IETF Logo Mail Archive

Re: [pcp] PANA implementatinos to consider

Alper Yegin <alper.yegin@yegin.org> Fri, 14 September 2012 06:52 UTC

Return-Path: <alper.yegin@yegin.org>
X-Original-To: pcp@ietfa.amsl.com
Delivered-To: pcp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4859D21F84F8 for <pcp@ietfa.amsl.com>; Thu, 13 Sep 2012 23:52:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nnnih0CkNlfU for <pcp@ietfa.amsl.com>; Thu, 13 Sep 2012 23:52:39 -0700 (PDT)
Received: from mout.perfora.net (mout.perfora.net [74.208.4.194]) by ietfa.amsl.com (Postfix) with ESMTP id 414C221F84F1 for <pcp@ietf.org>; Thu, 13 Sep 2012 23:52:38 -0700 (PDT)
Received: from [192.168.2.5] (88.247.135.202.static.ttnet.com.tr [88.247.135.202]) by mrelay.perfora.net (node=mrus3) with ESMTP (Nemesis) id 0MSuJ3-1T4x7f0f37-00RqEh; Fri, 14 Sep 2012 02:52:37 -0400
Mime-Version: 1.0 (Apple Message framework v1278)
Content-Type: text/plain; charset="us-ascii"
From: Alper Yegin <alper.yegin@yegin.org>
In-Reply-To: <0MZjvC-1SyMXc0ZaA-00Lf23@mx.perfora.net>
Date: Fri, 14 Sep 2012 09:52:19 +0300
Content-Transfer-Encoding: quoted-printable
Message-Id: <F621C78A-2005-46E4-969C-DF25495A735A@yegin.org>
References: <0MZjvC-1SyMXc0ZaA-00Lf23@mx.perfora.net>
To: Sam Hartman <hartmans@painless-security.com>
X-Mailer: Apple Mail (2.1278)
X-Provags-ID: V02:K0:mFHzZ2ZWn4wWeXKF18o7K+W6vTcmsddnYTmI5l7L8s2 GkmWA4yQHhp2eD80K0wLVpSDQ1fm58lR/tbVAtfaglEuDj4AnV xzJBufmTuve9E309arSrF+DCbDzCG/kHGaZqldSh2VreCg0LMy bLt942KtE2Y9ezQVju0veoMDwWP/JHrV0snv+LY+2VYjmubrdh tahWS38MmYfYiuYgbQU9n5Aw/I2gEOiTafFdl/JOwYJhRu6/9u q+jek6InUzBq8cV73uyIyzTc/ig10rJmQl3fPNxZ40gfb5pTQ6 Gv6TDLx21e4XvcSCiDAVt4yO0Miu7zYVni7qyHFypF9BRUe0hI PxgL9hRtKcYZoPIjwcOru8ahsP2sLwgiTdO83Fs32T4zs3L+nf YaLmr5ZMRJtNA==
Cc: pcp@ietf.org
Subject: Re: [pcp] PANA implementatinos to consider
X-BeenThere: pcp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: PCP wg discussion list <pcp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pcp>, <mailto:pcp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pcp>
List-Post: <mailto:pcp@ietf.org>
List-Help: <mailto:pcp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pcp>, <mailto:pcp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 14 Sep 2012 06:52:40 -0000

Hi Sam,


> 
> 
> hi.
> So, as I mentioned  earlier I'm either in the camp of strongly
> preferring PCP-specific authentication or in the camp of not caring much
> at all.
> 
> I'd kind of like to find out which camp I'm in by the 21st.
> 
> My nervousness is about implementation complexity.

Is that the only one? Or do you have other concerns as well? 

As for the implementation complexity, I don't quite understand why PANA (which is basically EAP over UDP) would ever be more complicated then to-be-designed "EAP over UDP within PCP framework". While I don't see a reason for former being more complicated, I see reasons for seeing the latter being more complicated, as the whole thing now needs to live within another protocol framework (read: format, flow, state machine harmonization between the two).


> I would like to see
> PCP authentication be something that can easily be implemented with
> open-source libraries. I know how to do that if we use an EAP library
> directly.

Would there be any difference between PANA and EAPoverUDP/PCP when it comes to using EAP libraries? I don't think so.


Alper


> I've managed projects doing something quite similar and I
> understand the implementation complexity.
> 
> Would people familiar with PANA implementation be willing to suggest
> which implementation I should look at? I'd prefer to look at one, but if
> there's disagreement I'd be happy to look at two.
> I'm sure you've done your analysis on this point but I'll feel more
> comfortable if I do my own.
> 
> I'll be happy to share my conclusions as I suspect that there are other
> WG participants who care about implementation complexity.
> 
> If there are open-source PCP servers I'd be happy to glance at those
> just to see how things like memory management, event loop and state
> management line up.
> 
> --Sam
> _______________________________________________
> pcp mailing list
> pcp@ietf.org
> https://www.ietf.org/mailman/listinfo/pcp

v2.23.0 | Report a Bug | By Email