Re: I-D Action: draft-ietf-bfd-optimizing-authentication-10.txt

"Reshad Rahman (rrahman)" <rrahman@cisco.com> Thu, 23 July 2020 01:02 UTC

Return-Path: <rrahman@cisco.com>
X-Original-To: rtg-bfd@ietfa.amsl.com
Delivered-To: rtg-bfd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 538753A0AC8 for <rtg-bfd@ietfa.amsl.com>; Wed, 22 Jul 2020 18:02:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.62
X-Spam-Level:
X-Spam-Status: No, score=-9.62 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=kJW3Yxoz; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=PFOjfECc
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Svb4YUEmdzzR for <rtg-bfd@ietfa.amsl.com>; Wed, 22 Jul 2020 18:01:58 -0700 (PDT)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE6093A0AC4 for <rtg-bfd@ietf.org>; Wed, 22 Jul 2020 18:01:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3524; q=dns/txt; s=iport; t=1595466118; x=1596675718; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=K98xPvjitS4aZ/P43stfy9s1sGQpoSoI+onvKExGlQQ=; b=kJW3Yxozf2kj2fBjT83ZvTO6yrzuVMlTicLXd+gde19Rr/+0BbvZKRST lKQoHesdh3d1a61zSogTe9uBDH7kvzpJ3q7/XVMs2faSpW+Z83CrLVWzB /NHOFWlgZiSktnw2C0+eX1J6YEyB4dvOpXP2tfVK2EyNhjvNJPii2L2xj M=;
IronPort-PHdr: =?us-ascii?q?9a23=3AHx7ClBN8CN4u2apxtCMl6mtXPHoupqn0MwgJ65?= =?us-ascii?q?Eul7NJdOG58o//OFDEvKwx3lDMVITfrflDjrmev6PhXDkG5pCM+DAHfYdXXh?= =?us-ascii?q?AIwcMRg0Q7AcGDBEG6SZyibyEzEMlYElMw+Xa9PBtaHc//YxvZpXjhpTIXEw?= =?us-ascii?q?/0YAxyIOm9E4XOjsOxgua1/ZCbYwhBiDenJ71oKxDjpgTKvc5Qioxneas=3D?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0CuAAA64Rhf/4ENJK1gGgEBAQEBAQE?= =?us-ascii?q?BAQEDAQEBARIBAQEBAgIBAQEBQIFKgVJRB4FHLywKhCmDRgONTooCjlyCUwN?= =?us-ascii?q?VCwEBAQwBAS0CBAEBhEwCF4F3AiQ4EwIDAQELAQEFAQEBAgEGBG2FXAyFcQE?= =?us-ascii?q?BAQMBEhEEDQwBATcBDwIBCA4KAgImAgICHxEVEAIEAQ0FIoMEgkwDDiABowM?= =?us-ascii?q?CgTmIYXZ/M4MBAQEFgkqCXw0Lgg4JgQ4qAYJpg1WGMxqBQT+BESccgk0+ghq?= =?us-ascii?q?BekAjglwzgi2SWqIrTQqCXZRzhHMDHp9RkgaNCJF/AgQCBAUCDgEBBYFqI4F?= =?us-ascii?q?XcBUaSwGCPlAXAg2OHoNxilZ0NwIGAQcBAQMJfIw/gTUBgRABAQ?=
X-IronPort-AV: E=Sophos;i="5.75,383,1589241600"; d="scan'208";a="801401784"
Received: from alln-core-9.cisco.com ([173.36.13.129]) by rcdn-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 23 Jul 2020 01:01:39 +0000
Received: from XCH-ALN-001.cisco.com (xch-aln-001.cisco.com [173.36.7.11]) by alln-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 06N11d8R003516 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 23 Jul 2020 01:01:39 GMT
Received: from xhs-rcd-001.cisco.com (173.37.227.246) by XCH-ALN-001.cisco.com (173.36.7.11) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 22 Jul 2020 20:01:39 -0500
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-rcd-001.cisco.com (173.37.227.246) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Wed, 22 Jul 2020 20:01:38 -0500
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Wed, 22 Jul 2020 21:01:38 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UoSQVNxbVHh+Dvzhy4VPNMTsFBe8ZR4KAh2FXd//jKxUnaqA3jd+huVTyCQl45S1okDlKbJX/TKSuxmZHQgycxKQJbBcchIpV3Qtahu8G4imh+7j6J+U13ESPILUgsJ0+FlgfcPGxHCpXc8AlaaeUhB+yg9m/D5nG+8kKLW6haCHOj8xP15xOEHYkHe2a9hhaZFk5liTf0R5m72+zMMsLhybd08y9xCKQ8cuV+DHi6j8KT3xZLgHQjZswaXz6azvhSMc0JTtjLJ0CBBRXOnFd4aSWvC0mNA7up3iF82iTuOJwW2AUMKzkJCm4nyPQk7XGY7Dd7+P7LJrl6lXFycqDw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=K98xPvjitS4aZ/P43stfy9s1sGQpoSoI+onvKExGlQQ=; b=Ro79ZB/swe2RFdPwfzfVl+0Ncs2ITch9w1kGxY1RfLgLK6nZB3yjbjTWfLj0wOo2gNhi50uvALqff0Hxq3NZ8dUm+oSwNKgomcoBvETJXHx47JvV5PmL0sX8rQjtpdHRzmC8UKNIq/YRvGH3bdvxfC5kPVDxGfoQxt7w6dcunvysJRzFRuanS1vhwnAgoBDi8rtw5yEHMSKcbd2vDObmOsgxJUg/RztGOSMer0pxk+fzyWOmqUEAb6eu0bcRgFrQkdRz4HePY7QAu+u3SN84WEY2qaL49w6b8IbWHzmGQ60C0+tOl4E4OA92AKtK+IkD6sFrK7IjGAUWEhcPGMEDyA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=K98xPvjitS4aZ/P43stfy9s1sGQpoSoI+onvKExGlQQ=; b=PFOjfECc89jxfWGUa5FdFvF/eHbQIyKcfUyrmZRNMbcmS//y4VlBgKflVMTYgTyBV0Y+1jILA9RyHNfr3d0Gk2TH6VBw2eCzsokKL05NN8sfhErqfmZbOmEhxC9Fqt5LQvIJEkHvIWRi3h8O42W0mAwxhPV7iSCxlg23mnSP+L4=
Received: from BN6PR11MB3875.namprd11.prod.outlook.com (2603:10b6:405:80::37) by BN6PR11MB3874.namprd11.prod.outlook.com (2603:10b6:405:81::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3195.24; Thu, 23 Jul 2020 01:01:38 +0000
Received: from BN6PR11MB3875.namprd11.prod.outlook.com ([fe80::3076:a505:335e:a8ff]) by BN6PR11MB3875.namprd11.prod.outlook.com ([fe80::3076:a505:335e:a8ff%6]) with mapi id 15.20.3195.028; Thu, 23 Jul 2020 01:01:37 +0000
From: "Reshad Rahman (rrahman)" <rrahman@cisco.com>
To: Mahesh Jethanandani <mjethanandani@gmail.com>, Jeffrey Haas <jhaas@pfrc.org>
CC: "rtg-bfd@ietf. org" <rtg-bfd@ietf.org>
Subject: Re: I-D Action: draft-ietf-bfd-optimizing-authentication-10.txt
Thread-Topic: I-D Action: draft-ietf-bfd-optimizing-authentication-10.txt
Thread-Index: AQHWWUj8estRbnwSu0OXwm1uDoRSlKkF/YUAgAtBV4CAAAsgAIAC2f0A
Date: Thu, 23 Jul 2020 01:01:36 +0000
Message-ID: <AF1DDAD1-D362-4BCA-A2D6-EB1477BDBDEF@cisco.com>
References: <159466724499.14803.15233027731222579839@ietfa.amsl.com> <FC5206AF-9CDB-4CC2-9967-B4BF5A17141B@gmail.com> <20200721004857.GB31779@pfrc.org> <2C632683-57D0-4E40-809E-6A907B38CDB5@gmail.com>
In-Reply-To: <2C632683-57D0-4E40-809E-6A907B38CDB5@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.37.20051002
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [142.113.229.50]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d33af799-43c9-47a9-7dcd-08d82ea3f3ab
x-ms-traffictypediagnostic: BN6PR11MB3874:
x-microsoft-antispam-prvs: <BN6PR11MB3874C68538A18980C40A6999AB760@BN6PR11MB3874.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: iUkydVGmqq8VVXxoChYMDrcjW2izSHpua4DGTNQ0cU4oVyj+5Z6WYe0MlLhyJF5uRQDK2hIO1JskjW0fhdd1SfVRUrNTBSWETU9Kgs8FE0lrMeQqqBRmTHnSjwWI9CUdiDLoEE+WSYIMVOKi5g55vmdgjG0elTPUqa3x0jMYz8d5vo/p3HfbuH1I2hQTgn//d1kmVroZbvRIt0ZsqHBHlW4tkxiYs6ERIS5dzKeNY0hcw5i1UbXxvyDrxgTqQS54kn01IkhpQVrvfQhuvqXpQi1T+syvS1DHjMArRwrILZQ5yNcal/XN7Y9SHodBEyCjqIDgDD5PHkqdUw5DFVwNmQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN6PR11MB3875.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(396003)(39860400002)(136003)(366004)(376002)(346002)(8936002)(8676002)(6506007)(26005)(53546011)(6512007)(478600001)(66446008)(64756008)(4326008)(66946007)(36756003)(66476007)(66556008)(186003)(110136005)(316002)(2906002)(76116006)(33656002)(5660300002)(6486002)(2616005)(66574015)(83380400001)(86362001)(91956017)(71200400001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: pN1pRu8NyecvEYxbwInH7HuozRV4/TNtyHVtH7F7WeM4CIziEn2g8McNWdHtvVLMpCxmnn7IrgwPI5YxNPlWvyIpb2xwfSM/rKfq9qGgjRFpaem3zFDcZonn8JNrR4S87XdeQAxb67yAP4Az5TOsLvWoG+iEq2Fedo920oThiTVtV70P9Icpb/rJ7SvBev4AV9vhQm3yOa8nGOvbFH2e3qSQNKs/h/L6dTOY3iS0TsLrN9wxVbsydz/+iltm4jo+VtNR0ojgIjPGcR6sG9HnToy4PKTmLHbW0FdqyoFRACIbWJ8Qfv4sLPxRNysF04smPUAQuO+/NAkwwv7/BuydmxM9Uz/Xb+90MnKrZbmwYIWlHt5vMm0SgS8y4YPKWQWhE9xN125p6dd5qxEWKaRebdIBdRaqgYSlst2Wxowrfp4qz4wSg9LyKBNyTajm7R0q+3XKXvcRT2J+66oTfAq+B8X7lTPXZjpcITMSNlrhEcoZJ3rnQAynd4HQ01O5Sm02
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <DFDF31D36611484789F2DD65A8C6CE49@namprd11.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN6PR11MB3875.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d33af799-43c9-47a9-7dcd-08d82ea3f3ab
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Jul 2020 01:01:37.3815 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 4n0ff3h5HMyJ6K1BflcmKspLwEs1Qni+UBTVeHNEmP+aBXnyzEm9+441lG1N9OrRf9nTGpRpAy9hOBur3S1LBg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN6PR11MB3874
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.11, xch-aln-001.cisco.com
X-Outbound-Node: alln-core-9.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtg-bfd/TWNinr2rMpB5v00LiziVm0UWdRo>
X-BeenThere: rtg-bfd@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "RTG Area: Bidirectional Forwarding Detection DT" <rtg-bfd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtg-bfd/>
List-Post: <mailto:rtg-bfd@ietf.org>
List-Help: <mailto:rtg-bfd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtg-bfd>, <mailto:rtg-bfd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jul 2020 01:02:00 -0000

Hi Mahesh and Jeff,

On 2020-07-20, 9:29 PM, "Rtg-bfd on behalf of Mahesh Jethanandani" <rtg-bfd-bounces@ietf.org on behalf of mjethanandani@gmail.com> wrote:

    Hi Jeff,

    > On Jul 20, 2020, at 5:48 PM, Jeffrey Haas <jhaas@pfrc.org> wrote:
    > 
    > Mahesh,
    > 
    > While reviewing version -10, I had the following questions:
    > 
    > For the state machine changes, in the Init->Init state, we have NULL auth.
    > While this is a "boring" transition, it's also happening at a very slow part
    > of the state machine; timers should be once a second.  Is there a strong
    > argument to use NULL here?

    Not particularly. The reason to choose NULL was because of the (limited) impact it would have. But if the WG feels otherwise, I can change it to Auth.
<RR> I don't have a strong opinion on this yet. But if we change INIT->INIT to be Auth, we should be consistent and change Down->Down to Auth too?

Regards,
Reshad.

    > 
    > In section 3:
    > :   Sequence Number: The sequence number for this packet.  Implementation
    > :   may use sequence numbers (bfd.XmitAuthSeq) as defined in BFD
    > :   [RFC5880], or secure sequence numbers as defined in Secure BFD
    > :   Sequence Numbers [I-D.ietf-bfd-secure-sequence-numbers].
    > 
    > In the core BFD spec, it distinguishes between occasional and meticulous
    > modes and uses different code points to determine what you do.  I suspect
    > your intent is that we always use meticulous mode here?

    Yes, the intent was meticulous. I can clarify that.

    > 
    > -- Jeff
    > 
    > 
    > On Mon, Jul 13, 2020 at 01:56:14PM -0700, Mahesh Jethanandani wrote:
    >>> A New Internet-Draft is available from the on-line Internet-Drafts directories.
    >>> This draft is a work item of the Bidirectional Forwarding Detection WG of the IETF.
    >>> 
    >>>       Title           : Optimizing BFD Authentication
    >>>       Authors         : Mahesh Jethanandani
    >>>                         Ashesh Mishra
    >>>                         Ankur Saxena
    >>>                         Manav Bhatia
    >>> 	Filename        : draft-ietf-bfd-optimizing-authentication-10.txt
    >>> 	Pages           : 8
    >>> 	Date            : 2020-07-13
    >>> 
    >>> Abstract:
    >>>  This document describes an optimization to BFD Authentication as
    >>>  described in Section 6.7 of BFD RFC 5880.  This document updates RFC
    >>>  5880.
    > 
    > 

    Mahesh Jethanandani
    mjethanandani@gmail.com