IETF Logo Mail Archive

Re: [nbs] Name->Locator validation. (Was: Re: A suggestion for an "on-demand API".)

Javier Ubillos <jav@sics.se> Wed, 22 December 2010 10:11 UTC

Return-Path: <jav@sics.se>
X-Original-To: nbs@core3.amsl.com
Delivered-To: nbs@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E3A5C3A67C1 for <nbs@core3.amsl.com>; Wed, 22 Dec 2010 02:11:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[AWL=0.249, BAYES_00=-2.599, HELO_EQ_SE=0.35]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Fs3RNSnljg8J for <nbs@core3.amsl.com>; Wed, 22 Dec 2010 02:11:13 -0800 (PST)
Received: from letter.sics.se (letter.sics.se [193.10.64.6]) by core3.amsl.com (Postfix) with ESMTP id 108D53A6AF3 for <nbs@ietf.org>; Wed, 22 Dec 2010 02:11:06 -0800 (PST)
Received: from [193.10.66.63] (bit.sics.se [193.10.66.63]) (Authenticated sender: jav@sics.se) by letter.sics.se (Postfix) with ESMTPSA id 49BE5402BD; Wed, 22 Dec 2010 11:13:03 +0100 (CET)
From: Javier Ubillos <jav@sics.se>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
In-Reply-To: <4D110228.9040905@gmail.com>
References: <20101214144734.GC12378@quasimodo.us.oracle.com> <1292401029.4804.30.camel@bit> <20101215154556.GE16665@quasimodo.us.oracle.com> <1292500103.4804.1313.camel@bit> <20101217231322.GB20694@quasimodo.us.oracle.com> <1292947354.4804.8395.camel@bit> <4D110228.9040905@gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="=-iGnHmefDP7FoRdSZ0/Ba"
Date: Wed, 22 Dec 2010 11:12:49 +0100
Message-ID: <1293012769.4804.9549.camel@bit>
Mime-Version: 1.0
X-Mailer: Evolution 2.28.3
Cc: nbs@ietf.org, christian.vogt@ericsson.com
Subject: Re: [nbs] Name->Locator validation. (Was: Re: A suggestion for an "on-demand API".)
X-BeenThere: nbs@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Name based sockets discussion list <nbs.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/nbs>, <mailto:nbs-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/nbs>
List-Post: <mailto:nbs@ietf.org>
List-Help: <mailto:nbs-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/nbs>, <mailto:nbs-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Dec 2010 10:11:25 -0000

On Wed, 2010-12-22 at 08:38 +1300, Brian E Carpenter wrote:
> ...
> > The basic question is, is it enough with the name->locator binding being
> > OK in the beginning of the connection or must it be valid throughout the
> > connection.
> > 
> > Having a "last verified time-stamp" makes it very explicit that the
> > name->locator binding was valid at that given point in time.
> > 
> > This leaves it open for a continual polling to the nameing system if
> > that is what is required by that nameing system and the application.
> > 
> > It also leaves it open to the application to decide whether or not it is
> > OK to have a valid name->locator binding at the beginning of the
> > connection or not.
> 
> As is noted in draft-carpenter-referral-ps, these bindings
> (and even nameless locators) have finite lifetimes, known at their
> point of origin (from DHCP, SLAAC, DNS TTL, etc.) The problem shouldn't
> be stated as timestamps or a need for polling. Quoting that draft:
> "A referral that does not convey the lifetime associated with
> an address is problematic." The lifetime should be carried with
> the binding, and counted down locally.
> 
>       Brian

That sounds great.
Given that the application (on either side) actually does want
authenticity in the name->locator binding:
Letting the naming-system/referral-mechanism manage this, and that a
client MUST verify and renew the lifetime of the name->locator binding
sounds healthy to me.

// Javier

v2.23.0 | Report a Bug | By Email