Re: [vnrg] FW: Fwd: I-DAction:draft-jeong-vnrg-virtual-networks-ps-00.txt

"Sangjin Jeong" <sjjeong@etri.re.kr> Tue, 08 February 2011 00:09 UTC

Return-Path: <sjjeong@etri.re.kr>
X-Original-To: vnrg@core3.amsl.com
Delivered-To: vnrg@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id C40F73A6EB4 for <vnrg@core3.amsl.com>; Mon, 7 Feb 2011 16:09:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -101.151
X-Spam-Level:
X-Spam-Status: No, score=-101.151 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_MISMATCH_INFO=1.448, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sOg5oUxxl9Ot for <vnrg@core3.amsl.com>; Mon, 7 Feb 2011 16:09:57 -0800 (PST)
Received: from email2.etri.info (email2.etri.re.kr [129.254.16.132]) by core3.amsl.com (Postfix) with ESMTP id A14223A6EA0 for <vnrg@irtf.org>; Mon, 7 Feb 2011 16:09:56 -0800 (PST)
Received: from mail pickup service by email2.etri.info with Microsoft SMTPSVC; Tue, 8 Feb 2011 09:09:50 +0900
Priority: normal
Thread-Topic: Re: Re: [vnrg] FW: Fwd: I-DAction:draft-jeong-vnrg-virtual-networks-ps-00.txt
thread-index: AcvHJIDeA9AfzhBtSQKEXPu5B33M/w==
From: "Sangjin Jeong" <sjjeong@etri.re.kr>
To: "Vishwas Manral" <vishwas.ietf@gmail.com>
Date: Tue, 8 Feb 2011 09:09:50 +0900
Comment: ??, u-??,
Message-ID: <CEA1F14C172E438DA291AA390FDDAD5E@etri.info>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft CDO for Exchange 2000
Content-Class: urn:content-classes:message
Importance: normal
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.3959
X-OriginalArrivalTime: 08 Feb 2011 00:09:50.0768 (UTC) FILETIME=[81074B00:01CBC724]
Cc: vnrg@irtf.org
Subject: Re: [vnrg] FW: Fwd: I-DAction:draft-jeong-vnrg-virtual-networks-ps-00.txt
X-BeenThere: vnrg@irtf.org
X-Mailman-Version: 2.1.9
Precedence: list
Reply-To: Sangjin Jeong <sjjeong@etri.re.kr>
List-Id: "Virtual Networks Research Group \(VNRG\) discussion list" <vnrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/listinfo/vnrg>, <mailto:vnrg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/vnrg>
List-Post: <mailto:vnrg@irtf.org>
List-Help: <mailto:vnrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/vnrg>, <mailto:vnrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Feb 2011 00:09:58 -0000

Hello Vishwas,
 
Thank you for your information. I will have a look at the document 
in the earliest possible time. 
 
Regards, 
Sangjin
 
> -----Original Message----- 
> From: "Vishwas Manral" <vishwas.ietf@gmail.com> 
> From Date: 2011-02-06 PM 2:19:23 
> To: "Sangjin Jeong" <sjjeong@etri.re.kr> 
> Cc: "vnrg@irtf.org" <vnrg@irtf.org> 
> Subject: Re: Re: [vnrg] FW: Fwd: I-DAction:draft-jeong-vnrg-virtual-networks-ps-00.txt 
> 
> 
> 
> 
> Hi Sanjing, 
> 
> I found this NIST document and it seems to have a lot of relevent 
> points for your draft. 
> 
> http://csrc.nist.gov/publications/drafts/800-144/Draft-SP-800-144_cloud-computing.pdf 
> 
> Thanks, 
> Vishwas 
> 
> On Thu, Jan 6, 2011 at 7:33 AM, Sangjin Jeong <sjjeong@etri.re.kr> wrote: 
> > Hello Vishwas, 
> > 
> > Thanks for your comments and editorial suggestion. 
> > I generally agree with you. 
> > Please see inline. 
> > 
> >> Hi, 
> >> 
> >> I had a brief look at the document. I had a few comments on the same: 
> >> 
> >> 1. Introduction - We have talked about advantages of virtualization. 
> >> One of the big benefits of virtualization are the economy of scale. As 
> >> the CPU/ Memory is costs are decreasing, so using a system with higher 
> >> CPU and Memory is better then using 10 systems with 1/10 the memory. 
> >> 
> >> 1.1 Another advantage WRT physical infrastructure, I can see is that 
> >> we can partition resources into chunks that was not possible earlier. 
> >> So we can have links which are like 1.7 Mbps, which allows a higher 
> >> level of compartmentalization. 
> >> 
> >> 2. Introduction - From the way you are talking about network 
> >> virtualization, there is an overhead of resources required for the 
> >> physical topology connectivity, over which the virtual topology 
> >> resides. 
> >> 
> >> 2.2 A disadvantage I can see is that physical topology change will 
> >> cause effect to the virtual links, though the effects may not be 
> >> visible to the virtual topology itself. 
> > 
> > One of the ways to support virtualization is to adopt additional layer 
> > such as virtualization layer in resources. But, this approach can cause 
> > performance degradation due to the additional layer, as you pointed out. 
> > Also, the virtual networks will be affected by the change of physical 
> > network infrastructure, so how to provide dynamic reconfiguration of 
> > virtual networks without interruption of the operation is an important 
> > challenge. 
> > 
> >> 
> >> 3. A lot of routers have virtual router functionality, which allows 
> >> for sharing of resources, between various different instances, in a 
> >> non-interfering fashion, over the same OS instance though. We cannot 
> >> impose any virtual topology on the physical topology, but can be a 
> >> subset of the same. Another example of the same is Multitopology 
> >> extensions. You can talk about these things in the Motivation section 
> >> you mention. 
> >> 
> >> 4. I think one important aspect of isolation is to allow for 
> >> paritioning of resources so that one misbehaving resource does not 
> >> affect the other. 
> > 
> > Agree. Misbehavior of resource or virtual network such as security problem, 
> > overconsumption of physical resource, etc. should not be spread over other 
> > resources or networks. 
> > 
> >> 
> >> 5. From the management perspective, we need different layers of 
> >> management. One which partitions the physical resource to a virtual 
> >> resource, then each virtual resource needs an isolated manager. 
> > 
> > Managers (or management functions) for creating and managing the virtual 
> > networks are one of key components for supporting virtual networks. This 
> > management function can be included in virtualization layer or separate 
> > layer. 
> > 
> >> 
> >> 6. I think one of the important security issue is physical security 
> >> will no longer work. By adding a new layer virtualization increases 
> >> overload, as well as a new vector for security. 
> > 
> > Right. Introducing additional layer or management function can cause 
> > new security problems, for example, compromised management function may 
> > affect all the virtual resources over the physical resource. 
> > 
> > Also, I will incorporate editorial suggestions into the next version of 
> > the document. 
> > 
> > Regards, 
> > Sangjin 
> > 
> >> 
> >> Typo: 
> >> 
> >> 1. Abstract - ?This document presents the definition and effectiveness 
> >> of virtual networks and discusses the key components and challenges of 
> >> supporting virtual networks on "physical network infrastructure". 
> >> 
> >> Added the words in "...". 
> >> 
> >> 2. 
> >> ? ?s/ The virtual networks over physical infrastructure are completely 
> >> isolated each other, / ?The virtual networks over physical 
> >> infrastructure are completely isolated from each other, / 
> >> 
> >> 3. s/ Virtualization resource is typically realized by adopting 
> >> virtualization layer in the physical resources,/ Virtualization of a 
> >> resource is typically realized by adopting virtualization layer in the 
> >> physical resources,/ 
> >> 
> >> 4. s/efficient control of the virtual resources../ efficient control 
> >> of the virtual resources./ 
> >> 
> >> Thanks, 
> >> Vishwas 
> >> 
> >> ============================================= 
> >> Dear VNRG folks, 
> >> 
> >> As a follow-up of last Beijing meeting, we have developed a document that 
> >> investigates the definition, key components and challenges, and acid tests 
> >> for 
> >> virtual networks. 
> >> 
> >> Please find the document from link below. 
> >> Any comments are appreciated. 
> >> 
> >> Regards, 
> >> Sangjin 
> >> 
> >> ---------- Forwarded message ---------- 
> >> From: <Internet-Drafts at ietf.org> 
> >> Date: Fri, Dec 24, 2010 at 5:00 PM 
> >> Subject: I-D Action:draft-jeong-vnrg-virtual-networks-ps-00.txt 
> >> To: i-d-announce at ietf.org 
> >> 
> >> 
> >> A New Internet-Draft is available from the on-line Internet-Drafts 
> >> directories. 
> >> 
> >> Title : Virtual Networks Problem Statement 
> >> Author(s) : S. Jeong, D. Colle 
> >> Filename : draft-jeong-vnrg-virtual-networks-ps-00.txt 
> >> Pages : 9 
> >> Date : 2010-12-23 
> >> 
> >> This document presents the definition and effectiveness of virtual 
> >> networks and discusses the key components and challenges of 
> >> supporting virtual networks in the networks. ?It also describes acid 
> >> tests for virtual networks. 
> >> 
> >> A URL for this Internet-Draft is: 
> >> http://www.ietf.org/internet-drafts/draft-jeong-vnrg-virtual-networks-ps-00.tx 
> >> t 
> >> 
> >> Internet-Drafts are also available by anonymous FTP at: 
> >> ftp://ftp.ietf.org/internet-drafts/