[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt

To: Wassim Haddad <whaddad@tcs.hut.fi>
Subject: Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
From: Jari Arkko <jari.arkko@piuha.net>
Date: Sun, 10 Sep 2006 14:40:25 +0300
Cc: Thomas Narten <narten@us.ibm.com>, dna@eng.monash.edu.au
In-reply-to: <Pine.LNX.4.58.0609091737200.14310@rhea.tcs.hut.fi>
References: <44FF4858.7070001@ericsson.com><200609071529.k87FTx1R028912@cichlid.raleigh.ibm.com><Pine.LNX.4.58.0609091737200.14310@rhea.tcs.hut.fi>
Sender: owner-dna@ecselists.eng.monash.edu.au
User-Agent: Mozilla Thunderbird 1.0.8 (X11/20060725)

Hi Wassim,

>>(Hmm, later I see it has what seems like a protocol change regarding
>>Ownership Proof. That would seem to imply standards track. What is
>>it?)
>>    
>>
>
>=> Maybe we should move these two sections to appendix to avoid any
>confusion.
>  
>
I don't think that helps. Either we have a complete spec in this
document, or we have normative references to other specs that
define these things. If we go for the normative references, then
those should be RFCs or at least we should be reasonably certain
that they will become RFCs in a timely fashion.

Alternatively, if the protocol changes are not really needed
for the DNA spec then they can be pursued separately.
In general, security is not something that can be pushed
off this way, however. Though this case is a bit special.
I have not formed a strong opinion yet if the caching actually
is a problem for SEND. Or whether its a problem depends
on how you perform FRD. My first reaction would be to
avoid the problem, since some of the solutions in the draft
do not appear to have a problem with SEND.

>>Second, the document title is misleading. Rather than calling this
>>"fast router discovery", I think it should be called something like
>>"triggered router discovery", since the whole point is to have the
>>sending of RAs triggered by a link up type event.
>>    
>>
>
>=> Thank you for raising this point. I agree the title should reflect the
>triggering process but also the consequence of such triggering.
>  
>
I like the new title suggestion too.

>>One issue with RA proxying is that the info in a cached RA may be old
>>and invalid. RAs include lifetimes in units relative to "now". Caching
>>an RA for (say) 15 minutes means that the lifetime information in that
>>RA is now potentially very incorrect. Are proxies supposed to muck
>>with lifetimes and decrement them in real time? Note that this would
>>presumably break SEND (and any other way of securing RAs). I don't see
>>discussion of this anywhere.
>>    
>>
>
>=> Proxies don't decrement lifetime. In practice, RA information seldom
>changes. Usually routers send the same RA again and again.
>  
>
That lifetimes are not decremented does help with
the SEND impacts. But then you have another
issue that the scheme is limited to situations where
keeping the lifetimes constant does not harm anyone.
What if you see an RA at time t_0 and a host at time t_1,
with the prefix lifetime in the RA < (t_1 - t_0)? Would
you need an applicability statement or even protocol
mechanisms to avoid such situations?

--Jari

References:
- [DNA] WGLC for draft-ietf-dna-frd-02.txt
  - From: Suresh Krishnan <suresh.krishnan@ericsson.com>
- Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
  - From: Thomas Narten <narten@us.ibm.com>
- Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
  - From: Wassim Haddad <whaddad@tcs.hut.fi>

Prev by Date: Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
Next by Date: Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
Prev by thread: Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
Next by thread: Re: [DNA] WGLC for draft-ietf-dna-frd-02.txt
Index(es):
- Date
- Thread