Re: [Rats] draft-birkholz-rats-network-device-subscription-00

"Eric Voit (evoit)" <evoit@cisco.com> Wed, 12 August 2020 22:58 UTC

Return-Path: <evoit@cisco.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B64233A0C96 for <rats@ietfa.amsl.com>; Wed, 12 Aug 2020 15:58:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.599
X-Spam-Level:
X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=SPyR/d7c; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=cisco.onmicrosoft.com header.b=vlpw3RVN
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vpiMITgnn7M6 for <rats@ietfa.amsl.com>; Wed, 12 Aug 2020 15:58:15 -0700 (PDT)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA3CC3A0C75 for <rats@ietf.org>; Wed, 12 Aug 2020 15:58:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9103; q=dns/txt; s=iport; t=1597273094; x=1598482694; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=ZaN8oXC0zzAN2hBy0Tr7LWALBlGQSMeB8a9Infd3Img=; b=SPyR/d7cLngaDlHsSVAaYpKyAegEYxfHVz3fLQND3RXariv9UHxyen8D BbfSigXfbJFz1NMbL2R63qDpkisNRfDSoC36Y15qDpBIIf1TmmP7Qm1rw OKM83yvgxG+UBGH18S194KZhh4ZX41bVqqiqf/BDWXlDQIUX0bb/wUoaX Q=;
X-Files: smime.p7s : 3975
IronPort-PHdr: =?us-ascii?q?9a23=3AwjWBSxEpFxWV/71Yl1TqDJ1GYnJ96bzpIg4Y7I?= =?us-ascii?q?YmgLtSc6Oluo7vJ1Hb+e401gObUYDS8fkCiufKvebnQ2NTqZqCsXVXdptKWl?= =?us-ascii?q?dFjMgNhAUvDYaDDlGzN//laSE2XaEgHF9o9n22Kw5ZTcD5YVCBrni79zVUGx?= =?us-ascii?q?jjO0xyPOumUoLXht68gua1/ZCbag5UhT27NLV1Khj+rQjYusQMx4V4LaNkwR?= =?us-ascii?q?rSqXwOcONTlm4=3D?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0CuAABgczRf/5tdJa1fGgEBAQEBAQE?= =?us-ascii?q?BAQEDAQEBARIBAQEBAgIBAQEBQIFKgVIpKAdvKy0vLAqHcgONV5hmglMDVQQ?= =?us-ascii?q?HAQEBCQMBASUIAgQBAYRMAoI2AiQ4EwIDAQELAQEFAQEBAgEGBG2FXAyFcQE?= =?us-ascii?q?BAQMBEi4BATcBBAsCAQgVAwwBIQIwJQEBBAENDQYUgjlMgX5NAw4RDwEOp2Y?= =?us-ascii?q?CgTmIYXSBNIMBAQEFgUdBgyAYggcHAwaBOIFTgR6KHxqBQT+BVIJNPoJcAgI?= =?us-ascii?q?BAYFdg0iCLZsfmw0KgmKEOIJcgU+Feotdgn6dF4VXjFiBbIhRlHcCBAIEBQI?= =?us-ascii?q?OAQEFgWojgVdwFYMkUBcCDY4fDBeDToUUhUJ0NwIGCAEBAwl8jkkBgRABAQ?=
X-IronPort-AV: E=Sophos;i="5.76,305,1592870400"; d="p7s'?scan'208";a="800743846"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 12 Aug 2020 22:58:13 +0000
Received: from XCH-RCD-002.cisco.com (xch-rcd-002.cisco.com [173.37.102.12]) by rcdn-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 07CMwDUe032012 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 12 Aug 2020 22:58:13 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-RCD-002.cisco.com (173.37.102.12) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 12 Aug 2020 17:58:13 -0500
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 12 Aug 2020 17:58:13 -0500
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Wed, 12 Aug 2020 18:58:12 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BkEyRfuNoW5YmuN0VQJF8XzZgw9i2+YTllofogw9XCcIlelI7eGopuOTJerZHT2DXsfREKCZerMRcC+38Ggewo2qd5sDnRQaLwaBpI2+GnbzfCEahAPGahcte0W/73uY8RY/SnmFyO9jAythoMXeyBeFwyK8PB5eZ4cjBG549mAGXXfOd335qVNgAG6C+Z51tJfpMGfgUZloo8HfZ/zEs5xm6hpFONU2k5D/5DUjCUbS/gscEShfVqoEd8oN3zA315CCb53QZiuCtmYbMXxCJ190Xvb39wRrwYDE/92/DvLYBeVhPloFQqkb9rS7y1CMizoexIkQe9WblgdvhErl7g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KMsZIR2v+ujRf2VK1KOhaKlXSZ+3XbkjlvGG+fte/SE=; b=AEsG9VhSgIjPChapheFwsDzn9gqcWwvQ/wzMYMMKNyffGiZFhiWK4jyzqYRGu1PePLxM0vgX+3nKBYHVuqBeLECWIaYMiHgdMCk5hECRSwaQHzag9oUxCQO7vyRQrVWWBQulTCvOS6XpCosEqLLYtp1rr19kpAhPk+bkvjT5YngNRcUzriZf7wBOUaakVR3fcVxZvh+FCleVjaeMAEnVjvTxAVmGxRYExC43djDuv3Ej+Wi7StdSDOeQZr2xl9/JbnHRH8hLHZC98/dRN7a/aKL3B5PQ3joP4oyQqJqHXHJE3+hhznwUoeMPoOlCJVSS6kziYnK+AQcfwdDU6HpeQA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KMsZIR2v+ujRf2VK1KOhaKlXSZ+3XbkjlvGG+fte/SE=; b=vlpw3RVNzeKXhl9pb6J+2fyHuzuO+mMlBbmvKi+NREhS6VrArbFV4IIEpRVwXWOvKLEK6hgUh3i+MeV2eo/IORvZ9AlqwLnc/j8upf9MxKJfmFeCiSjVOQrMHifw/FfX1zr0gHo09QNreZ9SY28B2BsLQ4JlaWRIj9zOoLukStQ=
Received: from BL0PR11MB3122.namprd11.prod.outlook.com (2603:10b6:208:75::32) by MN2PR11MB4584.namprd11.prod.outlook.com (2603:10b6:208:264::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3261.16; Wed, 12 Aug 2020 22:58:11 +0000
Received: from BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::fcd5:b07d:e935:8956]) by BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::fcd5:b07d:e935:8956%7]) with mapi id 15.20.3283.016; Wed, 12 Aug 2020 22:58:11 +0000
From: "Eric Voit (evoit)" <evoit@cisco.com>
To: Dave Thaler <dthaler=40microsoft.com@dmarc.ietf.org>, Dave Thaler <dthaler@microsoft.com>, "rats@ietf.org" <rats@ietf.org>
CC: Wei Pan <william.panwei@huawei.com>, "Birkholz, Henk" <henk.birkholz@sit.fraunhofer.de>
Thread-Topic: draft-birkholz-rats-network-device-subscription-00
Thread-Index: AdZKRjugUmuktT1iTCKR70EUNGNj/gaoi4kQAAPEPuAC/lbRQAABxp6g
Date: Wed, 12 Aug 2020 22:58:11 +0000
Message-ID: <BL0PR11MB3122F0BF9EB8674F0B07FBF3A1420@BL0PR11MB3122.namprd11.prod.outlook.com>
References: <BL0PR11MB31221B4EE75AADDB4685CBDEA1950@BL0PR11MB3122.namprd11.prod.outlook.com> <BL0PR2101MB1027CB2B71CA83305B9608BAA3730@BL0PR2101MB1027.namprd21.prod.outlook.com> <BL0PR11MB3122F7A9111660B4D3C8B85CA1730@BL0PR11MB3122.namprd11.prod.outlook.com> <BL0PR2101MB10271C5037D1F9BC826AE1F5A3420@BL0PR2101MB1027.namprd21.prod.outlook.com>
In-Reply-To: <BL0PR2101MB10271C5037D1F9BC826AE1F5A3420@BL0PR2101MB1027.namprd21.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2020-07-28T14:10:27Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=418b9af6-b4d5-4eb1-9d7d-e75014a19a02; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [173.38.117.78]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 2cbb634f-ee54-44d3-2d92-08d83f133005
x-ms-traffictypediagnostic: MN2PR11MB4584:
x-microsoft-antispam-prvs: <MN2PR11MB45843360B01F384904A755EDA1420@MN2PR11MB4584.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: PNQn6yiVQHISQlXP/NHln749n66tljlODAkkCvybXBIvD+kotTDeYMD0p9eEVqWvAzvLtjS3QBSKZ5amGKm0FQVcbrcuE6EfVlHxz6mpa2wTYW6tWp9QobM6G3zEsRPuh5RuxEfhYqaD3b/BSYkkSSNfSkAiRz3dzJM6gMCdfZtcXkTZePdQWBQ8rsgU//ql42bkk7kToExX1xN4M7riFFkG4977Zp10XhdvVuRHjGZkarOVR3Tktte8oQ41RF+oqVZxrSnyJsxE3xxMFL2sGp3yYOdScuNqfVwJpO3mXVVHaNdEKBQ8u+pi2JF2AuyK3fd7X6fL8GZWQpsqbq7ka824j1CJNbXLlBcufe6TT+XpMIsh7K7Uva3GJvgJoN5B3QKHBVRrMgrEr5J2Qol3Ug==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR11MB3122.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(346002)(376002)(39860400002)(136003)(366004)(396003)(86362001)(66446008)(2906002)(110136005)(66616009)(54906003)(76116006)(66556008)(478600001)(71200400001)(316002)(5660300002)(966005)(83380400001)(4326008)(66476007)(26005)(66946007)(186003)(64756008)(9686003)(55016002)(99936003)(7696005)(8676002)(6506007)(52536014)(8936002)(33656002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=SHA1; boundary="----=_NextPart_000_0253_01D670D9.05FFE980"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL0PR11MB3122.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 2cbb634f-ee54-44d3-2d92-08d83f133005
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Aug 2020 22:58:11.3927 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5yLbFfglHD8lw67tE2M4PzAekW1/6mEwkLfJDlQPaRD7Zk6O2TZoC1GJRDxV2PoN
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4584
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.12, xch-rcd-002.cisco.com
X-Outbound-Node: rcdn-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/elNON3759YhZRaFu-u2W7Tajcj8>
Subject: Re: [Rats] draft-birkholz-rats-network-device-subscription-00
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Aug 2020 22:58:17 -0000

Hi Dave,

> From: Dave Thaler,  August 12, 2020 5:43 PM
> 
> Eric Voit wrote:
> > > I asked in the meeting how a subscriber knows who to subscribe to,
> > > and I believe the answer was that CHARRA answers that.
> >
> > The answer I gave was that the problem was the same as Charra.  I
> > believe I also said the problem itself is generic to any YANG based
network
> element (I don't remember if that came out).
> > Generalizing more from there, Network Operators have diverse set
> > embedded management systems which include discovery, addressability,
> inventory, etc. of the network devices they manage.
> >
> > Moving back to YANG, these network management systems don't include all
> YANG info about a device.
> > So once you have found that a device exists, the device capabilities
> > it supports can be acquired via a variety of mechanisms like:
> > - NETCONF RFC 6241, Section 7 (and RFC6470)
> > - YANG Library RFC 8525
> >
> > > Well I looked in draft-
> > > ietf-rats-yang-tpm-charra-02 and it does not contain any mention of
> > > the subject.  I think one or the other of the two drafts needs to
> > > address this issue.
> >
> > This topic has not been within the scope of the many other YANG
drafts/RFC
> > which exist.   This is reasonable as there is a huge breadth of topology
> > discovery protocols available and in-use for routers and switches.
> 
> The topic being discussed here is about *timing* (and windows of how long
> things can be out of date for,
> etc.)   I expect that most other YANG drafts/RFCs do not cover that topic,
> whereas Figure 1 of
> draft-birkholz-rats-network-device-subscription specifically *does*.
That's
> what brings it in scope and why I believe it must be mentioned, even if
it's by
> reference to another document where the topic is covered.

There are a YANG nodes relevant to such timings.  For YANG datastores the
best place to start is: 
https://datatracker.ietf.org/doc/draft-ietf-netconf-notification-capabilitie
s/ 
and look through definitions like:
 
       +--ro subscription-capabilities
          +--ro max-nodes-per-update?               uint32
          +--ro periodic-notifications-supported?   notification-support
          +--ro (update-period)?
          |  +--:(minimum-update-period)
          |  |  +--ro minimum-update-period?        uint32
          |  +--:(supported-update-period)
          |     +--ro supported-update-period*      uint32
          +--ro on-change-supported?                notification-support
          |       {yp:on-change}?
          +--ro minimum-dampening-period?           uint32
          |       {yp:on-change}?
          +--ro supported-excluded-change-type*     union
                  {yp:on-change}?

However it is important to note that these capabilities above are for
reporting on changes YANG datastore nodes.  This is not the same thing as
the placement of YANG notifications into event streams.  Therefore for this
event subscription draft, look to the definition of the "marshalling-period"
leaf.   This leaf attempts to define the problem from the perspective of the
maximum amount of time from when an event extends a PCR to when the
notification leaves the Attester.

Eric


> Dave