[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Service Identity (Re: Machine Identity)

To: Jeroen Massar <jeroen at unfix.org>
Subject: Re: Service Identity (Re: Machine Identity)
From: Juergen Schoenwaelder <j.schoenwaelder at jacobs-university.de>
Date: Thu, 28 Feb 2008 17:04:22 +0100
Cc: discuss at apps.ietf.org
Delivered-to: ietfarch-discuss-web-archive at core3.amsl.com
Delivered-to: discuss at core3.amsl.com
In-reply-to: <47C6CB64.9060704 at spaghetti.zurich.ibm.com>
List-help: <mailto:discuss-request@ietf.org?subject=help>
List-id: general discussion of application-layer protocols <discuss.ietf.org>
List-post: <mailto:discuss@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/discuss>, <mailto:discuss-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/discuss>, <mailto:discuss-request@ietf.org?subject=unsubscribe>
References: <20080226130527.GA1404 at generic-nic.net> <20080228112318.GA23196 at nic.fr> <20080228114656.GD8439 at elstar.local> <Pine.SOL.4.64.0802281405360.10117 at kekkonen.cs.hut.fi> <47C6BA02.9090000 at spaghetti.zurich.ibm.com> <0aea01c87a12$95cc8df0$0600a8c0 at china.huawei.com> <47C6CB64.9060704 at spaghetti.zurich.ibm.com>
Reply-to: j.schoenwaelder at jacobs-university.de
Sender: discuss-bounces at ietf.org
User-agent: Mutt/1.5.17 (2007-11-01)

On Thu, Feb 28, 2008 at 03:55:32PM +0100, Jeroen Massar wrote:

> Most very likely vhost X has a different IP from host Y, thus using IP's 
> here is one way to go. The problem comes when the IP changes, your service 
> is still the same, but you based your ID on something which is not a stable 
> identifier.
>
> This is of course also all a similar problem with Multihoming and Mobility 
> etc. One day you are IP X the other moment you are IP Z.
>
> The real way to solve this is the Identity layer, and HIP provides just 
> that.

Some 10+ years ago, SNMP decoupled the identity of an SNMP service
from the transport used to access the service by introducing the
notion of an engineID. It was architecturally the right thing to
do. At that time, people hoped that management applications would at
start using engineIDs since they are architecturally the right thing
to deal with proxies, NATs and all sort of issues. Ten years later, we
must simply observe that this did not happen. Perhaps HIP as a more
general solution to this problem has more luck.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1, 28759 Bremen, Germany
Fax:   +49 421 200 3103         <http://www.jacobs-university.de/>

Follow-Ups:
- Re: Service Identity (Re: Machine Identity)
  - From: Jeroen Massar

References:
- Machine Identity
  - From: Stephane Bortzmeyer
- Re: Machine Identity
  - From: Stephane Bortzmeyer
- Re: Machine Identity
  - From: Juergen Schoenwaelder
- Re: Machine Identity
  - From: Miika Komu
- Service Identity (Re: Machine Identity)
  - From: Jeroen Massar
- RE: Service Identity (Re: Machine Identity)
  - From: David Harrington
- Re: Service Identity (Re: Machine Identity)
  - From: Jeroen Massar

Prev by Date: Re: Machine Identity
Next by Date: Re: Machine Identity
Previous by thread: Re: Service Identity (Re: Machine Identity)
Next by thread: Re: Service Identity (Re: Machine Identity)
Index(es):
- Date
- Thread