IETF Logo Mail Archive

Re: [Sidrops] WGLC = draft-ietf-sidrops-aspa-verification - ENDS 03/22/2023 (Mar 22 2023)

Ben Maddison <benm@workonline.africa> Sat, 18 March 2023 19:42 UTC

Return-Path: <benm@workonline.africa>
X-Original-To: sidrops@ietfa.amsl.com
Delivered-To: sidrops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 662FEC1522BD; Sat, 18 Mar 2023 12:42:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=workonline.africa
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6HcbpcanXzW1; Sat, 18 Mar 2023 12:42:07 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on20617.outbound.protection.outlook.com [IPv6:2a01:111:f400:7d00::617]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 686EDC151555; Sat, 18 Mar 2023 12:42:02 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=OKxGnIqvU9oPG4aHhwFo4jPbrBLTXF9oCyORP/E8X4hsILP/rfzj5FNYp7YR9dCwwcdYNS7sNH9vOnPllSJvXeyQyILRvI69VpAfD2fvF2RuuygABYSIEpquxZZ2LROLHEegseXDcbyJChChtGnT8x41ZYSO+Gm6EM/umhx0DFvIXQeEEjCxLoakOAqD8JJ9sSoT7qlw1iezz1JP4fb+NGRAK6S3nkzidq8sPmAahmGMkg7mGm8GBi3+H0H4CR05SIG0eACKvPfQxHyPyV366K9XJMpyGNDVamQ7f5t28OLJ7UYurwm0I8v/07skK0UDHKD34LPm242r1lO6cSmtkQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=RH3tXcHsEnFGsOjlu3qj5vS3PY219Mc6kC9kWip0tP8=; b=QOs2rS/NEjxASbiACY9/GCkzRUY3u0Gg85Bfv/EObZwkOH+iFTn5CeqpdU9hG/U0IFSoYElTc9raG1lnVBRMEV8Gy7MC5vkk0FM85wCBGos7U/l+zQN3BfwwnxLyVdhYiPEuWzxtfdRkiOfxPtiflLhKb3GDSJrlrwPqZDmLtE+vYOWRCRv/2VvVsXe58zpW2WTywXt9idnk7tLXtswQvnwiIhZOYDUslmUBfsQUFfCbql2M+j/0P1l+EM7RgQExUdtooOVAo81XlBWYhBdWtartk1Ywmf6tLDDa6Mz7eiwgqJgNBcGN49qvjU3cZgwYlljOR/gySzjRcaPzC3FOIw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=workonline.africa; dmarc=pass action=none header.from=workonline.africa; dkim=pass header.d=workonline.africa; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=workonline.africa; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=RH3tXcHsEnFGsOjlu3qj5vS3PY219Mc6kC9kWip0tP8=; b=fhdsRGQph72iH1ZSFb9Xn2BOgn+9GsQ8Q3Uc5NpuqxrtBsg9NTMKsb7aR+ozc93elmoxNXK/apE30P6M1JfarmgSqcCZseTlcHw1fKhGmrwhru2LQAX8+JiKgL3kwC4JS8ZiP10wfAMg3TdSeCj9UkZ0IqKH8w8zhlY8FdlXwkY=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=workonline.africa;
Received: from AS8P190MB1078.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:2e7::13) by VI1P190MB0624.EURP190.PROD.OUTLOOK.COM (2603:10a6:800:124::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6178.36; Sat, 18 Mar 2023 19:41:54 +0000
Received: from AS8P190MB1078.EURP190.PROD.OUTLOOK.COM ([fe80::260e:5a3a:50f5:9d64]) by AS8P190MB1078.EURP190.PROD.OUTLOOK.COM ([fe80::260e:5a3a:50f5:9d64%5]) with mapi id 15.20.6178.036; Sat, 18 Mar 2023 19:41:56 +0000
Date: Sat, 18 Mar 2023 21:41:44 +0200
From: Ben Maddison <benm@workonline.africa>
To: "Sriram, Kotikalapudi (Fed)" <kotikalapudi.sriram=40nist.gov@dmarc.ietf.org>
Cc: "sidrops@ietf.org" <sidrops@ietf.org>, "draft-ietf-sidrops-aspa-verification@ietf.org" <draft-ietf-sidrops-aspa-verification@ietf.org>
Message-ID: <20230318194144.fx32pl7y6dzomo4j@iolcus>
References: <SA1PR09MB814243FD29C35FBE4B21153884B49@SA1PR09MB8142.namprd09.prod.outlook.com>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="i3lzkzag7geefrp2"
Content-Disposition: inline
In-Reply-To: <SA1PR09MB814243FD29C35FBE4B21153884B49@SA1PR09MB8142.namprd09.prod.outlook.com>
X-ClientProxiedBy: CP7P275CA0013.ZAFP275.PROD.OUTLOOK.COM (2603:1086:100:42::19) To AS8P190MB1078.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:2e7::13)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: AS8P190MB1078:EE_|VI1P190MB0624:EE_
X-MS-Office365-Filtering-Correlation-Id: bf906423-2984-4a44-044b-08db27e8d4c5
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AS8P190MB1078.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230025)(7916004)(346002)(366004)(396003)(136003)(39830400003)(376002)(451199018)(86362001)(38100700002)(33716001)(66556008)(66476007)(66946007)(9686003)(186003)(21480400003)(8936002)(8676002)(4326008)(44144004)(6666004)(41300700001)(6512007)(26005)(1076003)(6506007)(966005)(6486002)(478600001)(316002)(54906003)(66899018)(83380400001)(2906002)(5660300002)(15650500001)(46492015)(2700100001); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: workonline.africa
X-MS-Exchange-CrossTenant-Network-Message-Id: bf906423-2984-4a44-044b-08db27e8d4c5
X-MS-Exchange-CrossTenant-AuthSource: AS8P190MB1078.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 18 Mar 2023 19:41:56.1758 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: b4e811d5-95e8-453a-b640-0fba8d3b9ef7
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: AARncvtL+V9ChmbRiXPYRotO+osvNBfti/Vd4wJhSxzSQ0tKpF22l26huWRHy8Zn1LkAxixMRpDXZtp+eP2qng==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1P190MB0624
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/VAqVNPSKqq0CDgMUDEjoSZ6ktM0>
Subject: Re: [Sidrops] WGLC = draft-ietf-sidrops-aspa-verification - ENDS 03/22/2023 (Mar 22 2023)
X-BeenThere: sidrops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sidrops>, <mailto:sidrops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops/>
List-Post: <mailto:sidrops@ietf.org>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sidrops>, <mailto:sidrops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 18 Mar 2023 19:42:16 -0000

Hi all,

On 03/08, Sriram, Kotikalapudi (Fed) wrote:
> Hi all,
> 
[..]
> 
> Version 12 is significantly updated. So, please take a fresh look at
> it for your response to this WGLC. 

Thanks to everyone involved for all the hard work getting -12 out.
It is a substantial improvement over previous versions.

However, I think that a number of fairly fundamental issues remain
(which go beyond just individual wording suggestions).

I'm happy to provide patches for any/all of these, once the WG has made
a call on the principles.

1.  None of the ASPA drafts (verification, profile and 8210-bis)
    describe the transformation between the set of ASPA signed-objects
    for a given CAS and the resulting VAP objects transmitted in the
    payload of the 8210-bis "ASPA PDU".

    The mapping between the set of ASPA objects issued by a given CAS,
    and the resulting VAPs is not trivial (as is the case for ROA/VRP),
    and needs to be specified somewhere.

    I'm unsure which of the three drafts is the best fit?
    My feeling is that it should probably go in 8210-bis, but that might
    be tricky given that it is already in the editor queue.

2.  The above issue manifests in the context of this document in the
    form of confusion about whether the data that the verification
    considers is the ASPA object or the VAP.
    For example in section 3, the structure of the ASPA is described as
    being:

      { CAS, [PAS1, ... ], afiLimit }

    This is incorrect - in the ASPA profile, the afiLimit is a field on
    *each* ProviderAS.
    
    The structure that should be described here is the VAP:

      { AFI, CAS, [ PAS1, ... ] }

    Similarly, section 5 talks about the content of the ASPA issued by 
    ASi, when it should talk about the contents of the VAP.

    The document needs to be explicit in this distinction and consistent
    in its terminology throughout.

3.  I still find the special-casing of IXP route-servers and other
    specific business arrangements unhelpful and confusing. 

    My suggestion is that we have a section dealing with what
    constitutes a BGP transit provider, in which we make it clear that
    this includes IXP route-servers, siblings, geographical partial
    transit, etc, etc. The remainder of the document can then simply
    deal with whether one AS has authorised another as transit or not.

4.  I still find the algorithms as set out in sections 5 and 6
    unintuitive and unnecessarily complex.

    I would like to suggest again that the WG re-considers the
    "triple-wise" version previously proposed by Jakob and myself
    some time ago [1].

    The algorithms are fundamentally equivalent, but the formulation in
    terms of authorisation by left and right neighbors of each transit
    in the AS_PATH is in keeping with operators' intuitive understanding of
    the problem space, and is therefore far easier (in my experience) to
    explain.

    To be clear - I can live with the current formulation if that's what
    the WG decides. I just find it clunky.

5.  In section 8, paragraph 1, the MUST is problematic.

    It will result in vendors implementing filters auto-magically and
    preventing operators from using ASPA verification state in their own
    filters.

    This is what happened in some implementations of ROV, and led to RFC
    8481. Let's not make that mistake again.

Cheers,

Ben

[1]: https://github.com/benmaddison/aspa-fuzz/blob/master/aspa/heitz_maddison/procedure.md

v2.23.0 | Report a Bug | By Email