com>
X-Original-To: mif-arch-dt@ietfa.amsl.com
Delivered-To: mif-arch-dt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B4251AE2AB for <mif-arch-dt@ietfa.amsl.com>; Fri, 22 Nov 2013 12:57:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Level:
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LOl-Q-E_fvIg for <mif-arch-dt@ietfa.amsl.com>; Fri, 22 Nov 2013 12:57:32 -0800 (PST)
Received: from na01-by2-obe.outbound.protection.outlook.com (mail-by2lp0240.outbound.protection.outlook.com [207.46.163.240]) by ietfa.amsl.com (Postfix) with ESMTP id AD3581AE2A5 for <mif-arch-dt@ietf.org>; Fri, 22 Nov 2013 12:57:32 -0800 (PST)
Received: from BLUPR03MB066.namprd03.prod.outlook.com (10.255.209.154) by BLUPR03MB068.namprd03.prod.outlook.com (10.255.209.156) with Microsoft SMTP Server (TLS) id 15.0.820.5; Fri, 22 Nov 2013 20:57:24 +0000
Received: from BLUPR03MB066.namprd03.prod.outlook.com ([169.254.1.134]) by BLUPR03MB066.namprd03.prod.outlook.com ([169.254.1.218]) with mapi id 15.00.0820.005; Fri, 22 Nov 2013 20:57:23 +0000
From: Dmitry Anipko <Dmitry.Anipko@microsoft.com>
To: Marc Blanchet <marc.blanchet@viagenie.ca>, Ted Lemon <ted.lemon@nominum.com>
Thread-Topic: [mif-arch-dt] Strawman solution proposals for DHCPv6 and RA support for multiple provisioning domains
Thread-Index: AQHO0Al1EuDFRbK3sEiC7iRTvO04C5oURpXpgAEqagCAE0vn0YAI7uIAgAA4eoCAAAFeAIAABI0c
Date: Fri, 22 Nov 2013 20:57:23 +0000
Message-ID: <e7113c752faf496f9818b5c3c093348a@BLUPR03MB066.namprd03.prod.outlook.com>
References: <5267F29C.3010304@ericsson.com> <0010ca0ba1f44fe2a1b8fa5f110a00c0@SN2PR03MB077.namprd03.prod.outlook.com>, <41845B5F-8694-4368-B2F6-BA3BA0CFDD91@gmail.com> <ee10ff9826854918aebf0565c93ce5a9@SN2PR03MB077.namprd03.prod.outlook.com> <E07F8EDD-6BA5-4B7D-B307-C819B6AC2053@gmail.com> <6AC3097B-C63D-4DC6-80BE-29FEFE355D40@nominum.com>, <E30067C3-A44D-478A-9D78-CA2D078A8A76@viagenie.ca>
In-Reply-To: <E30067C3-A44D-478A-9D78-CA2D078A8A76@viagenie.ca>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [2001:4898:80e8:ed31::3]
x-forefront-prvs: 0038DE95A2
x-forefront-antispam-report: SFV:NSPM; SFS:(377424004)(377454003)(24454002)(51704005)(189002)(199002)(33646001)(63696002)(74876001)(59766001)(77982001)(74366001)(79102001)(53806001)(76482001)(74316001)(561944002)(87266001)(15975445006)(85806002)(85306002)(76796001)(76786001)(69226001)(81816001)(19580405001)(81686001)(2656002)(56816003)(77096001)(4396001)(76576001)(83072001)(80022001)(54316002)(51856001)(46102001)(74706001)(81342001)(54356001)(19580395003)(87936001)(74662001)(47446002)(74502001)(80976001)(56776001)(47736001)(47976001)(83322001)(31966008)(81542001)(50986001)(65816001)(49866001)(3826001)(24736002); DIR:OUT; SFP:; SCL:1; SRVR:BLUPR03MB068; H:BLUPR03MB066.namprd03.prod.outlook.com; CLIP:2001:4898:80e8:ed31::3; FPR:; RD:InfoNoRecords; MX:1; A:1; LANG:en;
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
Cc: Jouni Korhonen <jouni.nospam@gmail.com>, "mif-arch-dt@ietf.org" <mif-arch-dt@ietf.org>, Suresh Krishnan <suresh.krishnan@ericsson.com>
Subject: Re: [mif-arch-dt] Strawman solution proposals for DHCPv6 and RA support for multiple provisioning domains
X-BeenThere: mif-arch-dt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: MIF Architecture Design Team mailing list <mif-arch-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mif-arch-dt>, <mailto:mif-arch-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mif-arch-dt/>
List-Post: <mailto:mif-arch-dt@ietf.org>
List-Help: <mailto:mif-arch-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mif-arch-dt>, <mailto:mif-arch-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Nov 2013 20:57:35 -0000

>>But if is a human-readable for end-users, as you seem to assume above, then we enter into the languages, scripts, i18n, normalization and 

As I understand, there are a few examples like SSID, APN names etc which are typically (or perhaps can't be?) localized. Is there a guidance document at the IETF which prohibits introduction of new types of human-readable identifiers w/o internationalization support?
________________________________________
From: Marc Blanchet <marc.blanchet@viagenie.ca>
Sent: Friday, November 22, 2013 12:38 PM
To: Ted Lemon
Cc: Jouni Korhonen; mif-arch-dt@ietf.org; Suresh Krishnan; Dmitry Anipko
Subject: Re: [mif-arch-dt] Strawman solution proposals for DHCPv6 and RA support for multiple provisioning domains

Le 2013-11-22 à 15:33, Ted Lemon <ted.lemon@nominum.com> a écrit :

> On Nov 22, 2013, at 12:11 PM, Jouni Korhonen <jouni.nospam@gmail.com> wrote:
>> Domain names and alike possible PVD-IDs are ok since they already are "human readable". However, I would put zero energy trying to add something readable data into PVDs if the used PVD-ID itself is e.g. a binary blob. I just see no value of that if it increases the data size of the PVD container or ID.
>
> If the PVD ID is a blob, you need a mechanism for assigning a name to it and validating it.
>
> Think about the possible flow here.   We want to be able to present this information to the user in a chooser, right?   So that means that if what's contained in the ID is a binary blob, we need a way to translate it.   Also, if the blob is something we've already seen and can cryptographically authenticate based on a previous leap of faith, then we need the signature to authenticate.  And if we don't have the name at this point, we need a process for finding the name associated with the blob after we've decided to try it.
>
> It might be better to have a name that we can do all that too that's human-readable.

be careful. If it is a protocol parameter that is not shown to the user, then human readable is one design choice to help troubleshoot and ...  But if is a human-readable for end-users, as you seem to assume above, then we enter into the languages, scripts, i18n, normalization and ....  I'm not sure we want to go there for a PVD-ID...  I would assume a protocol element and then some end-user mapping in his own language/script/locale that is outside of the scope of this work/spec.

Marc.

>  Then we can do cryptographic validation if we have already seen the name, and avoid connecting to a fraudulent version of the PVD (which we could also do with the blob).   But if we haven't seen the name before, and haven't yet accepted it, we want something to present to the user, don't we?
>
> This bears thinking about.   I'm not saying you're wrong, but don't be too quick to leap to conclusions about this!
>
> _______________________________________________
> mif-arch-dt mailing list
> mif-arch-dt@ietf.org
> https://www.ietf.org/mailman/listinfo/mif-arch-dt

v2.23.0 | Report a Bug | By Email