[mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

James Guichard <james.n.guichard@futurewei.com> Thu, 12 September 2024 15:03 UTC

Return-Path: <james.n.guichard@futurewei.com>
X-Original-To: mpls@ietfa.amsl.com
Delivered-To: mpls@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C7C0CC14EB1E; Thu, 12 Sep 2024 08:03:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.108
X-Spam-Level:
X-Spam-Status: No, score=-2.108 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=futurewei.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O9j7LwpCzLn2; Thu, 12 Sep 2024 08:03:42 -0700 (PDT)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on2101.outbound.protection.outlook.com [40.107.93.101]) (using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7AAE6C15199B; Thu, 12 Sep 2024 08:03:41 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=RIcQ3xOZ7YrTESVlXrpK9zLLVEEin2NJhQxlSsSn5rsn+oPsGW3efYfREl3EEpM40BjATrbHABu3OQytaJpMp9BuW1EQ7cMHl/4PLfRHaYj2Y2DY0f9UPMxS687wlNQ8UJmo58mDZoBjivEleFx15JtEV0iSBceS96Jq5SZjKZ4kcloEH4jrjlTtPFH7rc7DUu8WC+f7D4am7NcpKb+lIkTlWBPzrblSAOu5CT7rRmqrX6D3bHRD3IL/ZQH8O805iJkqkZhTeqclq84z+tPercjsksLcwGYvbSn3bG3vGjfILZm/CZ6+IES4s2ctlTLiXMJhFLMVhSoa2ROa8I7pTw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=0z6UhMVUm9lyF3j/SFZdb3MdfUUGm74IkRAXW+kZftg=; b=jpvkUQtFhcyK9uYR/9E1nqCm2HeO6zySvIBbdMKT4t2Kggxe1SejHISjxmHfUVbMbWaFCbZ9ife/YP4KqWRYaDDzFd3Sc4Jzt5lcvMEF870CmxuOVOv3mdTB5g2lCkSXhkr7vzc157cRPS0dBWk2iILdTXaVSbKtPQffX7+fV0vW47teOngFtiSfqWWaL+YIMZYN/Lg25f9lOvPGDrKrvU5aMcEUm0AT1Vnz6IWZ0heZineri4hKEkYl9U7urjiM/UZ5LVC2umJ9SQDLEtD8fxp8SoqWhK05V89N8vnVzJii9qvfHMZNnTVMQbik35kkOeZHj/HnwZQGqZb0pHf8Yg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=futurewei.com; dmarc=pass action=none header.from=futurewei.com; dkim=pass header.d=futurewei.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=Futurewei.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0z6UhMVUm9lyF3j/SFZdb3MdfUUGm74IkRAXW+kZftg=; b=PNsRP/xNpb56AWfsYcbfmRWbm6xe8iVnSpy8AYAyr7LVFKOtvFmKxhyXg1Ii4Hekaj3XljYoMXW/NCwU6G86QgNiZHzn4/Bw6tXNHZuI5o54glDeEiOn5tugpFdU1K2wzakZrvMb85sXbkFB+PMBRUsLoJ/y9juOPc/A1GpIJQ4=
Received: from MW5PR13MB5485.namprd13.prod.outlook.com (2603:10b6:303:190::9) by DM6PR13MB4430.namprd13.prod.outlook.com (2603:10b6:5:20e::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7939.24; Thu, 12 Sep 2024 15:03:33 +0000
Received: from MW5PR13MB5485.namprd13.prod.outlook.com ([fe80::6f7a:21e9:60ce:8bb]) by MW5PR13MB5485.namprd13.prod.outlook.com ([fe80::6f7a:21e9:60ce:8bb%3]) with mapi id 15.20.7939.022; Thu, 12 Sep 2024 15:03:33 +0000
From: James Guichard <james.n.guichard@futurewei.com>
To: Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com>
Thread-Topic: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
Thread-Index: AQHa/4ZLquQErlG9j0206TQIjg+orrJTaVUAgACmvpGAAA/BgIAAKsad
Date: Thu, 12 Sep 2024 15:03:33 +0000
Message-ID: <MW5PR13MB5485543E52AC9CC71677B8D4D2642@MW5PR13MB5485.namprd13.prod.outlook.com>
References: <20240912093630736metneDzsvPE22OSPn2orh@zte.com.cn> <SJ0PR13MB5474B8A3B2FB0304F6042EF2D2642@SJ0PR13MB5474.namprd13.prod.outlook.com> <CAEh=tcegLp6rgMfgAXYmOKyQsbA8pEtDr-gPvqpqhUj6JfJRPA@mail.gmail.com>
In-Reply-To: <CAEh=tcegLp6rgMfgAXYmOKyQsbA8pEtDr-gPvqpqhUj6JfJRPA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=futurewei.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MW5PR13MB5485:EE_|DM6PR13MB4430:EE_
x-ms-office365-filtering-correlation-id: 7d152079-a965-4720-6f09-08dcd33c124f
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|376014|1800799024|366016|38070700018;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MW5PR13MB5485.namprd13.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(1800799024)(366016)(38070700018);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_MW5PR13MB5485543E52AC9CC71677B8D4D2642MW5PR13MB5485namp_"
MIME-Version: 1.0
X-OriginatorOrg: Futurewei.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MW5PR13MB5485.namprd13.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 7d152079-a965-4720-6f09-08dcd33c124f
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Sep 2024 15:03:33.8144 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0fee8ff2-a3b2-4018-9c75-3a1d5591fedc
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: MsGBlipF13kKyOLJx5m7xiEG9R31kTd1h2+juuLVpFf91EZsVgQUdTg7BW5fiDBItYYW0FxAhrLTrMltjNBmcg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR13MB4430
Message-ID-Hash: ZHDUNJRBOCFSK2EZQW7FNFR4AQ3NT2BV
X-Message-ID-Hash: ZHDUNJRBOCFSK2EZQW7FNFR4AQ3NT2BV
X-MailFrom: james.n.guichard@futurewei.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-mpls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "iesg@ietf.org" <iesg@ietf.org>, "draft-ietf-mpls-inband-pm-encapsulation@ietf.org" <draft-ietf-mpls-inband-pm-encapsulation@ietf.org>, "mpls-chairs@ietf.org" <mpls-chairs@ietf.org>, "mpls@ietf.org" <mpls@ietf.org>, "tsaad@cisco.com" <tsaad@cisco.com>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
List-Id: Multi-Protocol Label Switching WG <mpls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/mpls/ScKuODzuinxK5dVbqOVrxbXhCFU>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mpls>
List-Help: <mailto:mpls-request@ietf.org?subject=help>
List-Owner: <mailto:mpls-owner@ietf.org>
List-Post: <mailto:mpls@ietf.org>
List-Subscribe: <mailto:mpls-join@ietf.org>
List-Unsubscribe: <mailto:mpls-leave@ietf.org>

Thanks, Zahed!

Hi Xiao,

Please upload a new version with the appropriate text and once Zahed clears his discuss I will move the document forward.

Jim

From: Zaheduzzaman Sarker <zahed.sarker.ietf@gmail.com>
Date: Thursday, September 12, 2024 at 8:29 AM
To: James Guichard <james.n.guichard@futurewei.com>
Cc: xiao.min2@zte.com.cn <xiao.min2@zte.com.cn>, iesg@ietf.org <iesg@ietf.org>, draft-ietf-mpls-inband-pm-encapsulation@ietf.org <draft-ietf-mpls-inband-pm-encapsulation@ietf.org>, mpls-chairs@ietf.org <mpls-chairs@ietf.org>, mpls@ietf.org <mpls@ietf.org>, tsaad@cisco.com <tsaad@cisco.com>
Subject: Re: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
Hi Jim,

You are right. I got what I wanted from your response. With that I am happy with the added text and thanks for resolving my discuss. Just let me know when the proposed text lands on the updated draft..I will clear my discuss.

//Zahed

On Thu, Sep 12, 2024 at 2:01 PM James Guichard <james.n.guichard@futurewei.com<mailto:james.n.guichard@futurewei.com>> wrote:
Hi Xiao,

As the responsible AD for this document let me chime in here. I believe that Zahed’s DISCUSS is focused on the following text:

As specified in Section 7.1 of RFC9341, for security reasons, the Alternate-Marking Method MUST only be applied to controlled domains. That requirement applies when the MPLS performance measurement with the Alternate-Marking Method is taken into account, which means the MPLS encapsulation and related procedures defined in this document MUST only be applied to controlled domains, otherwise the potential attacks discussed in Section 10 of RFC9341 may be applied to the deployed MPLS networks.

The above text says ‘MUST only be applied to controlled domains’ and Zahed is trying to clarify that the MUST can be honored. I believe that the answer to this is yes as MPLS by design is a ‘fail closed’ protocol and therefore the method described in this document is contained within the boundaries of the network where MPLS is enabled.  I am not sure if any further text is necessary, but I will let Zahed confirm.

Thanks!

Jim


From: xiao.min2@zte.com.cn<mailto:xiao.min2@zte.com.cn> <xiao.min2@zte.com.cn<mailto:xiao.min2@zte.com.cn>>
Date: Wednesday, September 11, 2024 at 9:38 PM
To: zahed.sarker.ietf@gmail.com<mailto:zahed.sarker.ietf@gmail.com> <zahed.sarker.ietf@gmail.com<mailto:zahed.sarker.ietf@gmail.com>>
Cc: iesg@ietf.org<mailto:iesg@ietf.org> <iesg@ietf.org<mailto:iesg@ietf.org>>, draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org> <draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org>>, mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org> <mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org>>, mpls@ietf.org<mailto:mpls@ietf.org> <mpls@ietf.org<mailto:mpls@ietf.org>>, tsaad@cisco.com<mailto:tsaad@cisco.com> <tsaad@cisco.com<mailto:tsaad@cisco.com>>
Subject: [mpls] Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

Hi Zahed,



Thank you for the prompt reply.

Please see inline.
Original
From: ZaheduzzamanSarker <zahed.sarker.ietf@gmail.com<mailto:zahed.sarker.ietf@gmail.com>>
To: 肖敏10093570;
Cc: iesg@ietf.org<mailto:iesg@ietf.org> <iesg@ietf.org<mailto:iesg@ietf.org>>;draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org> <draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org>>;mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org> <mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org>>;mpls@ietf.org<mailto:mpls@ietf.org> <mpls@ietf.org<mailto:mpls@ietf.org>>;tsaad@cisco.com<mailto:tsaad@cisco.com> <tsaad@cisco.com<mailto:tsaad@cisco.com>>;tony.li@tony.li<mailto:tony.li@tony.li> <tony.li@tony.li<mailto:tony.li@tony.li>>;
Date: 2024年09月05日 19:25
Subject: Re: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)

On Thu, Sep 5, 2024 at 10:35 AM <xiao.min2@zte.com.cn<mailto:xiao.min2@zte.com.cn>> wrote:

Hi Zaheduzzaman,

Thanks for your review and comments.

Please see inline.
Original
From: ZaheduzzamanSarkerviaDatatracker <noreply@ietf.org<mailto:noreply@ietf.org>>
To: The IESG <iesg@ietf.org<mailto:iesg@ietf.org>>;
Cc: draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org> <draft-ietf-mpls-inband-pm-encapsulation@ietf.org<mailto:draft-ietf-mpls-inband-pm-encapsulation@ietf.org>>;mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org> <mpls-chairs@ietf.org<mailto:mpls-chairs@ietf.org>>;mpls@ietf.org<mailto:mpls@ietf.org> <mpls@ietf.org<mailto:mpls@ietf.org>>;tsaad@cisco.com<mailto:tsaad@cisco.com> <tsaad@cisco.com<mailto:tsaad@cisco.com>>;tony.li@tony.li<mailto:tony.li@tony.li> <tony.li@tony.li<mailto:tony.li@tony.li>>;tony.li@tony.li<mailto:tony.li@tony.li> <tony.li@tony.li<mailto:tony.li@tony.li>>;
Date: 2024年09月04日 14:54
Subject: Zaheduzzaman Sarker's Discuss on draft-ietf-mpls-inband-pm-encapsulation-15: (with DISCUSS and COMMENT)
Zaheduzzaman Sarker has entered the following ballot position for
draft-ietf-mpls-inband-pm-encapsulation-15: Discuss

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-mpls-inband-pm-encapsulation/



----------------------------------------------------------------------
DISCUSS:
----------------------------------------------------------------------

Thanks for working on this specification.

I have noted this specificaiton uses RFC 9341 performance measurement methods.
RFC 9341 says -

   "the Alternate-Marking Method MUST only be applied to controlled domains."

Hence, I would like to discuss

  - if MPLS performance measurement will be done in "controlled domains" or
  not. If yes, should this specification not discuss and state about
  measurement done in "controlled domains"?
[XM]>>> Yes, on this point the MPLS performance measurement follows what RFC 9341 says. To make this explicit, I propose to add a new paragraph to the beginning of the Security section.

NEW

As specified in Section 7.1 of RFC9341, for security reasons, the Alternate-Marking Method MUST only be applied to controlled domains. That requirement applies when the MPLS performance measurement with the Alternate-Marking Method is taken into account, which means the MPLS encapsulation and related procedures defined in this document MUST only be applied to controlled domains, otherwise the potential attacks discussed in Section 10 of RFC9341 may be applied to the deployed MPLS networks.
Thanks the text looks good, however, I am not sure if MPLS perfomance can be done in controlled domains or not i.e. what is the controlled domain mean here in this context. I will left that to MPLS expert to comment on.

[XM-2]>>> I don't see any comments from MPLS expert, so pardon me to chime in. Section 7.1 of RFC9341 provides an explanation on what a controlled domain means, it says "A controlled domain can correspond to a single administrative domain or multiple administrative domains under a defined network management". Considering in Section 8 of this document it says "The method for achieving multi-domain performance measurement with the same Flow-ID label is outside the scope of this document", I think in the context of this document a controlled domain corresponds to a single administrative domain.



Cheers,

Xiao Min


//Zahed








  - current security consideration does not describe the implications if the
  measurement is not done in the controlled domains, should this specification
  not describe those?
[XM]>>> Please see above. Is the text of the proposed new paragraph applicable?

----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

I have not marked any other transport protocol related issues.

Best Regards,

Xiao Min