Re: [pcp] Stephen Farrell's Discuss on draft-ietf-pcp-proxy-08: (with DISCUSS)
<mohamed.boucadair@orange.com> Thu, 09 July 2015 12:39 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: pcp@ietfa.amsl.com
Delivered-To: pcp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0C2591AD324; Thu, 9 Jul 2015 05:39:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XPfCj3v8fuar; Thu, 9 Jul 2015 05:39:04 -0700 (PDT)
Received: from relais-inet.francetelecom.com (relais-ias92.francetelecom.com [193.251.215.92]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D924B1AD355; Thu, 9 Jul 2015 05:39:00 -0700 (PDT)
Received: from omfedm05.si.francetelecom.fr (unknown [xx.xx.xx.1]) by omfedm12.si.francetelecom.fr (ESMTP service) with ESMTP id 2B6FF18CD9C; Thu, 9 Jul 2015 14:38:59 +0200 (CEST)
Received: from Exchangemail-eme2.itn.ftgroup (unknown [10.114.31.24]) by omfedm05.si.francetelecom.fr (ESMTP service) with ESMTP id F3A9935C074; Thu, 9 Jul 2015 14:38:58 +0200 (CEST)
Received: from OPEXCLILMA3.corporate.adroot.infra.ftgroup ([fe80::60a9:abc3:86e6:2541]) by OPEXCLILM7D.corporate.adroot.infra.ftgroup ([fe80::9044:c5ee:4dd2:4f16%19]) with mapi id 14.03.0235.001; Thu, 9 Jul 2015 14:38:58 +0200
From: mohamed.boucadair@orange.com
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, The IESG <iesg@ietf.org>
Thread-Topic: [pcp] Stephen Farrell's Discuss on draft-ietf-pcp-proxy-08: (with DISCUSS)
Thread-Index: AQHQukG0dDkC6UkS/UOU7I/eWSRIJ53TEFew
Date: Thu, 09 Jul 2015 12:38:57 +0000
Message-ID: <787AE7BB302AE849A7480A190F8B9330053594DD@OPEXCLILMA3.corporate.adroot.infra.ftgroup>
References: <20150709113220.17494.888.idtracker@ietfa.amsl.com> <787AE7BB302AE849A7480A190F8B933005359436@OPEXCLILMA3.corporate.adroot.infra.ftgroup> <559E6722.7000504@cs.tcd.ie>
In-Reply-To: <559E6722.7000504@cs.tcd.ie>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.168.234.5]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-PMX-Version: 6.2.1.2478543, Antispam-Engine: 2.7.2.2107409, Antispam-Data: 2015.7.9.111516
Archived-At: <http://mailarchive.ietf.org/arch/msg/pcp/AimIk9hUDcQ0ctn1hVRntHCLOS0>
Cc: "pcp@ietf.org" <pcp@ietf.org>
Subject: Re: [pcp] Stephen Farrell's Discuss on draft-ietf-pcp-proxy-08: (with DISCUSS)
X-BeenThere: pcp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: PCP wg discussion list <pcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pcp>, <mailto:pcp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pcp/>
List-Post: <mailto:pcp@ietf.org>
List-Help: <mailto:pcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pcp>, <mailto:pcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Jul 2015 12:39:07 -0000
Re-, Both modes you mentioned may be envisaged... but in term of requirements the wg discussed mainly the case where the left-most client authenticates with the middle server and the case where the left-most client does not even authenticate (but still the proxy authenticate to the upstream server). The PCP auth draft says the following: When a PCP proxy is located between a PCP server and PCP clients, the proxy may perform authentication with the PCP server before it processes requests from the clients. In addition, re-authentication between the PCP proxy and PCP server will not interrupt the service that the proxy provides to the clients since the proxy is still allowed to send common PCP messages to the PCP server during that period. Cheers, Med > -----Message d'origine----- > De : Stephen Farrell [mailto:stephen.farrell@cs.tcd.ie] > Envoyé : jeudi 9 juillet 2015 14:21 > À : BOUCADAIR Mohamed IMT/OLN; The IESG > Cc : pcp@ietf.org > Objet : Re: [pcp] Stephen Farrell's Discuss on draft-ietf-pcp-proxy-08: > (with DISCUSS) > > > Hi Med, > > On 09/07/15 12:58, mohamed.boucadair@orange.com wrote: > > Hi Stephen, > > > > FWIW, the document does not include any discussion about > > authentication as per slide 4 of > > http://www.ietf.org/proceedings/87/slides/slides-87-pcp-2.pdf. Those > > aspects are out of scope of this document; implication assessment is > > supposed to be in the PCP auth draft. > > Well, I don't believe the PCP auth draft says anything about > PCP proxies does it? > > But I'm not asking about where/how we document stuff but rather > about how it is supposed to work. > > > > > The answer to your question is in slide 3 > > (https://www.ietf.org/proceedings/87/slides/slides-87-pcp-6.pdf). > > Sorry, I don't get an answer to my question from that, can > you explain? > > Ta, > S. > > > > > > Cheers, Med > > > >> -----Message d'origine----- De : pcp [mailto:pcp-bounces@ietf.org] > >> De la part de Stephen Farrell Envoyé : jeudi 9 juillet 2015 13:32 À > >> : The IESG Cc : pcp@ietf.org Objet : [pcp] Stephen Farrell's > >> Discuss on draft-ietf-pcp-proxy-08: (with DISCUSS) > >> > >> Stephen Farrell has entered the following ballot position for > >> draft-ietf-pcp-proxy-08: Discuss > >> > >> When responding, please keep the subject line intact and reply to > >> all email addresses included in the To and CC lines. (Feel free to > >> cut this introductory paragraph, however.) > >> > >> > >> Please refer to > >> https://www.ietf.org/iesg/statement/discuss-criteria.html for more > >> information about IESG DISCUSS and COMMENT positions. > >> > >> > >> The document, along with other ballot positions, can be found > >> here: https://datatracker.ietf.org/doc/draft-ietf-pcp-proxy/ > >> > >> > >> > >> ---------------------------------------------------------------------- > >> > >> > DISCUSS: > >> ---------------------------------------------------------------------- > >> > >> > >> > >> > I have one thing I'd like to check. Maybe this just works fine, > >> but how does this function work with PCP authentication? E.g. in > >> Figure 1, is the left-most client authenticating to the middle or > >> rightmost server? I think I could imagine either answer being > >> desirable and don't see a way that both could be supported. > >> > >> > >> > >> > >> _______________________________________________ pcp mailing list > >> pcp@ietf.org https://www.ietf.org/mailman/listinfo/pcp
- [pcp] Stephen Farrell's Discuss on draft-ietf-pcp… Stephen Farrell
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… mohamed.boucadair
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… Stephen Farrell
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… mohamed.boucadair
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… Stephen Farrell
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… mohamed.boucadair
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… mohamed.boucadair
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… 🔓Dan Wing
- Re: [pcp] Stephen Farrell's Discuss on draft-ietf… Dave Thaler