Abstract

Historically, each Internet application protocol has defined its own set of rules for exchanging control and data information. Although there are a lot of similarities (e.g., dot-stuffing in SMTP and POP, octet counts in HTTP and IMAP, 3-digit reply codes in FTP and SMTP), there isn't a lot of reuse of design.

As a result, designers of new application protocols usually have to make the same set of design decisions — over and over again — to deal with the same set of trade-offs, but usually without the benefit of institutional history.

BEEP is a generic application protocol kernel for connection-oriented, request-response interactions. This particular subset supports a large class of Internet applications, and provides solutions to common design issues for those applications, including: framing, encoding, error reporting, asynchronous exchanges, along with authentication and privacy.

Table of Contents

1.  Helpful Reading
2.  The Problem in Application Protocol Design
3.  draft-moore-using-http
4.  Application Protocol Taxonomies
5.  The Target Market
6.  Overview of Protocol Mechanisms
7.  Protocol Mechanisms — Framing
8.  Protocol Mechanisms — Encoding
9.  Protocol Mechanisms — Reporting
10.  Protocol Mechanisms — Asynchrony
11.  Protocol Mechanisms — Authentication
12.  Protocol Mechanisms — Privacy
13.  Protocol Mechanisms — Summary
14.  Overview of Application Protocol Design Principles
15.  Application Protocol Design Principles — Scalability
16.  Application Protocol Design Principles — Efficiency
17.  Application Protocol Design Principles — Simplicity
18.  Application Protocol Design Principles — Extensibility
19.  Application Protocol Design Principles — Robustness
20.  Overview of the BEEP Core
21.  The BEEP Core — Framing
22.  The BEEP Core — Channels and Profiles
23.  The BEEP Core — Profile Definitions
24.  The BEEP Core — Encoding
25.  The BEEP Core — Reporting
26.  The BEEP Core — Asynchrony
27.  The BEEP Core — Transport Mappings
28.  The BEEP Core — Flow Control
29.  The BEEP Core — Authentication
30.  The BEEP Core — Privacy
31.  Overview of Application Protocols in Progress
32.  Application Protocols in Progress — Metadata Management
33.  Application Protocols in Progress — syslog
34.  Application Protocols in Progress — intrusion detection
35.  Application Protocols in Progress — APEX
36.  Status

1. Helpful Reading

BEEP RFCs 3080, 3081

Other I-Ds:

• draft-ietf-syslog-reliable
• draft-ietf-idwg-beep{idxp,tunnel}
• draft-mrose-apex-{core,access,presence}
• draft-klyne-apex-impp
• draft-brunner-xrp-00.txt
• draft-mrose-beep-{design,sctpmapping}

2. The Problem in Application Protocol Design

A lot of application protocols, a lot of similarities, not a lot of reuse

Need an application protocol? Three choices:

• Find an existing one that (more or less) does what's needed
• Define an exchange model on top of the web or email
• Define a new protocol from scratch

If choosing the first option involves little or no work, take it

If the application protocol's requirements are a good fit with the web or email, use it

Otherwise, let's talk about coming up with a decent 90% solution

3. draft-moore-using-http

HTTP has a lot of things to recommend it

The question is how good is the fit with a synchronous, small-request/large-response model

Experience with IPP suggests a subtle shift in existing practice has unintended consequences:

• Large requests sometimes get silently truncated
• Port 80 gets saturated

Regardless, the costs of introducing new methods, URL-prefixes, etc., probably neutralize the benefits of reuse

4. Application Protocol Taxonomies

Five operational characteristics:

• server push or client pull
• synchronous (interactive) or asynchronous (batch)
• time-assured or time-insensitive
• best-effort or reliable
• stateful or stateless

For example:

• web: pull, synchronous, time-insensitive, reliable, stateless
• email: push, asynchronous, time-insensitive, best-effort (without DSN), stateless

5. The Target Market

Limiting the problem domain:

• connection-oriented (ordered, reliable, congestion sensitive)
• message-oriented (loosely coupled, structured data)
• asynchronous (peer-to-peer, allowing client-server)

This doesn't accommodate things like:

• one shot exchanges (e.g., DNS lookup)
• tightly-coupled RPCs (e.g., NFS)
• multicast-enabled applications (e.g., wb)

That's OK... we can define alternative frameworks later, according to the demands of the standards marketplace

6. Overview of Protocol Mechanisms

There are (at least) six tasks that application protocols have to perform:

• framing: delimiting messages
• encoding: representing messages
• reporting: conveying status information (e.g., errors)
• asynchrony: handling independent exchanges
• authentication: verifying user identities
• privacy: protecting against third-party interception

There are other important (application-specific) tasks, e.g., naming and authorization

7. Protocol Mechanisms — Framing

Three Approaches:

• octet-stuffing (SMTP)
• octet-counting (HTTP)
• connection-blasting (FTP)

Octet-stuffing tends to be slower due to comparison overhead

Octet-counting, in the absence of segmentation, requires the entire message be available prior to sending

Connection-blasting, for small messages, is high overhead; regardless, endpoint-addresses must be conveyed at the application layer

8. Protocol Mechanisms — Encoding

Quite a few to choose from:

• ASN.1/BER (SNMP) and variants
• 822-style (SMTP)
• various RPC approaches (e.g., XDR)
• XML (SOAP)

There are arguments for and against each

Sometimes we have to just pick one and move on

9. Protocol Mechanisms — Reporting

Historically, there is consensus on SMTP's "theory" of reply codes:

• 1st digit: success or failure, permanent or transient
• 2nd digit: system component making the report
• 3rd digit: specific diagnostic

Some successes at having the same code mean the same thing in different protocols

Typically, paired with an ameri-centric textual diagnostic

There are also weaknesses:

• not extensible (hence IMAP's error tokens)
• not granular (hence SMTP's extended error codes)

10. Protocol Mechanisms — Asynchrony

Some success here (the second time around):

• command pipelinining in SMTP
• persistent connections and chunking in HTTP

Doing asynchrony right requires:

• flow control: to avoid starvation and deadlock
• segmentation: because messages may be larger than the offered window

Segmentation allows octet-counters to send segments without the entire message being available

11. Protocol Mechanisms — Authentication

Historically, not a problem, because we didn't do it

Hysterically, if we do it, we do it differently each time (e.g., FTP and HTTP)

The IETF has retrofitted many application protocols to use the SASL framework

SASL solves an NxN problem:

• Different security mechanisms optimize for strength, scalability, or ease of deployment
• One "API" for security mechanisms and another "API" for application protocol carriage
• SASL is the "glue" between the two

12. Protocol Mechanisms — Privacy

Historically, not a problem, because we didn't do it

Then Netscape gave us SSL (and screwed up by using two ports per application protocol)

The IETF has retrofitted many application protocols to support TLS

(Graphic courtesy of Bob "RL" Morgan, University of Washington)

13. Protocol Mechanisms — Summary

14. Overview of Application Protocol Design Principles

Regardless of what the application protocol does, a well-designed protocol is:

• scalable
• efficient
• simple
• extensible
• robust

15. Application Protocol Design Principles — Scalability

Surprisingly few application protocols are network-friendly:

• Everyone wants to get results (reduce latency and increase throughput)
• But no one wants to do what it takes to get them

Consider:

• the functional balance between "clients" and "servers" in comparison to their relative numbers and resources
• overhead of establishing "context"
• processing/transit speed

16. Application Protocol Design Principles — Efficiency

Elegance is sometimes inefficient (e.g., octet-stuffing v. octet-counting)

Trade-offs are often necessary:

• 822/MIME uses textual headers — think of all the space we could save if we limit the number of header keys and use a binary representation!

The SOAP guys are probably right that XML's inefficiencies are offset by printf's simplicity

The key lesson is to adjust the razor based on:

• how high we are in the protocol stack
• how close we are to the inner loop

17. Application Protocol Design Principles — Simplicity

One designer's complexity is another's completeness

The pain should be proportional to the gain:

• It should never be as "challenging" to do something basic as to do something complex

Two ways of doing the exact same thing suggests poor design

Simplistic doesn't imply simple-minded:

• Something that's well-designed accommodates the entire problem space
• Consistency is a virtue... this leads to elegance

18. Application Protocol Design Principles — Extensibility

Anticipating the unforeseen is a problem:

• A wise designer provides simple, unobtrusive hooks for extensibility
• Never accommodate a half-baked future requirement

Extensibility is no solution to poor design (viz. Telnet)

19. Application Protocol Design Principles — Robustness

Postel's Robustness Principle is a two-edged sword:

• Gresham's Law often trumps the Robustness Principle

20. Overview of the BEEP Core

21. The BEEP Core — Framing

The header is:

• tag: the type of frame
• msgno: correlates messages in the same direction/channel
• more: intermediate ("*") or complete (".")
• seqno: sequence number of first octet of payload
• size: number of octets in payload

Several "consistency rules" used to validate each frame

The payload is 0 or more octets

The trailer is:

So, what's a channel?

22. The BEEP Core — Channels and Profiles

A profile defines the messages exchanged on a given channel

At startup, channel 0 is bound to the channel management profile

23. The BEEP Core — Profile Definitions

A registration template defines:

• a URI for authoritative identification (like an OID)
• messages sent during channel creation
• message starting one-to-one exchanges
• messages in positive and negative replies
• messages in one-to-many exchanges
• message syntax & semantics
• contact information

Two kinds of profiles:

• initial tuning, for authentication, privacy, and so on
• data exchange, to do real work

Protocol =

Exchanges:

24. The BEEP Core — Encoding

All payloads are MIME-encoded, by default:

BEEP defines a minimal XML media type, application/beep+xml, i.e.,

• only 1.0 features
• only the five predefined general entity references and numeric entity references
• no <?xml ...?> or <!DOCTYPE ...> (because profile defines necessary context)

25. The BEEP Core — Reporting

Each profile defines messages for both positive and negative replies

For negative replies, the channel management profile uses 3 digit reply codes with a localized diagnostic, e.g.,

A list of preferred languages is passed in the <greeting> when a BEEP session is established

26. The BEEP Core — Asynchrony

Channels handle asynchrony:

• Each channel processes messages serially
• There are no constraints on the processing order for different channels

Segmentation is handled by framing

So, what about flow control?

27. The BEEP Core — Transport Mappings

A BEEP session is connection-oriented, and mapped onto a transport service that defines how:

• sessions are established
• session are released or terminated
• messages are reliably transmitted
• intra-channel messages are received in order
• inter-channel messages may be unordered

At present, one mapping is defined: onto a single TCP connection

In the future, look for transport mappings onto:

• the SCTP
• multiple TCP connections

28. The BEEP Core — Flow Control

The TCP-based mapping re-introduces the window-based flow control mechanism of TCP, each channel:

• assigns a 32-bit sequence number to each payload octet sent
• manages a sliding window for the number of octets it's willing to receive

When a channel is created, it has a 4K window, after that it's managed:

BEEP peers expected to use basic fairness algorithms, e.g.,

• segment large messages
• round-robin different channels
• send SEQ updates as needed

29. The BEEP Core — Authentication

Each BEEP session has a single authentication/authorization identity:

• At session establishment, it's anonymous without trace information

Start a channel with a SASL profile, e.g.,

The <blob> is used to carry the binary SASL exchanges using base64 encoding

Once you successfully authenticate:

• no more SASL negotiations (e.g., to change identity)
• no more transport security negotiations

Note that the SASL mechanism may provide both user authentication and transport security:

• Once a transport security is successfully negotiated, no more SASL security layer negotiations

30. The BEEP Core — Privacy

Each BEEP session has a single privacy context:

• At session establishment, it's plaintext transfer

Either start a channel with a SASL profile that has a security layer, or start a channel with the TLS profile, e.g.,

When the underlying negotiation process begins, all channels are closed

At the end of the negotiation, a new greeting is issued, regardless of the outcome

The usual STARTTLS rules apply, a BEEP peer:

• may give different greetings based on whether privacy is used
• may refuse to proceed without an acceptable level of privacy
• may refuse to proceed with weak cipher suites
• must discard previously cached information upon successful negotiation

31. Overview of Application Protocols in Progress

Several applications in varying states of progress:

• metadata management
• syslog
• intrusion detection
• apex

32. Application Protocols in Progress — Metadata Management

A client/server relationship with asynchronous callbacks:

33. Application Protocols in Progress — syslog

A server/client relationship:

34. Application Protocols in Progress — intrusion detection

An interesting requirement:

• end-to-end transport security through multiple application-entities

Realized using a "tunneling" tuning profile:

If successful:

• client and server do a "tuning reset"
• proxies become transparent octet-conveyors

35. Application Protocols in Progress — APEX

Application-layer relaying:

• Provides a best-effort application-datagram relaying mesh
• Provides access control and presence services
• Used for things like instant messaging

Behavior of mesh modified by self-contained options, e.g.,

• for reliable delivery, time-sensitive delivery, etc.

Starting to look at end-system multicasting

36. Status

BEEP's core and TCP mapping specifications:

• published as RFCs 3080 and 3081
• on the standards-tracks

Other IETF activities gearing up

The Working Group: [email protected]

The Website: http://beepcore.org/

Open Source Implementations (in progress):

• Java, Tcl, Perl, Python
• Ethereal