Re: [Openv6] A new APONF use case FW: New Version Notification for draft-bi-aponf-sdsavi-00.txt

Hosnieh Rafiee <hosnieh.rafiee@huawei.com> Thu, 10 July 2014 09:00 UTC

Return-Path: <hosnieh.rafiee@huawei.com>
X-Original-To: openv6@ietfa.amsl.com
Delivered-To: openv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 755E61B27C2 for <openv6@ietfa.amsl.com>; Thu, 10 Jul 2014 02:00:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.852
X-Spam-Level:
X-Spam-Status: No, score=-4.852 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6iS5kgMgHC_8 for <openv6@ietfa.amsl.com>; Thu, 10 Jul 2014 02:00:33 -0700 (PDT)
Received: from lhrrgout.huawei.com (lhrrgout.huawei.com [194.213.3.17]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D5F561B27BB for <openv6@ietf.org>; Thu, 10 Jul 2014 02:00:32 -0700 (PDT)
Received: from 172.18.7.190 (EHLO lhreml403-hub.china.huawei.com) ([172.18.7.190]) by lhrrg02-dlp.huawei.com (MOS 4.3.7-GA FastPath queued) with ESMTP id BGZ14079; Thu, 10 Jul 2014 09:00:18 +0000 (GMT)
Received: from LHREML513-MBB.china.huawei.com ([fe80::b810:863:a57e:3ff]) by lhreml403-hub.china.huawei.com ([::1]) with mapi id 14.03.0158.001; Thu, 10 Jul 2014 10:00:14 +0100
From: Hosnieh Rafiee <hosnieh.rafiee@huawei.com>
To: Guang Yao <yaoguang@cernet.edu.cn>, "openv6@ietf.org" <openv6@ietf.org>
Thread-Topic: [Openv6] A new APONF use case FW: New Version Notification for draft-bi-aponf-sdsavi-00.txt
Thread-Index: Ac+YI+oyl/kqmL/6STObUCWuBm5jRgBkNkbwAF4NpYAAPAOu4A==
Date: Thu, 10 Jul 2014 09:00:14 +0000
Message-ID: <814D0BFB77D95844A01CA29B44CBF8A7A0D55F@lhreml513-mbb.china.huawei.com>
References: <007c01cf9823$edf92840$c9eb78c0$@tsinghua.edu.cn> <814D0BFB77D95844A01CA29B44CBF8A7A0C560@lhreml513-mbb.china.huawei.com> <006401cf9b35$5c439a60$14cacf20$@cernet.edu.cn>
In-Reply-To: <006401cf9b35$5c439a60$14cacf20$@cernet.edu.cn>
Accept-Language: zh-CN, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.221.82.100]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: http://mailarchive.ietf.org/arch/msg/openv6/nCUIkmfTUyVhopG7Ub5YWo6U3kw
Subject: Re: [Openv6] A new APONF use case FW: New Version Notification for draft-bi-aponf-sdsavi-00.txt
X-BeenThere: openv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Openv6 discussion list <openv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openv6>, <mailto:openv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openv6/>
List-Post: <mailto:openv6@ietf.org>
List-Help: <mailto:openv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openv6>, <mailto:openv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Jul 2014 09:00:35 -0000

Hi Guang,

Thanks for your response and clarifying the plan for the work. You covered my response. :-). By addressing the concern I mentioned, I guess there is no more risk. 

Best,
Hosnieh

-----Original Message-----
From: Guang Yao [mailto:yaoguang@cernet.edu.cn] 
Sent: Wednesday, July 09, 2014 7:19 AM
To: Hosnieh Rafiee; openv6@ietf.org
Subject: RE: [Openv6] A new APONF use case FW: New Version Notification for draft-bi-aponf-sdsavi-00.txt

Dear Hosnieh,

Thank you very much for your comments. 

At first, I can well understand "Openv6", but currently I'm not quite sure about "APONF". This doc is originally written for "Openv6"; however, I'm still not sure about it is an APONF-style "application" even after we try to use the concepts specified in APONF. I think this doc is a requirement doc rather than a solution design.

I'm not sure I fully understand your question, but I will try to answer it to my best of my understanding. I think the first step is the SAVI application should have a way to identify which nodes are important, and thus their addresses. We suppose such an interface should be provided by APONF, e.g., it can tells which nodes are servers, which nodes are hosts.
What the SAVI application need is just prevent the hosts from spoofing the addresses of servers. If the node is dynamic attached, APONF may still have some way to tell its role, then things will be much the same. 

If APONF does not intent to support this, we will check what APONF can provide to SAVI and re-design it. Though APONF is supposed to provide an "Abstract View" to the applications, currently there is not a detailed doc on it. At least the SAVI application deeply depends on the view can be achieved. We sincerely expect the doc.

Best regards,
Guang

-----Original Message-----
From: Openv6 [mailto:openv6-bounces@ietf.org] On Behalf Of Hosnieh Rafiee
Sent: Monday, July 07, 2014 3:50 PM
To: openv6@ietf.org
Subject: Re: [Openv6] A new APONF use case FW: New Version Notification for draft-bi-aponf-sdsavi-00.txt

Folks,
I have read this version. I found a typo and have a question.

Introduction

- " and the decide" -> remove "the"


Comments:
- I actually skimmed some of SAVI documents. What I understand from those documents is that they try to create a bindings between the port and the node. So, IMHO, still there might be a risk in initial steps where nodes identify themselves to SAVI device. In this step, if there is a bad guy in the network, he can claim the address of any other nodes. This is , of course, no risk if the IP addresses does not have any meaning. In other words, the IP addresses are not the IP addresses of nodes who are important in the network. I think this risk is almost zero for the case where SeND is in use but when there is DHCP server in use then this risk is still possible since a node can advertise any IP address. So, I guess, in this case for important nodes, even for initial steps, human interaction is needed.

Now the question is how do you plan to handle this when you want to have also a dynamic port? 

Thank you,
Best,
Hosnieh




-----Original Message-----
From: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org]
Sent: Saturday, July 5, 2014 2:42 AM
To: Jun Bi; Guang Yao; Guang Yao; Jun Bi
Subject: New Version Notification for draft-bi-aponf-sdsavi-00.txt


A new version of I-D, draft-bi-aponf-sdsavi-00.txt has been successfully
submitted by Guang Yao and posted to the IETF repository.

Name:		draft-bi-aponf-sdsavi
Revision:	00
Title:		Software Defined SAVI
Document date:	2014-07-04
Group:		Individual Submission
Pages:		4
URL:
http://www.ietf.org/internet-drafts/draft-bi-aponf-sdsavi-00.txt
Status:         https://datatracker.ietf.org/doc/draft-bi-aponf-sdsavi/
Htmlized:       http://tools.ietf.org/html/draft-bi-aponf-sdsavi-00


Abstract:
   This document is about the APONF use case for SAVI.

 



Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat


_______________________________________________
Openv6 mailing list
Openv6@ietf.org
https://www.ietf.org/mailman/listinfo/openv6

_______________________________________________
Openv6 mailing list
Openv6@ietf.org
https://www.ietf.org/mailman/listinfo/openv6