Re: [P2PSIP] New version of draft-matthews-p2psip-id-loc
"Henderson, Thomas R" <thomas.r.henderson@boeing.com> Thu, 13 March 2008 05:29 UTC
Return-Path: <p2psip-bounces@ietf.org>
X-Original-To: ietfarch-p2psip-archive@core3.amsl.com
Delivered-To: ietfarch-p2psip-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 8D3F128C416; Wed, 12 Mar 2008 22:29:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.433
X-Spam-Level:
X-Spam-Status: No, score=-101.433 tagged_above=-999 required=5 tests=[AWL=-0.995, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, RDNS_NONE=0.1, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dvx0UR59FqyW; Wed, 12 Mar 2008 22:29:44 -0700 (PDT)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2F8EB3A6C15; Wed, 12 Mar 2008 22:29:44 -0700 (PDT)
X-Original-To: p2psip@core3.amsl.com
Delivered-To: p2psip@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B098F3A6C15 for <p2psip@core3.amsl.com>; Wed, 12 Mar 2008 22:29:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vbEB7NHeN-f7 for <p2psip@core3.amsl.com>; Wed, 12 Mar 2008 22:29:42 -0700 (PDT)
Received: from stl-smtpout-01.boeing.com (stl-smtpout-01.boeing.com [130.76.96.56]) by core3.amsl.com (Postfix) with ESMTP id 60C933A69F0 for <p2psip@ietf.org>; Wed, 12 Mar 2008 22:29:42 -0700 (PDT)
Received: from slb-av-01.boeing.com (slb-av-01.boeing.com [129.172.13.4]) by stl-smtpout-01.ns.cs.boeing.com (8.14.0/8.14.0/8.14.0/SMTPOUT) with ESMTP id m2D5RCI0004184 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Thu, 13 Mar 2008 00:27:14 -0500 (CDT)
Received: from slb-av-01.boeing.com (localhost [127.0.0.1]) by slb-av-01.boeing.com (8.14.0/8.14.0/DOWNSTREAM_RELAY) with ESMTP id m2D5RCc7019241; Wed, 12 Mar 2008 22:27:12 -0700 (PDT)
Received: from XCH-NWBH-11.nw.nos.boeing.com (xch-nwbh-11.nw.nos.boeing.com [130.247.55.84]) by slb-av-01.boeing.com (8.14.0/8.14.0/UPSTREAM_RELAY) with ESMTP id m2D5RB5D019238; Wed, 12 Mar 2008 22:27:11 -0700 (PDT)
Received: from XCH-NW-5V1.nw.nos.boeing.com ([130.247.55.44]) by XCH-NWBH-11.nw.nos.boeing.com with Microsoft SMTPSVC(6.0.3790.1830); Wed, 12 Mar 2008 22:27:11 -0700
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Wed, 12 Mar 2008 22:27:11 -0700
Message-ID: <77F357662F8BFA4CA7074B0410171B6D04049D23@XCH-NW-5V1.nw.nos.boeing.com>
In-Reply-To: <E808410D-DA85-41B0-9823-A2FE2A7DBA4F@magma.ca>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [P2PSIP] New version of draft-matthews-p2psip-id-loc
Thread-Index: Ach4B/kl2TV2jnHoQXqD8LycRtGcrgMwnY/w
References: <E808410D-DA85-41B0-9823-A2FE2A7DBA4F@magma.ca>
From: "Henderson, Thomas R" <thomas.r.henderson@boeing.com>
To: Philip Matthews <philip_matthews@magma.ca>, ecooper@avaya.com, alan@sipstation.com
X-OriginalArrivalTime: 13 Mar 2008 05:27:11.0877 (UTC) FILETIME=[E3B77350:01C884CA]
Cc: P2PSIP Mailing List <p2psip@ietf.org>
Subject: Re: [P2PSIP] New version of draft-matthews-p2psip-id-loc
X-BeenThere: p2psip@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Peer-to-Peer SIP working group discussion list <p2psip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/p2psip>, <mailto:p2psip-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/p2psip>
List-Post: <mailto:p2psip@ietf.org>
List-Help: <mailto:p2psip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/p2psip>, <mailto:p2psip-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: p2psip-bounces@ietf.org
Errors-To: p2psip-bounces@ietf.org
Philip and all, Below are some further comments on the Id/Loc draft. Overall, you will probably guess from my previous comments that I am sympathetic to this approach for supporting legacy applications. However, there is also a large body of prior and concurrent related work and I think it would be an easier path to try to see whether an approach like HIP or shim6 could be tailored in this way (to better match P2PSIP requirements) rather than starting from scratch. Of course, I realize that you are quite active in the HIP NAT traversal design team work, so maybe this is anyway your goal as well. - Tom > > An ID/Locator Architecture for P2PSIP > draft-matthews-p2psip-id-loc-01 > > > 1. Introduction > > This document describes a scheme whereby the applications running on > a peer can use a special IP addresses, called "LSIs" (Locally > Significant Identifiers), to identify other peers in the peer-to-peer > overlay, rather than using real IP addresses or peer IDs. Using > these LSIs brings the following advantages: > > o An LSI is unique, unlike the real IP address of most peers (which > is often a private IP address); "locally unique"? > > 3. Terminology > > The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", > "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this > document are to be interpreted as described in RFC 2119 [RFC2119]. > > Readers are expected to be familar with [I-D.ietf-p2psip-concepts] > and the terms defined there. > > This document defines the following terms: > > LSI: An IP address uses to identify a peer in the overlay. I think you may need to be careful about calling an LSI an IP address. Rather, it is masquerading as an IP address. It does not denote a point of attachment to an IP network. > > 4. Details > One detail that will need to be addressed is what to do about LSI lifetime management. Applications (presumably unmodified) may cache the resolver response for a longer time than the peer protocol decides that it must hold the bindings. This could provide new failure modes or aliasing. > > 9. Appendix: Discussion of Design Choices > > This appendix discusses the thinking around some of the design > choices made. > > 9.1. LSIs have Local Significance > > In the design presented here, the LSIs presented to applications have > local significance only. For IPv4, this seems to be the only > reasonable choice, as it would be difficult to get an IPv4 block of > addresses large enough to be of wider significance. However, for > IPv6, a wider scope would be possible, and that option was > considered. In particular, it would have been possible to use a > globally scoped identifier, like the HIT of HIP. At first blush, it > seems that using a globally scoped identifier would allow an > applications to send the identifier (embedded in protocol messages) > to an application on other nodes and have that identifier make sense. > > However, an examination of the details shows that there are problems > with this approach. Say a node X has an indentifier for node Z > (e.g., a HIT) and sends its to node Y. For Y to be able to use this > identifier, it must know how to establish a connection with node Z. > If node Y is in multiple overlays, then Y has no idea which overlay > to search to find node Z. It is this difficulty that led us to the > decision to make LSI have local significance only. > I am not sure about this argument. I think it is a valid point that a naked HIT passed to a third-party in an application referral may not be resolvable, but it will be as bad or worse for an LSI. An advantage to using HITs over LSIs is that since there are semantics on the HIT (that it must match a key) then at least one will not have the possible aliasing problems mentioned above. I think the main reason for using an LSI is to support IPv4 applications without modification, and there just aren't enough bits to ensure security or statistical global uniqueness. > > > > Cooper, et al. Expires August 28, 2008 [Page 12] > > Internet-Draft ID/Loc February 2008 > > > 10. Relationship to HIP > > The fundamental concept in this document, that of an identifier for a > node which is distinct from the node's real addresses, has been > adopted from HIP. In HIP, this identifier (known as a HIT > [I-D.ietf-hip-base]) is always an IPv6 identifier, and has global > scope and cryptographic properties, making it computationally hard > for an second node to steal a node's identity. (Current HIP > implementations also implement an IPv4 identifier as a local > identifier, but the properties of this IPv4 identifier are not > currently specified anywhere). > In many ways, this draft describes how our HIP implementation for IPv4 works, except of course that ESP is the encapsulation, there is no ICE or NAT traversal (yet), and there is no support for multiple overlays. > > 11. References I suggest to add a number of references. The HIP LSI is introduced in RFC 4423. In the hip-base draft, credit is given to Noel Chiappa for providing the framework for it. The idea of returning an LSI to overlay-based applications has been around and implemented in several projects. For instance, the Berkeley OCALA project was the inspiration for our use of this technique in our HIP implementation. http://ocala.cs.berkeley.edu/ There is a draft in the HIP WG that is specifically concerned with how to allow legacy applications to run over HIP stacks, using LSIs and other techniques: http://www.ietf.org/internet-drafts/draft-ietf-hip-applications-02.txt The HIP BONE draft is also concerned with this topic: http://www3.tools.ietf.org/wg/hip/draft-camarillo-hip-bone-01.txt I suggest also to look at Erik Nordmark's ESD draft: http://tools.ietf.org/wg/shim6/draft-nordmark-shim6-esd-01.txt _______________________________________________ P2PSIP mailing list P2PSIP@ietf.org https://www.ietf.org/mailman/listinfo/p2psip
- [P2PSIP] New version of draft-matthews-p2psip-id-… Philip Matthews
- Re: [P2PSIP] New version of draft-matthews-p2psip… Henderson, Thomas R
- Re: [P2PSIP] New version of draft-matthews-p2psip… Philip Matthews