Re: [savnet] Some words about the BoF
tolidan@tsinghua.edu.cn Fri, 25 March 2022 01:45 UTC
Return-Path: <tolidan@tsinghua.edu.cn>
X-Original-To: savnet@ietfa.amsl.com
Delivered-To: savnet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id C449E3A1272
for <savnet@ietfa.amsl.com>; Thu, 24 Mar 2022 18:45:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.106
X-Spam-Level:
X-Spam-Status: No, score=-2.106 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001,
RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001,
SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001]
autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key)
header.d=tsinghua.edu.cn
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id Y9c3fjmsbAFZ for <savnet@ietfa.amsl.com>;
Thu, 24 Mar 2022 18:45:09 -0700 (PDT)
Received: from zg8tmty1ljiyny4xntqumjca.icoremail.net
(zg8tmty1ljiyny4xntqumjca.icoremail.net [165.227.154.27])
by ietfa.amsl.com (Postfix) with SMTP id 81D8C3A0113
for <savnet@ietf.org>; Thu, 24 Mar 2022 18:45:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=tsinghua.edu.cn; s=dkim; h=Received:From:To:Cc:Subject:Date:
Message-ID:MIME-Version:Content-Type:Thread-Index:
Content-Language; bh=4YitmkNlya/gD+5D6Z4d3Q5Yd6hU8Wc3yHVgXjeC/AM
=; b=O9lWQa24TUhos3rdTnLphf2BDoL+RfqN28FM/oWJ2ItbKjxV3hQDt+6MwvG
RqvECG1ezhyfdqTaRN1N4t3P1FbgXQxtPMw0B9s7NFudvCrOgs5VtiaiN/iLSPQj
7iDj+/eiPO03BTTyLFPCbx5UP0NPjvdTWy/LFRaYr9RfJTwg=
Received: from DESKTOPA8LSRCM (unknown [124.126.202.153])
by web4 (Coremail) with SMTP id ywQGZQC3yCaWHj1inb5+EQ--.41615S2;
Fri, 25 Mar 2022 09:44:55 +0800 (CST)
From: <tolidan@tsinghua.edu.cn>
To: "'Aijun Wang'" <wangaijun@tsinghua.org.cn>,
"'Eric Vyncke \(evyncke\)'" <evyncke=40cisco.com@dmarc.ietf.org>
Cc: <savnet@ietf.org>
Date: Fri, 25 Mar 2022 09:44:56 +0800
Message-ID: <004501d83fe9$ee7d0450$cb770cf0$@tsinghua.edu.cn>
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0046_01D8402C.FCA57470"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: Adg/6HrCFEkuqeD3QMqA/E9deO+mfg==
Content-Language: zh-cn
X-CM-TRANSID: ywQGZQC3yCaWHj1inb5+EQ--.41615S2
X-Coremail-Antispam: 1UD129KBjvJXoWxuF1kKw47AF1ftF4UWrWktFb_yoW5Xry8pF
42gw1Dta1DJFWxGF18Jw4rKasa9395J39rGw1DtrykAa98KFyjgr1Ik3W5ZFyUWr1DZ34a
qrWj9F98Gw43AaDanT9S1TB71UUUUU7qnTZGkaVYY2UrUUUUjbIjqfuFe4nvWSU5nxnvy2
9KBjDU0xBIdaVrnRJUUUB2b7Iv0xC_Kw4lb4IE77IF4wAFF20E14v26r1j6r4UM7CY07I2
0VC2zVCF04k26cxKx2IYs7xG6rWj6s0DM7CIcVAFz4kK6r1j6r18M28lY4IEw2IIxxk0rw
A2F7IY1VAKz4vEj48ve4kI8wA2z4x0Y4vE2Ix0cI8IcVAFwI0_tr0E3s1l84ACjcxK6xII
jxv20xvEc7CjxVAFwI0_Gr1j6F4UJwA2z4x0Y4vEx4A2jsIE14v26rxl6s0DM28EF7xvwV
C2z280aVCY1x0267AKxVW0oVCq3wAS0I0E0xvYzxvE52x082IY62kv0487Mc02F40Eb7x2
x7xS6ryj6rWUMc02F40E57IF67AEF4xIwI1l5I8CrVAKz4kIr2xC04v26r1j6r4UMc02F4
0E42I26xC2a48xMcIj6xIIjxv20xvE14v26r106r15McIj6I8E87Iv67AKxVWUJVW8JwAm
72CE4IkC6x0Yz7v_Jr0_Gr1lF7xvr2IYc2Ij64vIr41lw4CEc2x0rVAKj4xxMxAIw28Icx
kI7VAKI48JMxC20s026xCaFVCjc4AY6r1j6r4UMI8I3I0E5I8CrVAFwI0_JrI_JrWlx2Iq
xVCjr7xvwVAFwI0_JrI_JrWlx4CE17CEb7AF67AKxVWUXVWUAwCIc40Y0x0EwIxGrwCI42
IY6xIIjxv20xvE14v26r1j6r1xMIIF0xvE2Ix0cI8IcVCY1x0267AKxVWUJVW8JwCI42IY
6xAIw20EY4v20xvaj40_Jr0_JF4lIxAIcVC2z280aVAFwI0_Jr0_Gr1lIxAIcVC2z280aV
CY1x0267AKxVWUJVW8JbIYCTnIWIevJa73UjIFyTuYvjxUq6pBDUUUU
X-CM-SenderInfo: pwroxvtdq632xlqjx3vdohv3gofq/1tbiAQIQCV7nFSjjQgABs+
Archived-At: <https://mailarchive.ietf.org/arch/msg/savnet/5axnx5Ma7pZzXkoL_nmeGE8XrL0>
Subject: Re: [savnet] Some words about the BoF
X-BeenThere: savnet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <savnet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/savnet>,
<mailto:savnet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/savnet/>
List-Post: <mailto:savnet@ietf.org>
List-Help: <mailto:savnet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/savnet>,
<mailto:savnet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Mar 2022 01:45:15 -0000
Thanks Aijun. Indeed, DSAV wants to find a general solution to the source address spoofing problem, since uRPF is only effective in certain scenarios. It is inevitable to introduce additional cost. But note that: 1) all the costs are in the control plane plus a SAV table in routers. DSAV does not modify the packet or reduce the packet forwarding speed. So the data-plane traffic are not affected at all. 2) Even for the control-plane cost, we are trying to minimize the number of protocol messages. The computation operation is simple, so there is not much computation cost. 3) We are designing incremental deployment ways, and operators can get benefit from incremental deployment. So they have incentive. An obvious advantage of DSAV is that it well matches the MANRS Initiative, i.e., blocking spoofing traffic as close to the source as possible. If the access networks cannot block, then we hope the spoofing traffic can be blocked by intermediate routers, instead of processing them at the final destination. If we only rely on the final destination to resist DDoS attack, actually DDoS attack is successful. Best, Dan 发件人: savnet-bounces@ietf.org <savnet-bounces@ietf.org> 代表 Aijun Wang 发送时间: 2022年3月24日 20:26 收件人: Eric Vyncke (evyncke) <evyncke=40cisco.com@dmarc.ietf.org> 抄送: savnet@ietf.org 主题: Re: [savnet] Some words about the BoF Hi, Eric: For the problem space, I think SAVNET wants just to find the general solution for validating the source, which can be deployed incrementally and in wider scenarios than the current existing mechanisms. If we can finalize such solutions, the network operators will be free of DDoS attack for the services that runs on their networks. There are challenges to accomplish this aim, but it deserves us to achieve it. Aijun Wang China Telecom On Mar 24, 2022, at 20:09, Eric Vyncke (evyncke) <evyncke=40cisco.com@dmarc.ietf.org <mailto:evyncke=40cisco.com@dmarc.ietf.org> > wrote: As the responsible AD for this BoF, I would like to thank the chairs and presenters for a well-run BoF and clear and articulated presentations. I also appreciated the many questions, i.e., there is interest in this domain. Just to clarify what I said in the mike, as an individual contributor [1]: 1. Well-defined problem space 2. Are there only 2 solutions in this problem space ? So, my *personal* conclusion is that it is too early to create a WG but this decision is not mine but IESG one. Regards -éric [1] as we were running out of time, I forgot to mention that those comments were without my AD hat. Sorry for the confusion. -- savnet mailing list savnet@ietf.org <mailto:savnet@ietf.org> https://www.ietf.org/mailman/listinfo/savnet
- [savnet] Some words about the BoF Eric Vyncke (evyncke)
- Re: [savnet] Some words about the BoF Aijun Wang
- Re: [savnet] Some words about the BoF tolidan
- Re: [savnet] Some words about the BoF tolidan
- Re: [savnet] Some words about the BoF Lubashev, Igor
- Re: [savnet] Some words about the BoF Aijun Wang
- Re: [savnet] Some words about the BoF Lubashev, Igor
- Re: [savnet] Some words about the BoF Aijun Wang
- Re: [savnet] Some words about the BoF Lubashev, Igor