idnits 2.17.1 

draft-ietf-bmwg-protection-term-05.txt:

  Checking boilerplate required by RFC 5378 and the IETF Trust (see
  https://trustee.ietf.org/license-info):
  ----------------------------------------------------------------------------

  ** It looks like you're using RFC 3978 boilerplate.  You should update this
     to the boilerplate described in the IETF Trust License Policy document
     (see https://trustee.ietf.org/license-info), which is required now.

  -- Found old boilerplate from RFC 3978, Section 5.1 on line 23.

  -- Found old boilerplate from RFC 3978, Section 5.5, updated by RFC 4748 on
     line 1431.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 1 on line 1442.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 2 on line 1449.

  -- Found old boilerplate from RFC 3979, Section 5, paragraph 3 on line 1455.


  Checking nits according to https://www.ietf.org/id-info/1id-guidelines.txt:
  ----------------------------------------------------------------------------

     No issues found here.

  Checking nits according to https://www.ietf.org/id-info/checklist :
  ----------------------------------------------------------------------------

     No issues found here.

  Miscellaneous warnings:
  ----------------------------------------------------------------------------

  == The copyright year in the IETF Trust Copyright Line does not match the
     current year

  -- The document seems to lack a disclaimer for pre-RFC5378 work, but may
     have content which was first submitted before 10 November 2008.  If you
     have contacted all the original authors and they are all willing to grant
     the BCP78 rights to the IETF Trust, then this is fine, and you can ignore
     this comment.  If not, you may need to add the pre-RFC5378 disclaimer. 
     (See the Legal Provisions document at
     https://trustee.ietf.org/license-info for more information.)

  -- The document date (November 3, 2008) is 5652 days in the past.  Is this
     intentional?


  Checking references for intended status: Informational
  ----------------------------------------------------------------------------

  == Unused Reference: '6' is defined on line 1358, but no explicit reference
     was found in the text

  == Outdated reference: A later version (-23) exists of
     draft-ietf-bmwg-igp-dataplane-conv-term-16

  ** Obsolete normative reference: RFC 3768 (ref. '11') (Obsoleted by RFC
     5798)


     Summary: 2 errors (**), 0 flaws (~~), 3 warnings (==), 7 comments (--).

     Run idnits with the --verbose option for more detailed information about
     the items above.

--------------------------------------------------------------------------------

1	 Network Working Group                         S. Poretsky
2	 Internet Draft                                Allot Communications
3	 Expires: April 2009
4	 Intended Status: Informational                Rajiv Papneja
5	                                               Isocore

7	                                               J. Karthik
8	                                               Cisco Systems

10	                                               S. Vapiwala
11	                                               Cisco Systems

13	                                               November 3, 2008

15	                    Benchmarking Terminology
16	                   for Protection Performance
17	             <draft-ietf-bmwg-protection-term-05.txt >

19	Intellectual Property Rights (IPR) statement:
20	   By submitting this Internet-Draft, each author represents that any
21	   applicable patent or other IPR claims of which he or she is aware
22	   have been or will be disclosed, and any of which he or she becomes
23	   aware will be disclosed, in accordance with Section 6 of BCP 79.

25	Status of this Memo

27	   Internet-Drafts are working documents of the Internet Engineering
28	   Task Force (IETF), its areas, and its working groups.  Note that
29	   other groups may also distribute working documents as
30	   Internet-Drafts.

32	   Internet-Drafts are draft documents valid for a maximum of six months
33	   and may be updated, replaced, or obsoleted by other documents at any
34	   time.  It is inappropriate to use Internet-Drafts as reference
35	   material or to cite them other than as "work in progress."

37	   The list of current Internet-Drafts can be accessed at
38	   http://www.ietf.org/ietf/1id-abstracts.txt.

40	   The list of Internet-Draft Shadow Directories can be accessed at
41	   http://www.ietf.org/shadow.html.

43	Copyright Notice
44	   Copyright (C) The IETF Trust (2008).

46	Abstract
47	  This document provides common terminology and metrics for benchmarking
48	  the performance of sub-IP layer protection mechanisms. The performance
49	  benchmarks are measured at the IP-Layer, avoiding dependence on
50	  specific sub-IP protection mechanisms. The benchmarks and terminology
51	  can be applied in methodology documents for different sub-IP layer
52	  protection mechanisms such as Automatic Protection Switching (APS),
53	  Virtual Router Redundancy Protocol (VRRP), Stateful High Availability
54	  (HA), and Multi-Protocol Label Switching Fast Reroute (MPLS-FRR).

56	                          Protection Performance
57	 Table of Contents
58	        1. Introduction..............................................3
59	        2. Existing definitions......................................6
60	        3. Test Considerations.......................................7
61	           3.1. Paths................................................7
62	              3.1.1. Path............................................7
63	              3.1.2. Working Path....................................8
64	              3.1.3. Primary Path....................................8
65	              3.1.4. Protected Primary Path..........................8
66	              3.1.5. Backup Path.....................................9
67	              3.1.6. Standby Backup Path.............................10
68	              3.1.7. Dynamic Backup Path.............................10
69	              3.1.8. Disjoint Paths..................................10
70	              3.1.9. Point of Local repair (PLR).....................11
71	              3.1.10. Shared Risk Link Group (SRLG)..................11
72	           3.2. Protection Mechanisms................................12
73	              3.2.1. Link Protection.................................12
74	              3.2.2. Node Protection.................................12
75	              3.2.3. Path Protection.................................12
76	              3.2.4. Backup Span.....................................13
77	              3.2.5. Local Link Protection...........................13
78	              3.2.6. Redundant Node Protection.......................14
79	              3.2.7  State Control Interface.........................14
80	              3.2.8. Protected Interface.............................15
81	           3.3. Protection Switching.................................15
82	              3.3.1. Protection Switching System.....................15
83	              3.3.2. Failover Event..................................15
84	              3.3.3. Failure Detection...............................16
85	              3.3.4. Failover........................................17
86	              3.3.5. Restoration.....................................17
87	              3.3.6. Reversion.......................................18
88	           3.4. Nodes................................................18
89	              3.4.1. Protection-Switching Node.......................18
90	              3.4.2. Non-Protection Switching Node...................19
91	              3.4.3. Headend Node....................................19
92	              3.4.4. Backup Node.....................................19
93	              3.4.5. Merge Node......................................20
94	              3.4.6. Primary Node....................................20
95	              3.4.7. Standby Node....................................21
96	           3.5. Benchmarks...........................................21
97	              3.5.1. Failover Packet Loss............................21
98	              3.5.2. Reversion Packet Loss...........................22
99	              3.5.3. Failover Time...................................22
100	              3.5.4. Reversion Time..................................23
101	              3.5.5. Additive Backup Delay...........................23
102	           3.6 Failover Time Calculation Methods.....................24
103	              3.6.1 Time-Based Loss Method...........................24
104	              3.6.2 Packet-Loss Based Method.........................25
105	              3.6.3 Timestamp-Based Method...........................25
106	        4. Acknowledgments...........................................26
107	        5. IANA Considerations.......................................26
108	        6. Security Considerations...................................26
109	        7. References................................................26
110	        8. Authors' Addresses........................................27
111	                          Protection Performance

113	1. Introduction

115	   The IP network layer provides route convergence to protect data
116	   traffic against planned and unplanned failures in the internet. Fast
117	   convergence times are critical to maintain reliable network
118	   connectivity and performance.  Convergence Events [7] are recognized
119	   at the IP Layer so that Route Convergence [7] occurs.  Technologies
120	   that function at sub-IP layers can be enabled to provide further
121	   protection of IP traffic by providing the failure recovery at the
122	   sub-IP layers so that the outage is not observed at the IP-layer.
123	   Such sub-IP protection technologies include, but are not limited to,
124	   High Availability (HA) stateful failover, Virtual Router Redundancy
125	   Protocol (VRRP) [11], Automatic Link Protection (APS) for SONET/SDH,
126	   Resilient Packet Ring (RPR) for Ethernet, and Fast Reroute for
127	   Multi-Protocol Label Switching (MPLS-FRR) [8].

129	   1.1 Scope
130	   Benchmarking terminology was defined for IP-layer convergence in
131	   [7].  Different terminology and methodologies specific to
132	   benchmarking sub-IP layer protection mechanisms are required.  The
133	   metrics for benchmarking the performance of sub-IP protection
134	   mechanisms are measured at the IP layer, so that the results are
135	   always measured in reference to IP and independent of the specific
136	   protection mechanism being used. The purpose of this document is
137	   to provide a single terminology for benchmarking sub-IP protection
138	   mechanisms.

140	   A common terminology for Sub-IP layer protection mechanism
141	   benchmarking enables different implementations of a protection
142	   mechanism to be benchmarked and evaluated.  In addition,
143	   implementations of different protection mechanisms can be
144	   benchmarked and evaluated.  It is intended that there can exist
145	   unique methodology documents for each sub-IP protection mechanism
146	   based upon this common terminology document.  The terminology
147	   can be aplied to methodologies that benchmark sub-IP protection
148	   mechanism performance with a single stream of traffic or
149	   multiple streams of traffic.  The traffic flow may be
150	   uni-directional or bi-directional as to be indicated in the
151	   methodology.

153	   1.2 General Model
154	   The sequence of events to benchmark the performance of Sub-IP
155	   Protection Mechanisms is as follows:

157	   1. Failover Event - Primary Path fails
158	   2. Failure Detection-  Failover Event is detected
159	   3. Failover - Backup Path becomes the Working Path due to Failover
160	                 Event
161	   4. Restoration - Primary Path recovers from a Failover Event
162	   5. Reversion (optional) - Primary Path becomes the Working Path

164	   These terms are further defined in this document.

166	                          Protection Performance

168	   Figures 1 through 5 show models that MAY be used when benchmarking
169	   Sub-IP Protection mechanisms, which MUST use a Protection Switching
170	   System that consists of a minimum of two Protection-Switching Nodes,
171	   an Ingress Node known as the Headend Node and an Egress Node known
172	   as the Merge Node.  The Protection Switching System MUST include
173	   either a Primary Path and Backup Path, as shown in Figures 1 through
174	   4, or a Primary Node and Standby Node, as shown in Figure 5.  A
175	   Protection Switching System may provide link protection, node
176	   protection, path protection, local link protection, and high
177	   availability, as shown in Figures 1 through 5 respectively.  A
178	   Failover Event occurs along the Primary Path or at the Primary Node.
179	   The Working Path is the Primary Path prior to the Failover Event and
180	   the Backup Path after the Failover Event.  A Tester is set outside
181	   the two paths or nodes as it sends and receives IP traffic along the
182	   Working Path.  The tester MUST record the IP packet sequence numbers,
183	   departure time, and arrival time so that the metrics of Failover
184	   Time, Additive Latency, Packet Reordering, Duplicate Packets, and
185	   Reversion Time can be measured.  The Tester may be a single device
186	   or a test system.  If Reversion is supported then the Working Path is
187	   the Primary Path after Restoration (Failure Recovery) of the Primary
188	   Path.

190	   Link Protection, as shown in Figure 1, provides protection when a
191	   Failover Event occurs on the link between two nodes along the Primary
192	   Path.  Node Protection, as shown in Figure 2, provides protection
193	   when a Failover Event occurs at a Node along the Primary Path.
194	   Path Protection, as shown in Figure 3, provides protection for link
195	   or node failures for multiple hops along the Primary Path.  Local
196	   Link Protection, as shown in Figure 4, provides Sub-IP Protection of
197	   a link between two nodes, without a Backup Node.  An example of such
198	   a Sub-IP Protection mechanism is SONET APS.  High Availability
199	   Protection, as shown in Figure 5, provides protection of a Primary
200	   Node with a redundant Standby Node.  State Control is provided
201	   between the Primary and Standby Nodes.  Failure of the Primary Node
202	   is detected at the Sub-IP layer to force traffic to switch to the
203	   Standby Node, which has state maintained for zero or minimal packet
204	   loss.

206	                      +-----------+
207	       +--------------|  Tester   |<-----------------------+
208	       |              +-----------+                        |
209	       | IP Traffic        | Failover           IP Traffic |
210	       |                   |  Event                        |
211	       |     ------------  |                 ----------    |
212	       +--->|  Ingress/  | V                | Egress/  |---+
213	            |Headend Node|------------------|Merge Node|  Primary
214	             ------------                    ----------    Path
215	                |                                ^
216	                |         ---------              |  Backup
217	                +--------| Backup  |-------------+   Path
218	                         |  Node   |
219	                          ---------
220	   Figure 1. System Under Test (SUT) for Sub-IP Link Protection
221	                          Protection Performance

223	                            +-----------+
224	       +--------------------|  Tester   |<-----------------+
225	       |                    +-----------+                  |
226	       | IP Traffic               | Failover    IP Traffic |
227	       |                          | Event                  |
228	       |                          V                        |
229	       |     ------------      --------      ----------    |
230	       +--->|  Ingress/  |    |MidPoint|    | Egress/  |---+
231	            |Headend Node|----|  Node  |----|Merge Node|  Primary
232	             ------------      --------      ----------    Path
233	                |                                ^
234	                |         ---------              |  Backup
235	                +--------| Backup  |-------------+   Path
236	                         |  Node   |
237	                          ---------

239	   Figure 2. System Under Test (SUT) for Sub-IP Node Protection

241	                               +-----------+
242	    +---------------------------|  Tester   |<----------------------+
243	    |                           +-----------+                       |
244	    | IP Traffic                      | Failover         IP Traffic |
245	    |                                 | Event                       |
246	    |                Primary Path     |                             |
247	    |     ------------      --------  |  --------     ----------    |
248	    +--->|  Ingress/  |    |MidPoint| V |Midpoint|   | Egress/  |---+
249	         |Headend Node|----|  Node  |---|  Node  |---|Merge Node|
250	          ------------      --------     --------     ----------
251	                |                                         ^
252	                |         ---------      --------         | Backup
253	                +--------| Backup  |----| Backup |--------+  Path
254	                         |  Node   |    |  Node  |
255	                          ---------      --------

257	   Figure 3. System Under Test (SUT) for Sub-IP Path Protection

259	                                  +-----------+
260	             +--------------------|  Tester   |<-------------------+
261	             |                    +-----------+                    |
262	             | IP Traffic               | Failover      IP Traffic |
263	             |                          | Event                    |
264	             |              Primary     |                          |
265	             |    +--------+  Path      v            +--------+    |
266	             |    |        |------------------------>|        |    |
267	             +--->| Ingress|                         | Egress |----+
268	                  |  Node  |- - - - - - - - - - - - >|  Node  |
269	                  +--------+      Backup Path        +--------+
270	                  ^                                           ^
271	                  |            IP-Layer Forwarding            |
272	                  +-------------------------------------------+

274	   Figure 4. System Under Test (SUT) for Sub-IP Local Link Protection
275	                          Protection Performance

277	                         +-----------+
278	       +-----------------|  Tester   |<--------------------+
279	       |                 +-----------+                     |
280	       | IP Traffic            | Failover       IP Traffic |
281	       |                       | Event                     |
282	       |                       V                           |
283	       |     ---------      --------      ----------       |
284	       +--->| Ingress |    |Primary |    | Egress/  |------+
285	            |   Node  |----|  Node  |----|Merge Node|  Primary
286	             ---------      --------      ----------    Path
287	                |        State |Control       ^
288	                |    Interface |(Optional)    |
289	                |          ---------          |
290	                +---------| Standby |---------+
291	                          |  Node   |
292	                           ---------

294	Figure 5. System Under Test (SUT) for Sub-IP Redundant Node Protection

296	2. Existing definitions
297	   This document uses existing terminology defined in other BMWG
298	   work.  Examples include, but are not limited to:

300	          Latency                   [Ref.[2], section 3.8]
301	          Frame Loss Rate           [Ref.[2], section 3.6]
302	          Throughput                [Ref.[2], section 3.17]
303	          Device Under Test (DUT)   [Ref.[3], section 3.1.1]
304	          System Under Test (SUT)   [Ref.[3], section 3.1.2]
305	          Offered Load              [Ref.[3], section 3.5.2]
306	          Out-of-order Packet       [Ref.[4], section 3.3.2]
307	          Duplicate Packet          [Ref.[4], section 3.3.3]
308	          Forwarding Delay          [Ref.[4], section 3.2.4]
309	          Jitter                    [Ref.[4], section 3.2.5]
310	          Packet Loss               [Ref.[7], Section 3.5]
311	          Packet Reordering         [Ref.[10], section 3.3]

313	   This document has the following frequently used acronyms:
314	      DUT  Device Under Test
315	      SUT  System Under Test

317	   This document adopts the definition format in Section 2 of RFC 1242
318	   [2].  Terms defined in this document are capitalized when used
319	   within this document.

321	   The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT",
322	   "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this
323	   document are to be interpreted as described in BCP 14, RFC 2119 [5].
324	   RFC 2119 defines the use of these key words to help make the
325	   intent of standards track documents as clear as possible.  While this
326	   document uses these keywords, this document is not a standards track
327	   document.

329	                          Protection Performance

331	3. Test Considerations

333	  3.1. Paths

335	    3.1.1 Path

337	    Definition:
338	       A unidirectional sequence of nodes, <R1, ..., Rn>, and links
339	      <L12,... L(n-1)n> with the following properties:

341	       a. R1 is the ingress node and forwards IP packets, which input
342	       into DUT/SUT, to R2 as sub-IP frames over link L12.

344	       b. Ri is a node which forwards data frames to R[i+1] over Link
345	       Li[i+1] for all i, 1<i<n, based on information in the sub-IP
346	       layer.

348	       c. Rn is the egress node and it outputs sub-IP frames from
349	       DUT/SUT as IP packets.

351	    Discussion:
352	       The path is defined in the sub-IP layer in this document, unlike
353	       an IP path in RFC 2026 [1].   One path may be regarded as being
354	       equivalent to one IP link between two IP nodes, i.e., R1 and Rn.
355	       The two IP nodes may have multiple paths for protection.  A
356	       packet will travel on only one path between the nodes.  Packets
357	       belonging to a microflow [9] will traverse one or more paths.
358	       The path is unidirectional.  For example, the link between R1
359	       and R2 in the direction from R1 to R2 is L12.  For traffic
360	       flowing in the reverse direction from R2 to R1, the link is L21.
361	       Example paths are the SONET/SDH path and the label switched path
362	       for MPLS.

364	    Measurement units:
365	       n/a

367	    Issues:
368	       "A bidirectional path", which transmits traffic in both
369	       directions along the same nodes, consists of two unidirectional
370	       paths.  Therefore, the two unidirectional paths belonging to
371	       "one bidirectional path" will be treated independently when
372	       benchmarking for "a bidirectional path".

374	    See Also:
375	       Working Path
376	       Primary Path
377	       Backup Path
378	                          Protection Performance

380	    3.1.2. Working Path

382	    Definition:
383	       The path that the DUT/SUT is currently using to forward
384	       packets.

386	    Discussion:
387	       A Primary Path is the Working Path before occurrence of a
388	       Failover Event.  A Backup Path SHALL become the Working Path
389	       after a Failover Event.

391	    Measurement units:
392	       n/a

394	    Issues:

396	    See Also:
397	       Path
398	       Primary Path
399	       Backup Path

401	   3.1.3.  Primary Path

403	       Definition:
404	       The preferred path for forwarding traffic between two or
405	       more nodes.

407	       Discussion:
408	       The Primary Path is the Path that traffic traverses
409	       prior to a Failover Event.

411	       Measurement units:
412	          n/a

414	        Issues:
415	          None

417	        See Also:
418	          Path
419	          Failover Event

421	    3.1.4.  Protected Primary Path

423	       Definition:
424	       A Primary Path that is protected with a Backup Path.

426	       Discussion:
427	       A Protected Primary Path MUST include at least one Protection
428	       Switching Node.

430	                          Protection Performance

432	       Measurement units:
433	          n/a

435	       Issues: None

437	       See Also:
438	          Path
439	          Primary Path

441	    3.1.5.  Backup Path

443	       Definition:
444	       A path that exists to carry data traffic only if a Failover
445	       Event occurs on a Primary Path.

447	       Discussion:
448	       The Backup Path SHALL become the Working Path upon a Failover
449	       Event.  A Path MAY have one or more Backup Paths.  A Backup
450	       Path MAY protect one or more Primary Paths.  There are various
451	       types of Backup Paths:

453	          a. dedicated recovery Backup Path (1+1), which has 100%
454	          redundancy for a specific ordinary path,

456	          b. shared Backup Path (1:N), which is dedicated to the
457	          protection for more than one specific Primary Path

459	          c. associated shared Backup Path (M:N) for which a specific
460	          set of Backup Paths protects a specific set of more than one
461	          Primary Path.

463	       A Backup Path may be signaled or unsignaled.  The Backup Path
464	       MUST be created prior to the Failover Event.

466	       Measurement units:
467	          n/a

469	       Issues:

471	       See Also:
472	          Path
473	          Working Path
474	          Primary Path
475	                          Protection Performance

477	     3.1.6.  Standby Backup Path

479	        Definition:
480	        A Backup Path that is established prior to a Failover Event
481	        to protect a Primary Path.

483	        Discussion:
484	        The Standby Backup Path and Dynamic Backup Path provide
485	        protection, but are established at different times.

487	        Measurement units: n/a

489	        Issues: None

491	        See Also:
492	           Backup Path
493	           Primary Path
494	           Failover Event

496	     3.1.7. Dynamic Backup Path

498	        Definition:
499	        A Backup Path that is established upon occurrence of a
500	        Failover Event.

502	        Discussion:
503	        The Standby Backup Path and Dynamic Backup Path provide
504	        protection, but are established at different times.

506	        Measurement units: n/a

508	        Issues: None

510	        See Also:
511	            Backup Path
512	            Standby Backup Path
513	            Failover Event

515	     3.1.8. Disjoint Paths

517	        Definition:
518	        A pair of paths that do not share a common link.

520	        Discussion:
521	        Two paths are disjoint if they do not share a common node other
522	        than the ingress and egress.

524	                          Protection Performance

526	        Measurement units: n/a

528	        Issues: None

530	        See Also:
531	           Path
532	           Primary Path
533	           SRLG

535	     3.1.9. Point of Local Repair (PLR)
536	         Definition:
537	         A node capable of Failover along the Primary Path that is
538	         also the ingress node for the Backup Path to protect another
539	         node or link.

541	         Discussion:
542	         Any node along the Primary Path from the ingress node to
543	         the penultimate egress node MAY be a PLR.  The PLR MAY use
544	         a single Backup Path for protecting one or more Primary
545	         Paths.  There can be multiple PLRs along a Primary Path.
546	         The PLR MUST be an ingress to a Backup Path.  The PLR can
547	         be any node along the Primary Path except the egress node
548	         of the Primary Path.  The PLR MAY simultaneously be a
549	         Headend Node when it is serving the role as ingress to
550	         the Primary Path and the Backup Path.  If the PLR is
551	         also the Headend Node, then the Backup Path is a Disjoint
552	         Path from the ingress to the Merge Node.

554	         Measurement units: n/a

556	         Issues: None

558	         See Also:
559	             Primary Path
560	             Backup Path
561	             Failover

563	     3.1.10. Shared Risk Link Group (SRLG)
564	         Definition:
565	         SRLG is a set of links which share a physical resource.

567	         Discussion:
568	         SRLG is considered the set of links to be avoided when
569	         the primary and secondary paths are considered disjoint.
570	         The SRLG will fail as a group if the shared resource fails.

572	         Measurement units: n/a

574	         Issues: None

576	         See Also:
577	             Path
578	             Primary Path
579	                          Protection Performance

581	   3.2. Protection
582	     3.2.1. Link Protection
583	         Definition:
584	         A Backup Path that is signaled to at least one Backup Node
585	         to protect for failure of interfaces and links along a
586	         Primary Path.

588	         Discussion:
589	         Link Protection may or may not protect the entire Primary
590	         Path.  Link protection is shown in Figure 1.

592	         Measurement units: n/a

594	         Issues: None

596	         See Also:
597	             Primary Path
598	             Backup Path

600	     3.2.2. Node Protection
601	         Definition:
602	         A Backup Path that is signaled to at least one Backup Node
603	         to protect for failure of interfaces, links, and nodes
604	         along a Primary Path.

606	         Discussion:
607	         Node Protection may or may not protect the entire Primary
608	         Path.  Node Protection also provides Link Protection.
609	         Node Protection is shown in Figure 2.

611	         Measurement units: n/a

613	         Issues: None

615	         See Also:
616	             Link Protection

618	     3.2.3. Path Protection
619	        Definition:
620	        A Backup Path that is signaled to at least one Backup Node
621	        to provide protection along the entire Primary Path.

623	        Discussion:
624	        Path Protection provides Node Protection and Link Protection
625	        for every node and link along the Primary Path.  A Backup
626	        Path providing Path Protection MUST have the same ingress
627	        node as the Primary Path.  Path Protection is shown in
628	        Figure 3.

630	        Measurement units: n/a

632	        Issues: None
633	                          Protection Performance

635	        See Also:
636	             Primary Path
637	             Backup Path
638	             Node Protection
639	             Link protection

641	     3.2.4. Backup Span

643	        Definition:
644	        The number of hops used by a Backup Path.

646	        Discussion:
647	        The Backup Span is an integer obtained by counting the
648	        number of nodes along the Backup Path.

650	        Measurement units:
651	             number of nodes

653	        Issues:
654	             None

656	        See Also:
657	             Primary Path
658	             Backup Path

660	     3.2.5. Local Link Protection

662	        Definition:
663	        A Backup Path that is a redundant path between two nodes
664	        which does not use a Backup Node.

666	        Discussion:
667	        Local Link Protection MUST be provided as a Backup Path
668	        between two nodes along the Primary Path without the use
669	        of a Backup Node.  Local Link Protection is provided by
670	        Protection Switching Systems such as SONET APS.  Local
671	        Link Protection is shown in Figure 4.

673	        Measurement units: None

675	        Issues: None

677	        See Also:
678	        Backup Path
679	        Backup Node
680	                          Protection Performance

682	     3.2.6. Redundant Node Protection

684	        Definition:
685	        A Protection Switching System with a Primary Node
686	        protected by a Standby Node along the Primary Path.

688	        Discussion:
689	        Redundant Node Protection is provided by Protection
690	        Switching Systems such as VRRP and HA.  The protection
691	        mechanisms occur at Sub-IP layers to switch traffic from
692	        a Primary Node to Backup Node upon a Failover Event at
693	        the Primary Node.  Traffic continues to traverse the
694	        Primary Path through the Standby Node.  The failover MAY
695	        be stateful, in which the state information MAY be
696	        exchanged in-band or over an out-of-band state control
697	        interface.  The Standby Node MAY be active or passive.
698	        Redundant Node Protection is shown in Figure 5.

700	        Measurement units: None

702	        Issues: None

704	        See Also:
705	        Primary Path
706	        Primary Node
707	        Standby Node

709	     3.2.7. State Control Interface

711	        Definition:
712	        An out-of-band control interface used to exchange state
713	        information between the Primary Node and Standby Node.

715	        Discussion:
716	        The State Control Interface MAY be used for Redundant Node
717	        Protection.  The State Control Interface MUST be out-of-band.
718	        It is possible to have Redundant Node Protection in which
719	        there is no state control or state control is provided
720	        in-band.  The State Control Interface between the Primary
721	        and Standby Node MAY be one or more hops.

723	        Measurement units: None

725	        Issues: None

727	        See Also:
728	        Primary Node
729	        Standby Node
730	                          Protection Performance

732	     3.2.8. Protected Interface

734	        Definition:
735	        An interface along the Primary Path that is protected by
736	        a Backup Path.

738	        Discussion:
739	        A Protected Interface is an interface protected by a
740	        Protection Switching System that provides Link
741	        Protection, Node Protection, Path Protection, Local
742	        Link Protection, and Redundant Node Protection.

744	        Measurement units: None

746	        Issues: None

748	        See Also:
749	           Primary Path
750	           Backup Path

752	   3.3. Protection Switching

754	     3.3.1.  Protection Switching System

756	        Definition:
757	          A DUT/SUT that is capable of Failure Detection and Failover
758	          from a Primary Path to a Backup Path or Standby Node when a
759	          Failover Event occurs.

761	        Discussion:
762	          The Protection Switching System MUST include either a
763	          Primary Path and Backup Path, as shown in Figures 1 through
764	          4, or a Primary Node and Standby Node, as shown in Figure
765	          5.  The Backup Path MAY be a Standby Backup Path or a
766	          dynamic Backup Path.  The Protection Switching System
767	          includes the mechanisms for both Failure Detection and
768	          Failover.

770	        Measurement units: n/a

772	        Issues: None

774	        See Also:
775	             Primary Path
776	             Backup Path
777	             Failover

779	     3.3.2.  Failover Event

781	       Definition:
782	       The occurrence of a planned or unplanned action in the network
783	       that results in a change in the Path that data traffic traverses.

785	                          Protection Performance

787	       Discussion:
788	       Failover Events include, but are not limited to, link failure
789	       and router failure.  Routing changes are considered Convergence
790	       Events [7] and are not Failover Events.  This restricts
791	       Failover Events to sub-IP layers. Failover may be at the PLR or
792	       at the ingress. If the failover is at the ingress it is
793	       generally on a disjoint path from the ingress to egress.

795	       Failover Events may results from failures such as link failure
796	       or router failure.  The change in path after Failover MAY have
797	       a Backup Span of one or more nodes.  Failover Events are
798	       distinguished from routing changes and Convergence Events [7]
799	       by the detection of the failure and subsequent protection
800	       switching at a sub-IP layer.  Failover occurs at a Point of
801	       Local Repair (PLR) or Primary Node.

803	       Measurement units:
804	          n/a

806	       Issues: None

808	       See Also:
809	          Path
810	          Failure Detection
811	          Disjoint Path

813	     3.3.3.  Failure Detection

815	       Definition:
816	       The process to identify at a sub-IP layer a Failover Event
817	       at a Primary Node or along the Primary Path.

819	       Discussion:
820	       Failure Detection occurs at the Primary Node or ingress node
821	       of the Primary  Path.  Failure Detection occurs via a sub-IP
822	       mechanism such as detection of a link down event or timeout for
823	       receipt of a control packet. A failure may be completely
824	       isolated. A failure may affect a set of links which share a
825	       single SRLG (e.g. port with many sub-interfaces). A failure may
826	       affect multiple links that are not part of SRLG.

828	       Measurement units: n/a

830	       Issues:

832	       See Also:
833	         Primary Path
834	                          Protection Performance

836	     3.3.4.  Failover

838	        Definition:
839	        The process to switch data traffic from the protected Primary
840	        Path to the Backup Path upon Failure Detection of a Failover
841	        Event.

843	        Discussion:
844	        Failover to a Backup Path provides Link Protection, Node
845	        Protection, or Path Protection.  Failover is complete when
846	        Packet Loss [7], Out-of-order Packets [4], and Duplicate
847	        Packets [4] are no longer observed.  Forwarding Delay [4]
848	        may continue to be observed.

850	        Measurement units:
851	            n/a

853	        Issues:

855	        See Also:
856	             Primary Path
857	             Backup Path
858	             Failover Event

860	     3.3.5.  Restoration

862	        Definition:
863	        The state of failover recovery in which the Primary Path
864	        has recovered from a Failover Event, but is not yet
865	        forwarding packets because the Backup Path remains the
866	        Working Path.

868	        Discussion:
869	        Restoration MUST occur while the Backup Path is the
870	        Working Path.  The Backup Path is maintained as the
871	        Working Path during Restoration.  Restoration produces
872	        a Primary Path that is recovered from failure, but is
873	        not yet forwarding traffic.  Traffic is still being
874	        forwarded by the Backup Path functioning as the Working
875	        Path.

877	        Measurement units:
878	            n/a

880	        Issues:

882	        See Also:
883	            Primary Path
884	            Failover Event
885	            Failure Recovery
886	            Working Path
887	            Backup Path
888	                          Protection Performance

890	     3.3.6.  Reversion

892	        Definition:
893	        The state of failover recovery in which the Primary Path has
894	        become the Working Path so that it is forwarding packets.

896	        Discussion:
897	        Protection Switching Systems may or may not support Reversion.
898	        Reversion, if supported, MUST occur after Restoration.
899	        Packet forwarding on the Primary Path resulting from Reversion
900	        may occur either fully or partially over the Primary Path.  A
901	        potential problem with Reversion is the discontinuity in end to
902	        end delay when the Forwarding Delays [4] along the Primary Path
903	        and Backup Path are different, possibly causing Out of Order
904	        Packets [4], Duplicate Packets [4], and increased Jitter [4].

906	        Measurement units: n/a

908	        Issues: None

910	        See Also:
911	            Protection Switching System
912	            Working Path
913	            Primary Path

915	   3.4. Nodes

917	     3.4.1.  Protection-Switching Node

919	         Definition:
920	         A node that is capable of participating in a Protection
921	         Switching System.

923	         Discussion:
924	         The Protection Switching Node MAY be an ingress or egress for
925	         a Primary Path or Backup Path, such as used for MPLS Fast
926	         Reroute configurations.  The Protection Switching Node MAY
927	         provide Redundant Node Protection as a Primary Node in a
928	         Redundant chassis configuration with a Standby Node, such as
929	         used for VRRP and HA configurations.

931	         Measurement units:
932	             n/a

934	         Issues:

936	         See Also:
937	             Protection Switching System
938	                          Protection Performance

940	     3.4.2.  Non-Protection Switching Node

942	         Definition:
943	         A node that is not capable of participating in a Protection
944	         Switching System, but MAY exist along the Primary Path or
945	         Backup Path.

947	         Discussion:

949	         Measurement units:
950	             n/a

952	         Issues:

954	         See Also:
955	             Protection Switching System
956	             Primary Path
957	             Backup Path

959	     3.4.3.  Headend Node
960	        Definition:
961	        The ingress node of the Primary Path.

963	        Discussion:
964	        The Headend Node may also be a PLR when it is serving in
965	        the dual role as the ingress to the Backup Path.

967	        Measurement units: n/a

969	        Issues:

971	        See Also:
972	             Primary Path
973	             Point of Local Repair (PLR)
974	             Failover

976	     3.4.4.  Backup Node
977	        Definition:
978	        A node along the Backup Path.

980	        Discussion:
981	        The Backup Node can be any node along the Backup Path.
982	        There MAY be one or more Backup Nodes along the Backup Path.
983	        A Backup Node MAY be the ingress, mid-point, or egress of
984	        the Backup Path.  If the Backup Path has only one Backup
985	        Node, then that Backup Node is the ingress and egress of the
986	        Backup Path.

988	                          Protection Performance

990	        Measurement units: n/a

992	        Issues:

994	        See Also:
995	             Backup Path

997	       3.4.5.  Merge Node
998	         Definition:
999	             A node along the Primary Path where Backup Path terminates.

1001	         Discussion:
1002	             The Merge Node can be any node along the Primary Path
1003	             except the ingress node of the Primary Path.  There can be
1004	             multiple Merge Nodes along a Primary Path.  A Merge Node
1005	             can be the egress node for a single or multiple Backup
1006	             Paths.  The Merge Node MUST be the egress to the Backup
1007	             Path.  The Merge Node MAY also be the egress of the
1008	             Primary Path or Point of Local Repair (PLR).

1010	         Measurement units:
1011	             n/a

1013	         Issues:

1015	         See Also:
1016	             Primary Path
1017	             Backup Path
1018	             PLR
1019	             Failover

1021	     3.4.6. Primary Node

1023	        Definition:
1024	        A node along the Primary Path that is capable of Failover to a
1025	        redundant Standby Node.

1027	        Discussion:
1028	        The Primary Node MAY be used for Protection Switching Systems
1029	        that provide Redundant Node Protection, such as VRRP and HA

1031	        Measurement units: n/a

1033	        Issues:

1035	        See Also:
1036	             Protection Switching System
1037	             Redundant Node Protection
1038	             Standby Node
1039	                          Protection Performance

1041	     3.4.7.  Standby Node

1043	        Definition:
1044	        A redundant node to a Primary Node that forwards traffic along
1045	        the Primary Path upon Failure Detection of the Primary Node.

1047	        Discussion:
1048	        The Standby Node MUST be used for Protection Switching
1049	        Systems that provide Redundant Node Protection, such as VRRP
1050	        and HA.  The Standby Node MUST provide protection along the
1051	        same Primary Path.  If the failover is to a Disjoint Path then
1052	        it is a Backup Node.  The Standby Node MAY be configured
1053	        for 1:1 or N:1 protection.

1055	        The communication between the Primary Node and Standby Node
1056	        MAY be in-band or across an out-of-band State Control
1057	        interface.  The Standby Node MAY be geographically dispersed
1058	        from the Primary Node.  When geographically dispersed, the
1059	        number of hops of separation may increase failover time.

1061	        The Standby Node MAY be passive or active.  The Passive Standby
1062	        Node is not offered traffic and does not forward traffic until
1063	        Failure Detection of the Primary Node.  Upon Failure Detection
1064	        of the Primary Node, traffic offered to the Primary Node is
1065	        instead offered to the Passive Standby Node.  The Active
1066	        Standby Node is offered traffic and forwards traffic along the
1067	        Primary Path while the Primary Node is also active.  Upon
1068	        Failure Detection of the Primary Node, traffic offered to the
1069	        Primary Node is switched to the Active Standby Node.

1071	        Measurement units: n/a

1073	        Issues:

1075	        See Also:
1076	             Primary Node
1077	             State Control Interface

1079	     3.5.  Benchmarks
1080	      3.5.1.  Failover Packet Loss
1081	        Definition:
1082	        The amount of packet loss produced by a Failover Event until
1083	        Failover completes, where the measurement begins when the last
1084	        unimpaired packet is received by the Tester on the Protected
1085	        Primary Path and ends when the first unimpaired packet is
1086	        received by the Tester on the Backup Path.

1088	                          Protection Performance

1090	        Discussion:
1091	        Packet loss can be observed as a reduction of forwarded
1092	        traffic from the maximum forwarding rate.  Failover Packet
1093	        Loss includes packets that were lost, reordered, or delayed.
1094	        Failover Packet Loss MAY reach 100% of the offered load.

1096	        Measurement units:
1097	          Number of Packets

1099	        Issues:  None

1101	        See Also:
1102	           Failover Event
1103	           Failover

1105	      3.5.2.   Reversion Packet Loss

1107	        Definition:
1108	        The amount of packet loss produced by Reversion, where the
1109	        measurement begins when the last unimpaired packet is received
1110	        by the Tester on the Backup Path and ends when the first
1111	        unimpaired packet is received by the Tester on the Protected
1112	        Primary Path .

1114	        Discussion:
1115	        Packet loss can be observed as a reduction of forwarded
1116	        traffic from the maximum forwarding rate.  Reversion Packet
1117	        Loss includes packets that were lost, reordered, or delayed.
1118	        Reversion Packet Loss MAY reach 100% of the offered load.

1120	         Measurement units: Number of Packets

1122	         Issues:  None

1124	         See Also:
1125	           Reversion

1127	      3.5.3. Failover Time

1129	        Definition:
1130	         The amount of time it takes for Failover to successfully
1131	         complete.

1133	        Discussion:
1134	        Failover Time can be calculated using the Time-Based Loss
1135	        Method (TBLM), Packet-Loss Based Method (PLBM), or
1136	        Timestamp-Based Method (TBM).  It is RECOMMENDED that the
1137	        TBM is used.

1139	                          Protection Performance

1141	        Measurement units:
1142	           milliseconds

1144	        Issues: None

1146	        See Also:
1147	           Failover
1148	           Failover Time
1149	           Time-Based Loss Method (TBLM)
1150	           Packet-Loss Based Method (PLBM)
1151	           Timestamp-Based Method (TBM)

1153	      3.5.4.  Reversion Time

1155	        Definition:
1156	        The amount of time it takes for Reversion to complete so
1157	        that the Primary Path is restored as the Working Path.

1159	        Discussion:
1160	        Reversion Time can be calculated using the Time-Based Loss
1161	        Method (TBLM), Packet-Loss Based Method (PLBM), or
1162	        Timestamp-Based Method (TBM).  It is RECOMMENDED that the
1163	        TBM is used.

1165	        Measurement units:
1166	           milliseconds

1168	        Issues: None

1170	        See Also:
1171	           Reversion
1172	           Primary Path
1173	           Working Path
1174	           Reversion Packet Loss
1175	           Time-Based Loss Method (TBLM)
1176	           Packet-Loss Based Method (PLBM)
1177	           Timestamp-Based Method (TBM)

1179	      3.5.5.  Additive Backup Delay

1181	        Definition:
1182	        The amount of increased Forwarding Delay [4] resulting
1183	        from data traffic traversing the Backup Path instead of
1184	        the Primary Path.

1186	        Discussion:
1187	        Additive Backup Delay is calculated using Equation 1 as
1188	        shown below:

1190	        (Equation 1)
1191	        Additive Backup Delay =
1192	                  Forwarding Delay(Backup Path) -
1193	                  Forwarding Delay(Primary Path).

1195	                          Protection Performance

1197	        Measurement units:
1198	           milliseconds

1200	        Issues:
1201	        Additive Backup Latency MAY be a negative result.
1202	        This is theoretically possible, but could be indicative
1203	        of a sub-optimum network configuration .

1205	        See Also:
1206	           Primary Path
1207	           Backup Path
1208	           Primary Path Latency
1209	           Backup Path Latency

1211	     3.6 Failover Time Calculation Methods

1213	     3.6.1 Time-Based Loss Method (TBLM)

1215	      Definition:
1216	      The method to calculate Failover Time (or Reversion Time) using a
1217	      time scale on the Tester to measure the interval of Failover
1218	      Packet Loss.

1220	      Discussion:
1221	      The Tester MUST provide statistics which show the duration of
1222	      failure on a time scale based on occurrence of packet loss on
1223	      a time scale.  This is indicated by the duration of non-zero
1224	      packet loss.  The TBLM includes failure detection time and
1225	      time for data traffic to begin traversing the Backup Path.
1226	      Failover Time and Reversion Time are calculated using the
1227	      TBLM as shown in Equation 2:

1229	      (Equation 2)
1230	          (Equation 2a)
1231	          TBLM Failover Time = Time(Failover) - Time(Failover Event)

1233	          (Equation 2b)
1234	          TBLM Reversion Time = Time(Reversion) - Time(Restoration)

1236	      Measurement units:
1237	         seconds

1239	      Issues:
1240	         None

1242	      See Also:
1243	         Failover
1244	         Packet-Loss Based Method
1245	                          Protection Performance

1247	     3.6.2 Packet-Loss Based Method (PLBM)

1249	      Definition:
1250	      The method used to calculate Failover Time (or Reversion Time)
1251	      from the amount of Failover Packet Loss.

1253	      Discussion:
1254	      PLBM includes failure detection time and time for data traffic to
1255	      begin traversing the Backup Path.  Failover Time can be
1256	      calculated using PLBM from the amount Failover Packet Loss as
1257	      shown below in Equation 3:

1259	      (Equation 3)
1260	           (Equation 3a)
1261	           PLBM Failover Time =
1262	              Number of packets lost /
1263	                       (Offered Load rate * 1000)

1265	           (Equation 3b)
1266	           PLBM Restoration Time =
1267	              Number of packets lost /
1268	                       (Offered Load rate * 1000)

1270	           Units are packets/(packets/second) = seconds

1272	      Measurement units:
1273	         seconds

1275	      Issues:
1276	         None

1278	      See Also:
1279	         Failover
1280	         Time-Based Loss Method

1282	     3.6.3 Timestamp-Based Method (TBM)

1284	      Definition:
1285	      The method to calculate Failover Time (or Reversion Time)
1286	      using a time scale to quantify the interval between
1287	      unimpaired packets arriving in the test stream.

1289	      Discussion:
1290	      The purpose of this method is to quantify the duration of
1291	      failure or reversion on a time scale based on the
1292	      observation of unimpaired packets,  The TBM is calculated
1293	      from Equation 2 with the values obtained from the timestamp
1294	      in the packet payload, rather than from the Tester clock as
1295	      is used for the values when using the TBLM.

1297	      Unimpaired packets are normal packets that are not lost,
1298	      reordered, or duplicated.  A reordered packet is defined in
1299	                          Protection Performance

1301	      [10, section 3.3].  A duplicate packet is defined in
1302	      [4, section 3.3.3].  A lost packet is defined in
1303	      [7, Section 3.5].  Unimpaired packets may be detected by checking
1304	      a sequence number in the payload, where the sequence number equals
1305	      the next expected number for an unimpaired packet.  A sequence gap
1306	      or sequence reversal indicates impaired packets.

1308	      For calculating Failover Time, the TBM includes failure
1309	      detection time and time for data traffic to begin traversing the
1310	      Backup Path.  For calculating Reversion Time, the TBM includes
1311	      Reversion Time and time for data traffic to begin traversing the
1312	      Primary Path.

1314	      Measurement units:
1315	         seconds

1317	      Issues: None

1319	      See Also:
1320	         Failover
1321	         Failover Time
1322	         Reversion
1323	         Reversion Time

1325	4. Acknowledgements
1326	     We would like thank the BMWG and particularly Al Morton and Curtis
1327	     Villamizar for their reviews, comments, and contributions to this
1328	     work.

1330	5. IANA Considerations
1331	     This document requires no IANA considerations.

1333	6. Security Considerations
1334	     This document only addresses terminology for the performance
1335	     benchmarking of protection systems, and the information contained
1336	     in this document has no effect on the security of the Internet.

1338	7. References
1339	7.1. Normative References
1340	     [1] Bradner, S., "The Internet Standards Process -- Revision 3",
1341	         RFC 2026, October 1996.

1343	     [2] Bradner, S., Editor, "Benchmarking Terminology for
1344	         Network Interconnection Devices", RFC 1242, July 1991.

1346	     [3] Mandeville, R., "Benchmarking Terminology for LAN
1347	         Switching Devices", RFC 2285, February 1998.

1349	     [4] Poretsky, S., et al., "Terminology for Benchmarking
1350	         Network-layer Traffic Control Mechanisms", RFC 4689,
1351	         November 2006.

1353	                          Protection Performance

1355	     [5] Bradner, S., "Key words for use in RFCs to Indicate
1356	         Requirement Levels", RFC 2119, July 1997.

1358	     [6] Paxson, V., et al., "Framework for IP Performance Metrics",
1359	         RFC 2330, May 1998.

1361	     [7] Poretsky, S., Imhoff, B., "Benchmarking Terminology for IGP
1362	         Convergence", draft-ietf-bmwg-igp-dataplane-conv-term-16,
1363	         work in progress, November 2008.

1365	     [8] Pan., P. et al, "Fast Reroute Extensions to RSVP-TE for LSP
1366	         Paths", RFC 4090, May 2005.

1368	     [9] Nichols, K., et al, "Definition of the Differentiated
1369	         Services Field (DS Field) in the IPv4 and IPv6 Headers",
1370	         RFC 2474, December 1998.

1372	     [10] Morton, A., et al, "Packet Reordering Metrics", RFC 4737,
1373	          November 2006.

1375	     [11] Hinden, R., "Virtual Router Redundancy Protocol", RFC 3768,
1376	          April 2004.

1378	7.2. Informative References
1379	     None

1381	8.  Authors' Addresses

1383	   Scott Poretsky
1384	   Allot Communications
1385	   67 South Bedford Street, Suite 400
1386	   Burlington, MA 01803
1387	   USA
1388	   Phone: + 1 508 309 2179
1389	   Email: sporetsky@allot.com

1391	   Rajiv Papneja
1392	   Isocore
1393	   12359 Sunrise Valley Drive
1394	   Reston, VA 22102
1395	   USA
1396	   Phone: 1 703 860 9273
1397	   Email: rpapneja@isocore.com

1399	   Jay Karthik
1400	   Cisco Systems
1401	   300 Beaver Brook Road
1402	   Boxborough, MA 01719
1403	   USA
1404	   Phone: +1 978 936 0533
1405	   Email: jkarthik@cisco.com
1406	                          Protection Performance

1408	   Samir Vapiwala
1409	   Cisco System
1410	   300 Beaver Brook Road
1411	   Boxborough, MA 01719
1412	   USA
1413	   Phone: +1 978 936 1484
1414	   Email: svapiwal@cisco.com

1416	Full Copyright Statement

1418	   Copyright (C) The IETF Trust (2008).

1420	   This document is subject to the rights, licenses and restrictions
1421	   contained in BCP 78, and except as set forth therein, the authors
1422	   retain all their rights.

1424	   This document and the information contained herein are provided
1425	   on an "AS IS" basis and THE CONTRIBUTOR, THE ORGANIZATION HE/SHE
1426	   REPRESENTS OR IS SPONSORED BY (IF ANY), THE INTERNET SOCIETY, THE
1427	   IETF TRUST AND THE INTERNET ENGINEERING TASK FORCE DISCLAIM ALL
1428	   WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO ANY
1429	   WARRANTY THAT THE USE OF THE INFORMATION HEREIN WILL NOT INFRINGE
1430	   ANY RIGHTS OR ANY IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS
1431	   FOR A PARTICULAR PURPOSE.

1433	Intellectual Property

1435	   The IETF takes no position regarding the validity or scope of any
1436	   Intellectual Property Rights or other rights that might be claimed to
1437	   pertain to the implementation or use of the technology described in
1438	   this document or the extent to which any license under such rights
1439	   might or might not be available; nor does it represent that it has
1440	   made any independent effort to identify any such rights.  Information
1441	   on the procedures with respect to rights in RFC documents can be
1442	   found in BCP 78 and BCP 79.

1444	   Copies of IPR disclosures made to the IETF Secretariat and any
1445	   assurances of licenses to be made available, or the result of an
1446	   attempt made to obtain a general license or permission for the use of
1447	   such proprietary rights by implementers or users of this
1448	   specification can be obtained from the IETF on-line IPR repository at
1449	   http://www.ietf.org/ipr.

1451	   The IETF invites any interested party to bring to its attention any
1452	   copyrights, patents or patent applications, or other proprietary
1453	   rights that may cover technology that may be required to implement
1454	   this standard.  Please address the information to the IETF at ietf-
1455	   ipr@ietf.org.

1457	Acknowledgement
1458	   Funding for the RFC Editor function is currently provided by the
1459	   Internet Society.