Re: [Simple] Other proposal from View Sharing and Common Notify to reduce presence traffic
David Viamonte <david.viamonte@genaker.net> Fri, 17 October 2008 01:58 UTC
Return-Path: <simple-bounces@ietf.org>
X-Original-To: simple-archive@megatron.ietf.org
Delivered-To: ietfarch-simple-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 0E49B3A68DC; Thu, 16 Oct 2008 18:58:53 -0700 (PDT)
X-Original-To: simple@core3.amsl.com
Delivered-To: simple@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D26CC3A68DC for <simple@core3.amsl.com>; Thu, 16 Oct 2008 18:58:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.202
X-Spam-Level:
X-Spam-Status: No, score=-1.202 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=1.396]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CJukgkwm92hh for <simple@core3.amsl.com>; Thu, 16 Oct 2008 18:58:50 -0700 (PDT)
Received: from smtpauth04.prod.mesa1.secureserver.net (smtpauth04.prod.mesa1.secureserver.net [64.202.165.95]) by core3.amsl.com (Postfix) with SMTP id A3EE63A635F for <simple@ietf.org>; Thu, 16 Oct 2008 18:58:50 -0700 (PDT)
Received: (qmail 2294 invoked from network); 17 Oct 2008 01:59:34 -0000
Received: from unknown (85.50.130.120) by smtpauth04.prod.mesa1.secureserver.net (64.202.165.95) with ESMTP; 17 Oct 2008 01:59:32 -0000
Received: from 127.0.0.1 (AVG SMTP 8.0.173 [270.8.1/1728]); Fri, 17 Oct 2008 03:59:28 +0200
Message-ID: <48F7F17F.3010900@genaker.net>
Date: Fri, 17 Oct 2008 03:59:27 +0200
From: David Viamonte <david.viamonte@genaker.net>
User-Agent: Thunderbird 2.0.0.17 (Windows/20080914)
MIME-Version: 1.0
To: "Sanjay Sinha (sanjsinh)" <sanjsinh@cisco.com>
References: <C7FFFFDD779F2047A0FBAC811C5C5A0006F86A83@xmb-rtp-201.amer.cisco.com>
In-Reply-To: <C7FFFFDD779F2047A0FBAC811C5C5A0006F86A83@xmb-rtp-201.amer.cisco.com>
Content-Type: multipart/mixed; boundary="=======AVGMAIL-48F7F1800000======="
Cc: Victoria Beltrán Martínez <vbeltran@entel.upc.edu>, simple@ietf.org
Subject: Re: [Simple] Other proposal from View Sharing and Common Notify to reduce presence traffic
X-BeenThere: simple@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: SIP for Instant Messaging and Presence Leveraging Extensions <simple.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/simple>
List-Post: <mailto:simple@ietf.org>
List-Help: <mailto:simple-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=subscribe>
Sender: simple-bounces@ietf.org
Errors-To: simple-bounces@ietf.org
I agree with Sanjay that, at first sight, it seems that for this alternate proposal to work, a sharing of (part?) of the Presence authorization policies between serving and watching domains is needed. On the other hand, making a single "domain-to-domain" subscription as Victoria suggests would be the simplest and probably most simple mechanism to distribute Presence information across domains. In such case the watching domain (RLS) would have responsibility of implementing Presence policies about Presentities in remote domains.
In practice, the need for sharing policy documents is implicitly mentioned in the "Security Considerations" section of "draft-ietf-sipping-presence-scaling-requirements-01". According to that section, no decision has been made yet about allowing or discouraging such approach (delegating privacy protection from one domain to the other). On the contrary, it seems to be left FFS to decide whether this is an acceptable security risk or not ("important part of work on the requirements and optimizations will be to make sure that all the security aspects are covered").
Furthermore, my understanding is that, in practice, this "domain-to-domain single subscription" mechanism does not require the complete Presence or Policy documents being exchanged, only those that might be applicable to any user in the watching domain (of course, including a mechanism to update policies, if needed). In fact, I think EXACTLY the same comments in the Security Considerations section of the View Sharing draft ("if it generated a subscription from each of its subscribers it would be able to determine who from its domain is allowed to subscribe and what view they would receive") are applicable to Victoria's proposal, so I fail to see substantial security differences between both approaches. I could envisage potential "logistic" issues, though...
Since I am not a security expert, my conclusion is that getting an understanding on whether there are fundamental diferences (from the security perspective) between both approaches would be very valuable. In case there are not such differences, the proposed alternative looks interesting, as it seems to represent a very important simplification (in practice, there would be no need to define any SIP extension at all). It is fair to say that a mechanism to exchange policies would need to be defined (not sure is that is covered elsewhere?).
When it comes to traffic reduction, my understanding is that the "common subscription" mechanism "should" be more efficient than the view sharing approach. Even though it leads to larger documents being exchanged (thus containing more Presence information, which is subject to more frequent change), such documents are delivered only once per domain, while in the view sharing case documents are delivered to each list of watchers sharing a same "policy profile". This is only a preliminary comment without having made serious calculations :-)
Just my 2 cents,
David
Sanjay Sinha (sanjsinh) escribió:
What about allowed/blocked list that a presentity may have, if there is a single subscription between watcher domain's presence server and the watcher presentity.-----Original Message----- From: simple-bounces@ietf.org [mailto:simple-bounces@ietf.org] On Behalf Of Victoria Beltrán Martínez Sent: Wednesday, October 15, 2008 1:11 PM To: simple@ietf.org Subject: [Simple] Other proposal from View Sharing and Common Notify to reduce presence traffic Hi, The Common Notify technique (described in the expired draft "Scaling Optimizations for Presence in SIP/SIMPLE, houri-simple-interdomain-scaling-optimizations-00) is intended for reducing presence traffic between federated domains. Other draft, "Optimizing Federated Presence with View Sharing" (ietf-simple-view-sharing-01) has the same intention. From these proposals, I was thinking the idea of a single subscription between watcher and watched domains, so that the presence server in the watcher domain is in charge of subscribing to the watched presentity. Then, the presence server mantains the list of watchers that are watching each presentity and this list hasn't to be sent in NOTIFY messages. In this way, we avoid the increase of signaling traffic as the number of watchers grows in the case of Common Notify and as the number of privacy filters grows in the case of View Sharing. Have anyone considered this solution? I have read nothing about it. I named this solution as Common Subscribe and compared it with Common Notify and View Sharing. I did several assumptions based on IETF drafts and I proved that Common Subscribe reduces around 50% of presence traffic generated by View Sharing and Common Notify. thanks, Victoria _______________________________________________ Simple mailing list Simple@ietf.org https://www.ietf.org/mailman/listinfo/simple" rel="nofollow">https://www.ietf.org/mailman/listinfo/simple_______________________________________________ Simple mailing list Simple@ietf.org https://www.ietf.org/mailman/listinfo/simple" rel="nofollow">https://www.ietf.org/mailman/listinfo/simple
No virus found in this incoming message. Checked by AVG - http://www.avg.com" rel="nofollow">http://www.avg.com Version: 8.0.173 / Virus Database: 270.8.1/1728 - Release Date: 16/10/2008 7:38
No virus found in this outgoing message. Checked by AVG - http://www.avg.com Version: 8.0.173 / Virus Database: 270.8.1/1728 - Release Date: 16/10/2008 7:38
_______________________________________________ Simple mailing list Simple@ietf.org https://www.ietf.org/mailman/listinfo/simple
- [Simple] Other proposal from View Sharing and Com… Victoria Beltrán Martínez
- Re: [Simple] Other proposal from View Sharing and… Sanjay Sinha (sanjsinh)
- Re: [Simple] Other proposal from View Sharing and… David Viamonte
- Re: [Simple] Other proposal from View Sharing and… Victoria Beltrán Martínez
- Re: [Simple] Other proposal from View Sharing and… Paul Kyzivat
- Re: [Simple] Other proposal from View Sharing and… Richard Barnes
- Re: [Simple] Other proposal from View Sharing and… Paul Kyzivat
- Re: [Simple] Other proposal from View Sharing and… Jonathan Rosenberg
- Re: [Simple] Other proposal from View Sharing and… Avshalom Houri
- Re: [Simple] Other proposal from View Sharing and… david.viamonte
- Re: [Simple] Other proposal from View Sharing and… Avshalom Houri