Re: [Isms] Moving into some design /architectureissuesofExtendedVACM

To: <isms at ietf.org>
Subject: Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
From: "Randy Presuhn" <randy_presuhn at mindspring.com>
Date: Thu, 11 Jun 2009 13:55:09 -0700
Delivered-to: isms at core3.amsl.com
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=mindspring.com; b=US/V7AhcVJMy9mGhZNk82z4TXCgKq8Dnz8LYnOiYQXR66rFd4z43Y4ZpP+KuH7Y3; h=Received:Message-ID:From:To:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:X-MIMEOLE:X-ELNK-Trace:X-Originating-IP;
List-archive: <http://www.ietf.org/mail-archive/web/isms>
List-help: <mailto:isms-request@ietf.org?subject=help>
List-id: Mailing list for the ISMS working group <isms.ietf.org>
List-post: <mailto:isms@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/isms>, <mailto:isms-request@ietf.org?subject=unsubscribe>
References: <01fe01c9e9b1$607f52d0$0600a8c0 at china.huawei.com><002201c9e9ea$488a1dc0$6801a8c0 at oemcomputer><7D5B6351B90B4B7FB309277995E141F9 at NEWTON603><00e901c9e9fa$f7642100$6801a8c0 at oemcomputer><000601c9ea00$00795120$0600a8c0 at china.huawei.com><EBD40065B07A416BB5D47DDD8FC267BD at NEWTON603><006e01c9ea38$30aeccc0$6801a8c0 at oemcomputer><657B1423308A4454B0CE8A9BC3B92D41 at NEWTON603><20090611140545.GA9442 at elstar.local><007601c9eab0$fb7da930$0600a8c0 at china.huawei.com> <20090611171411.GA388 at elstar.local>

Hi -

> From: "Juergen Schoenwaelder" <j.schoenwaelder at jacobs-university.de>
> To: "David Harrington" <ietfdbh at comcast.net>
> Cc: <isms at ietf.org>
> Sent: Thursday, June 11, 2009 10:14 AM
> Subject: Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
...
> My point is that have to define what the RADIUS client does in case
> the attempt to push something into the vacmSecurityToGroupTable fails
> - and depending on how long we want to work on this, we might go into
> all the details of distinguishing different failure modes. It will
> sure get complicated if we make it complicated.

There are actually relatively few - I spelled them out in an earlier
message.

> But the minimum we have to do is to specify what the RADIUS client
> does if the creation fails.

Yup, and I think the answer is "nothing."  There's no channel for
signalling back the failure.  From an implementation perspective,
if there aren't resources to create/update a vacmSecurityToGroupEntry,
then I'd be wary of trying to do things like queue up special-purpose
notifications for the security administrator, who'd be the one who'd have
to figure out a recovery strategy.

At an operational level, the user might notice that it was granted
different access rights than it expected.  The user might check its
vacmSecurityToGroupEntry (if it has permission to see it), or leave
that job to the security administrator.   (There would either be no entry,
or the group name specified in that entry would be the "old" one.)
In either case, figuring out a recovery strategy would still be up
to the security administrator, and would be no different from dealing
with a system that ran out of resources while a security policy update
was being pushed to it.

But I think we're off in the extreme corner cases here.  A system that
runs out of memory under these circumstances has a more serious
problem on its hands.  :-)

> And I think we should avoid making this
> really more complicated.

Agreed.

Randy

Follow-Ups:
- Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
  - From: Juergen Schoenwaelder

References:
- [Isms] FW: [OPS-DIR] [MIB-DOCTORS] FW: Recharter: ISMS
  - From: David B Harrington
- Re: [Isms] FW: [OPS-DIR] [MIB-DOCTORS] FW: Recharter: ISMS
  - From: Randy Presuhn
- [Isms] Moving into some design / architecture issues of Extended VACM
  - From: Dave Nelson
- Re: [Isms] Moving into some design / architecture issues of ExtendedVACM
  - From: Randy Presuhn
- Re: [Isms] Moving into some design / architecture issues ofExtendedVACM
  - From: David Harrington
- Re: [Isms] Moving into some design / architecture issuesofExtendedVACM
  - From: Dave Nelson
- Re: [Isms] Moving into some design / architectureissuesofExtendedVACM
  - From: Randy Presuhn
- Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
  - From: Dave Nelson
- Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
  - From: Juergen Schoenwaelder
- Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
  - From: David Harrington
- Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
  - From: Juergen Schoenwaelder

Prev by Date: Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
Next by Date: Re: [Isms] Moving into some design / architecture issues of Extended VACM
Previous by thread: Re: [Isms] Moving into some design/architectureissuesofExtendedVACM
Next by thread: Re: [Isms] Moving into some design /architectureissuesofExtendedVACM
Index(es):
- Date
- Thread

Re: [Isms] Moving into some design /architectureissuesofExtendedVACM

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.