Optimizing BFD Authentication

	draft-ietf-bfd-optimizing-authentication-21.txt
	Date:	21/10/2024
	Authors:	Mahesh Jethanandani, Ashesh Mishra, Ankur Saxena, Manav Bhatia, Jeffrey Haas
	Working Group:	Bidirectional Forwarding Detection (bfd)

This document describes an optimization to BFD Authentication as described in Section 6.7 of BFD RFC 5880.

BFD Stability

	draft-ietf-bfd-stability-16.txt
	Date:	07/10/2024
	Authors:	Ashesh Mishra, Mahesh Jethanandani, Ankur Saxena, Santosh Pallagatti, Mach Chen
	Working Group:	Bidirectional Forwarding Detection (bfd)

This document describes extensions to the Bidirectional Forwarding Detection (BFD) protocol to measure BFD stability. Specifically, it describes a mechanism for detection of BFD packet loss.

Meticulous Keyed ISAAC for BFD Authentication

	draft-ietf-bfd-secure-sequence-numbers-18.txt
	Date:	21/10/2024
	Authors:	Alan DeKok, Mahesh Jethanandani, Sonal Agarwal, Ashesh Mishra, Ankur Saxena
	Working Group:	Bidirectional Forwarding Detection (bfd)

This document describes a new BFD Authentication mechanism, Meticulous Keyed ISAAC. This mechanism can be used to authenticate BFD packets with less CPU time cost than using MD5 or SHA1, with the tradeoff of decreased security. This mechanism cannot be used to signal state changes, but it can be used as an authenticated signal to maintain a session in the the "Up" state.

BFD Encapsulated in Large Packets

	draft-ietf-bfd-large-packets-14.txt
	Date:	09/12/2024
	Authors:	Jeffrey Haas, Albert Fu
	Working Group:	Bidirectional Forwarding Detection (bfd)

The Bidirectional Forwarding Detection (BFD) protocol is commonly used to verify connectivity between two systems. BFD packets are typically very small. It is desirable in some circumstances to know that not only is the path between two systems reachable, but also that it is capable of carrying a payload of a particular size. This document specifies how to implement such a mechanism using BFD in Asynchronous mode. YANG modules for managing this mechanism are also defined in this document. These YANG modules augment the existing BFD YANG modules defined in RFC 9314. The YANG modules in this document conform to the Network Management Datastore Architecture (NMDA) (RFC 8342).

Unaffiliated Bidirectional Forwarding Detection (BFD) Echo

	draft-ietf-bfd-unaffiliated-echo-14.txt
	Date:	10/12/2024
	Authors:	Weiqiang Cheng, Ruixue Wang, Xiao Min, Reshad Rahman, Raj Boddireddy
	Working Group:	Bidirectional Forwarding Detection (bfd)

This document specifies an extension to the Bidirectional Forwarding Detection (BFD) protocol that enables the use of the BFD Echo function without the need for an associated BFD control session. This "Unaffiliated BFD Echo" mechanism allows rapid detection of forwarding path failures in networks where establishing BFD control sessions is impractical or undesirable. By decoupling the Echo function from the control plane, network devices can utilize BFD's fast failure detection capabilities in a simplified manner, enhancing network resiliency and operational efficiency. This document updates RFC 5880 by defining a new Unaffiliated BFD Echo mechanism.

Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

Bidirectional Forwarding Detection (bfd)

WG	Name	Bidirectional Forwarding Detection
	Acronym	bfd
	Area	Routing Area (rtg)
	State	Active
	Charter	charter-ietf-bfd-09 Approved
	Status update	Show Changed 2019-03-19
	Document dependencies	Document dependencies Loading... Pan and zoom the dependency graph after the layout settles. Show legend Loading...
	Additional resources	Issue tracker, Working group wiki Zulip Stream
Personnel	Chairs	Jeffrey Haas, Reshad Rahman
	Area Director	John Scudder
	Tech Advisors	Dave Katz, David Ward
Mailing list	Address	rtg-bfd@ietf.org
	To subscribe	https://www.ietf.org/mailman/listinfo/rtg-bfd
	Archive	https://mailarchive.ietf.org/arch/browse/rtg-bfd/
Chat	Room address	https://zulip.ietf.org/#narrow/stream/bfd

Charter for Working Group

The BFD Working Group is chartered to standardize and support the
bidirectional forwarding detection protocol (BFD) and its extensions. A
core goal of the working group is to standardize BFD in the context of
IP routing, or protocols such as MPLS that are based on IP routing, in a
way that will encourage multiple, inter-operable vendor implementations.
The Working Group will also provide advice and guidance on BFD to other
working groups or standards bodies as requested.

BFD is a protocol intended to detect faults in the bidirectional path
between two forwarding engines, including physical interfaces,
subinterfaces, data link(s), and to the extent possible the forwarding
engines themselves, with potentially very low latency. It operates
independently of media, data protocols, and routing protocols. An
additional goal is to provide a single mechanism that can be used for
liveness detection over any media, at any protocol layer, with
a wide range of detection times and overhead, to avoid a proliferation
of different methods.

Important characteristics of BFD include:

Simple, fixed-field encoding to facilitate implementations in
hardware.
Independence of the data protocol being forwarded between two systems.
BFD packets are carried as the payload of whatever encapsulating
protocol is appropriate for the medium and network.
Path independence: BFD can provide failure detection on any kind of
path between systems, including direct physical links, virtual
circuits, tunnels, MPLS LSPs, multihop routed paths, and
unidirectional links (so long as there is some return path, of
course).
Ability to be bootstrapped by any other protocol that automatically
forms peer, neighbor or adjacency relationships to seed BFD endpoint
discovery.

The working group is currently chartered to complete the following work items:

Define a mechanism to perform single-ended path (i.e. continuity)
verification based on the BFD specification. Allow such a mechanism to
work both proactively and on-demand, without prominent initial delay.
Allow the mechanism to maintain multiple sessions to a target entity and
between the same pair of network entities. In doing this work, the WG
will work closely with at least the following other WGs: ISIS, OSPF,
SPRING.
Extend BFD to allow it to detect whether a path between two systems
is capable of carrying a payload of a particular size.
Define a use of the BFD Echo where the local system supports BFD but
the adjacent system does not support BFD.
Provide an optimization to BFD authentication to reduce computational
demand while still providing desirable security properties.
Provide a Meticulous Keyed mode for BFD authentication.
Define experimental extensions to measure BFD stability.

The working group will maintain a relationship with the MPLS working group.

Milestones

Date	Milestone	Associated documents
Jun 2025	Define experimental extensions to measure BFD stability.	draft-ietf-bfd-stability
Jun 2025	Provide a Meticulous Keyed mode for BFD authentication.	draft-ietf-bfd-secure-sequence-numbers
Jun 2025	Provide an optimization to BFD authentication to reduce computational demand while still providing desirable security properties.	draft-ietf-bfd-optimizing-authentication
Dec 2024	Define a use of the BFD Echo where the local system supports BFD but the adjacent system does not support BFD.	draft-ietf-bfd-unaffiliated-echo
Dec 2024	Extend BFD to allow it to detect whether a path between two systems is capable of carrying a payload of a particular size.	draft-ietf-bfd-large-packets