Re: [Captive-portals] IETF 100: agenda and administrative items

To: Erik Kline <[email protected]>

Subject: Re: [Captive-portals] IETF 100: agenda and administrative items

From: David Bird <[email protected]>

Date: Mon, 30 Oct 2017 06:10:44 -0700

Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/QRntSWiNsmqBfGqToJh1NJscvdE>

Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com

Cc: [email protected], Martin Thomson <[email protected]>

Delivered-to: [email protected]

Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=TOp5wMK0fJFSDfKbF5PoxhvftAZyDozqRMV382oX4rQ=; b=U8ZScM5DhkuPMECrgbv1KPouDUCwtNIvMHWQn7uNYjbv11SFnZHnr//BeWYmNKI/qS ysT+Kbr7y3PSfPxjPvadJdLRYOLIXj36smWdsG1sv9jZjt0kfI5mDf8J9EGlHZZyzB5V UtWxvo3+sEfAtr8HmnTQ4rfIT5YeUSXOkK9yUqPQtu6RoqdNuE8WKnWdj4RfPFi1WRUW pYoTCdQ1WYx+kAY9V7bRaFp6+h0dR45I87D+BZuYkZVFaVF4dkRNqMOhmVanEux0Zp+6 6phgf6H5TL23HlgWbqRnsI90iMrXHqS6J1lYCdPCnWG5OhQbqynpwW56tdhQ+HGsEm6o Zl1w==

In-reply-to: <CAAedzxqtXstADv4mgj=szKOXziqGdAf9P7NQibCsFkCdJ47HSg@mail.gmail.com>

List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>

List-help: <mailto:[email protected]?subject=help>

List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>

List-post: <mailto:[email protected]>

List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>

List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>

References: <CAAedzxqtXstADv4mgj=szKOXziqGdAf9P7NQibCsFkCdJ47HSg@mail.gmail.com>

I will not be in Singapore, but here are slides about Capport ICMP from the last meeting:

https://datatracker.ietf.org/meeting/99/materials/slides-99-capport-icmp/

It doesn't surprise me that the (adopted) API draft hasn't made progress; its purpose, necessity, and requirements haven't been well established. We've seen several suggestions of functions (from both API and PvD), but those have largely been downgraded, removed, or moved to Appendices. I think today we are (finally, after more than 2 years) talking about ICMP for signaling, but still the emphasis is on the "API". The only function I can think of for the API is a iteration on WISPr (an XML based API that exists today) for pre-credentialed clients to automatically login.

On Sun, Oct 29, 2017 at 7:38 PM, Erik Kline <[email protected]> wrote:

All,

A few requests for our meeting in Singapore. If anyone has additional
agenda items they would like to present or see discussed, please reply
and let us know.

Thanks,
-Erik

--

[1] In the absence of a newly uploaded draft-ietf version of the
adopted API document the group will take a few minutes to consider
appointing new editors.

[2] Would someone be willing to present on requirements for
identifiers used by infrastructure to correlate activity with captive
clients? (See the thread "client identifying info between API and
enforcement".)

A discussion of link layer based identifiers versus IP based
identifiers would be worth having. We might want to define the
general requirements, and then make explicit recommendations for what
to do when the enforcement point is on-link and when it's off-link.

[3] In light of [2], would {David Bird or Kyle Larose / Dave Dolson}
be willing to lead a discussion of the contents of the proposed
extended captive portal ICMP option?

Issues include:

- Scope: How should the client interpret the breadth of the
captivity: limited to the given source address, to the destination
address, the src-dst pair, full 5-tuple?

- Correlation: How does the client use the signalled information
in its communications with the API endpoint? (and can the information
be reduced to a single, opaque token)

_______________________________________________
Captive-portals mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/captive-portals