trigtran strawperson framework
play

TRIGTRAN Strawperson Framework - PowerPoint PPT Presentation

Jul 02, 2023 •459 likes •715 views

TRIGTRAN Strawperson Framework draft-dawkins-trigtran-framework-00.txt Spencer Dawkins spencer_dawkins@yahoo.com Carl E. Williams carlw@mcsr-labs.org Alper E. Yegin Alper@docomolabs-usa.com IETF-56 San Francisco 1 3/20/2003 So, you

  1. TRIGTRAN Strawperson Framework draft-dawkins-trigtran-framework-00.txt Spencer Dawkins spencer_dawkins@yahoo.com Carl E. Williams carlw@mcsr-labs.org Alper E. Yegin Alper@docomolabs-usa.com IETF-56 San Francisco 1 3/20/2003

  2. So, you already have a Framework? • No. • We’re exploring an approach • … because we’re looking for fatal flaws • … like “can we actually generate triggers?” • … and “can we actually send them?” • This approach helped us ask these questions • … but “Connectivity Restored” doesn’t need it • … so Framework should be on hold for now IETF-56 San Francisco 2 3/20/2003

  3. Framework Basics • Accommodate multiple transports – Focus on TCP, don’t break SCTP – others? • Initiator/Correspondent model – Focus on access links – Focus on single-homed Initiators • Protocol flow • Canonical triggers? • Canonical responses? • Notification protocol mechanisms? • Canonical security considerations? IETF-56 San Francisco 3 3/20/2003

  4. Minimal TRIGTRAN Architecture TRIGTRAN Correspondent Initiator HOST HOST TRIGTRAN Router Subnetwork Subnetwork Of Interest Of Interest IETF-56 San Francisco 4 3/20/2003

  5. Minimal TRIGTRAN Functionality Subnetwork Event Subnetwork Event TRIGTRAN Correspondent Initiator HOST HOST TRIGTRAN Router Transport IP Layer Subnetwork Layer Subnetwork Subnetwork Notify Transport Notify Transport Event Here Event Here Here Here IETF-56 San Francisco 5 3/20/2003

  6. Focus on Access Links • Many problematic links are access links • Can’t guarantee core routers see all packets • Core network will reroute anyway • Avoid core network scaling problem • Access network may have incentive to deploy • Core network does not have this incentive IETF-56 San Francisco 6 3/20/2003

  7. Focus on Single-homed Initiators • Maps to one class of problematic subnetworks – Wide-Area Wireless Networks • Avoid “fan-in” problem at correspondent host • Unambiguous notifications are most valuable • New interface -> new bandwidth anyway IETF-56 San Francisco 7 3/20/2003

  8. Protocol Flow - Initiation TRIGTRAN Correspondent Initiator HOST HOST TRIGTRAN Router Arbitrary packet Arbitrary packet with TRIGTRAN with TRIGTRAN Initiate bit set Initiate bit set IETF-56 San Francisco 8 3/20/2003

  9. Router Action - Initiation TRIGTRAN TRIGTRAN router TRIGTRAN router Correspondent Initiator may install/update may install/update HOST HOST partial soft state at partial soft state at this point this point TRIGTRAN Router Arbitrary packet Arbitrary packet with TRIGTRAN with TRIGTRAN Initiate bit set Initiate bit set IETF-56 San Francisco 9 3/20/2003

  10. Protocol Flow - Request TRIGTRAN Correspondent Initiator HOST HOST TRIGTRAN Router Arbitrary packet Arbitrary packet with TRIGTRAN with TRIGTRAN Initiate and Request bits set Initiate and Request bits set IETF-56 San Francisco 10 3/20/2003

  11. Router Action – Request TRIGTRAN TRIGTRAN router TRIGTRAN router Correspondent Initiator must install/update must install/update HOST HOST soft state at this soft state at this point point TRIGTRAN Router Arbitrary packet Arbitrary packet with TRIGTRAN with TRIGTRAN Initiate and Request bits set Initiate and Request bits set IETF-56 San Francisco 11 3/20/2003

  12. Protocol Flow - Notification Subnetwork Event Subnetwork Event TRIGTRAN Correspondent Initiator HOST HOST TRIGTRAN Router TRIGTRAN Notification TRIGTRAN Notification from router to Correspondent Host from router to Correspondent Host IETF-56 San Francisco 12 3/20/2003

  13. Router Action - Notification Subnetwork Event Subnetwork Event TRIGTRAN TRIGTRAN router TRIGTRAN router Correspondent Initiator detects Subnetwork detects Subnetwork HOST HOST event for an active event for an active Initiator Host Initiator Host TRIGTRAN router TRIGTRAN router TRIGTRAN sends Notification to sends Notification to Router Correspondent Host Correspondent Host TRIGTRAN Notification TRIGTRAN Notification from router to Correspondent Host from router to Correspondent Host IETF-56 San Francisco 13 3/20/2003

  14. Canonical Triggers? • One proposal for minimal set of events: – Connectivity Interrupted – Connectivity Restored – Packets Discarded by subnetwork, not due to congestion • More ambitious (“research”) events: – Sub-network path changes (“horizontal handoff”) – Packet corruption loss – Non-congestion loss – Nominal sub-network bandwidth change • Current Framework does not include “ambitious” events IETF-56 San Francisco 14 3/20/2003

  15. Notification Protocol Mechanisms? • We’re dealing with a huge issue here • ICMP message is right answer conceptually – A less ambiguous/more flexible Source Quench? • But is it deployable? – Old implementations, NATs, Firewalls, etc. • Is a new UDP message likely to be better? • DCCP flows too heavyweight? – Number of flows for an access router? – Not a connection, but still need per-flow state • TCP is right for end-to-end TCP Kickstart… IETF-56 San Francisco 15 3/20/2003

  16. Canonical Security Considerations? • Non-starter – Assume security association between TRIGTRAN access router and arbitrary correspondent host somewhere on the Internet • First attempt at solving this problem – Limit TRIGTRAN to advisory role – If you have notifications and ACKs, believe ACKs! – No new transport behavior • Alternative choice? – Explore Purpose-Built Keys framework – No identity component – only spoof-resistance – MIGHT allow different different class of responses IETF-56 San Francisco 16 3/20/2003

  17. Canonical DOS Considerations? • Assuming strawperson security considerations proposal (advisory) • Clearing Initiate/Request bits not interesting – Gives current transport behavior • Setting Initiate/Request bits not very interesting – Requires attacker on both sides of router to install state in router Forged Connectivity Interrupted not interesting • – Believe end-to-end ACKs if they come • Forged Connectivity Restored not interesting – Probe once during Connectivity Interrupted, then normal loss processing • Forged Packets Discarded not interesting – Resend packets once during loss event, then normal loss processing DOS flooding of TRIGTRAN routers not interesting • – No worse than any Router Alert flooding attack – Reverts to current transport behavior during flooding attacks - but who cares? IETF-56 San Francisco 17 3/20/2003

  18. Feedback in the halls so far • “Trigger” name still seems to give the wrong message • Need to be clear about timeframes – think “five years” • Out-of-band notifications are very problematic – ICMP blocks, UDP blocks, firewalls, NATs, ALGs, etc. • “Packets Discarded” ambiguous – looks like “handoff” • “Connectivity Interrupted” response isn’t clear – Transports that retry more persistently? Or give up sooner? • Even “Connectivity Restored” requires TCP change • Sending notifications all the time is simpler – No bits, no “initiator/requestor”, no decisions – And, if we’re headed for general deployment, maybe right idea • Need to be clear about topology aspects of DoS attacks IETF-56 San Francisco 18 3/20/2003

  19. Kicking TCP Subnetwork Event Subnetwork Event Mobile Assume “Stationary Assume “Stationary Stationary HOST Host” is sender, and Host” is sender, and HOST has TCP has TCP connections in RTO connections in RTO Any Router Phil Karn Karn, “Kicking TCP”, March 2000 PILC list posting , “Kicking TCP”, March 2000 PILC list posting Phil IETF-56 San Francisco 19 3/20/2003

  20. Kicking TCP Mobile When “Mobile When “Mobile Stationary HOST Host” sees interface Host” sees interface HOST go operational, go operational, resend last TCP resend last TCP packet on each TCP packet on each TCP connection connection Any Router Last TCP packet previously sent on this connection Last TCP packet previously sent on this connection IETF-56 San Francisco 20 3/20/2003

  21. Kicking TCP Mobile When “Stationary When “Stationary Stationary HOST Host” sees duplicate Host” sees duplicate HOST TCP packet arrive TCP packet arrive for connection in for connection in RTO, behave as if RTO, behave as if RTO timer popped RTO timer popped Any and send single- and send single - Router packet probe packet probe Single- -packet probe on this connection packet probe on this connection Single IETF-56 San Francisco 21 3/20/2003

  22. Kicking TCP Mobile When single- -packet packet When single Stationary HOST probe arrives, probe arrives, HOST “Mobile Host” “Mobile Host” sends sends Acknowledgement Acknowledgement Any Router Acknowledgement for Single- -packet probe on this connection packet probe on this connection Acknowledgement for Single IETF-56 San Francisco 22 3/20/2003

  23. Kicking TCP Mobile When When Stationary HOST acknowledgement to acknowledgement to HOST single- -packet probe packet probe single arrives, “Stationary arrives, “Stationary Host” enters Slow Host” enters Slow Start Start Any Router Normal transmission resumes with ACK clocking Normal transmission resumes with ACK clocking IETF-56 San Francisco 23 3/20/2003

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Play Framework One Web Framework to rule them all Felix Mller Agenda Yet another web

Play Framework One Web Framework to rule them all Felix Mller Agenda Yet another web

Play Framework One Web Framework to rule them all Felix Mller Agenda Yet another web framework? Introduction for Java devs Demo Summary Yet another web framework? Yet another web framework? Why do we need another web framework?

656 views • 31 slides
GCC VAT Framework 6 member state, GCC Framework expected to be released shortly Minimum turnover

GCC VAT Framework 6 member state, GCC Framework expected to be released shortly Minimum turnover

Are you VAT ready ! VAT Readiness Presentation 17 April 2017 This presentation is intended for MCA Clients only, consent should be obtained from MCA prior to further circulation and distribution. GCC VAT Framework 6 member state, GCC Framework

803 views • 24 slides
A Recareering Framework @fuzzing_panda A Recareering Framework 1. Framework a. Recon b.

A Recareering Framework @fuzzing_panda A Recareering Framework 1. Framework a. Recon b.

A Recareering Framework @fuzzing_panda A Recareering Framework 1. Framework a. Recon b. Vulnerability Analysis c. Exploitation 2. Life Hack 3. A word to the wise history | grep -v infosec history | grep -v infosec How did I recareer into

697 views • 21 slides
April 2009 Wes J. Lloyd 1 Framework Invasiveness Coupling between application code and

April 2009 Wes J. Lloyd 1 Framework Invasiveness Coupling between application code and

April 2009 Wes J. Lloyd 1 Framework Invasiveness Coupling between application code and framework code Use of framework functions/methods Use of framework specific data types Implementation of framework interfaces Extension of

605 views • 39 slides
Northeast Conservation h Framework Framework What is it and why do we need it? National LCC

Northeast Conservation h Framework Framework What is it and why do we need it? National LCC

Northeast Conservation h Framework Framework What is it and why do we need it? National LCC Workshop Denver CO Denver CO March 2012 Northeast Conservation Framework Framework History Context Future Future NA Landscape

635 views • 38 slides
A Linear Logical A Linear Logical A Linear Logical Framework Framework Framework Iliano

A Linear Logical A Linear Logical A Linear Logical Framework Framework Framework Iliano

A Linear Logical A Linear Logical A Linear Logical Framework Framework Framework Iliano Cervesato - Frank Pfenning Department of Computer Science Carnegie Mellon University 11 th IEEE Symposium on Logic in Computer Science New

587 views • 30 slides
DPS framework DNSSEC Policy and Practice Statement framework

DPS framework DNSSEC Policy and Practice Statement framework

DPS framework DNSSEC Policy and Practice Statement framework draft-ietf-dnsop-dnssec-dps-framework-01 !"#$" Authors Fredrik Ljunggren, Kirei AB Anne-Marie Eklund Lwinder, .SE Tomofumi Okubo, VeriSign !"#$" Kirei AB 10

236 views • 10 slides
What is the Logical Framework Approach? 1 LFA - DEFINITION The logical framework approach is an

What is the Logical Framework Approach? 1 LFA - DEFINITION The logical framework approach is an

Correspondence on The Logical Framework Approach Developed for SNV PARTNERS 14-18 July 2008 Supported by SNV Zimbabwe Compiled by: What is the Logical Framework Approach? 1 LFA - DEFINITION The logical framework approach is an

653 views • 34 slides
What is the THRIVE Framework for system change? The THRIVE Framework for system change (Wolpert et

What is the THRIVE Framework for system change? The THRIVE Framework for system change (Wolpert et

What is the THRIVE Framework for system change? The THRIVE Framework for system change (Wolpert et al., 2019) is a conceptual framework for children and young peoples mental health and wellbeing developed by a collaboration of authors from the

633 views • 4 slides
the EU framework programme for research and innovation The Multiannual Financial Framework

the EU framework programme for research and innovation The Multiannual Financial Framework

the EU framework programme for research and innovation The Multiannual Financial Framework 2014-2020: Commissions proposals of 29 June 2011 1. Smart & inclusive growth (491bn) Horizon Education, Competitive Connecting Cohesion

639 views • 19 slides
National Civil Engineering & Infrastructure Framework Roger Steeper Framework Manager

National Civil Engineering & Infrastructure Framework Roger Steeper Framework Manager

National Civil Engineering & Infrastructure Framework Roger Steeper Framework Manager Agenda Scape Group Scape Procure Regional Focus Civils Framework Supply Chain & SME Engagement Re-procurement Q&A

492 views • 22 slides
A Framework for Grow th in Turbulent Times Based on the Profit from the Core growth framework

A Framework for Grow th in Turbulent Times Based on the Profit from the Core growth framework

A Framework for Grow th in Turbulent Times Based on the Profit from the Core growth framework by Bain & Company Presented by Kevin Johnson, CEO of Agenda Who is Warehouse Direct? Adjacency Growth Framework: What? & Why?

759 views • 21 slides
University of Richmond Career Framework Agenda Project Status What is a Career Framework?

University of Richmond Career Framework Agenda Project Status What is a Career Framework?

University of Richmond Career Framework Agenda Project Status What is a Career Framework? Elements of the Framework The role of Position Descriptions Overview of market pricing and pay grades Next Steps Project

463 views • 22 slides
From Recovery Strategy to Recovery Framework Session Outline Why a Recovery Framework 1 2 What

From Recovery Strategy to Recovery Framework Session Outline Why a Recovery Framework 1 2 What

From Recovery Strategy to Recovery Framework Session Outline Why a Recovery Framework 1 2 What is Recovery Framework 3 Link and utilization of the PDNA for a RF How is RF put together: four modules 4 What: (policy / vision) Who:

406 views • 15 slides
A Framework for Testing for A Framework for Testing for Repeatable Success

A Framework for Testing for A Framework for Testing for Repeatable Success

T6 Concurrent Session Thursday 10/25/2007 11:15 AM JUMP TO: Biographical Information The Presentation Related Paper A Framework for Testing for A Framework for Testing for Repeatable Success Repeatable Success Presented by:

543 views • 35 slides
EIM Tariff Framework EIM Tariff Framework Stakeholder Meeting: Folsom Stakeholder Meeting:

EIM Tariff Framework EIM Tariff Framework Stakeholder Meeting: Folsom Stakeholder Meeting:

EIM Tariff Framework EIM Tariff Framework Stakeholder Meeting: Folsom Stakeholder Meeting: Folsom October 1, 2013 John Anders and Beth Ann Burns The tariff framework is designed to fulfill this Implementation Agreement principle

419 views • 7 slides
IMPROVED SEQUENTIAL SITUATION CALCULU http://www.formal.stanford.edu/jmc/sitcalc.html An

IMPROVED SEQUENTIAL SITUATION CALCULU http://www.formal.stanford.edu/jmc/sitcalc.html An

IMPROVED SEQUENTIAL SITUATION CALCULU http://www.formal.stanford.edu/jmc/sitcalc.html An action is a kind of event, e.g. Does ( Alice, Block Internal events are triggered by occurrence axioms a replace domain constraints. Circumscribe

495 views • 11 slides
IEA Annex 62 Ventilative Cooling Design guidelines Annamaria Belleri Eurac Research

IEA Annex 62 Ventilative Cooling Design guidelines Annamaria Belleri Eurac Research

IEA Annex 62 Ventilative Cooling Design guidelines Annamaria Belleri Eurac Research Ventilative cooling in buildings: now & in the future October 23 rd , Bruxelles Contents Introduction Ventilative cooling principles Design

491 views • 14 slides
Gas Flow Checking the Lotix Joy Osborne TOC Technical Product Manager Agenda Finding a

Gas Flow Checking the Lotix Joy Osborne TOC Technical Product Manager Agenda Finding a

Gas Flow Checking the Lotix Joy Osborne TOC Technical Product Manager Agenda Finding a Leak/Restriction Signs of a leak/Restriction Causes of Gas Flow Loss Causes of a Leak or Restriction Fittings - Overtighten/Loose Connection Furnace -

525 views • 24 slides
Local Feature Extraction and Learning for Computer Vision Part 3: Binary Feature Learning for

Local Feature Extraction and Learning for Computer Vision Part 3: Binary Feature Learning for

IEEE CVPR 2017 Tutorial on Local Feature Extraction and Learning for Computer Vision Part 3: Binary Feature Learning for Visual Recognition and Search Jiwen Lu Department of Automation, Tsinghua University, China

690 views • 50 slides
A proactive approach Presented by : Hygieneering Inc. PRE-OCCUPANCY BUILDING WELLNESS Indoor Air

A proactive approach Presented by : Hygieneering Inc. PRE-OCCUPANCY BUILDING WELLNESS Indoor Air

COVID-19 (SARS-COV-2) PRE- OCCUPANCY BUILDING WELLNESS A proactive approach Presented by : Hygieneering Inc. PRE-OCCUPANCY BUILDING WELLNESS Indoor Air Quality Water Quality COVID-19 (SARS-CoV-2) Building Preparedness INDOOR AIR QUALITY

902 views • 59 slides
Scientific visualization Nelle Varoquaux 0 / 24 What is scientific visualisation?

Scientific visualization Nelle Varoquaux 0 / 24 What is scientific visualisation?

Scientific visualization Nelle Varoquaux 0 / 24 What is scientific visualisation? Visualisation is a method of computing. It transforms the symbolic into the geometric, enabling researchers to observe their simulations and computations.

376 views • 26 slides
Beyond the Higgs Boson Particle Physics at the Verge of More Discoveries? Matthias Neubert

Beyond the Higgs Boson Particle Physics at the Verge of More Discoveries? Matthias Neubert

Cluster of Excellence Precision Physics, Fundamental Interactions and Structure of Matter Beyond the Higgs Boson Particle Physics at the Verge of More Discoveries? Matthias Neubert Mainz Institute for Theoretical Physics (MITP) and PRISMA

545 views • 40 slides
Materials Physics Science Low dimensional Soft matter Magnetism Plasmons + Magnetic

Materials Physics Science Low dimensional Soft matter Magnetism Plasmons + Magnetic

Materials Physics Science Low dimensional Soft matter Magnetism Plasmons + Magnetic nanostructure Scattering energy Techniques etc. ccessfully Hydrogen in with AM speed materials Fig. 2 EOS M290 AM machine and Scientific profile

770 views • 29 slides

More recommend