Table of Contents

1. ftp://ftp.ietf.org/internet-drafts/

I-Ds on BEEP:

• draft-ietf-beep-framework-11
• draft-ietf-beep-tcpmapping-06

I-Ds on apex:

• draft-mrose-apex-core
• draft-mrose-apex-access
• draft-mrose-apex-presence

Other I-Ds:

• draft-ietf-syslog-reliable
• draft-ietf-idwg-beep-{idxp,tunnel}
• draft-klyne-apex-impp
• draft-brunner-xrp-00.txt
• draft-mrose-beep-{design,sctpmapping}

2. The Problem in Application Protocol Design

A lot of application protocols, a lot of similarities, not a lot of reuse

Need an application protocol? Three choices:

• Find an existing one that (more or less) does what's needed
• Define an exchange model on top of the web or email
• Define a new protocol from scratch

If choosing the first option involves little or no work, take it

If the application protocol's requirements are a good fit with the web or email, use it

Otherwise, let's talk about coming up with a decent 90% solution

3. The Target Market

Limiting the problem domain:

• connection-oriented (ordered, reliable, congestion sensitive)
• message-oriented (loosely coupled, structured data)
• asynchronous (peer-to-peer, allowing client-server)

This doesn't accommodate things like:

• one shot exchanges (e.g., DNS lookup)
• tightly-coupled RPCs (e.g., NFS)
• multicast-enabled applications (e.g., wb)

That's OK... we can define alternative frameworks later, according to the demands of the standards marketplace

4. Application Protocol Mechanisms

There are (at least) six tasks that application protocols have to perform:

• framing: delimiting messages
• encoding: representing messages
• reporting: conveying status information (e.g., errors)
• asynchrony: handling independent exchanges
• authentication: verifying user identities
• privacy: protecting against third-party interception

     Mechanism  ESMTP        FTP        HTTP1.1
     ---------  -----        ---        -------
       Framing  stuffing     blasting   counting 
      Encoding  822-style    binary     MIME 
     Reporting  3-digit      3-digit    3-digit 
    Asynchrony  pipelining   none       pipelining/chunking 
Authentication  SASL         user/pass  user/pass 
       Privacy  SASL or TLS  none       TLS (nee SSL) 

5. IETF Applications and Security

(Graphic courtesy of Bob "RL" Morgan, University of Washington)

6. The BEEP Core

     Mechanism  BEEP
     ---------  ----
       Framing  counting with a trailer
      Encoding  MIME, defaulting to application/octet-stream
     Reporting  3-digit with localized textual diagnostic
    Asynchrony  independent channels
Authentication  SASL
       Privacy  SASL or TLS

7. Framing

The header is:

    tag SP channel SP msgno SP more SP seqno SP size CRLF

• tag: the type of frame
• msgno: correlates messages in the same direction/channel
• more: intermediate ("*") or complete (".")
• seqno: sequence number of first octet of payload
• size: number of octets in payload

Several "consistency rules" used to validate each frame

The payload is 0 or more octets

The trailer is:

    "END" CRLF

So, what's a channel?

8. Channels and Profiles

A profile defines the messages exchanged on a given channel

At startup, channel 0 is bound to the channel management profile

RPY 0 0 . 0 124 
Content-Type: application/beep+xml

<greeting>
  <profile uri="http://.../TLS" />
  <profile uri="http://.../SEP" />
  <profile uri="http://.../sasl/OTP" />
  <profile uri="http://.../sasl/..." />
</greeting>
END


<start number="1">
  <profile uri="..."> ... </profile>
  <profile uri="..."> ... </profile>
</start>

<close number="1" code="200" />

9. Profile Definitions

A registration template defines:

• a URI for authoritative identification (like an OID)
• messages sent during channel creation
• message starting one-to-one exchanges
• messages in positive and negative replies
• messages in one-to-many exchanges
• message syntax & semantics
• contact information

Two kinds of profiles:

• initial tuning, for authentication, privacy, and so on
• data exchange, to do real work

Protocol =

    BEEP + 1 or more profiles
         + authorization policies
         + provisioning rules

Exchanges:

    MSG -> RPY
    MSG -> ERR
    MSG -> zero or more ANS, followed by NUL

10. Encoding

All payloads are MIME-encoded, by default:

Content-Type: application/octet-stream
Content-Transfer-Encoding: binary

BEEP defines a minimal XML media type, application/beep+xml, i.e.,

• only 1.0 features
• only the five predefined general entity references and numeric entity references
• no <?xml ...?> or <!DOCTYPE ...> (because profile defines necessary context)

11. Reporting

Each profile defines messages for both positive and negative replies

For negative replies, the channel management profile uses 3 digit reply codes with a localized diagnostic, e.g.,

    <error code="421"
           xml:lang="en-US">service not available</error>

A list of preferred languages is passed in the <greeting> when a BEEP session is established

12. Asynchrony

Channels handle asynchrony:

• Each channel processes messages serially
• There are no constraints on the processing order for different channels

Segmentation is handled by framing

So, what about flow control?

13. Transport Mappings

A BEEP session is connection-oriented, and mapped onto a transport service that defines how:

• sessions are established
• session are released or terminated
• messages are reliably transmitted
• intra-channel messages are received in order
• inter-channel messages may be unordered

At present, one mapping is defined: onto a single TCP connection

In the future, look for transport mappings onto:

• the SCTP
• multiple TCP connections

14. Flow Control

The TCP-based mapping re-introduces the window-based flow control mechanism of TCP, each channel:

• assigns a 32-bit sequence number to each payload octet sent
• manages a sliding window for the number of octets it's willing to receive

When a channel is created, it has a 4K window, after that it's managed:

    "SEQ" SP channel SP ackno SP size 

BEEP peers expected to use basic fairness algorithms, e.g.,

• segment large messages
• round-robin different channels
• send SEQ updates as needed

15. Authentication and Privacy

Each BEEP session has a single authentication identity/privacy context:

• At session establishment, it's anonymous and plaintext

Start a channel with a SASL profile, e.g.,

<start number="1">
    <profile uri="http://.../sasl/OTP">
        &lt;blob>AGJsb2NrbWFzdGVy&lt;/blob>
    </profile>
</start>

Or start a channel with a SASL profile that has a security layer, or start a channel with the TLS profile, e.g.,

<start number="1">
    <profile uri="http://.../TLS">
        &lt;ready />
    </profile>
</start>

When the underlying negotiation process begins, a tuning reset occurs

16. syslog

A server/client relationship:

    C: establish and tune session
    
    S: MSG (i'm ready to act as a sink)
    C: ANS (audit entry 1)
    C: ANS (audit entry 2)
       ... 
    C: ANS (audit entry N)
    C: NUL

17. intrusion detection

An interesting requirement:

• end-to-end transport security through multiple application-entities

Realized using a "tunneling" tuning profile:

     C: establish session to proxy #1
     C: start tunneling profile
     C: specify route (via IP or SRV)

    P1: establish session to proxy #2
    P1: start tunneling profile
    P1: specify remaining route (via IP or SRV)
        ...
    Pn: establish session to server
    Pn: start pass-through profile
    Pn: specify empty route

     S: pass back status to Pn
        ...

If successful:

• client and server do a tuning reset
• proxies become transparent octet-conveyors

18. Operational Taxonomies

Five distinguishing characteristics:

• server push or client pull
• synchronous (interactive) or asynchronous (batch)
• time-assured or time-insensitive
• best-effort or reliable
• stateful or stateless

For example:

• web: pull, synchronous, time-insensitive, reliable, stateless
• email push, asynchronous, time-insensitive, best-effort (without DSN), stateless

Messaging applications vary considerably in their operational requirements, e.g., timeliness, reliability, determinism, etc.

These features come at a cost, in terms of both infrastructure and configuration complexity

The underlying service must be extensible to support different requirements in a consistent manner

19. An Application Datagram Service

APEX is about "application-layer relaying"

Looks like the email model:

• well-understood
• universally-accepted
• highly-scalable

The APEX model is:

• lightweight by nature
• soft real-time

The APEX model is option-driven, allowing:

• flexible control structures
• extensible services

APEX provides:

• a application-datagram relaying mesh
• access control, presence, and reporting services
• support for a range of applications, not just IM

The default mode:

• immediate delivery
• best-effort relaying

The mesh's behavior is modified by self-contained options,

• e.g., for reliable delivery, time-sensitive delivery, etc

20. Entities

  administrative domain #1        administrative domain #2
+--------------------------+    +--------------------------+
|   +------+               |    |               +------+   |
|   |      |               |    |               |      |   |
|   | appl |               |    |               | appl |   |
|   |      |               |    |               |      |   |
|   +......+     +------+  |    |  +------+     +......+   |
|   |      |     |      |  |    |  |      |     |      |   |
|   |end-  |     |relay |  |    |  |relay |     |end-  |   |
|   | point|     |      |  |    |  |      |     | point|   |
|   +------+     +------+  |    |  +------+     +------+   |
|   |      |     |      |  |    |  |      |     |      |   |
|   | APEX |     | APEX |  |    |  | APEX |     | APEX |   |
|   |      |     |      |  |    |  |      |     |      |   |
|   +------+     +------+  |    |  +------+     +------+   |
|        ||       ||  ||   |    |   ||  ||       ||        |
|        ===========  ================  ===========        |
+--------------------------+    +--------------------------+

             | <-- APEX relaying mesh --> |

21. Modes

Two modes of operation: endpoint-relay and relay-relay

Both modes are peer-to-peer:

• either side can initiate a protocol exchange

Endpoints have names, i.e., "local@domain"

The local-part prefix "apex=" is reserved for APEX services

Relays aren't named, per se

Relays are located using the SRV algorithm:

• apex-edge (for the endpoint-relay mode)
• apex-mesh (for the relay-relay mode)

22. Operations

Applications attach as endpoints, 1:N by default

Relays bind on behalf of administrative domains (FQDNs)

Both exchange datagrams (termed "data")

APEX access policies are used for:

• authenticating peers
• application attachment as an endpoint
• endpoint origination of data
• relay binding on behalf of a domain

The APEX access service is used for:

• controlling access for endpoint reception of data
• controlling access to other APEX services

23. Enveloping

Envelope contains:

• an originator
• one or more recipients
• a URI to the content

The content is a MIME object, with optimization for XML objects

The URI is usually internal, but can be external

24. An Example

C: MSG 1 1 . 42 1234
C: Content-Type: multipart/related; boundary="boundary";
C:               start="<1@example.com>";
C:               type="application/beep+xml"
C:
C: --boundary
C: Content-Type: application/beep+xml
C: Content-ID: <1@example.com>
C:
C: <data content='cid:2@example.com'>
C:     <originator identity='fred@example.com' />
C:     <recipient identity='barney@example.com' />
C: </data>
C: --boundary
C: Content-Type: image/gif
C: Content-Transfer-Encoding: binary
C: Content-ID: <2@example.com>
C:
C: ...
C: --boundary--
C: END

25. Another Example

C: MSG 1 1 . 42 295
C: Content-Type: application/beep+xml
C:
C: <data content='#Content'>
C:     <originator identity='fred@example.com' />
C:     <recipient identity='barney@example.com' />
C:     <data-content Name='Content'>
C:         <statusResponse transID='86'>
C:             <destination identity='barney@example.com'>
C:                 <reply code='250' />
C:             </destination>
C:         <statusResponse>
C:     </data-content>
C: </data>
C: END

26. Options

Options may be present on any operation:

    <!ELEMENT option      ANY>
    <!ATTLIST option
              internal    NMTOKEN           ""
              external    %URI;             ""
              targetHop   (this|final|all)  "final"
              seeNoEvil   (true|false)      "true"
              transID     %UNIQID;          #REQUIRED
              localize    %LOCS;            "i-default">

One option defined: statusRequest

27. The Report Service

Triggered by a relaying seeing a "statusRequest" option,

• either as a data-specific or per-recipient option

"targetHop" attribute can be used for traceroute-like functionality

<data content='#Content'>
    <originator identity='apex=report@example.com' />
    <recipient identity='fred@example.com' />
    <data-content Name='Content'>
        <statusResponse transID='86'>
            <destination identity='barney@example.com'>
                <reply code='250' />
            </destination>
        </statusResponse>
    </data-content>
</data>

28. The Access Service

Controls access for endpoint reception of data

Controls access to other APEX services

<access owner='fred@example.com'
        lastUpdate='14 May 2000 13:02:00 -0800'>
    <entry actor='wilma@example.com'
           actions='all:all' />
    <entry actor='mr.slate@example.com'
           actions='core:data' />
    <entry actor='*@example.com'
         actions='core:data presence:subscribe
                            presence:watch' />
    <entry actor='*@*' actions='core:data' />
</access>

Two operations:

    get -> access entry or error
    set -> reply (confirmation or error)

Simple spin-lock to avoid write-write conflicts

29. The Presence Service

Repository for rendezvous information

<presence publisher='fred@example.com'
          lastUpdate='14 May 2000 13:02:00 -0800'
          publisherInfo='http://www.example.com/fred/'>
    <tuple destination='apex:fred/appl=im@example.com'
           availableUntil='14 May 2000 14:02:00 -0800' />
    <tuple destination='mailto:fred@flintstone.com'
           availableUntil='31 Dec 2525 23:59:59 -0800' />
</presence>

Four operations:

    subscribe -> event-driven notifications or error

      publish -> reply (confirmation or error)

        watch -> reply,
                 followed by event-driven notifications

    terminate -> reply

Subscribe and watch are duration-based services:

• for a one-shot, use zero seconds

Simple spin-lock to avoid write-write conflicts

30. Status

BEEP's core and TCP mapping specifications:

• approved for standards-track publication
• other IETF activities gearing up

BEEP Working Group: bxxpwg@invisible.net

APEX Working Group: apexwg@invisible.net

The Website: http://bxxp.org/

Open Source Implementations (in progress):

• BEEP: Java, Python, Tcl, Perl (rsn)
• Ethereal, Tcpdump
• APEX: Java