Re: [Captive-portals] time-based walled gardens

To: Michael Richardson <[email protected]>

Subject: Re: [Captive-portals] time-based walled gardens

From: David Bird <[email protected]>

Date: Mon, 10 Apr 2017 06:40:51 -0700

Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/3y9iAcBj15eolEWlMOJDIl4l47E>

Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com

Cc: [email protected]

Delivered-to: [email protected]

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=4VVetNXA/tVqF4+yUM2kr+LfzIs89kE3GkmMTTayKpM=; b=PesiBMsBAillcQUeAdt36gpQcaA+UQX8Wz21GTvTU5/w8cb69k53xKes85zW+zYx7H 5wNnPzJypPSwZ+86ZFrXaNxVBLnbAd6/1sZKbUYRfeW1CW3+nPdFonnf2Rsv9VCVQ5Ef 13J8qsLkrOye1lyJtP6gbQpNMpRzrDeVAqtXUY0NwH6VuI4cwkbWkbLT9CNLhN6fW+yZ N19QQPyyIfipurw0ybfwhpf0UD3F4iWa5a1XQYMlSwRB9AOR/5D/w64EpI/VRZzGNWqd Y+qlrAgztVwuf63OntJ7TcW0ojTk4bQMoMmMXPpEh8/uvPw0OEuStfnwCWlXgKFLO0fc Wqkg==

In-reply-to: <[email protected]>

List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>

List-help: <mailto:[email protected]?subject=help>

List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>

List-post: <mailto:[email protected]>

List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>

List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>

References: <CADo9JyU2wiEBB4L7ADSybt9se7jCN764JSEoHuGTcuiU_jDscQ@mail.gmail.com> <CAAedzxqR5bWTP_gou+hC5cgQ99tV275nX_ijm7iUok4-h+3wMQ@mail.gmail.com> <CADo9JyVfmhir8YtOR2mzzaaPL_9mBKgFmht6-SA50SfPmh9z6w@mail.gmail.com> <CAAedzxrck9+TBpEp-x8_tG-oxxKh4MQ4-x+iuGNGd6JsG=poQQ@mail.gmail.com> <CADo9JyUKb_c6SPigjUqngUyPvDsbN10TLZX0+B9r92xm6XGgAA@mail.gmail.com> <[email protected]> <CAAedzxo3Gp9ZhLeujZBC0vn9GO=+xHxkAstisoUAX1BCTEtYvQ@mail.gmail.com> <CADo9JyUr2rpZBjz5zMrrUmi8+gR9VGxBFhMLGVqFGYiWsOic6w@mail.gmail.com> <[email protected]>

Agreed. Except, I'd argue that the "API" could be seen as the browser itself - the "universal" API that everyone is familiar with and that offers endless possibilities. Today, browsers offer largely the same user experience irrespective of OS or browser (of course, this isn't true if the browser is a sandboxed/broken browser that forces web developers back into the dark ages of huge differences between user experiences depending on browser selection).

The API could add another 'layer' for announcing limitations, walled garden resources, and other information, but my opinion is that if the information didn't come from the *network*, why would you want to believe it? In public access, there WILL be incentives to give misleading information from an API. If you trust, you must still verify.

As for as API for login, as I previously mentioned, that already exists and widely deployed and used. Replacing WISPr is a GOOD idea, but I question whether there will be motivation to actually deploy it (unless we make a mistake and it is useful for additional commercial trickery in public access).

Thanks for reading my ICMP I-D ... comments are welcome! Yes, it could use more attention and improvements... I encourage others to (re-)read it.

On Mon, Apr 10, 2017 at 6:19 AM, Michael Richardson <[email protected]> wrote:

David Bird <[email protected]> wrote:
> Should the aim be to provide a
> general hint of network restriction, or on a per-destination
> basis?

Consider access to higher bandwidth content (video).
A number of places might want to restrict access to such content during
certain periods, or from certain places. A school might restrict it
during school hours (simply for fairness: people got other things to do),
yet a teacher ought to be able to stream an instructional video.
Colleges might restrict its use when in a lecture hall.

Airlines might want to restrict streaming video to those who paid more.
(So there might even be multiple levels of walled garden!)

My mobile ISP does not charge me "overages" but, rather limits my bit-rate
after I hit my datacap. I can buy more; and they SMS me about it, but a
data-only plan wouldn't have an SMS attached to it.

All of these things would seem to be doable with the ICMP plus RESTful
API. It seems that the session-ID can deal with these changes, and
the validity could indicate things like valid until the end-of-school day.

ICMP says:
Any change in this value between ICMP messages
from the same source IP address MUST be considered by the client to
mean a change in access policy has occurred and previous
notifications are no longer valid.

I don't know what it means if an ICMP comes from a different source IP.

--
Michael Richardson <[email protected]>, Sandelman Software Works
-= IPv6 IoT consulting =-

_______________________________________________
Captive-portals mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/captive-portals