Re: [P2PSIP] New draft: draft-matthews-p2psip-hip-hop-00
Gonzalo Camarillo <Gonzalo.Camarillo@ericsson.com> Mon, 18 June 2007 11:05 UTC
Return-path: <p2psip-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I0F2z-0005P8-DT; Mon, 18 Jun 2007 07:05:25 -0400
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I0F2x-0005P2-KD for p2psip@ietf.org; Mon, 18 Jun 2007 07:05:23 -0400
Received: from mailgw3.ericsson.se ([193.180.251.60]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1I0F2v-00042I-Fu for p2psip@ietf.org; Mon, 18 Jun 2007 07:05:23 -0400
Received: from mailgw3.ericsson.se (unknown [127.0.0.1]) by mailgw3.ericsson.se (Symantec Mail Security) with ESMTP id BDA9A206FF; Mon, 18 Jun 2007 13:05:20 +0200 (CEST)
X-AuditID: c1b4fb3c-b067fbb0000007e1-ef-467666f04212
Received: from esealmw126.eemea.ericsson.se (unknown [153.88.254.123]) by mailgw3.ericsson.se (Symantec Mail Security) with ESMTP id 9EBAC20410; Mon, 18 Jun 2007 13:05:20 +0200 (CEST)
Received: from esealmw128.eemea.ericsson.se ([153.88.254.172]) by esealmw126.eemea.ericsson.se with Microsoft SMTPSVC(6.0.3790.1830); Mon, 18 Jun 2007 13:05:20 +0200
Received: from mail.lmf.ericsson.se ([131.160.11.50]) by esealmw128.eemea.ericsson.se with Microsoft SMTPSVC(6.0.3790.1830); Mon, 18 Jun 2007 13:05:19 +0200
Received: from [131.160.126.62] (rvi2-126-62.lmf.ericsson.se [131.160.126.62]) by mail.lmf.ericsson.se (Postfix) with ESMTP id C21142715; Mon, 18 Jun 2007 14:05:19 +0300 (EEST)
Message-ID: <467666F0.4050102@ericsson.com>
Date: Mon, 18 Jun 2007 14:05:20 +0300
From: Gonzalo Camarillo <Gonzalo.Camarillo@ericsson.com>
User-Agent: Thunderbird 1.5.0.12 (Windows/20070509)
MIME-Version: 1.0
To: Philip Matthews <philip_matthews@magma.ca>
Subject: Re: [P2PSIP] New draft: draft-matthews-p2psip-hip-hop-00
References: <7A7D2D13-9CE0-4F75-9D6A-BBA0899B0748@magma.ca> <1241F709-8FFC-4CB6-86BC-28A2FBB8A8D1@magma.ca>
In-Reply-To: <1241F709-8FFC-4CB6-86BC-28A2FBB8A8D1@magma.ca>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-OriginalArrivalTime: 18 Jun 2007 11:05:20.0042 (UTC) FILETIME=[8F4900A0:01C7B198]
X-Brightmail-Tracker: AAAAAA==
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 6640e3bbe8a4d70c4469bcdcbbf0921d
Cc: P2PSIP Mailing List <p2psip@ietf.org>
X-BeenThere: p2psip@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Peer-to-Peer SIP working group discussion list <p2psip.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/p2psip>, <mailto:p2psip-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/p2psip>
List-Post: <mailto:p2psip@ietf.org>
List-Help: <mailto:p2psip-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/p2psip>, <mailto:p2psip-request@ietf.org?subject=subscribe>
Errors-To: p2psip-bounces@ietf.org
Hi, some comments on this draft (disclaimer: I read an earlier version of this document; some of my initial comments may have already been addressed in this version). In short, I like the concept of having a generic overlay; there has been work in the past to build HIP-based generic overlays (e.g., Hi3). Many readers will not be familiar with HIP. Thus, we would need to clarify a few fundamental concepts. The paper says that hosts can create HIs without accessing a central server. It would be good to clarify that this can be done when the hosts use opportunistic security (i.e., leap of faith). SIP people are familiar with that because of S/MIME; so, they will be able to draw a connection between SIP and HIP security. The draft claims that since HITs are "large enough", there are no collisions. I guess we should clarify that large HITs alone do not ensure that. That property also come from the fact that HITs are derived from HIs using a hash algorithm with low-collision properties. When talking about integrating HIP with existing applications and the fact that HITs look and feel like IPv6 addresses, it would be good to mention that there HIP WG is working on an API for HIP-aware applications and on how legacy applications (i.e., HIP-unaware applications) can use HIP. There are two drafts that we could reference in that context. We also need to talk about LSIs in the context of non-IPv6 applications. The paper is not clear on how a typical HIP connection looks like. We need to be clear that, after the initial four-way exchange, hosts exchange regular ESP-protected IP traffic. That is, the ESP-based security association between two hosts is a regular security association that even though was established by HIP, does not carry any HIP information. We should also say that, given that some applications do not want their traffic to be protected by ESP (e.g., applications using SRTP), there is work to support alternative protections. The draft talks about piggybacking regular traffic on HIP packets. Existing implementations do not support that. We should be aware that we would need to work on that a little more. The draft also talks about hop-by-hop routing. We have dome some work on HIP delegation in the past that could be used in such a context. In any case, we will need to work on it a little more as well, especially on the security implications. Cheers, Gonzalo Philip Matthews wrote: > Whoops! > It was just pointed out to me that I gave the wrong links in the e-mail > below. > > The correct links are: > Text version: > > http://www.magma.ca/~philip_matthews/draft-matthews-p2psip-hip-hop-00.txt > HTML version: > > http://www.magma.ca/~philip_matthews/draft-matthews-p2psip-hip-hop-00.htm > > Sorry about that. > > - Philip > > PS. The links quoted in the original message were to the Concepts draft. > I recommend reading that one too! :-) > > > On 17-Jun-07, at 09:15 , Philip Matthews wrote: > >> Folks: >> >> Eric Cooper, Alan Johnston, and I have just written a draft that >> suggests what we think >> is an interesting direction for the P2PSIP working group. >> >> We argue that a P2PSIP overlay should use HIP (the Host Identity >> Protocol) >> to provide a number of the basic features in an overlay, namely: >> o Peer IDs; >> o Transporting messages around the overlay; >> o Signaling new overlay connections; >> o Supporting mobility and multi-homing of peers; >> o Providing message security. >> >> One of the reasons we really like this idea is because, using the >> approach >> described in the draft, many existing applications don't require any >> modifications >> and "just work" in an overlay. >> >> We describe this idea in a draft that has just been submitted. >> Until the draft appears in the archives, you can get a copy at >> http://www.magma.ca/~philip_matthews/draft-willis-p2psip-concepts-04.txt >> >> or for the html version >> http://www.magma.ca/~philip_matthews/draft-willis-p2psip-concepts-04.htm >> >> >> Here is the abstract from the draft: >> This document examines a P2PSIP architecture where the peer-to-peer >> (P2P) layer is separate from and lies below the SIP layer. We >> discuss the functions of the P2P layer in such an architecture, and >> focus in on the Distributed Transport function - the function that >> allows a peer to exchange messages with any other peer in the >> overlay, even in the presence of NATs. We list the features that the >> Distributed Transport function needs to provide, and observe that the >> Host Identity Protocol (HIP) already provides a number of these >> features. We then propose extensions to HIP that allow it to provide >> the missing features. We discuss how a complete P2PSIP architecture >> can be built around HIP, and contrast this approach with other >> approaches for implementing a P2P layer. Two of the advantages of >> HIP approach are that (a) most existing applications can run in an >> overlay without needing any changes and (b) peer mobility and NAT >> traversal are handled in a way that is transparent to most >> applications. >> >> - Philip >> >> >> _______________________________________________ >> P2PSIP mailing list >> P2PSIP@ietf.org >> https://www1.ietf.org/mailman/listinfo/p2psip > > > _______________________________________________ > P2PSIP mailing list > P2PSIP@ietf.org > https://www1.ietf.org/mailman/listinfo/p2psip > _______________________________________________ P2PSIP mailing list P2PSIP@ietf.org https://www1.ietf.org/mailman/listinfo/p2psip
- Re: [P2PSIP] New draft: draft-matthews-p2psip-hip… Gonzalo Camarillo
- [P2PSIP] New draft: draft-matthews-p2psip-hip-hop… Philip Matthews
- Re: [P2PSIP] New draft: draft-matthews-p2psip-hip… Hannes Tschofenig
- Re: [P2PSIP] New draft: draft-matthews-p2psip-hip… Philip Matthews
- Re: [P2PSIP] New draft: draft-matthews-p2psip-hip… Philip Matthews
- Re: [P2PSIP] New draft: draft-matthews-p2psip-hip… Philip Matthews
- RE: [P2PSIP] New draft: draft-matthews-p2psip-hip… JiangXingFeng
- Re: [P2PSIP] New draft: draft-matthews-p2psip-hip… Philip Matthews