IETF Logo Mail Archive

RE: [Mip6] WG LC: I-D draft-ietf-mip6-bootstrap-ps-01.txt (ProblemStatement for bootstrapping Mobile IPv6 )

"Alpesh" <alpesh@cisco.com> Fri, 04 March 2005 15:06 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA25857 for <mip6-web-archive@ietf.org>; Fri, 4 Mar 2005 10:06:37 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D7EPX-0004oW-NI for mip6-web-archive@ietf.org; Fri, 04 Mar 2005 10:08:18 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D7EN1-0006OA-2D; Fri, 04 Mar 2005 10:05:39 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1D7EMz-0006O5-3J for mip6@megatron.ietf.org; Fri, 04 Mar 2005 10:05:37 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA25705 for <mip6@ietf.org>; Fri, 4 Mar 2005 10:05:35 -0500 (EST)
Received: from sj-iport-5.cisco.com ([171.68.10.87]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1D7EOX-0004mo-Qr for mip6@ietf.org; Fri, 04 Mar 2005 10:07:15 -0500
Received: from sj-core-3.cisco.com (171.68.223.137) by sj-iport-5.cisco.com with ESMTP; 04 Mar 2005 07:05:24 -0800
X-BrightmailFiltered: true
X-Brightmail-Tracker: AAAAAA==
X-IronPort-AV: i="3.90,135,1107763200"; d="scan'208"; a="165203159:sNHT26483504"
Received: from alpeshw2k03 (sjc-vpn2-119.cisco.com [10.21.112.119]) by sj-core-3.cisco.com (8.12.10/8.12.6) with ESMTP id j24F5HTM013618; Fri, 4 Mar 2005 07:05:18 -0800 (PST)
Message-Id: <200503041505.j24F5HTM013618@sj-core-3.cisco.com>
From: Alpesh <alpesh@cisco.com>
To: 'Junghoon Jee' <jhjee@etri.re.kr>, mip6@ietf.org, 'Gopal Dommety' <gdommety@cisco.com>
Subject: RE: [Mip6] WG LC: I-D draft-ietf-mip6-bootstrap-ps-01.txt (ProblemStatement for bootstrapping Mobile IPv6 )
Date: Fri, 04 Mar 2005 07:05:15 -0800
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook, Build 11.0.5510
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4939.300
In-Reply-To: <005c01c520c9$458bc3b0$0bfaa8c0@FlyToWorld>
Thread-Index: AcUgyVLSsvh2qJwoQDq4eXDSlngHKgAAiM/w
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 31b28e25e9d13a22020d8b7aedc9832c
Content-Transfer-Encoding: 7bit
X-BeenThere: mip6@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: mip6.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:mip6@ietf.org>
List-Help: <mailto:mip6-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/mip6>, <mailto:mip6-request@ietf.org?subject=subscribe>
Sender: mip6-bounces@ietf.org
Errors-To: mip6-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 8b6657e60309a1317174c9db2ae5f227
Content-Transfer-Encoding: 7bit

Junghoon:

As I noted in separate emails, I am adding James suggestions - in main text
as well as security considerations. There may be a bit more changes/cleanup.


-a

> -----Original Message-----
> From: Junghoon Jee [mailto:jhjee@etri.re.kr] 
> Sent: Friday, March 04, 2005 6:49 AM
> To: Alpesh; mip6@ietf.org; 'Gopal Dommety'
> Subject: Re: [Mip6] WG LC: I-D 
> draft-ietf-mip6-bootstrap-ps-01.txt (ProblemStatement for 
> bootstrapping Mobile IPv6 )
> 
> Alpesh,
> 
> > > Q1. Should the network access service be always performed 
> when a MN 
> > > bootstraps ?
> > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > Section 6.  Network Access and Mobility services [Page 14] Only 
> > > having Mobile IPv6 service is not possible, since the Mobile IPv6 
> > > protocol requires ability to send and receive
> > > IPv6 packets.  
> > > => It seems that network access service should be always 
> performed.
> > 
> > If I understand your question correctly, the network access service 
> > should always be performed. Network access is required to 
> send/receive packets.
> > Now, whether access authentication/authorization is 
> performed or not 
> > is another issue. Were you refering to this later case?
> 
> This confisuion came from the use of 'network access provider.
> As i said, i like James' recommendation of  using the concept 
> of the 'service authorizer'.
> With my understaning is correct,
> In the Mobility service subscription scenario, both the 
> network access service and the mobility service are required.
> Howerver, only the mobility service authorizer does exist 
> without network access service authorizer.
> If you accept the use of James' comments, i have no more 
> issue related with this.
> 
> > > 
> > > Section 7.1  Mobility Service Subscription Scenario => 
> There is no 
> > > words about network access service.
> > 
> > The last paragraph mentions this. What specific details were you 
> > looking for?
> > 
> This question is in line with the first question.
> What about changing this section with little modification by 
> changing MSP to mobility service authorizer ?
> 
> 7.1  Mobility Service Subscription Scenario
> 
>    Many commercial deployments are based on the assumption that mobile
>    nodes have a subscription with a mobility service 
> authorizer.  In particular, in
>    this scenario the MN has a subscription with an mobility 
> service authorizer, called the home
>    service authorizer, for Mobile IPv6 service.  As stated in 
> Section 6, the mobility service authorizer is
>    responsible of setting up a home agent on a subnet that acts as a
>    Mobile IPv6 home link.  As a consequence, the home 
> mobility service authorizer should
>    explicitly authorize and control the whole bootstrapping procedure.
> 
>    Since the MN is assumed to have a pre-established trust 
> relationship
>    with its home provider, it must be configured with an identity and
>    credentials, for instance an NAI and a shared secret by some
>    out-of-band means before bootstrapping, for example by manual
>    configuration.
> 
>    In order to guarantee ubiquitous service, the MN should be able to
>    bootstrap MIPv6 operations with its home mobility service 
> authorizer from any possible access
>    location, such as an open network or a network managed by an ASP,
>    that may be different from the mobility service authorizer 
> and may not have any
>    pre-established trust relationship with it.
> 
> 
> 
> > > Q2. Does we have to consider the case of  infrastructure-less 
> > > scenario when we develop a bootstrapping solution or not ?
> > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > ~~~~~~~~~~~~~~~~~~~~~~
> > > Section 7.4 Infrastructure-less scenario [Page 17] This specific 
> > > scenario is not supported in this document.  The reason 
> for this is 
> > > described in Section 9.
> > > Section 9. Security Considerations
> > > Thus, the case of infrastructure-less network where there is 
> > > absolutely no pre-mediated trust is kept outside of scope of this 
> > > document.
> > > => It seems that we don't need to consider the 
> infrastructure-less 
> > > scenario
> > >      when we create a bootstrapping solution.
> > 
> > This is explicitly left outside the scope.
> 
> In my understanding,
> Infrastructure-less network means that there is no service authorizer.
> If it's right, yes it is outside the scope of bootstrapping.
> 
> > > Q3. Does a bootstrapping solution should support local home agent 
> > > assignment or not ?
> > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > > Section 5.1.2  Dynamic Home Agent Assignment [Page 10] Local home 
> > > agents
> > >       The mobile node's home ASP may want to allow a local roaming
> > >       partner ASP to assign a local home agent for the 
> mobile node.
> > >       This is useful both from the point of view of communications
> > >       efficiency, and has also been mentioned as one approach to 
> > > support
> > >       location privacy.
> > > => What is the exact meaning of the 'useful' and 'also been 
> > > mentioned' ?
> > >      Is the local home agent function optional[MAY] ?
> > 
> > So, this is an ancillary need. It is definitely not must 
> from this draft.
> 
> Yes, i understand your opinion.
> I think we need to clearly decide that,
> it can be included in requirement items or not.
> 
> --Junghoon
> 
> > -a
> > 
> > > 
> > > draft-le-aaa-mipv6-requirements-03.txt
> > > Section 5.5.  Home agent allocation
> > >    Such functionality SHOULD also be considered when 
> designing the AAA
> > >    support for MIPv6 solution.
> > > => It seems that we SHOULD support the local HA 
> assignment function.
> > > I already know that draft-ietf-mip6-bootstrap-ps is not a 
> I-D that 
> > > describe the requirement & draft-le-aaa-mipv6-requirements was 
> > > expired.
> > > But i think that we have to decide about this because 
> many different 
> > > approaches can be come out depending on our decision.
> > > 
> > > --Junghoon
> > > 
> > > ----- Original Message -----
> > > From: "Gopal Dommety" <gdommety@cisco.com>
> > > To: <mip6@ietf.org>
> > > Sent: Wednesday, February 16, 2005 5:11 AM
> > > Subject: [Mip6] WG LC: I-D
> > > draft-ietf-mip6-bootstrap-ps-01.txt (Problem Statement for 
> > > bootstrapping Mobile IPv6 )
> > > 
> > > 
> > > > 
> > > > Hello All,
> > > > 
> > > > 
> > > > This is a Working Group Last Call for the following I-D:
> > > > draft-ietf-mip6-bootstrap-ps-01.txt
> > > > Title:
> > > > Problem Statement for bootstrapping Mobile IPv6
> > > > 
> > > > Please note that the status intended for this I-D is
> > > Proposed Standard.
> > > > 
> > > > Please review and post your comments by March 3rd, 2005.
> > > > 
> > > > -Chairs,
> > > > 
> > > > URL-ID is:
> > > > 
> > > http://www.ietf.org/internet-drafts/draft-ietf-mip6-bootstrap-
> > > ps-01.txt
> > > > 
> > > > _______________________________________________
> > > > Mip6 mailing list
> > > > Mip6@ietf.org
> > > > https://www1.ietf.org/mailman/listinfo/mip6
> > >
> 

_______________________________________________
Mip6 mailing list
Mip6@ietf.org
https://www1.ietf.org/mailman/listinfo/mip6

v2.23.0 | Report a Bug | By Email