Re: [tsvwg] Mirja Kühlewind's No Objection on draft-ietf-tsvwg-ecn-experimentation-06: (with COMMENT)
"Gorry (erg)" <gorry@erg.abdn.ac.uk> Wed, 27 September 2017 07:13 UTC
Return-Path: <gorry@erg.abdn.ac.uk>
X-Original-To: tsvwg@ietfa.amsl.com
Delivered-To: tsvwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 69CEF1321B6; Wed, 27 Sep 2017 00:13:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_BRBL_LASTEXT=1.449, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dXT2QQw_zkNL; Wed, 27 Sep 2017 00:13:43 -0700 (PDT)
Received: from pegasus.erg.abdn.ac.uk (pegasus.erg.abdn.ac.uk [139.133.204.173]) by ietfa.amsl.com (Postfix) with ESMTP id 743291320B5; Wed, 27 Sep 2017 00:13:43 -0700 (PDT)
Received: from [10.5.95.81] (unknown [85.255.236.29]) by pegasus.erg.abdn.ac.uk (Postfix) with ESMTPSA id BCF641B00153; Wed, 27 Sep 2017 08:13:41 +0100 (BST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (1.0)
From: "Gorry (erg)" <gorry@erg.abdn.ac.uk>
X-Mailer: iPhone Mail (14G60)
In-Reply-To: <150645491115.20804.4979473918843941790.idtracker@ietfa.amsl.com>
Date: Wed, 27 Sep 2017 08:13:40 +0100
Cc: The IESG <iesg@ietf.org>, draft-ietf-tsvwg-ecn-experimentation@ietf.org, tsvwg-chairs@ietf.org, tsvwg@ietf.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <EC84563B-3242-43E0-B6A7-B0954BB1ED52@erg.abdn.ac.uk>
References: <150645491115.20804.4979473918843941790.idtracker@ietfa.amsl.com>
To: Mirja Kühlewind <ietf@kuehlewind.net>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tsvwg/Ko2eWbMsVr6Jc8iAtTCEy9tm8iQ>
Subject: Re: [tsvwg] Mirja Kühlewind's No Objection on draft-ietf-tsvwg-ecn-experimentation-06: (with COMMENT)
X-BeenThere: tsvwg@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Transport Area Working Group <tsvwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tsvwg/>
List-Post: <mailto:tsvwg@ietf.org>
List-Help: <mailto:tsvwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tsvwg>, <mailto:tsvwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Sep 2017 07:13:48 -0000
Mirja, thanks for the review. I was document shepherd and have some observations. > On 26 Sep 2017, at 20:41, Mirja Kühlewind <ietf@kuehlewind.net> wrote: > > Mirja Kühlewind has entered the following ballot position for > draft-ietf-tsvwg-ecn-experimentation-06: No Objection > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-tsvwg-ecn-experimentation/ > > > > ---------------------------------------------------------------------- > COMMENT: > ---------------------------------------------------------------------- > > 1) section 2 actually seems a bit redundant to me but I guess that not a > problem. I guess I would also be okay with the doc if section 2 would not be > there, but maybe this overview actually helps others who are less familiar with > ECN. > > 2) I guess it could actually be helpful to include a tiny bit of reasoning why > the ECN Nonce experiment is concluded instead of just saying that it was never > deployed and further point to an appendix of a draft (which is actually > appendix C and not B.1 I believe). I know this was discussed, but having one > sentence saying something in the lines like this is probably not to hard: "The > experiment is concludes with the result that ECN Nonce does not provide a > reliable integrity protection as the other end can always pretend to not > support this optional feature." That argument was presented along with others - although I suggest this is not really a new argument. There is value in a protection mechanism in a transport protocol, and had the nonce mechanism been deployed, senders could require this when using ECN - or could alternatively have opted for some other fallback method, knowing the receiver would not honour the nonce. I do not think this extra sentence is correct, nor important - the unusuability was a consequence of non deployment. > 3) This sentence is a bit unclear: > "In addition, until the conclusion of the L4S experiment, use of > ECT(1) in IETF RFCs is not appropriate, as the IETF may decide to > allocate ECT(1) exclusively for L4S usage if the L4S experiment is > successful." > I guess the L4S exp RFC would use ECT(1), so the sentence to not really make > sense to me. I see this issue. The bashed text does seem too contorted! I suggest we say something simpler like ECT(1) is reserved for use by TSVWG. (This will be used by L4S, until this experiment is concluded or this allocation is made permanent). > Also given that there is no RFC for L4S yet, we actually don't > know if there is finally community/group consensus to publish that RFC. I guess > it actually to early to say something like this. I know why you want to have > this sentence in there, but from the processing point of view that does not > seems to be the correct thing to do and it might be better to just remove it. > Otherwise, if you want to keep it or something similar but maybe less > specific, following up on the feedback provided by IANA, the TCP flag should > probably be just marked as reserved with reference to this RFC. > I think reserving ECT(1) for this RFC could make sense. > 4) I'm not certain about this part: > "An exception to this requirement occurs in > responding to an ongoing attack. For example, as part of the > response, it may be appropriate to drop more ECT-marked TCP SYN > packets than TCP SYN packets marked with not-ECT. " > Maybe it's to late here and that's the reason I don't get it, but what would be > the reason to rather drop ETC marked SYNs? Can you explain? I do understand > that there is no reason to not drop ECT-marked SYNs in an attack situation > (meaning don't try to mark, drop immediately) but I don't understand why you > should drop ECT-marked SYNs preferentially? If the assumption is that attacker > would more likely use ECN than non-attackers because the will usually not be > dropped but marked, I'm uncertain if that is true and still not sure if the > above recommendation is appropriate. In any case I think this needs at least > more explanation in the document. > I suggest SYN attacks need to be considered - and I would like to see that noted here - however, stating what reaction is needed in this case, should be the subject of the TCPM ID. > 5) As a side note on this sentence: > "Random ECT values MUST NOT be used, as that may expose RTP to > differences in network treatment of traffic marked with ECT(1) and > ECT(0) and differences in associated endpoint congestion > responses, e.g., as proposed in [I-D.ietf-tsvwg-ecn-l4s-id]." > I think random marking is anyway not a good idea because this is sometimes used > (incorrectly) as input for ECMP. Therefore I actually think the reference to > the l4s draft is actually not needed here. > Gorry
- [tsvwg] Mirja Kühlewind's No Objection on draft-i… Mirja Kühlewind
- Re: [tsvwg] Mirja Kühlewind's No Objection on dra… Gorry (erg)
- Re: [tsvwg] Mirja Kühlewind's No Objection on dra… Black, David