IETF Logo Mail Archive

Re: [secdir] secdir review of draft-ietf-alto-protocol

"Dan Harkins" <dharkins@lounge.org> Tue, 18 February 2014 21:39 UTC

Return-Path: <dharkins@lounge.org>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 749ED1A026A; Tue, 18 Feb 2014 13:39:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.867
X-Spam-Level:
X-Spam-Status: No, score=-3.867 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, IP_NOT_FRIENDLY=0.334, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zXUsZ_XbH9o4; Tue, 18 Feb 2014 13:39:52 -0800 (PST)
Received: from colo.trepanning.net (colo.trepanning.net [69.55.226.174]) by ietfa.amsl.com (Postfix) with ESMTP id 709151A04D2; Tue, 18 Feb 2014 13:39:52 -0800 (PST)
Received: from www.trepanning.net (localhost [127.0.0.1]) by colo.trepanning.net (Postfix) with ESMTP id 6AA9E10224008; Tue, 18 Feb 2014 13:39:49 -0800 (PST)
Received: from 209.29.74.150 (SquirrelMail authenticated user dharkins@lounge.org) by www.trepanning.net with HTTP; Tue, 18 Feb 2014 13:39:49 -0800 (PST)
Message-ID: <f84048626c946413c84f006f00a0a494.squirrel@www.trepanning.net>
In-Reply-To: <CANUuoLo+z0U1VhxDaTRQyrxkdeUDvR0t0OkDhp3OWxngLX6v+Q@mail.gmail.com>
References: <cd3fb9f2748d08183af6652c0d58f61a.squirrel@www.trepanning.net> <CADOmCZU7uxA8RyK7LUy2D1Op4nhVEt_Y1JxGHNCzRvpFgGbh+g@mail.gmail.com> <2910582168899709b7211d3cea87c29d.squirrel@www.trepanning.net> <CADOmCZWK80noyc83GrDSWVw6TKyHxW8z_K5QBoSxDiAc7pBXKA@mail.gmail.com> <CANUuoLo+z0U1VhxDaTRQyrxkdeUDvR0t0OkDhp3OWxngLX6v+Q@mail.gmail.com>
Date: Tue, 18 Feb 2014 13:39:49 -0800
From: Dan Harkins <dharkins@lounge.org>
To: "Y. Richard Yang" <yry@cs.yale.edu>
User-Agent: SquirrelMail/1.4.14 [SVN]
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Archived-At: http://mailarchive.ietf.org/arch/msg/secdir/G1LA61OwkM_rutmlgCypu_IqmHE
Cc: secdir@ietf.org, Richard Alimi <ralimi@google.com>, "draft-ietf-alto-protocol.all@tools.ietf.org" <draft-ietf-alto-protocol.all@tools.ietf.org>, The IESG <iesg@ietf.org>
Subject: Re: [secdir] secdir review of draft-ietf-alto-protocol
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Feb 2014 21:39:55 -0000

  Hi Richard (Y),

On Mon, February 17, 2014 2:17 pm, Y. Richard Yang wrote:
> Dan, Richard A.
>
> On Mon, Feb 17, 2014 at 4:10 PM, Richard Alimi <ralimi@google.com> wrote:
>>
>>
>> On Mon, Feb 17, 2014 at 6:26 AM, Dan Harkins <dharkins@lounge.org>
>> wrote:
>>
>>>
>>>   Hi Richard,
>>>
>>> On Sun, February 9, 2014 10:58 pm, Richard Alimi wrote:
>>> > Thank you very much for the review!
>>> >
>>> > Responses inline...
>>> >
>>> >
>>> > On Sat, Feb 1, 2014 at 10:54 AM, Dan Harkins <dharkins@lounge.org>
>>> wrote:
>>> >
>>> >>
>>> [snip]
>>> >>   - 6.1.2, while a particular Cost Map may contain only one of the
>>> >>      two cost modes, servers MUST implement support for both,
>>> >>      right? It's not clear from the text.
>>> >>
>>> >
>>> > Servers only need to implement at least one, but not necessarily
>>> both.
>>> >  Section 6.1.2 states the following:
>>> >
>>> >
>>> >    An ALTO Server MUST support at least one of 'numerical' and
>>> 'ordinal'
>>> >    modes.
>>> >
>>> >
>>> > Can you suggest which text was misleading so that we can address it?
>>>
>>>   It's not clear to me how this interoperates unless it's possible to
>>> infer
>>> one from the other and if that's the case then why are there two things
>>> to choose to support?
>>>
>>
>> The key is that the client needs to handle both types, not the server.
>>  During working group discussions, it was not clear that a server would
>> always wish to provide both and may opt to expose one or the other.
>>
>> For example, one cited reason for a server not exposing numerical costs
>> was concerns over revealing too many details of internal network
>> topology.
>>
>> It is possible to derive ordinal costs from numerical costs.  Thus, we
>> could require servers to provide ordinal costs and optionally provide
>> numerical costs.  We opted to put this logic in the client-side, though,
>> in
>> the interest of keeping the server simpler.
>>
>> Richard/Reinaldo: do you believe this is still a reasonable tradeoff and
>> am I missing any other rationale for this?  I'm typically on the side of
>> keeping servers simpler, but we could reconsider if necessary.
>>
>
> I remember extensive discussions on the two modes. Given the dependency
> between the numerical and the ordinal modes (one can derive the ordinal
> from numerical but not the other way around), we can say that the ordinal
> mode is always provided, either implicitly (only numerical) or explicitly
> (when both are provided). This will allow interop.

  That is a good suggestion.

> At the same time, the discussion was that we do not enforce the explicit
> approach to keep the Server simple, as Richard A. mentioned. Also, the
> less
> redundancy at the source (maintaining both numerical and ordinal), the
> less
> likely we encounter inconsistency.

  That makes sense, one side would have to do both. If you want to keep
the server simple I guess that's the way to do it.

  thanks,

  Dan.

> Richard
>

v2.23.0 | Report a Bug | By Email