Categories
IETF

IETF 101, Day 5: All Sorted, Innit?

This week is IETF 101 in London, and we’ve been bringing you daily blog posts highlighting the topics of interest to us in the ISOC Internet Technology Team. Friday is only a half-day, but there’s still a couple of interesting sessions to wrap-up the week.


NOTE: If you are unable to attend IETF 101 in person, there are multiple ways to participate remotely.


Homenet starts at 09.30 GMT/UTC, and has the Homenet profile of the Babel routing protocol currently in IETF Last Call. Other drafts being discussed include the Simple Homenet Naming and Service Discovery ArchitectureOutsourcing Home Network Authoritative Naming Service, and DHCPv6 Options for Homenet Naming Architecture.

The remainder of the agenda will be a discussion about Homenet security in relation to the home perimeter, HNCP and Babel, as well as appropriate trust models and how to establish trust.

ROLL continues from where it left off on Thursday morning, also starting at 09.30 GMT/UTC. There are several drafts being discussed dealing with the issues of routing over resource constrained networks where limited updates are possible.

So that brings the IETF in London to a close, and hopefully we’ve also given you a bit of an insight into rhyming slang throughout the week. Now it’s time to follow the van, as an old music hall song goes, but don’t dilly dally on the way…

Please do read our other IETF 101-related posts … and we’ll see you at IETF 102 on 14-20 July 2018 in Montreal, Canada!

Relevant Working Groups

Categories
Deploy360 Domain Name System Security Extensions (DNSSEC) Encryption Events IETF

Deploy360@IETF95, Day 2: TLS, Curdle, Homenet, Security & Sunset4

John Levine at microphone

Our schedule for Day 2 at IETF 95 is a bit less hectic than yesterday, but promises to be the most interesting of the week. As well as the established Home Networking and TLS Working Groups, today also sees the debut of the new CURves, Deprecating and a Little more Encryption Working Group. There will also be a meeting of the Sunsetting of the IPv4 Working Group to discuss moving the IPv4 protocol to historic status.


NOTE: If you are unable to attend IETF 95 in person, there are multiple ways to participate remotely.


TLS holds the first of its two sessions this morning (the other being on Thursday morning). There’s really just the one item on the agenda, which is the proposed TLS version 1.3 standard that aims remove support for weaker encryption algorithms, introduce new encryption algorithms, along with requiring stronger handshaking techniques.

HOMENET has another busy agenda as it continues to develop protocols for residential networks based on IPv6. The primary focus is on autoconfiguration, naming architecture and service discovery, as well as multiple interfacing support in home-type scenarios, but two important new drafts will also be discussed. The Homenet profile of the Babel routing protocol used in conjunction with the HNCP protocol defines how Babel should be used in a Homenet scenario, whilst the Homenet Naming and Service Discovery Architecture covers how services advertise and register themselves both on the homenet and public Internet. The security aspects of this will also be covered in a presentation during the session.

OPSEC also has three IPv6-specific drafts on its agenda, including an approach for risk assessment of IPv6 transitional technologies using the STRIDE (Spoofing, Tampering, Repudiation, Information Disclosure, Denial of service and Elevation of Privilege) classification, and an analysis of the different security considerations between IPv4 and IPv6 in particular parts of the network. The third draft under discussion addresses requirements for IPv6 firewalls that have not been specified or recommended in RFCs to-date.

The CURDLE Working Group may be a bit of a mouthful when its acronym is fully expanded, but improving the cryptographic security of a number of protocols is an important objective and one very relevant to Deploy360. In particular, there are two drafts up for discussion that specify new algorithms for DNSSEC, something Dan York wrote about the importance of recently.

And to round off the day there’s SUNSET4 which has just the one draft on the agenda, but a potentially very significant one as it proposes to move IPv4 (as defined by RFC 791) to historic status and thereby no longer recommended for use on the Internet. This may not reach RFC status, but it has certainly generated some interesting discussion as to the implications of the IETF no longer actively working on IPv4 technologies. Possibly a meeting to attend just in case history does indeed get made?

Relevant Working Groups:


Image credit: a photo Dan York took of ISOC Board Member John Levine making a point at the microphone in the UTA Working Group on Monday.

Categories
Deploy360 Events IETF IPv6

Deploy360@IETF94, Day 2: Homenet, SPRING & SIDR

Geoff Huston at APNIC 38The second day at IETF 94 in Yokohama is all about home networking and secure routing for the Deploy360 team.

Not to mention of course the evening social event which is also a chance to come and say hello .


NOTE: If you are unable to attend IETF 94 in person, there are multiple ways to participate remotely.


The homenet (Home Networking)Working Group is meeting during the 0900-1130 UTC+9 block to continue its work on IPv6 based protocols for residential networks. This is usually one of the best attended working groups and this session will be focused on autoconfiguration, naming architecture and service discovery, as well as multiple interfacing support in home-type scenarios. No less than eight new drafts are up for discussion here, as well as updates to another seven, so expect an active session.

Running in parallel with homenet is the spring (Source Packet Routing in Networking) Working Group that’s looking into how to specify explicit packet forwarding paths to take advantage of certain network characteristics. Whilst similar mechanisms are already employed in MPLS traffic engineering, spring is also considering the use of IPv6 as a data plane.

There’s a bit of gap until the secure routing session, so the more politically conscious may want to check out the proposed hrpc (Human Rights Protocol Considerations) Research Group. Although not an obvious subject for the IETF, this group aims to look at how protocols can be developed to protect the Internet as a human rights enabling environment. IP, DNS, HTTP, P2P, XMPP and VPN protocols are up for specific discussion, so there are obvious IPv6, DNSSEC and TLS implications here.

The sidr (Secure Inter-Domain Routing) Working Group is running a split session in the 17.10-18.40 UTC+9 block today, but continuing on Friday during the 09.00-11.30 block. Today’s session is primarily devoted to the operational issues in deploying RPKI, and in particular referencing the experience of the Regional Internet Registries. These concerns include the consequences of mismatched resources in the digital certificate chain, when resources are transferred to a new holder in a different registry, and the handling RKPI validation locally when the CA authority is inaccessible. Four drafts that seek to address these issues are up discussion this evening.

At the same time as SIDR, the DBOUND Working Group will meet .We monitor this WG primarily because the “boundaries” of how you look at domain names can impact other security mechanisms such as TLS certificates. The DBOUND problem statement gives a good view into what the group is trying to do.

Then don’t forget the social event over at the Yokohama Bay Hotel Tokyu, starting at 19.00!

For more background, please read the Rough Guide to IETF 94 from Andrei, Mat, Karen, Dan and myself.

Relevant Working Groups:

Categories
IETF IPv6 Open Internet Standards

Rough Guide to IETF 92: All About IPv6

IPv6 deployment growth continues throughout the world and the standardization work in the IETF reflects this growth and operational experience. At IETF 92 in Dallas next week, there will be work on IPv6 operations and ongoing maintenance of the IPv6 protocol.

First, though, let point you to some of the measurements and growth happening across the globe. APNIC, Akamai, and Google publish ongoing IPv6 deployment statistics showing growth in both individual networks and in countries all around the globe. We publish monthly reports of IPv6 deployment in specific networks using statistics provided by Google, Facebook, Yahoo!, Akamai, and LinkedIn via the World IPv6 Launch measurements page. Eric Vynke compiles per-country statistics from APNIC, Akamai, and Google, and graphs them. Here is the link for the US as an example. IPv6 continues to grow and operators continue to gain experience in deployment and operation of IPv6 in their networks.

In Dallas next week, the Homenet working group is doing a lot of interesting work producing open standards for protocols to implement robust networks in homes of the future, all based on IPv6. The topics include routing, addressing, naming, and security. It’s exciting to see new standards work for such a potentially huge area for extending the reach of open standards in networks that matter to people around the world.

The Internet of Things has gained a tremendous amount of attention in the media of late, but it’s not taking the IETF community by surprise. There has already been a tremendous amount of work done on using IPv6 in networks like this. There are a number of RFCs that have already been published (7388, 7400, 7428 for example). The IPv6 over Networks of Resource Constrained Nodes WG continues to have a busy agenda of work items on enabling IPv6 for just such networks.

This is just a sample of the IPv6 work that continues at the IETF. IPv6 is rapidly becoming such an integral part of the Internet that the agenda of every working group takes it into account as part of what is being developed.

At the Internet Society, we continue to promote IPv6 deployment. You can check out the World IPv6 Launch measurements for our latest measurements of IPv6 around the globe: http://www.worldipv6launch.org/measurements

Also you can check out the Deploy360 online resources for getting started with IPv6 deployment:

And you can see more about other topics of interest to the technology programs of the Internet Society in the rest of our Rough Guide to IETF 92 posts.

Some IPv6 Working Groups at IETF 92:

Follow Us

There’s a lot going on in Dallas, and whether you plan to be there or join remotely, there’s much to monitor. To follow along as we dole out this series of Rough Guide to IETF blog posts, follow us on the Internet Technology Matters blog, Twitter, Facebook, Google+, via RSS, or see http://dev.internetsociety.org/rough-guide-ietf92.