Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Internet Engineering Task Force / 113 / 22 Mar 2022
Internet Engineering Task Force / 113 / 22 Mar 2022
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: IETF113-INTAREA-20220322-1330

Description

INTAREA meeting session at IETF113
2022/03/22 1330

https://datatracker.ietf.org/meeting/113/proceedings/

A

Everyone so we're going to start soon. Anyone could help us with jabber.

A

So.

B

So.

A

Eric I we have no takers, but we still need someone to follow jabber right or yeah. Normally yeah, not many people are anyway, but thanks thanks for that, so hi everyone uh it's time now. So welcome to the interior working group. uh My name is juan carlosuniga.

A

My coacher wasim will be connecting remote and we have carlos bernardos helping us here as a delegate. So let me move to the next slide doing a quick test. Okay, so far, so good.

A

This is the not well as any other ietf meeting, so please make sure that the various topics are presented in this slide the code of conduct patents and be aware that, by participating in this meeting, you agreed to follow the ietf process and policies.

A

uh If you're aware of any contribution being covered by a patent or patent application, you may disclose the fact uh in the to the list or or contact the chairs.

A

You also you acknowledge that this meeting is going to be recorded, so written audio and video photographing will be made public and the personal information that you provide to this meeting will be handled in accordance with the privacy statement.

A

Very specially. Please make sure that as a participant, you agree to respectfully treat other participants and we are very strict about any harassment or any misconduct issues. So please act respectfully, and if you have any questions, you have all the links there to the different bcps.

A

So we are going to ask you to to help us if you want to ask a question: do uh join the queue online, even if you are uh local here or remote, so that we can handle the order of the people and we will give you the voice uh for those uh that have not seen it. Please keep your mask on all the time and approach the mic only when you are called and your turn to the queue is arriving for everyone else.

A

Please make sure that the audio and video are off unless you are presenting or asking the question.

A

You have the resources here for the meeting, the mythical tips, and if you have technical issues, you can contact the different teams at the ietf.

A

So we have minute taker where your presence has been logged through data tracker, what we call the blue sheets- and we are getting- also help thanks to the people helping us with the note. So if you want to contribute to the notes, please do so.

A

This is the agenda that we have for this meeting. uh We have eight items. So first is the our welcome this presentation right here, uh giving you the status and update, but right now we don't have any uh working group documents. So it's a slight one. Then we're going to have set talking about ipv4 polishing at the etf thread, with rfp parcels luigi for internet address gaps, then we have the ip regional internet blocking considerations by lenny semantic ip addressing for satellite higher layer address aggregation by tony and service routing in multi-access edge computing.

A

So all these presentations uh are individual presentations. uh So far we don't have any any working group document so it'll be they will be treated as individual contributions all of them.

A

uh We may do a little adjustment on the agenda or down the road depending on who's present, because there are some people that need to be in two rooms at the same time, but uh we will try to stick to this order. Are there any questions.

A

Okay hearing none: let's move to set.

A

Set are you connected, oh yeah. I see you know.

C

Hi, do you hear me.

A

Yes, I can hear you so I'm going to give you the control of the slides.

D

Okay,.

A

I think you should be able to move back and forth now. Yes,.

C

Sure enough, okay, shall I go ahead with this? Please do okay! Thank you, hello, everyone. This is a new draft from our collaboration on ipv4 unicast extensions. So, as people will recall in november, we presented.

C

In november, we presented the first two of a set of four drafts on our goal of conserving ipv4 address space, and we wanted to continue presenting the remaining two drafts, but there were a number of concerns that were raised in the november meeting and as I'll discuss in a few moments.

C

In our view, the heart of most of the concerns that people had with our drafts was about the appropriateness of working on ipv4 and maintaining ipv4 in the ietf, and so we wanted to go to the heart of the matter and see if consensus could be found about that deeper, more fundamental question.

C

So we have a new draft that attempts to address this. We posted it. There's already been some discussion.

C

The people who've commented so far were not very pleased or positive for this, but I'm going to go through it and hope to help people understand it and hope people can help us understand their concerns.

C

So our draft talks about the itf's historic role as the steward of ipv4 talks about challenges that have been raised in the ipv6 era, to the itf's role in continuing to maintain and develop. Ipv4.

C

Notes that neglecting ipv4 is not our transition strategy and is not a strategy for causing the adoption of ipv6.

C

Describes the likelihood and experiences indicating that ipv4 requires and will require ongoing maintenance and notes that the itf is in a unique position as the historic steward of ipv4 as the home of the most expertise as the most conspicuous point of coordination for ipv4 and compatibility, and that itf has unique structure and unique values that are historically well suited to consensus-based maintenance of ipv4 and related technologies.

C

So, as I said, this was inspired by our presentation of these proposals. I'm going to not talk very much about these proposals, but just clarify a couple of points as they relate to this, but mostly going to talk about the ipv4 question.

C

So I did want to clarify something that a lot of people seemed not um not especially cognizant of that hadn't come up very much in the discussions, which is that the locus local pardon me, the lowest address fix proposed in one of our four drafts is a fix that can be made locally with internet-wide benefits, so the lowest address is already interoperable across the internet with distant networks.

C

If it's fixed to be supported within any individual local segment, it raises no allocation policy questions.

C

It's already backwards, compatible for distant networks and operators of local area networks can make use of it whenever they know that the devices on their networks support it and so, to the extent that people have concerns about allocation policy or about the difficulties in achieving internet-wide coordination.

C

That draft doesn't raise those concerns. It does, of course, raise the concern of whether the itf can properly continue to fix things in ipv4, whether it's worth it, whether it's appropriate and so on, and so again that's some of the motivation here.

C

So there's been some disagreement about how large or how exclusive this concern was, but we perceived that a very, very substantial amount of the objection or the concern about our proposals in november was based on the fact that they're ipv4 specific fixes people said a lot of things that were quite disparaging toward ipv4 toward continued engineering work on ipv4 toward the role of such work in the ietf and the the strongest concerns that we noticed and the most frequently stated that we noticed appeared to be versions of. Should the ietf still work on fixing ipv4.

C

Why should the itf still work on fixing ipv4 or the sort of.

C

This will only benefit ipv4 users who are using an obsolete protocol and should just switch to ipv6.

C

Now the ietf's role in maintaining ipv4 has been questioned before one of the main outputs from the sunset 4 working group in 2006, proposed that ipv4 should be declared historic and that itf should, for the most part, cease to work on it.

A

People online are saying that if you could uh move a little bit away from your mic because it's getting saturated, thank you.

C

uh Maybe like this, hopefully this is all right. Yes,.

A

Thanks thanks for.

C

The feedback- sorry about that yeah, so a main output of the sunset four working group in 2016 made this proposal, and this went for um went up for review as an ietf wide consensus and the community had quite substantial concerns about it and it didn't reach a consensus, and so our hope is to see if the opposite consensus can be found. That is people had objections to the idea that ietf should not do this work.

C

We're wondering if people could perhaps agree that the itf in fact should do this work and should continue to have this role.

C

So ipv4, of course, is still the most used network layer protocol in the world. The ietf is the recognized and historic authority on all coordination and interoperability. Questions for that protocol. Those questions continue to arise.

C

Our draft identified 10 rfcs over the past decade, or so that impact ipv4 implementation, some of which are also applicable to ipv6, but that, in our view, made changes to the protocol or fixed things that needed to be fixed in the protocol, and we think that coordination and interoperability questions will continue to arise.

C

So the first reply on the mailing list when we proposed our draft, which a considerable number of people replied indicating their support for end agreement with said that our draft was unnecessary because it was a matter of common sense that the itf will fix things that need fixing, even if they're specific to ipv4, but that it will only make serious fixes.

C

So I found that to be a bit ill-defined a bit non-specific, although it was certainly something that a number of people indicated their agreement to.

C

We've found a lot of opposition to ipv4 work, but no clear policy that we can or can't do it. So I would ask somewhat rhetorically, but also somewhat concretely and somewhat practically. Can we clarify what common sense and what's serious mean, and I would note that the other proposal that we talked about last time, the unicast 240 slash 4- is already the existing behavior of billions of devices and it's plausible, but it's actually the behavior of the majority of internet nodes.

C

But it's something where there is far from universal compatibility. But it's quite a widespread behavior and it seems striking to say that this isn't serious when it's a behavior, for example, that's already implemented in perhaps the majority of nodes and billions of devices across the internet, and I guess more concretely.

C

It doesn't seem especially apparent to me especially well defined in consensus. What this common sense or notion of seriousness mean or refer to.

C

So I would hope that we could get and reach some kind of clear statement of ietf's relationship to these maintenance and coordination. Questions which we think have arisen are arising and will continue to arise, and we query whether an alternate consensus may be found, given the lack of consensus for the declaring ipv4 historic position. That was noted when that proposal was made and looks like that's about it um and yeah. We'll take questions or comments, and thank you for your attention.

A

Thanks that some people still uh say that they they get uh too much uh noise from your from from your mic. We hear you super well, but a little loud, so yeah. I think it. Thank you very much.

C

I'll move it further back sorry about that.

E

No, no thanks so first online is eric. Thank you, sir, for the presentation, speaking with my ad here, just to avoid any confusion by people listening to the youtube video. This is an individual contribution till now and does not represent any ietf consensus.

E

Now I still wonder whether the itf can commit to something forever right. We need to get it ended and, finally, I would love to get a clarification question out of you. You say rpv for fix: do you mean fixing the protocol or fixing the addressing or what thank you in advance.

C

Thanks yeah, so I don't know about the end date question. I think that's a great question.

C

I think that um kind of conspicuously to me as someone who's been interested in ipv6 and the ipv6 transition for a long time. I don't think that there was um really ever a transition strategy that had such a thing as an end date. People famously have said. Well, there is no flag day right. um This transition appears to be in practice an indefinite thing.

C

I don't mean to suggest that ietf should commit itself to a position that the ipv6 transition is permanent or never complete, but I do think that what we observe is that the ipv6 transition does appear from the present moment from the present perspective, to be something that's very much incomplete and that very much has no projected end date and that very much is anticipated to last for the immediately foreseeable future, and so I think it's worthwhile to acknowledge that. I would be happy to see proposals that try to formulate that or try to address that.

C

um I'm trying to recall your other. Oh your other question about where the fixes lie for our particular proposal.

C

We're proposing fixes that in the immediate term, ought to be performed by implementers and ought to be present in ipv6 implementations.

C

uh Pardon me in ipv4 implementations right, so we've been proposing and testing and looking at behavior, typically of devices typically of operating systems, typically of operating system, kernels that implement ipv4 and they have commonly in compliance with historic, not historic status, but older, existing and still current rfcs have treated certain addresses as inherently invalid under one might say, under the protocol itself that these addresses must not be used, and so, when these addresses are encountered, certain implementations will actively discard packets.

C

So I would regard that as a protocol fix. I understand that for everything except for the lowest address, there are certainly policy questions that are lingering about, for example, allocation policy.

C

We've heard from several organizations that are using or wish to use reserved address space as rfc 1918 style, private address space and our proposals have been agnostic and silent on that kind of question.

C

Clearly that is a possible use that could be formalized. That could continue. Unofficially, in practice that could be the subject of an official designation, so all of the addressing policy questions and all of the other policy questions our drafts have attempted to leave for another day and really focus on implementation. Behavior and say you may have something in your kernel that inspects a packet that inspects an address that says. According to current rfcs, I am expected to drop this packet, because this address is invalid.

C

According to the protocol and that's what we want to see changed in the present moment in order to preserve maximum options for the future.

E

Thank you very much for this very detailed question. I think we share a point that v6 deployment should have been done for a long time. It's not the case. Even if it's growing point taken now as an individual contributor, I would be very reluctant to use the remaining for addresses that could be reserved for anything. We can do just to gain one year or two year anyway. No no need to reply on this.

C

um I mean I do. I would like to reply on that, because I appreciate the concern- and um I gave a presentation about this at nanog and I had occasion to forward a question about exhaustion to someone who actively works in the secondary market for ipv4, addresses and asked if we were able to use some kind of auction or market-based allocation mechanism, rather than the rir's non-market-based historic allocation mechanism.

C

In allocating a pool of addresses like this for global unicast. How long would they last and his off-the-cuff speculation was eight years, so I just wanted to put that out there in terms of people's concerns, because I understand that the demand has been quite voracious and that the exhaustion has happened quite rapidly. Anyway. I see there are two other questions and limited time, so I'd love to get the other questions.

F

Hey seth, it's tom hill from bt. um I I think it's sort of kidding ourselves a little bit to equivocate between fixes that are affecting you know, millions of people across the world or fixes that benefit a few people. um We have a lot of parallels of this in the software engineering world. We have a lot of parallels for this in cars. We there are huge. um There are swathes of people in the world who are quite happy with windows.

F

Server 2003, which microsoft has long since abandoned microsoft, might one day release a fix for the firewall, for example, something critical, something that genuinely affects all of those servers that are still out there. They might actually do that. They could still do that, but they're not going to back port usb 3.2 support into it, and so you have to think how many people is this going to help in terms of these fixes some things genuinely.

F

We should you know we should care if ipv4 is broken properly broken. We should genuinely care about that. We should not care that some people have elected to write a usb 3.2 driver for their ipv4 stack. It's it's not necessarily going to help as many people, as you hope, and ultimately all of this effort does detract from rolling out ipv6, but that's a couple of questions in a statement, but in particular I think we really need to be very honest with ourselves about the effort going into this and what it's for.

C

So I appreciate the distinction that you draw, that there are different kinds of fixes and that there's different scope in the benefit of different fixes, and that may go to arguing that some of the examples that we've given of other ongoing ipv4 maintenance may not be viewed as exactly analogous to our proposals um and without having um analyzed all the details under that rubric. I can say that seems to be um a possible point of argument.

C

um I guess I would say it seems like some of the other fixes have also been fairly specific or fairly limited in what they would do, where some of our fixes have the potential to alleviate scarcity, problems for a fairly significant number of organizations, admittedly with potentially some appreciable delay.

C

But so I guess I would say I would um take the point conceptually- that there are many different kinds of fixes and that they may be analyzed differently and say. I also think that our proposed fixes have a lot of potential down the road to benefit a lot of people in a lot of organizations.

G

Hey uh jen linkova two comments first year, I'd like to second to what been said in my understanding when we're talking about a product being in maintenance mode, it means we're fixing bugs serious bugs like security issues, but we're not developing anything new in the product and focusing on whatever product is active.

G

Now, so I think it's what we should be doing with ipv4, so I have no objections to before being in maintenance mode, but it doesn't mean we're going to develop new stuff and, secondly, I'm a bit confused about a few slides in your presentation. So you propose if some work did not get enough consensus and not enough interest, do you think that getting higher level statement about doing more work in ipv4 would help? I was under impression that you bring in some work to atf.

G

If there are people who want to do this, and there is consensus, you can do it even if you don't have a large statement about that stuff. So I'm like not sure what you're trying to achieve by having consensus on ipv4 maintenance.

C

Thanks um yeah, I think we were trying in large part to respond to the tenor and the focus of concerns that people had and that people expressed on the mailing list and also at the prior meeting where in our perception and our understanding, a lot of people didn't say so much.

C

Oh, this won't work well or this is infeasible or this is not beneficial as such, but they said it's ipv4, they said, ipv4 is obsolete or ipv4 is done or ipv4 is over or things of that nature, and that was a predominant rationale for people proposing not to work on this or not to do this work, and so I think, that's a lot of what we were proposing here to address, with consensus.

A

Okay: okay, thank you very much we're going to move now to the next presentation. Thank you. Thanks set thanks.

A

So I'm going to pass you the control fret so that you can move oops. I love those lights. Give me one. Second,.

H

Are you hearing me, okay, juan carlos.

A

uh I can, I hope people online can also hear you well, so I'm gonna try once again to pass you the control and you should be able to move the slides from your side. Okay,.

H

Thank you. So this uh presentation is on a new um construct known as ip parcels.

H

Let's see this is the uh pointer to the data tracker document. The first version of the document was published in december 2021, it's closely related to the arrow omni and dtn proposals. Where you see the data tracker entries for those.

H

uh The current draft is the dash zero nine, which was published february, 10 2022, and this presentation is a narrative of the dash zero nine, so um ip packets, both ipv version, 4 and version 6, contain data that becomes the re-transmission unit in case of loss, upper layer protocols like quick, ltp and tcp exchange segments, and they include a single segment per ip packet.

H

What iparcels permits is for a single packet to carry multiple upper layer protocol segments a packet of packets, if you will, but the segment is still the retransmission and loss unit.

H

The goal is to support larger packets, for better performance, to support, flexible packaging and repackaging for more efficient handling and to encourage larger maximum transmission units in the internet.

H

So let me give an analogy: when a consumer orders 50 small items from a major online retailer, for example, you wanted to buy 50 keychains to give out as employee appreciation gifts. The retailer does not ship the order in 50 small separate boxes.

H

Instead, they put as many of the small boxes as possible into one or a few larger boxes or parcels and then place the parcels on a semi truck or an airplane. uh The parcels arrive at a regional distribution center where they may be further redistributed into smaller parcels. They get delivered to the consumer, but most often the consumer will only find one or a few parcels at his doorstep and not 50 individual boxes.

H

This greatly reduces the handling overhead for both the retailer and the consumer.

H

So a is formed when an upper layer protocol identified by the five tuples source, ip destination, ip source port destination, port and protocol produces a buffer with up to 64 upper layer protocol segments. All segments except the final- must be equal length. They can be up to 65 64 k, octets minus headers.

H

The final segment may be smaller. The upper layer protocol delivers the buffer and the non-final segment size to the iplayer.

H

Then the ip layer forms a parcel by pending a jumbo payload option, and there we have our friend the jumbo payload option.

H

So ip parcels are based on the jumbograms construct. uh They include a jumbo payload option, but they have a non-zero value in the payload length field, whereas true jumbos use the value 0 in that payload length field, the payload length gives the length of the first segment. Only the jumbo payload length gives the length of the entire parcel.

H

So we have ip parcel support for both v6 and v4. So to to do that, we've defined the jumbo payload option for ipv4 the maximum ip parcel size is the 64 segments times. The maximum 64k per segment slightly under four megabytes is the largest parcel, and here on the right, you see a diagram showing the construct of a parcel where we have an ip header and k segments. uh I'm sorry, uh j segments um all all within the same ip packet.

H

Some related work, um a concept known as generic segment and receive offload is implemented in some os and nics. Linux implements it. For example, uh the upper layer protocol can supply multiple segments in a single system call. There was a study with the quick protocol that showed significant performance increases using gso and gro.

H

Another study with the look lighter transmission protocol showed moderate increases for small to medium-sized segments with using gso gro, but significant increases for large single segments. Even if ip fragmentation reassembly is needed.

H

Another study known as big tcps, considered end system internal implications of jumbograms for better performance. So what ipparcels is really proposing is a combination of the results of these studies, which is the gso gro style segmentation, plus ip fragmentation with ip jumbograms for network transmissions.

H

So there's several different parcel types: a null parcel is just an ip header, with a jumbo payload option and no next header in the next header field and it's essentially a singleton with a segment length l of zero.

H

Then a singleton parcel is an ip header. With jumbo payload option and a single upper layer protocol segment of length. L, then a multi-segment parcel is an ip header with jumbo payload option: uh j minus one upper layer, protocol, segments of length, l and the final upper upper layer protocol segment of length, k, which must be less than or equal to, l.

H

uh Transmission of ip parcels, ip parcels traverse parcel capable links that have sufficient mtu the same as an ip packet would do, but parcel capable links are not yet widely deployed in heterogeneous internetworks, but an adaptation layer can forward parcels in an overlay.

H

The omni adaptation layer in particular uses encapsulation and fragmentation, but the omni adaptation layer breaks parcels into smaller subparcels if necessary, since the largest they can undergo ip fragmentation is 64k octets.

H

So there's a first pass in the adaptation layer which partial fragmentation occurs. These are loosely reassembled with opportunistic merging and a second pass in which ip fragmentation is applied to individual sub-parcels, and here we need strict reassembly with fragment re-transmission if necessary.

H

So the goal is to forward the fewest and largest ip parcels possible over the network to the final destination, minimize segment reordering due to par re-parceling if possible. But this is not a critical consideration.

H

uh Leverage, ip fragmentation, reassembly for greater performance and the lost unit becomes a single segment instead of the entire ip parcel.

H

So how do we find out if a path can handle ip parcels?

H

We want to qualify the head of the source to destination forward path as parcel capable, so it can support incremental deployment of parcel capable links, so a partial probe from the source can test consecutive hops up to the destination itself or to a router that has a non-partial capable next hop, and for this we use the hop option gets processed at each hop.

H

The parcel reply comes from either the final destination or the router that informs the source. The head of the forward parcel path, parcel is capable, and this parcel reply is placed in a destination option so that it's only processed at the source.

H

So after of the parcel path, qualification parcels from the source can traverse partially capable paths the same as ordinary iop packets, up to either the ends destination or or the router that terminates the partial, capable path and then routers that terminate particle, capable paths open the parcels and forward individual ip packets to the destination.

H

So, in other words, we want to drive parcels forward and as far as forward as possible into the forward path from the source to the destination.

H

Now, in terms of integrity link, layer checks like crc32, can miss errors in packets that are larger than about 9k bytes. But I t parcels are often much larger, but fortunately ip parcels include a separate integrity check for each upper layer protocol segment. So if there's many of them there's many integrity checks in the parcel.

H

So the parcels improve integrity in comparison to the same size. Jumbograms would provide, because the jumbos only include a single single upper layer, protocol segment, an integrity check.

H

So the next steps are that we want to. We see that I p parcels increase the efficiency and performance for end systems. Iparcels provide a path forward for larger mtus in the internet. Iparcel spec is in advanced stages of development. Here it is the point of the data tracker and I want to ask now if we can adopt ip parcels as a working group item.

A

Okay, thank you very much for that presentation.

A

So we have uh no one right now asking questions to respond to your question about accepting it as a working group item. I guess we would need to see some discussion and and some support on the list.

A

So uh we do have you have a question lars yeah, hey fred, this is eggert. um So I have a question I might have missed this, but can you say a bit more on the first bullet? How does this increase efficiency and performance, especially for the end systems, because I don't see it.

H

So we we have two studies that show that, by sending multiple segments in a single system call, it reduces the number of interrupts and it reduces the uh overhead of packaging. The uh the parcel and for transmission across networks that have larger mtus, larger packets, uh increase, fewer interrupts and more efficiently.

A

I don't care about I'm a transfer later, I don't care about the network, but so we already do this on the end systems, just fine right with tcp, offloading and other, as you mentioned. So so is there additional efficiency to be gained by this over what we're already doing and where.

H

Is it coming from it's? This is. This is based on uh the the gso jro and tso, but kind of all deficiencies. We.

A

Have already right, so these are not new efficiencies with this proposal, these are efficiencies that we already have now.

H

This this proposal was based, yes on those concepts, but it's allowing the parcels to travel over network paths and.

A

Some network paths.

H

Go ahead.

A

So so, basically, there's no additional efficiencies over what we already have with gso for the end systems.

H

Yeah again, the the the hosts uh the end systems get to see the same efficiencies that they get with gsojro and tso tcp segment offload.

I

Thank you luigi.

I

um So luigi, uh I had a similar question on the performance idea. uh I mean in slide nine. If I remember correctly, you say we have a bunch of links that support ip parcel. They may go through links that do not support ip parcels. So basically you have operation going on inside the network. So at least at the beginning of the deployment you will have a performance hit because you have to uh man change a little bit the way you you aggregate or disaggregate, fragment or uh uh reassembly the packets right.

H

If I understood the question correctly, the uh ability to know when to use parcels is a not a performance intensive operation. When you send these things called parcel probes, which I'll put the thing back up again, what you would normally do is you start sending regular ip packets and then send a parcel path, qualification probe? If the probe succeeds, then you can begin sending ip parcels.

H

So there's not any kind of a performance hit for starting to use parcels when it's not possible to use them. For example,.

I

We have time for the continuous question.

D

So if.

I

I could understand correctly what happens if only links in the middle do support ip parcel, but not the endos. All the links at the end of the you will not see the ddip parcel part, because the path doesn't support. Is that correct? It's my answer right.

H

In that case, you're still sending regular ip packets.

I

Okay, thank you.

A

Okay: okay, thank you very much fred.

A

So next is uh luigi.

J

Do you want.

A

Me to share slides and pass you the or you wanna, okay, let's try.

I

Okay, okay, again, I'm luigi I'm actually going to present tools to just an update on two drafts about internet addressing. We have out there two documents, the problem statement and the gap analysis um a little bit of telenovelas in the sense that what did happens is one one. Two uh we had a side meeting at that point and dirk reported in this very uh working group. So, based on the side meeting, we formulated three three questions that you asked to the mailing list. So what exact features do we want from the internet where?

I

How is the features innovation happening and what is in address in an address anyway, um actually was good. It was good because uh we had we started with three threads and the discussion spilled all over the way.

I

Actually ip parcels, if I remember correctly, is a spinoff on discussion started on the mtu issue on about the the first question, so for each and every thread, what we did is try to summarize the discussion in an email in order to check if our understanding was okay and we'll show you that in the next three slide, and actually even after the summarization that we we did when we we thought the discussion was more or less over. uh Actually discussion actually went on, which is good.

I

um We tried to incorporate everything uh this included some private email exchange in order to be sure that we captured correctly what some people said on the email. Okay, so and actually we had three new quarters on the document: laurent, uh abraham, chen and dino farinacci, but actually there is a contribution of a lot of people there. Okay, so first question: what exact features do we want from the internet? The the summary of the discussion? One was a a list of features.

I

I just put the keywords, but actually this resulted in a in a new section, section 3 in the problem statement and each and every point here has been developed in a consistent way with a good paragraph, I would say so very, very good input that we received. Second one was where, and how is the futures innovation happening? So the summary of that discussion is that not surprisingly, a certain way, we have two dimensions.

I

One is the horizontal dimension, so it's age versus core okay, the other is the vertical dimensions is about which layer of the protocol stack. So and obviously this is not just one of all the other. It happens in a hybrid way. I would say, um then there were points about how much unique and globally rootable an address should be. This is somehow linked to the discussions that we see around about internet consolidation or centralization depends which terminology you like to use.

I

There was a discussion about address privacy. um This actually privacy came up in all of the three questions in a way or another okay, it seems to be very important, and I do agree absolutely so, and um this has evolved mainly in a new section. Five in, in the gap analysis.

I

um The third question: what is an address anyway, so this specific question went beyond any expectations that we had uh went beyond the the just submission cut-off date. Okay, the discussion went on for a long time. Even recently, there were some some follow-up emails on that went beyond the entire mailing list, mostly in the architectural discussion.

I

Okay, the points reason is a lot about the how ephemeral is an address and what kind of semantic in a certain way it transports, because you can see an address like a opaque instruction that you look up in a table and then you, whatever the table, tells you to do with it.

I

Okay and then you have a certain kind of mappings, which is could be one-to-one, there's a classical unicast or something more revolved, and this has also brought a lot of changes in section 5 on the problem statement document and again a little bit here, a little bit there. Everything is on the data tracker, okay, so I will go quickly through the main changes. I apologize for the title that I messed up somehow didn't know this.

I

There are two sections in the problem statement: 2.7 is about communication. Protecting privacy is a work in progress. To be honest, the plan is because the privacy issues has been raised several times. In all the questions we will try to to fetch input from the prg research group, so the privacy enhancement and assessment research group. I think it's the right community to ask for and then there is this desired network features that is more or less the the list that I showed you before again.

I

We with all the text that comes along in order to describe what are those features and um other important changes are in section four. We have a new part of about hampering privacy and in the problem statement section itself, we added some improved input from the discussion that took place actually in the architectural discussion mailing list about the question. What is an address anyway, on the gap analysis document, the main changes is um section: five is a new one.

I

We call it a system view on addresses it's where we discuss about this two-dimensional space, where the innovation takes place. Okay and we we try to describe what are the different implications and how it happens. Okay and then there are a bunch of other important changes that we we have in in several sections about the extension in the length of the addresses or we added new examples about chic yeah is ip or what, if we have addresses that are actually longer than 128 bits, okay and a discussion about semantic extension and some improved conclusion.

I

Now, as for the status of these two documents, now I give you an app. I gave you just an update on the content. The content of the documents is for the problem statement to provide an example and scenarios where the the existing internet addressing is, is a potential entrance. Okay and then there is a gap analysis.

I

What is this happening? What has been done in order to improve in a certain way, they're addressing and in a certain way. This represents the fact that there are solutions trying to fill in a gap. That's the content, but the real purpose that we we said since the beginning was to bring the community to discuss. Addressing okay, and certainly we had a difficult start.

I

Okay covet 19 didn't help at all, I would say, um but uh finally we we we we made it in the sense that there was a lot of discussion and we tried to to to gather all the different uh facets that we uh we saw. um We just left out at this stage any any discussion or text that was going too much into solution space, because it's not the scope of these two documents. Okay, which brings me to the last slide.

I

To be honest, so I think these two documents document a community effort, all the co-authors that are on board. They do agree that uh they're bringing value in the sense that uh uh documents something or concerns that that are there okay. So all their crowd was think that this world thinking about working group adoption here in the interior, okay, looking long term, but we don't discuss this now- is- was thinking that what should we do next- and this goes again back to community discussion on what should we do once we?

I

We agree that these issues are there. Some of us believe they are very important issues depending on the issue. Something is not that important. It depends on the viewpoint but yeah. This is long term about the solution and that's it from my side. Any question welcome.

A

Thanks a lot luigi, so are there any questions from the room or online.

D

So.

A

Okay, so I guess we need to have some more discussion on the list before answering your questions about, even even but yes,.

I

Please.

A

Continue listing this this document, thank you very much.

A

All right so is uh lenny under in the room. Yet.

A

Remote.

K

Lenny is still on his way.

A

Lenny's on his way, so so we're going to move to lynn. Yes, I'm here: okay,.

A

Give me one second, I'm going to share the slides.

A

And then I'm going to give you control.

A

You should be able to move the slides now. Lynn.

A

Lin.

A

Can you hear us? Yes, I can hear you, okay, you you you're up, you can move the slides now.

L

But I cannot move how. How can I move this? Oh yeah yeah use it. uh Okay, got it all right, hello, everyone! uh This is zelin and uh um presentation, is about satellite network and problem and solutions from uh airstrip perspective, and this is uh this works start from. Probably uh I ietf 111, we published the problem statements and later on, we published some uh draft draft about solution.

L

So far we have a three draft about solution, but it is still not complete and last night here if I try to get the opportunity in in the area, but I didn't so this time, I'm happy to present our work for this regard.

L

And this is our objective. uh What we want to do is that we want to explore the open solution for a large scale, lu constellation, which is for internet access and ntn integration.

L

Even we have so many legacy satellite technologies here, but we are dealing with the latest development in the in this industry, which is like starlink over 10 000 satellites and the services for the global internet access, and also we want to try to work on the expectation from 3gpp, which is called the ngren which will integrate the area constellation with 5g and the internet at this moment.

L

What we plan to do is that we want to provide the basic ip connectivity or basic for satellite network and all drafts so far are only informational experiment and right now we expect more feedback from different wg and, of course, right now. uh People may feel confusing to understand whole solution because there's no dedicated working group in itf, so I can only present different pieces of solution to different working group.

L

Who is interested, of course, we will not do anything which relate to 3gpp, for example they uh for integration, partly they have a lot of protocol and defined already in cgpt, but we don't not touch it.

L

So what is the problem problem? Is that, uh right now uh we we think the satellite lu satellite constellation is very specific uh uh network, which our current uh igp bgp mobility protocol cannot handle it efficiently.

L

And if you want to see more explanation, uh you can go to this slide deck. We have a kind of a presentation before to our collaborator uh university story to discuss the uh problems uh for the satellite and the problems for 3gpp and iitf, and in this slide I also try to answer questions which arises before ietf meeting and also in the uh youtube sets mayor.

L

Alias most of questions are not very technical details about my our proposal is about why we need to do this and why the current satellite networking company didn't raise any question to ietf those kind of things. Also, we give some introduction about the ng-run requirement for cellular network from there. You can see that ip is a kind of instructor for the for the whole architecture, so we have to provide ip connectivity to to them.

L

uh Last week provides some simulations to uh mobility, uh links and passes. You can see that from there how frequent of this state changes. So it's easier to understand why the current id technology, which are assumed very steady, cannot handle through a fast moving network.

L

uh Here I just give more uh discussion about the semantic address, because this is probably the interest of this working group and the semantic address is it's a we designed dedicated for satellite network, because li network is very special. It's not like the network on ground satellite network is very organized. Even they are moving very fast, but they are moving on the same speed if they're on the same attitude, so we propose to use the three index to represent each satellite uh dynamically, because those index never change.

L

Even satellite position is changing, so we have a share index which will uh describe the uh which share or which layer of uh satellite the this will be determined only by the altitude and the inclination angle. So if every satellite has the same altitude and incontination angle, those satellites are belong to the same shift. The skill index will be set.

L

Also, the orbit plane index is that the uh from the picture you can see the uh the lines uh connect, different uh green dots, their orbits and the object plane is that the uh some satellites were moving on the same orbit. The those index will be same and the satellite index is that for each satellite on the same orbit, uh which position or a relative index in that object.

L

So from this uh three index we can uh uniquely identify each satellite in a satellite concentration and for the this uh uh semantic address uh pro uh draft we for the let's update, we add co-author and also add one section which is a 32-bit semantic address, and why we add this uh section is because the uh satellite network is related to the closed. So if we use ipv6 it's pretty much overhead, if we can use a much shorter address, it will be a big 7 and the satellite network.

L

The network resource is not like the resource on ground, their memory, their chip is very expensive, so the saving on the overhead is very available to customers.

L

And this one will talk about uh why we? uh What is a basic routing algorithm? We will a proposal to satellite network and why we need to do this because of satellite. That will be very special, current igp bgp.

L

We are facing a lot of challenges and why that, because we have a very fast link, flipping every five minutes and link matrix, keep changing, because the distance keeps changing, and some unsteady link also keep flipping and also the uh probably the link interruption at the polar area or above will cause huge igp flooding message which will cause the storm of the protocol message and the service time will be dramatically reduced.

L

So here is a review of how the topology looks like we have 50 percent uh satellites moving to one direction and another 50 percent satellite moving to different directions, every satellite moving very fast, more than uh seven kilometers per second, and also every device on ground. We are moving with the earth's rotation, which is also very fast, more than even faster than sound speed and the link metrics keep changing and the ground state station to cell life link also keep flipping instead.

L

In addition to the link matrix change, so what is the problem using igp? Of course igp can be used here, but the problem is that, because the the link states, this changes so frequently the service time will be dramatically reduced because the number of the unsteady link is huge. We have some paper and an analyze that says that less than 20 is a is a kind of usability which is not tolerable to the service provider and then well.

L

When we try to find the solution for the satellite routing, we have to think about the special characteristics for satellite network. So, first of all, the uh the cellular network is not like the regular network. It's uh it is kind of a carrier network of uh which means the the the satellite network, uh of course, with the intercellular link, it will only only do the transport work and satellite network is very organized.

L

So, as I said, it's multi-layer of grid network even interleaved, and moving to different direction. Also, there are limited number of into satellite link because those links are very expensive, probably six or a little bit more than six will be enough for swiss. A a satellite in 3d space, so we can use a self-explanatory semantic address to identify each satellite, as I said for that draft and importantly that satellite position is predictable when time is changing, because every satellite orbit element parameters are known.

L

So what we can predict, we can predict the satellite adjacency and the link metrics, all those information we don't need to measurement and the protocol message to advertise.

L

So here is our um hybrid solution. We think we need to use some hybrid technology to get the final solution, and this is the principle first, is that we have to use the computation power in in this space issues and we have to do the computation for dynamic topology for dynamic mapping. Metrics also predict which ground station took satellite link could be used.

L

Then we have to borrow the igp, for example. Right now we borrow igp for the net net body and the state detection, and probably we have one uh draft for this. This draft is just for isolate the the those link which is very uh unstable, and probably more draft will come for the different other purpose.

L

Also, we uh we will utilize the spatial characteristics like I said, the semantic address can be used and, lastly, that we come out to this uh instructive routing, a draft for the routing purpose. So the interactive writing is very simple. It's like the semantic writing, but we because we use a semantic address. We can correctly uh compress the uh header. We don't need to put the.

L

Segments id there, we just put tell the satellite where to fold the packet which direction and until which satellite. This is example.

L

And lastly, I showed the the some packet format because we use a new rocking type, so we need to uh insert as a instruction list into the packet and the packet can be folded at each satellite. If, if a satellite network engine can understand what is the interaction.

L

So here is the uh summary of the interactive routing and what is the advantages- and I probably don't have time to go through all this and I think.

A

Questions: okay. Thank you very much. We have one person on the queue gory.

M

Hi gary fergus, thanks for the talk, it's really interesting to see the internals of one of these leon networks and my question is probably um which operators are calling for this work to be done. Here I mean this is a interoperability question. Do we need a standard within satellite systems to do this, or is this just an interior routing protocol which we just need to view at the edges so which operators are you talking to or which manufacturers are asking for this work.

L

A very good question: I think I have some answer in the problem statement workshop. Why itf need to do this from our point of view? uh First of all, the uh consolidation is right now, the the operation mode is that such as starting every company providing its own solutions right, but the problem is that uh the orbit resource and the spectrum resource is very limited.

L

We think in the future the satellite network should be shared by different service providers, for example the leo orbit. They only can hold about 60 000 satellites right now, starlink consumed the 40 000 and the china constellation consumed more than 12 000, so we don't have too many orbits resource right now. So in the future, I I believe, the due to the resource limitation on the orbit and also spectrum, and also some countries and anti-trust regulation.

L

The satellite network could be infrastructure. This is also the point from the 3gpp. That's the uh satellite network is just a kind of like backfill network. It should be provided the uh service by different service provider. So from this point, where we think that uh ipso uh the the top of the open solution to the cellular satellite network, also, probably in the future, the difference owner of the satellite could have some interpret interoperability issue. There.

M

Can I just follow up with the question you mentioned? Starlink did starlink actually want to do an ip operable solution or does styling currently operate a proprietary solution.

L

I think they are they're only right now. The starting doesn't need any l2 and l3 solution because they are doing the relay technology, but they are testing the rsl from this year. However, I don't expect reveal to the public solution because there's some monopoly yeah, that's the current. Their business model is private.

M

Thanks for the presentation, it was very interesting. Thank you.

N

Okay,.

A

Thank you very much so now we'll move to lenny's presentation.

A

Oh lenny.

O

Okay, I don't see the slide yet. Oh there, it is.

A

So I'm going to give you control.

N

All right, thank you.

O

So today I'm going to talk about a draft on considerations for blocking uh regional internet access. um uh One important note.

O

uh The the content and ideas uh expressed in this are solely the views of the authors, uh and it does not reflect um as individuals and it doesn't affect the views or positions of our of any of our affiliations and for those uh it kind of goes without saying, but for those who are less familiar with ietf processes who might be um watching um as perhaps newcomers. This is an individual contribution and does not reflect uh or represent itf consensus.

E

And this is.

O

Eric here.

E

And if you just allow me to emphasize what you just said for the people listening to this on youtube later, I am the internet era director and thank you so much for clearly spelling out that's an individual contribution, and indeed that's not representative, sorry for repeating what you just said. Thank you.

O

Not at all, thank you eric for clarifying all right now, let's get to the fun, um so just a little bit of background and motivation um and the purpose behind this draft. um In light of recent geopolitical events, uh there have been discussions in various circles: technically non-technically political uh on the concept of blocking internet connectivity for a country or a region.

O

um What we wanted to do is describe what that might look like um kind of some well-known approaches for blocking connectivity, that service providers use um fairly frequently and commonly um and then describe the implications of either of each of these approaches. um The positive negative, the advantages disadvantages.

O

um The intended audience for this document uh is policymakers and kind of the general public at large. Pretty much all the people who aren't in this room, but who are interested in the topic um and would like to know what would this look like? um We do not take any position uh about whether this is a good idea or a bad idea, but what we're trying to provide is some background information on what this might look like, so that those who do have uh opinions on the matter and can can can have informed opinion.

O

um Good policy depends on good, unbiased, sober information and that's what we're trying to do here, um just kind of describe what is technically possible, how it would work uh whether or not it might be um effective and try to anticipate some of the potential intended and unintended consequences of such a policy.

O

um What this document is not, uh we are not again advocating for or against any particular policy or position. We're not saying that this is a good idea or a bad idea. We're just reporting the news and and let others decide uh on the basis of some of the information we're providing not providing any political opinion or analysis on the ethics of blocking connectivity um to the internet.

O

Also, we would like. Obviously, this document has been inspired by recent events, but um it's probably not going to be the last time uh or the last conflict that might inc uh inspire um discussions. So we'd like this to be generic enough to be applicable uh beyond um just a single event uh and be uh maybe valuable for the future, um and- and perhaps you know it, it could be useful for you know before events take place, um it could be helpful in uh maybe guiding actions.

O

um It's also not a guide uh for blocking against security threats. um You know, there's some and I'll talk about uh some of related work that covers. um If, if, if a network or a region is attacking, you know blocking that region. That's that's a completely different issue. um This is not protection from a region, but more so about sanction um kind of the the or uh the the internet connectivity. Equivalent of you know, economic sanctions, um think of it as connectivity sanctions. So that's kind of the use case.

O

We've envisioned here uh we're also, you know not producing a how-to guide on weaponizing or you know, uh magical industry secrets on um on killing uh access um everything. We've limited uh all of the approaches to well-known ideas and approaches that operators use frequently uh to to legitimately filter and block internet access.

O

So we don't believe that we are giving away or planting seeds or adding any. um You know that there's nothing groundbreaking here in terms of what we're doing these are all well well-known, well-understood techniques that have been documented um elsewhere. We believe um it's also. We we didn't go into the area of malicious attacks, um either physically, um you know bombing in infrastructure or um you know, through cyber attacks or things like you know, dns cash poisoning. um I think those are interesting topics and probably worth another.

O

You know document, but um it's it's kind of outside. uh It seemed too broad of an area and it's kind of outside the um area of expertise to the authors. So we kept that out of scope for this document, all right um with that out of the way, uh the actual meat of the document um blocking techniques. So we kind of start from the physical layer uh and work our way up um so disconnecting cables. um You know how effective would that be?

O

uh What that would look like um deep here and then moving on to the routing layer in the control plane. Things like d-peering um and next is wrap filtering both prefix based and autonomous system based.

O

Next, we we cover packet layer at the data plane discussing things like goip access, control lists and finally, we talk about dns um things like you know, undelegating top level domains or other relevant domains. um Also, the idea of blocking resolution requests um either coming from name servers or end hosts in a given region.

O

So, as you can see, there's there's nothing like. I said uh groundbreaking. um No, no industry secrets here. These are all pretty common techniques um for the most part, maybe not undelegating top level domains, but but these are in use today by uh operators for legitimate purposes.

O

um The next area we talk about is, you know, efficacy with this work. um What are some of the concerns uh consequences intended and unintended? um And the first thing is, you know, from the perspective of a policy maker who might be advocating a position like blocking.

O

um This approach may end up being counterproductive, so a policy maker might actually want messages to be able to get into or out of a region or they might want certain parties say you know oppositional groups, for example, to be able to communicate freely uh and and and coordinate activities.

O

um It may indeed actually empower a targeted regime that is being targeted for sanctions by allowing that regime to consolidate its power by you know not allowing uh any other messaging independent messaging from getting into or out of a region. So um this should be kept in mind uh by a policy maker.

O

If considering this approach, um the other thing, that's you know obvious- is that a network is amoral. It does not. You know uh it does not discriminate between good bits and bad bits. It just transmits bits whether those bits comprise uh desirable or undesirable information.

O

Also autonomous system numbers and prefixes are not allocated uh according to geopolitical boundaries. They are loosely allocated based on region, and even that uh has kind of porous borders.

O

You can you know, for example, you can fairly easily see all the prefixes or autonomous systems that are allocated to companies that are based in a country. However, over time those, uh let's say, entities rather than companies, those entities um may be say acquired by other.

O

You know, multinational entities and those routes and autonomous systems could be advertised from other places in different regions. There's the cloud um in any event: it's it's it's. uh um There are porous borders and it's difficult uh to neatly say um this region or this country um only has the routes coming in. You know from uh entities uh that are based in that region also they can be multi-homed in different regions.

O

um There is registry information, but that is uh notoriously inaccurate um uh and, finally, the decentralized nature of the internet makes it pretty much in you know um it's pretty much impossible to completely block a region. This is kind of a feature, not a bug. This is by design um the the internet was kind of intended to act like this. um That said, uh you can put a pretty good dent in connectivity and throughput um at certain there.

O

There are certain chunk points where you could pretty significantly um restrict access um and and do some some harm if one wanted to actually do that, um there has been some prior art in this area. um Rfc 7754 um talks about uh blocking and filtering, um but this document is more focused at a kind of higher level application level transport host level rather than network infrastructure.

O

Also, the purpose of this dock is mostly is more focused on things like security and objectionability and business arrangement and less so um sanction.

O

So there's there's a good bit of difference here that that said, there are some overlapping themes uh on things like efficacy and the importance of uh specificity um when it comes to uh filtering and blocking there's a draft in the p-e-a-r-g working group on censorship and again this is more focused on censorship by regimes within their borders, rather than say blocking all traffic. Coming out of that uh that that region as say, you know, sanctioned because of the activities of a regime. um So it's more of a directionality difference, um but again there's there are.

O

You know there is a little bit of overlap. um There is the the the mess, the mention of considerations for service dis uh disconnection.

O

um In terms of next steps, um I would love to ask this working group. um Is this document useful? uh Is it interesting? Is this something that folks in this working group would like to work on?

O

Are there other blocking techniques that we didn't include that should be included, and we are requesting uh adoption by this working group? um Another open question is bcp versus informational. We kind of went back and forth on this. um We don't have really strong opinions, we'd be uh happy to go with consensus if this is adopted and we'd love, uh review and comments, and with that I'd be happy to take any questions.

A

Okay, thank you very much. Lenny. We do have people on the queue, so we start with ted.

D

Ted hardy speaking, uh thank you very much for uh your time in putting this together as a presentation, and I'm particularly appreciative of the fact that you uh clarified that this was an individual contribution and that you're now asking for comments from uh the um from the group. um I I'm about to speak about the internet society and, although I am currently on the board of trustees of the internet society, I want to make it clear that I'm not speaking for them.

D

The reason I want to speak about them is because the questions that you're dealing with in this document have actually been dealt with by the internet society. For some time they have been creating impact assessments.

D

There is a generalized framework which they have created to describe the effects of internet blocking and the techniques of internet blocking, and they have over time gone into the specifics of the internet blocking on different territories at different times. So, for example, there was one on the sudan that was done in 2019.

D

There have been three such impact reports on the current geopolitical situation, examining the current um efforts to possibly um remove uh russia from the internet. The request by the ukraine government to icann and uh the related uh impacts of uh uh partition of the network by these efforts so there's there's a whole bunch of work that is specifically directed toward policymakers.

D

That's already been done uh by isoc by access now by others. I would suggest uh that the authors consider reviewing that work uh and seeing whether they really see any gaps.

D

Having reviewed this document, I did not, uh so I don't think that there are techniques that you've described here that are not in them, and I don't think that you're addressed to policymakers is as effective as those other addresses and that the primary reason for that is those are attempting to describe both the technical activities which are happening and the impact, and it is vitally important that policy makers twin those two concerns at once, because they need to understand in the context of a specific partition of the network, what the impact is both on the network and on the people who it impacts.

D

That's the policy question from the point of view of those who you believe your intended audience are, and I don't think it's appropriate to try and put these documents out without those impact statements, because the result will be policy makers making decisions without the full picture, and it is desperately important that they understand the full picture in cases like this, so I really discourage int area.

D

From adopting this, I really believe the right thing to do is to contribute to the policy work, that's going on in other forums, whether it be the internet, society or access now or others, and make sure that your expertise is available to them.

D

Trying to do this through here is not going to be as effective, because we can't bring in those other pieces to what the policy makers need. Thank you again for your efforts in considering these questions.

O

Thanks ted um yeah, I I think that's that's great feedback um and there's there's lots of activities going on. I I think um I don't have an answer other than to say you know what would be. uh I would turn this back to the consensus of the working group as well and see if, if others share uh that uh those those opinions and thoughts, um so you know if, if, if we believe that this document doesn't really add anything to what's already out there, then um you know that's, that's that's consensus. So.

N

Thank you, yeah.

G

uh Jen lincoln just a random network engineer I feel, like let's say you're a doctor and you publish a very well written, very well thought article about 15 best methods to shoot your neighbor in the food with careful with cost-effective analysis and all this stuff. So it's basically how I feel when I read this.

O

um Again, we're I, I don't think we're trying to describe uh how to shoot your neighbor in the foot as much as if you shot your neighbor in the foot. This is what would happen, uh so this is what you should think about before shooting your neighbor in the foot um that's kind of.

O

um Hopefully you know that. That's why it's a considerations, document and less a how-to guide.

N

Thank you, uh alisa.

P

Thanks um thanks for for the presentation um and the disclaimers, um so I'm one of the authors of rfc 7754 and I thought I might share a couple of lessons learned from that process because it was, it was not easy and it it shared some of the same flavor, but obviously a very different context. So we started thinking about writing. That document also triggered by like a specific event or activity that was occurring, which was proposals of a couple of dns filtering pieces of legislation in the u.s congress, they're called sopa and pipa.

P

So that was the genesis for the document and I think it started out, maybe in a not dissimilar form from from your document um and then over time we really it took a long time to to publish um and so and so completely missed. Also, the um you know the the event that it was trying to impact, because by the time we got to the publication um that those bills had already um died in congress. um But the time also gave us an opportunity to provide the document with much more structure.

P

And so you pointed out, you know the focus on um particular aspects like the analytical framework that we used um looking at scope and granularity and efficacy and security of each of the different blocking techniques. um But we started much more towards what you have, which is you know not not so much of a framework.

P

um But I think that the key difference between that document and this one is that, ultimately, it does have a bit of a normative valence, because it's um trying to show which of the techniques are consistent with the internet's architecture and which ones are not. And I think in the case of this, like mass scale blocking that isn't really possible right, um because, if you're disconnecting from the network, then you are inherently not consistent with its architecture. uh And so I think, other than in these sort of one-off kind of limited, deep hearing cases.

P

You can't really avoid that um with with the disconnection or the block, you know the the outright blocking case, and that makes the trade-off between any value that you get from publishing this document and the potential downsides of um you know implicitly appearing to endorse um any of the techniques. uh Much it's just a much different trade-off. I think um which speaks in favor of of not advancing this, this kind of document- and I don't think you can really avoid the you know a political reading or the political implications of it.

P

Even if you don't say anything about that in the document itself, I think it will be read um as as an endorsement, um so I am, you know not supporting of the document moving forward thanks.

O

Yeah again, if if, if someone reads this as an endorsement of blocking uh internet access, I'm for a region, I'm not sure I'm not sure they're reading it uh clearly uh or or perhaps we're not being clear enough. um So that's certainly not the intention implicitly or explicitly.

Q

Thank you. Thank you.

N

Very.

Q

Retired backbone engineer.

Q

um uh A question that lenny might answer at the end uh is: have you drawn on any expertise in diplomacy to figure out how the perception and the related side effects of having such a paper published have to be expected and can be controlled?.

Q

Looking at just the first few lines of the paper, I find uh I'm quite sure it is a really bad idea uh to brand uh this thing as a best current practice and then talk about the topic in the first sentence.

Q

To raise the question whether this is and how it can be a constructive tactic, just look at the text, it's the last two cent, two words of the first sentence of the abstract.

Q

I feel that whatever technical, relevant and correct input information follows in the paper. If you begin this way, you are inviting people to interpret this and republish uh as either an a threat of doing something or the invitation to do something like this um and well. Okay, if you, if you, if you, if you really feed the public discussion like this, uh that's something that can hardly be repaired.

Q

So I would urge the authors, if they haven't done so so far, to act to really uh invoke qualified diplo, diplom diploma diplomatic expertise to figure out what the effects of what they are doing can be having a german historic historical background, I can tell well okay just the fact that people did know that there was v heisenberg group doing nuclear research in germany during the third reich.

Q

Well, okay, uh that resulted in having the manhattan project and well. Okay, the reverberations of that project are still hitting us today. Thanks.

O

In terms of the first question on, uh did we consult diplomatic resources? uh We did not. um The authors wrote this in their individual capacities as engineers with the intent of providing information, um the goal of which would be so that the layman, um the lay person, uh could find this as helpful information in understanding this.

O

These issues we intended it to be sober without opinion, one way or the other, um and we tried to take great pains uh to make it clear that we were not uh endorsing uh supporting or advocating any position one way or the other, but just providing kind of a you know. Staying in our swimming lanes as engineers of this is what some of the things that someone might suggest doing.

O

This is how it would work, and this is what it would might do or might not do again as as as informational purposes for um policymakers in the public at large, who want to understand uh what these policies might actually accomplish.

O

We would welcome if, if, if we didn't do a good enough job uh and if there are better ideas for making that more clear uh in terms of um you know not advocating a position like I said that was our goal, but if, if others have uh better, you know, text suggestions, we'd be more than welcome to it. um I see your point on bcp. um Like I said it's, it's an open question, bcp versus informational.

O

um We don't have a strong opinion, one way or the other and we'd be happy to accept consensus, uh and I think there was a final point. Oh um does just merely mentioning this plant the seeds uh and codify um the idea uh and make it a legitimate um thing. Just by mentioning it.

O

You know. The only thing I would say is that kind of ignoring a subject uh and not having a you know, not saying anything about um speaking a an about an elephant in the room doesn't make that elephant go away, um not sure. That's the right metaphor, but.

O

I I I I'm not sure these these ideas would uh just disappear or seem to be endorsed. um If it was merely mentioned um you know, uh so I think it's up to the you know we'd be happy to hear the consensus of the working group. Whether or not the question is does this? um Is this an appropriate thing and is there interest in discussing these issues.

F

Tom hi lenny um tom hill speaking entirely as an individual internet contributor.

F

I suspect it was a necessary evil that there were there was going to be a technical response to what is effectively a political question and I think, you've written um very well and and and sean uh shown that you know clearly. This is something that you don't support, which is good. um I I wanted to to draw your attention on the basis that there is a difference between what you say and how you say it and how you publish it. Have you seen any of the internet sanctions project.

O

And the letter I'm not familiar with no I'm not familiar with that work.

F

I would advise you to to have a look at that. I think in terms of the way in which we go about this, there will ultimately need to be a technical answer.

F

I fear potentially the raw information just throwing it out. There may not have been the most considered approach, um so in terms of the questions posed in bcp versus information, all they think is moot. I don't believe that there should be any further work done to this draft and I certainly wouldn't support adoption by any working group.

F

Thank you very much.

F

Thank you.

N

Thanks benjamin.

R

Hi ben schwartz, uh I think the I you know. I appreciate that that you're looking for an opportunity to do something constructive here um and I think that uh it needs a little more thought to figure out what that is. um You know one one possibility that I could imagine is is uh starting from the other end of the problem uh and and also taking a longer time horizon.

R

You know, I think that just the you know, since the time that you wrote this draft, I think the the events that inspired it have already evolved pretty radically. I suspect that the draft would look very different if it was written today instead of two weeks ago, um and so I think that there's uh there's a need to to take a longer time horizon.

L

And I.

R

Also, echoing other comments, think that uh the sort of attempt at a neutral technical presentation here doesn't really get to the heart of the matter, because this is not a technical problem so to.

R

I think that one thing that might be more productive is to start by going to um by going to an organization that doesn't have to be uh neutral at all on this topic and and can actually make some sort of of normative statement that might be the iab uh or or it might be another body, but to start there and and then potentially revisit this document in light of what could serve their goals.

O

Yeah again we're we're not trying to advocate for or against anything. What we're trying to do is provide technical expertise uh in so that those who do uh form those opinions uh and advocate for those policies can have an informed, um uh be better informed as they make as they um advocate for those policies.

N

Thanks, um thank you. Mallory.

J

Hi everyone mallory noodle, I'm the center for democracy and technology um yeah. I um first want to just say I think the discussion has been interesting and I I welcome that um noting as well that you are all presenting tomorrow at the human rights protocol considerations, research group meeting, which is in the first session tomorrow, um where I think it might be interesting to cue up um more of these sort of three discussions of uh you know the politics.

J

So I actually welcome that discussion, even if, like others, I disagree that the draft should move forward in its current form. But I've also previously reached out to you as authors, because I think that um the the effort to try to describe problems for the internet, which is done in the censorship draft that you've obviously read- and you noted in your slides- is an important one.

J

I mean there's a lot of balance that needs to be taken into consideration that alyssa and others have pointed out, um and you know if that draft, which the censorship draft is from november 2014. So we're talking a very long time to be able to get around to describing these things in just the right way, with the intention of um helping network operators fix it route around it like harden the network against censorship, obviously not the other way around, and um I think that if there are ways in which that draft could do that better.

J

Based on um your read of things from ip blocking space geo blocking space, I think we'd welcome text.

J

Although we're about to put that draft into another last call, I think that may be a place where you could do a very thorough review and make sure that we are actually considering the ways in which geo-blocking is done, especially ip blocking, because I don't know that that's as present and prevalent as it should be again for the purposes of identifying weaknesses in the network that could be further hardened against um these kinds of censorship, uh whether it is um lawful, proportionate or other kinds of questions, and I would just say that you know- and not to lay it on, because I think others have done a good job and you've responded.

J

But you know the you know the iutf's in the business of keeping things connected. I think that, even if there were sanctions, even if there were calls for the intern internet connectivity to be included in those sanctions which currently in this very specific situation, it has not been and has never been in the past.

J

If we're talking about syria, iran, iraq, afghanistan, like no sanctions, have included internet connectivity so far, even if there were, we would want the iatf to probably resist that right in whatever ways it can either by explaining that it's, you know not proportionate that. That's not what they're we're in the business of doing. If we even take a political stance, I think- um and that's really important so anyway. Those are my thoughts thanks. So much um look forward to speaking with you about it tomorrow as well.

O

Great thanks, mallory uh and just for the purpose of uh transparency. We we presented this at ipeg on um on sunday uh and we as as marilyn mentioned, where um we're going to uh share this with um hrpc tomorrow, uh not for the purpose of working group shopping. um It's it's really. Interior was uh the the only work group we. We had um intended uh to request uh adoption but more to um share these ideas and um uh get more review and feedback from a broader uh scope of the community.

A

Okay, thank you very much. I think you, you got quite a bit of interesting feedback and uh I would actually encourage you to look at the references. If ever the the audio was not very clear, we got a whole bunch of references uh bodies and documents that probably you should consider so we'll make sure that those are captured uh in the minutes. If ever you missed them, but I think the feedback was quite clear that at this moment the group doesn't believe this is a document that should move forward.

A

However, it's an interesting topic that can be discussed either here and or in some other forum.

A

Thank you thanks. Thank you very much.

A

All right so we're a bit short in time and we're we're planning to do uh some uh three minutes at the end to to run a few questions about the interest on the drafts that have called for adoption. So we're going to call uh tony now to present and if you can do it quickly, it'll be appreciated.

A

uh

K

All right, thank you. uh This talk is on higher levels of address aggregation. uh This is something of a footnote on the discussions that we had insider 30 years ago. So this is uh very much a footnote.

K

um So back when we started talking about cider, we talked about simple aggregation and advertising things. We talked a little bit about aggregating entire continents and regions, but um I don't think anything happened about that at all, and I just wanted to revisit that with a couple of new ideas.

K

um One thing that's happened differently is that we've been leaking a lot more specifics for traffic engineering and that's had a lot of bad effects. It's caused a lot of noise in the bgp routing table.

K

If we could do aggregation of these, it would be very helpful in reducing the routing table.

K

We also have a new idea that basically, actually it was old, but it could not get written down for how to think about aggregation. I wanted to get this written down before I forget about it or retire, and we did talk about proxy aggregation long ago that got shot down. But what happens if we did unilateral remote aggregation.

K

So traditional aggregation, we have an isp he's, got a prefix p. He advertises that out of his borders. All was happy in the world.

K

New concept, we want to clarify and say that the abstraction happens at a boundary and we want to call that specific boundary of the isp, the abstraction naming boundary. That's the border thing that we are abstracting.

K

And the next new idea is the concept called abstraction action boundary, and this is uh 100 percent due to noel chiappa like to thank him for suggesting this. um Basically, the idea is that we don't have to aggregate necessarily at the isp boundary we can aggregate one or two or many steps past that point.

K

So in this case the abstraction naming boundary is still the isp, with his prefix p, he's generating lots more specifics.

K

They make it somewhere some way into the network, and then the oval is the abstraction action boundary where we now aggregate and advertise p.

K

What happens if a remote as decides to do remote, aggregation, they decide they're on that abstraction action boundary and they stopped advertising and propagating more specifics and just advertised the abstract. The aggregate, as far as I can tell this, is actually something that works more specifics. We're going to cause traffic around right around ispb but b is still providing reachability, so he's not strictly in violation of transit requirements.

K

If b does his aggregation on ingress, he can actually reduce the load on his routers because he's not carrying more specifics internally.

K

If the aggregation happens on egress, ispb can still do do the traffic engineering, but now he's advertising less to his neighbors.

K

As far as I know, this is could be acceptable in some cases, and could we be doing this to improve organizational continental or regional aggregation.

K

Right now, regional aggregation is possible. um I take a look. I want to talk about the ipv6 address space because that's the most obvious we've assigned some nice large prefixes to our rirs things like slash 12s are now common, and these are fine candidates for remote aggregation.

K

If you could do remote aggregation here, you would filter out the traffic engineering more specifics. You would hide all of the rir specific organizations and could just reduce the amount of noise in the routing table.

K

How do we figure out where we should do this? Where is the abstraction action boundary?

K

If we do it too close to the region we're going to break traffic engineering? We know that traffic's not going to go the way we intend.

K

If we are too far away from the region, then we know that that's wasteful we're having carrying around longer prefixes more than we need to so some field input here would be very interesting if both folks could sit and think about how they would like to do. This.

K

uh Just as a recollection, this is a map of where our rirs currently are. As you can see, they are mostly aligned with continental boundaries, but not exactly.

K

If you wanted to aggregate a write prefix, for example, you might take and pick this line that I've shown here in color and that might be your abstraction action boundary, because it's across a bunch of transnational links and transcontinental links where they're, presumably fewer links. You would capture the necessary parts for traffic engineering and wouldn't lose any significant route. Optimality.

K

Okay, similarly, you could do this on the continental basis and I'm going to pick on jeff, houston and australia and say: okay, we want to do some allocations to australia, and then we could do aggregation around australia.

A

Could you could you speed up so that we have a little time for the last presenter thanks, I'm.

K

Almost done um there are some rpki issues. We have to talk about.

K

And very much love to hear from people trying to do this.

K

Okay, thank you.

A

Okay, thank you very much. uh We have dino we'll take one question.

S

uh Hi this is dino. Can you hear me? Okay,.

A

Yes, yeah yeah.

S

Yeah so um tony, when you're talking about where the abstraction action boundaries should be, um you know we've thought about this for a long time if it should be done on ingress versus egress, and the thing about proxy aggregation, as you as you well know, is that when you proxy aggregate, I call it kind of. Sometimes you lie, because if you advertise, you p to somebody you're making the assumption that you can reach everything.

S

That's inside of p everything that's more specific from it and if you're carrying the more specifics inside then you could actually drop at that boundary versus aggregating on ingress, which means you believe you can forward already all the way to the edges of the sp, and then you give it to your neighbors, your adjacent neighbors, and they may not have the more specifics and have to drop it. So it sounds to me logically and more efficiently that you'd want to aggregate on egress to maybe tail sites versus transits.

S

I'm not sure about that, but that's just kind of what my hunch feels right now comment.

K

I would love to discuss this with you in the press for time. Let's take it offline, okay, sure.

A

Thank you very much to both uh zhongpang.

T

Can you hear me.

T

Okay, hello, hello, everyone I'm from tinymobile, and this is a new draft and it's about a service shooting in the imac and next page. Please.

A

Yeah, you should be able to move the page.

T

Okay, oh thank you. This is about the background.

T

The mobile operators are deploying this rmc to private service, with lower latency to their users, and in this mic scenario, upf working will work as a gateway or the ue and under the tunnel from the ue and some local service can provide in the is msa.

T

Traditionally, a dns procedure will be needed when the ue access the this local service. In the mesa, we introduce a mechanism that can access the service directly without with a dns procedure, and this page involves the mechanism.

T

You have a session with the upl medium. Let me see, and the ue know that it can access the service more quickly within the messy, and we think that the ue and the amnesty is a limited domain, so the uae can do two attempt.

T

The first attempt is the normal tns request, for example, request a service from this www.localweather.com.

T

And the second attempt is, it can make a destination address itself, for example by charging the url, so it can use this ip destination ip tool to access the service directory bypass dns.

T

If this attempt to success the ue senses directly and uh we think uh the way oh, making the destination.

L

Address.

T

Is there are several options, and so we propose the draft to to see whether uh more people are interested. uh Thank you. That's all uh any comments.

E

Oh.

A

Sorry, um the queue was close to the last one, but you do have three people on the queue two people on the queue three people, benjamin.

R

Hi ben schwartz.

R

It seems to me that uh anything that involves hashing the url creates a privacy violation. It reveals the path information from something like an https url, which is confidential. uh That's that's one concern uh also, even if this were somehow restricted to the domain name uh with the advent of dns privacy.

R

It is far from a given that the domain name is considered public information. That may also be considered private information that shouldn't be revealed in the ip address, which is necessarily public.

T

um

F

Tom hill, um I'm just being quick bt. um How do you sorry excuse me I'll speak up um how, when you are hashing the url, do you make sure that it does not uh resolve to an ip address that squats on someone else's ip address, which.

T

You then have to root internally, we think it's a limited domain and we do not have too much this local services need to be hashed.

T

Perhaps several important services needed this low latency service, so we think that there are no conflicts.

F

Okay,.

T

Okay, thank you.

A

Okay, thank you very much. We are off time and we won't have time to to run the questions, but we did have uh three authors uh asking for adoption and feedback from the group so we'll take that to the list uh regarding sets uh ip policing before policing, ip parcel from fred and the uh internet, addressing gaps from luigi, so we'll take those uh on the list.

A

Thank you very much. Everyone bye.

B

Who has.

U

Very easy.

V

You.

V

um

V

um

V

Yes,.

V

um

V

Yes,.

V

Yeah.

Q

I.

V

um

W

Oh.

V

Someone.