IETF Logo Mail Archive

Re: RR enhancements (Was: Re: [Mipshop] MIPSHOP discussion on new items and milestones)

Christian Vogt <chvogt@tm.uka.de> Wed, 23 March 2005 16:37 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA03924 for <mipshop-web-archive@ietf.org>; Wed, 23 Mar 2005 11:37:35 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1DE8ww-0002os-KT for mipshop-web-archive@ietf.org; Wed, 23 Mar 2005 11:43:19 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DE8mg-00083w-HJ; Wed, 23 Mar 2005 11:32:42 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DE8me-00083o-MF for mipshop@megatron.ietf.org; Wed, 23 Mar 2005 11:32:40 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA03103 for <mipshop@ietf.org>; Wed, 23 Mar 2005 11:32:38 -0500 (EST)
Received: from iramx2.ira.uni-karlsruhe.de ([141.3.10.81] ident=[U2FsdGVkX1+7MZv8mtWaBc+LmBDUVGj9pwkc2q0bAUk=]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1DE8s8-0002d4-Oy for mipshop@ietf.org; Wed, 23 Mar 2005 11:38:22 -0500
Received: from irams1.ira.uni-karlsruhe.de ([141.3.10.5] helo=irams1.ira.uka.de) by iramx2.ira.uni-karlsruhe.de with esmtps (Exim 4.43 #1) id 1DE8mW-0000I9-Vh; Wed, 23 Mar 2005 17:32:37 +0100
Received: from i72ibm03.tm.uni-karlsruhe.de ([141.3.71.115] helo=[127.0.0.1]) by irams1.ira.uka.de with esmtp (Exim 3.30 #7 ) id 1DE8mU-000377-00; Wed, 23 Mar 2005 17:32:30 +0100
Message-ID: <42419A1C.6000602@tm.uka.de>
Date: Wed, 23 Mar 2005 17:32:28 +0100
From: Christian Vogt <chvogt@tm.uka.de>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: de-DE, de, en-us, en
MIME-Version: 1.0
To: Jari Arkko <jari.arkko@kolumbus.fi>
Subject: Re: RR enhancements (Was: Re: [Mipshop] MIPSHOP discussion on new items and milestones)
References: <200503230219.j2N2J4AY400776@jurassic.eng.sun.com> <4240F6D5.5080806@kolumbus.fi>
In-Reply-To: <4240F6D5.5080806@kolumbus.fi>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: -13.4 (-------------)
X-Spam-Status: No
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 36b1f8810cb91289d885dc8ab4fc8172
Content-Transfer-Encoding: 7bit
Cc: mipshop@ietf.org, tm-ro2@tm.uka.de, Samita Chakrabarti <Samita.Chakrabarti@eng.sun.com>
X-BeenThere: mipshop@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: mipshop.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/mipshop>, <mailto:mipshop-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:mipshop@ietf.org>
List-Help: <mailto:mipshop-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/mipshop>, <mailto:mipshop-request@ietf.org?subject=subscribe>
Sender: mipshop-bounces@ietf.org
Errors-To: mipshop-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 87a3f533bb300b99e2a18357f3c1563d
Content-Transfer-Encoding: 7bit

Hi Samita, hi Jari.

 > All RO methods, including the RFC 3775 one, require
 > some state keeping. CBA/EBU needs at least the
 > counters, maybe some data related to the signaling
 > too. CGA/OMIP requires the shared key to be stored,
 > and lifetime of that key. These are short, the long data
 > items (public key) in the initial exchange are only needed

Our EBU implementation for the MN requires some state for periodic, 
proactive HoA tests, which we do on a periodic basis.  This is basically 
a timestamp in the binding-update-list entries.  You don't need it if L2 
triggers can be used to schedule the proactive HoA tests.

The simple-CBA implementation affects the CN only, where it adds an 
integer, the credit counter, to each binding-cache entry as well as a 
1-bit flag to differentiate between verified and unverified CoA's.

 > But as I have said before, I think the two schemes are
 > orthogonal, so I don't think we need to choose between
 > them. It appears quite possible to run both of them and
 > get both advantages. (This does not necessarily imply that
 > they have to be in one document, just that they both
 > exist in standardized form.)

I agree.  The HIP folks decided to to do something similar in 
Minneapolis.  They will integrate simple-CBA into HIP-based mobility and 
multi-homing there.  In fact, CBA can be seen as a *strategy* that 
applies to any mobility protocol (which uses IP-address tests).  One 
modification might be necessary with some mobility protocols, though. 
Namely, there needs to be an early, authenticated message that tells the 
CN about the MN's new CoA (or Locator, in HIP terminology).  This 
message already exists in HIP, but it does not exist in RFC 3775.  (See 
the threat with James, starting with [1].)

- Christian

[1] http://www1.ietf.org/mail-archive/web/mipshop/current/msg01119.html

-- 
Christian Vogt, Institute of Telematics, University of Karlsruhe
www.tm.uka.de/~chvogt/pubkey/


Jari Arkko wrote:
> Samita Chakrabarti wrote:
> 
>> I assume then long Data items (CGA+Key, SIG etc.) need to be
>> sent with every movement with pre-binding update ? Or is it
>> only once during first movement ?
>>  
>>
> 
> Only once, when the mobile node and correspondent
> exchange their first BU.
> 
>> If we send pre-binding msgs everytime MN moves, then in CGA scheme we 
>> save signalling in HOT/HOTI tests - I agree that's
>> a good gain.
>>
>>  
>>
>>> Updates every couple of minutes. This can be eliminated
>>> with a longer home test lifetime, which CGA can provide.
>>> This can be important for battery lifetime and aggregated
>>> bandwidth in cellular networks.
>>>
>>>   
>>
>>
>> Agree.
>>
>>  
>>
>>> Some theoretical calculations about the impacts of
>>> different methods can be found in Section 9 of
>>> draft-haddad-mip6-cga-omipv6-03.txt. For instance,
>>> a stationary mobile node (sounds funny but its really
>>> a quite common case) gets upto a 200-fold decrease
>>> in amount of signaling packets.
>>>
>>>   
>>
>>
>> Ok. Thanks.
>>
>>  
>>
>>> So, we could compare the two approaches but at the
>>> end of the day, they optimize different parts, and the sum
>>> of those parts is what the user sees. It consists of both
>>> latency (care of test, home test, other things) and signaling
>>> overhead.
>>>   
>>
>>
>>
>> Also, in the design, we need to consider minimum state keeping at
>> the CN -  the base design does not require any
>> state keeping at CN - which is a nice feature. CBA/EBU requires
>> some state keeping. Does OMIP6 require state keeping at CN?
>>  
>>
> All RO methods, including the RFC 3775 one, require
> some state keeping. CBA/EBU needs at least the
> counters, maybe some data related to the signaling
> too. CGA/OMIP requires the shared key to be stored,
> and lifetime of that key. These are short, the long data
> items (public key) in the initial exchange are only needed
> temporarily to verify the shared key.
> 
>> Agree that reducing signaling overhead, protection of home-address 
>> from the
>> attacker and reachability tests are important. At the end, implementors
>> would like to see a relatively simple protocol to implement to
>> achieve all these things. I like the less signalling part in CGA+key
>> scheme and like the credit based lifetime in the CBA scheme becuase
>> it can be flexible for different types of applications, but the optimum
>> lifetime values may need to be tuned so that it generates less BU for
>> such apps.
>> I see its not trivial to choose one draft over the other or merge them 
>> to obtain the maximum benefit.
>>  
>>
> Choosing might be difficult, because people may have
> differerent objectives in mind. For instance, I care a lot
> about "stationary" mobile nodes and the amount of
> overhead signaling they care. Others may care more about
> latency.
> 
> But as I have said before, I think the two schemes are
> orthogonal, so I don't think we need to choose between
> them. It appears quite possible to run both of them and
> get both advantages. (This does not necessarily imply that
> they have to be in one document, just that they both
> exist in standardized form.)
> 
> --Jari


_______________________________________________
Mipshop mailing list
Mipshop@ietf.org
https://www1.ietf.org/mailman/listinfo/mipshop

v2.23.0 | Report a Bug | By Email