Internet DRAFT - draft-ietf-pce-inter-area-as-applicability

draft-ietf-pce-inter-area-as-applicability



PCE Working Group                                                D. King
Internet Draft                                        Old Dog Consulting
Intended status: Informational                                  H. Zheng
Expires: January 9, 2020                             Huawei Technologies
                                                            July 8, 2019
                                         
     Applicability of the Path Computation Element to Inter-Area and    
            Inter-AS MPLS and GMPLS Traffic Engineering            

           draft-ietf-pce-inter-area-as-applicability-08


   Abstract 

   The Path Computation Element (PCE) may be used for computing services
   that traverse multi-area and multi-AS Multiprotocol Label Switching  
   (MPLS) and Generalized MPLS (GMPLS) Traffic Engineered (TE) networks.

   This document examines the applicability of the PCE architecture,   
   protocols, and protocol extensions for computing multi-area and  
   multi-AS paths in MPLS and GMPLS networks.

Status of This Memo

   This Internet-Draft is submitted in full conformance with the
   provisions of BCP 78 and BCP 79.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF).  Note that other groups may also distribute
   working documents as Internet-Drafts.  The list of current Internet-
   Drafts is at https://datatracker.ietf.org/drafts/current/.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet-Drafts as reference
   material or to cite them other than as "work in progress."

   This Internet-Draft will expire on January 9, 2020.


Copyright Notice

   Copyright (c) 2019 IETF Trust and the persons identified as the
   document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal
   Provisions Relating to IETF Documents
   (https://trustee.ietf.org/license-info) in effect on the date of
   publication of this document.  Please review these documents
   carefully, as they describe your rights and restrictions with respect
   to this document.  Code Components extracted from this document must


King, et al.                Expires January, 2020               [Page 1]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   include Simplified BSD License text as described in Section 4.e of
   the Trust Legal Provisions and are provided without warranty as
   described in the Simplified BSD License.




   1. Introduction.................................................3
      1.1. Domains.................................................4
      1.2. Path Computation........................................4
        1.2.1 PCE-based Path Computation Procedure.................5
      1.3. Traffic Engineering Aggregation and Abstraction.........6
      1.4. Traffic Engineered Label Switched Paths.................6
      1.5. Inter-area and Inter-AS Capable PCE Discovery...........6
      1.6. Objective Functions.....................................6
   2. Terminology..................................................7
   3. Issues and Considerations....................................7
      3.1 Multi-homing.............................................7
      3.2 Destination Location.....................................8
      3.3 Domain Confidentiality ..................................8
   4. Domain Topologies............................................8
      4.1 Selecting Domain Paths...................................8
      4.2 Domain Sizes.............................................9
      4.3 Domain Diversity.........................................9
      4.4 Synchronized Path Computations...........................9
      4.5 Domain Inclusion or Exclusion............................9
   5. Applicability of the PCE to Inter-area Traffic Engineering...10
      5.1. Inter-area Routing......................................11
      5.1.1. Area Inclusion and Exclusion..........................11
      5.1.2. Strict Explicit Path and Loose Path...................11
      5.1.3. Inter-Area Diverse Path Computation...................11
   6. Applicability of the PCE to Inter-AS Traffic Engineering.....12
      6.1. Inter-AS Routing........................................12
      6.1.1. AS Inclusion and Exclusion............................12
      6.2. Inter-AS Bandwidth Guarantees...........................12
      6.3. Inter-AS Recovery.......................................13
      6.4. Inter-AS PCE Peering Policies...........................13
   7. Multi-Domain PCE Deployment..................................13
      7.1 Traffic Engineering Database.............................13
      7.1.1. Applicability of BGP-LS to PCE........................14
      7.2 Pre-Planning and Management-Based Solutions..............14
   8. Domain Confidentiality.......................................15
      8.1 Loose Hops...............................................15
      8.2 Confidential Path Segments and Path Keys.................15
   9. Point-to-Multipoint..........................................16
   10. Optical Domains.............................................16
      10.1 Abstraction and Control of TE Networks (ACTN)...........17
   11. Policy......................................................17


King, et al.                Expires January, 2020               [Page 2]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   12. Manageability Considerations................................18
     12.1 Control of Function and Policy...........................18
     12.2 Information and Data Models..............................18
     12.3 Liveness Detection and Monitoring........................19
     12.4 Verifying Correct Operation..............................19
     12.5 Impact on Network Operation..............................19
   13. Security Considerations.....................................19
     13.1 Multi-domain Security....................................19
   14. IANA Considerations.........................................20
   15. Acknowledgements............................................20
   16. References..................................................20
     16.1. Normative References....................................20
     16.2. Informative References..................................21
   17. Contributors................................................24
   18. Author's Addresses..........................................25


1. Introduction

   Computing paths across large multi-domain environments may 
   require special computational components and cooperation between
   entities in different domains capable of complex path computation. 
   
   Issues that may exist when routing in multi-domain networks include:
   
   o Often there is a lack of full topology and TE information across 
     domains;
   o No single node has the full visibility to determine an optimal or 
     even feasible end-to-end path across domains;
   o How to evaluate and select the exit point and next domain boundary 
     from a domain?
   o How might the ingress node determine which domains should be used 
     for the end-to-end path?
   
   Often information exchange across multiple domains is limited due to 
   the lack of trust relationship, security issues, or scalability 
   issues even if there is a trust relationship between domains.
   
   The Path Computation Element (PCE) [RFC4655] provides an architecture
   and a set of functional components to address the problem space, and 
   issues highlighted above.

   A PCE may be used to compute end-to-end paths across multi-domain 
   environments using a per-domain path computation technique [RFC5152]. 
   The so called backward recursive path computation (BRPC) mechanism 
   [RFC5441] defines a PCE-based path computation procedure to compute
   inter-domain constrained Multiprotocol Label Switching (MPLS) and 
   Generalized MPLS (GMPLS) Traffic Engineered (TE) networks. However, 


King, et al.                Expires January, 2020               [Page 3]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   both per-domain and BRPC techniques assume that the sequence of 
   domains to be crossed from source to destination is known, either 
   fixed by the network operator or obtained by other means. 

   In more advanced deployments (including multi-area and multi-
   Autonomous System (multi-AS) environments) the sequence of domains 
   may not be known in advance and the choice of domains in the end-to-
   end domain sequence might be critical to the determination of an 
   optimal end-to-end path. In this case the use of the Hierarchical PCE 
   [RFC6805] architecture and mechanisms may be used to discover the 
   intra-area path and select the optimal end-to-end domain sequence. 

   This document describes the processes and procedures available when 
   using the PCE architecture and protocols, for computing inter-area 
   and inter-AS MPLS and GMPLS Traffic Engineered paths.
   
   This document scope does not include discussion on stateful PCE, 
   active PCE, remotely initiated PCE, or PCE as a central controller 
   (PCECC) deployment scenarios. 

1.1 Domains

   Generally, a domain can be defined as a separate administrative, 
   geographic, or switching environment within the network. A domain 
   may be further defined as a zone of routing or computational ability.
   Under these definitions a domain might be categorized as an 
   Autonomous System (AS) or an Interior Gateway Protocol (IGP) area 
   (as per [RFC4726] and [RFC4655]). 

   For the purposes of this document, a domain is considered to be a
   collection of network elements within an area or AS that has a 
   common sphere of address management or path computational 
   responsibility. Wholly or partially overlapping domains are not 
   within the scope of this document.

   In the context of GMPLS, a particularly important example of a domain
   is the Automatically Switched Optical Network (ASON) subnetwork
   [G-8080]. In this case, computation of an end-to-end path requires
   the selection of nodes and links within a parent domain where some
   nodes may, in fact, be subnetworks. Furthermore, a domain might be an
   ASON routing area [G-7715]. A PCE may perform the path computation
   function of an ASON routing controller as described in [G-7715-2].

   It is assumed that the PCE architecture is not applied to a large 
   group of domains, such as the Internet.

1.2 Path Computation



King, et al.                Expires January, 2020               [Page 4]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   For the purpose of this document, it is assumed that the 
   path computation is the sole responsibility of the PCE as per the
   architecture defined in [RFC4655]. When a path is required the Path
   Computation Client (PCC) will send a request to the PCE. The PCE 
   will apply the required constraints and compute a path and return a 
   response to the PCC. In the context of this document it may be
   necessary for the PCE to co-operate with other PCEs in adjacent
   domains (as per BRPC [RFC5441]) or cooperate with a Parent PCE 
   (as per [RFC6805]).

   It is entirely feasible that an operator could compute a path across
   multiple domains without the use of a PCE if the relevant domain 
   information is available to the network planner or network management
   platform. The definition of what relevant information is required to
   perform this network planning operation and how that information is
   discovered and applied is outside the scope of this document.
   
1.2.1 PCE-based Path Computation Procedure

   As highlighted, the PCE is an entity capable of computing an 
   inter-domain TE path upon receiving a request from a PCC. There could 
   be a single PCE per domain, or single PCE responsible for all 
   domains. A PCE may or may not reside on the same node as the 
   requesting PCC. A path may be computed by either a single PCE node 
   or a set of distributed PCE nodes that collaborate during path 
   computation. 
   
   [RFC4655] defines that a PCC should send a path computation request
   to a particular PCE, using [RFC5440] (PCC-to-PCE communication). 
   This negates the need to broadcast a request to all the PCEs. Each 
   PCC can maintain information about the computation capabilities
   of the PCEs, it is aware of. The PCC-PCE capability awareness can be
   configured using static configurations or by automatic and dynamic 
   PCE discovery procedures.
      
   If a network path is required, the PCC will send a path computation 
   request to the PCE. A PCE may then compute the end-to-end path
   if it is aware of the topology and TE information required to 
   compute the entire path. If the PCE is unable to compute the 
   entire path, the PCE architecture provides co-operative PCE 
   mechanisms for the resolution of path computation requests when an
   individual PCE does not have sufficient TE visibility.
   
   End-to-end path segments may be kept confidential through the 
   application of path keys, to protect partial or full path 
   information. A path key that is a token that replaces a path segment
   in an explicit route. The path key mechanism is described in 
   [RFC5520]


King, et al.                Expires January, 2020               [Page 5]

Internet-Draft           Inter-Area-AS Applicability           July 2019


1.3 Traffic Engineering Aggregation and Abstraction

   Networks are often constructed from multiple areas or ASes that are
   interconnected via multiple interconnect points. To maintain 
   network confidentiality and scalability TE properties of each area
   and AS are not generally advertized outside each specific area or AS. 

   TE aggregation or abstraction provide mechanism to hide information
   but may cause failed path setups or the selection of suboptimal 
   end-to-end paths [RFC4726]. The aggregation process may also have
   significant scaling issues for networks with many possible routes
   and multiple TE metrics. Flooding TE information breaks
   confidentiality and does not scale in the routing protocol.

   The PCE architecture and associated mechanisms provide a solution
   to avoid the use of TE aggregation and abstraction. 
   
1.4 Traffic Engineered Label Switched Paths

   This document highlights the PCE techniques and mechanisms that exist
   for establishing TE packet and optical LSPs across multiple areas 
   (inter-area TE LSP) and ASes (inter-AS TE LSP). In this context and
   within the remainder of this document, we consider all LSPs to be
   constraint-based and traffic engineered. 

   Three signaling options are defined for setting up an inter-area or 
   inter-AS LSP [RFC4726]:

    o Contiguous LSP
    o Stitched LSP 
    o Nested LSP 

   All three signaling methods are applicable to the architectures and
   procedures discussed in this document.  
   
1.5 Inter-area and Inter-AS Capable PCE Discovery

   When using a PCE-based approach for inter-area and inter-AS path
   computation, a PCE in one area or AS may need to learn information
   related to inter-AS capable PCEs located in other ASes. The PCE
   discovery mechanism defined in [RFC5088] and [RFC5089] facilitates
   the discovery of PCEs, and disclosure of information related to
   inter-area and inter-AS capable PCEs.

1.6 Objective Functions

   An Objective Function (OF) [RFC5541], or set of OFs, specifies the 
   intentions of the path computation and so defines the "optimality", 


King, et al.                Expires January, 2020               [Page 6]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   in the context of the computation request. 
   
   An OF specifies the desired outcome of a computation. An OF does not
   describe or specify the algorithm to use. Also, an implementation 
   may apply any algorithm, or set of algorithms, to achieve the result
   indicated by the OF. A number of general OFs are specified in 
   [RFC5541]. 

   Various OFs may be included in the PCE computation request to 
   satisfy the policies encoded or configured at the PCC, and a PCE 
   may be subject to policy in determining whether it meets the OFs 
   included in the computation request or applies its own OFs.

   During inter-domain path computation, the selection of a domain 
   sequence, the computation of each (per-domain) path fragment, and 
   the determination of the end-to-end path may each be subject to 
   different OFs and policy.   


2. Terminology

   This document also uses the terminology defined in [RFC4655] and 
   [RFC5440]. Additional terminology is defined below:

   ABR: IGP Area Border Router, a router that is attached to more than
   one IGP area.

   ASBR: Autonomous System Border Router, a router used to connect
   together ASes of a different or the same Service Provider via one or
   more inter-AS links.
   
   Inter-area TE LSP: A TE LSP whose path transits through two or more
   IGP areas.

   Inter-AS MPLS TE LSP: A TE LSP whose path transits through two or
   more ASes or sub-ASes (BGP confederations
   
   SRLG: Shared Risk Link Group.
   
   TED: Traffic Engineering Database, which contains the topology and
   resource information of the domain.  The TED may be fed by Interior
   Gateway Protocol (IGP) extensions or potentially by other means.


3. Issues and Considerations

3.1 Multi-homing



King, et al.                Expires January, 2020               [Page 7]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   Networks constructed from multi-areas or multi-AS environments
   may have multiple interconnect points (multi-homing). End-to-end path
   computations may need to use different interconnect points to avoid
   a single point failure disrupting both primary and backup services.
   
3.2 Destination Location

   The PCC asking for an inter-domain path computation is typically
   aware of the identity of the destination node. If the PCC is aware 
   of the destination domain, it may supply the destination domain 
   information as part of the path computation request. However, if the
   PCC does not know the destination domain this information must be 
   determined by another method.

3.3 Domain Confidentiality 

   Where the end-to-end path crosses multiple domains, it may be 
   possible that each domain (AS or area) are administered by separate
   Service Providers, it would break confidentiality rules for a PCE
   to supply a path segment to a PCE in another domain, thus disclosing
   AS-internal topology information.
   
   If confidentiality is required between domains (ASes and areas) 
   belonging to different Service Providers, then cooperating PCEs 
   cannot exchange path segments or else the receiving PCE or PCC will 
   be able to see the individual hops through another domain.
   
   This topic is discussed further in Section 8 of this document. 


4. Domain Topologies

   Constraint-based inter-domain path computation is a fundamental 
   requirement for operating traffic engineered MPLS [RFC3209] and 
   GMPLS [RFC3473] networks, in inter-area and inter-AS (multi-domain) 
   environments. Path computation across multi-domain networks is 
   complex and requires computational co-operational entities like the 
   PCE. 
   
4.1 Selecting Domain Paths
 
   Where the sequence of domains is known a priori, various techniques
   can be employed to derive an optimal multi-domain path. If the 
   domains are connected to a simple path with no branches and single
   links between all domains, or if the preferred points of 
   interconnection is also known, the Per-Domain Path Computation 
   [RFC5152] technique may be used. Where there are multiple connections
   between domains and there is no preference for the choice of points 


King, et al.                Expires January, 2020               [Page 8]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   of interconnection, BRPC [RFC5441] can be used to derive an optimal
   path.
 
   When the sequence of domains is not known in advance, or the 
   end-to-end path will have to navigate a mesh of small domains 
   (especially typical in optical networks), the optimum path may be 
   derived through the application of a Hierarchical PCE [RFC6805].   

4.2 Domain Sizes

   Very frequently network domains are composed of dozens or hundreds of
   network elements. These network elements are usually interconnected 
   in a partial-mesh fashion, to provide survivability against dual 
   failures, and to benefit from the traffic engineering capabilities 
   from MPLS and GMPLS protocols. Network operator feedback in the 
   development of the document highlighted that node degree (the number 
   of neighbors per node) typically ranges from 3 to 10 (4-5 is quite 
   common).

4.3 Domain Diversity

   Domain and path diversity may also be required when computing 
   end-to-end paths. Domain diversity should facilitate the selection
   of paths that share ingress and egress domains, but do not share 
   transit domains. Therefore, there must be a method allowing the 
   inclusion or exclusion of specific domains when computing end-to-end
   paths. 
   
4.4 Synchronized Path Computations

   In some scenarios, it would be beneficial for the operator to rely on
   the capability of the PCE to perform synchronized path computation.
   
   Synchronized path computations, known as Synchronization VECtors 
   (SVECs) are used for dependent path computations. SVECs are 
   defined in [RFC5440] and [RFC6007] provides an overview for the 
   use of the PCE SVEC list for synchronized path computations when 
   computing dependent requests.
   
   In H-PCE deployments, a child PCE will be able to request both 
   dependent and synchronized domain diverse end to end paths from its 
   parent PCE. 

4.5 Domain Inclusion or Exclusion

   A domain sequence is an ordered sequence of domains traversed to 
   reach the destination domain.  A domain sequence may be supplied 
   during path computation to guide the PCEs or derived via the use of 


King, et al.                Expires January, 2020               [Page 9]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   Hierarchical PCE (H-PCE).    

   During multi-domain path computation, a PCC may request 
   specific domains to be included or excluded in the domain sequence  
   using the Include Route Object (IRO) [RFC5440] and Exclude Route 
   Object (XRO) [RFC5521]. The use of Autonomous Number (AS) as an 
   abstract node representing a domain is defined in [RFC3209]. 
   [RFC7897] specifies new sub-objects to include or exclude domains 
   such as an IGP area or a 4-Byte AS number.
   
   An operator may also need to avoid a path that uses specified nodes 
   for administrative reasons, or if a specific connectivity 
   service required to have a 1+1 protection capability, two    
   completely disjoint paths must be established. A mechanism known as
   Shared Risk Link Group (SRLG) information may be used to ensure 
   path diversity.


5. Applicability of the PCE to Inter-area Traffic Engineering

   As networks increase in size and complexity, it may be required to 
   introduce scaling methods to reduce the amount of information 
   flooded within the network and make the network more manageable. An 
   IGP hierarchy is designed to improve IGP scalability by dividing the
   IGP domain into areas and limiting the flooding scope of topology
   information to within area boundaries. This restricts visibility of
   the area to routers in a single area. If a router needs to compute 
   the route to a destination located in another area, a method would 
   be required to compute a path across area boundaries. 
  
   In order to support multiple vendors in a network, in cases where
   data or control plane technologies cannot interoperate, it is useful 
   to divide the network into vendor domains. Each vendor domain is
   an IGP area, and the flooding scope of the topology (as well as any
   other relevant information) is limited to the area boundaries. 

   Per-domain path computation [RFC5152] exists to provide a method of 
   inter-area path computation. The per-domain solution is based on 
   loose hop routing with an Explicit Route Object (ERO) expansion on
   each Area Border Router (ABR).  This allows an LSP to be established
   using a constrained path, however at least two issues exist:

   o This method does not guarantee an optimal constrained path.

   o The method may require several crankback signaling messages, as per
     [RFC4920], increasing signaling traffic and delaying the LSP setup.

   The PCE-based architecture [RFC4655] is designed to solve inter-area


King, et al.                Expires January, 2020              [Page 10]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   path computation problems. The issue of limited topology visibility 
   is resolved by introducing path computation entities that are able to
   cooperate in order to establish LSPs with source and destinations 
   located in different areas. 

5.1. Inter-area Routing

   An inter-area TE-LSP is an LSP that transits through at least two
   IGP areas. In a multi-area network, topology visibility remains
   local to a given area for scaling and privacy purposes, a node 
   in one area will not be able to compute an end-to-end path across 
   multiple areas without the use of a PCE.
   
5.1.1. Area Inclusion and Exclusion

   The BRPC method [RFC5441] of path computation provides a more optimal
   method to specify inclusion or exclusion of an ABR. Using the BRPC 
   procedure an end-to-end path is recursively computed in reverse from
   the destination domain, towards the source domain. Using this method, 
   an operator might decide if an area must be included or excluded from 
   the inter-area path computation.  
     
5.1.2. Strict Explicit Path and Loose Path

   A strict explicit Path is defined as a set of strict hops, while a
   loose path is defined as a set of at least one loose hop and zero or
   more strict hops.  It may be useful to indicate, during the
   path computation request, if a strict explicit path is required or 
   not. An inter-area path may be strictly explicit or loose (e.g., a
   list of ABRs as loose hops). 
      
   A PCC request to a PCE does allow the indication of whether a strict 
   explicit path across specific areas ([RFC7897]) is required or 
   desired, or if the path request is loose.
   
5.1.3. Inter-Area Diverse Path Computation

   It may be necessary to compute a path that is partially or entirely
   diverse, from a previously computed path, to avoid fate sharing of
   a primary service with a corresponding backup service. There are 
   various levels of diversity in the context of an inter-area network:
   
   o Per-area diversity (intra-area path segments are link, node or
     SRLG disjoint.
         
   o Inter-area diversity (end-to-end inter-area paths are link,
     node or SRLG disjoint).



King, et al.                Expires January, 2020              [Page 11]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   Note that two paths may be disjoint in the backbone area but non-
   disjoint in peripheral areas. Also, two paths may be node disjoint
   within areas but may share ABRs, in which case path segments within
   an area is node disjoint, but end-to-end paths are not node-disjoint.
   Per-Domain [RFC5152], BRPC [RFC5441] and H-PCE [RFC6805] mechanisms 
   all support the capability to compute diverse paths across multi-area 
   topologies.


6. Applicability of the PCE to Inter-AS Traffic Engineering

   As discussed in section 4 (Applicability of the PCE to Inter-area
   Traffic Engineering) it is necessary to divide the network into
   smaller administrative domains, or ASes. If an LSR within an AS needs
   to compute a path across an AS boundary, it must also use an inter-AS
   computation technique. [RFC5152] defines mechanisms for the 
   computation of inter-domain TE LSPs using network elements along the
   signaling paths to compute per-domain constrained path segments.

   The PCE was designed to be capable of computing MPLS and GMPLS paths
   across AS boundaries. This section outlines the features of a 
   PCE-enabled solution for computing inter-AS paths.  

6.1 Inter-AS Routing

6.1.1. AS Inclusion and Exclusion

   [RFC5441] allows the specifying of inclusion or exclusion of an AS 
   or an ASBR. Using this method, an operator might decide if an AS 
   must be include or exclude from the inter-AS path computation. 
   Exclusion and/or inclusion could also be specified at any step in 
   the LSP path computation process by a PCE (within the BRPC 
   algorithm) but the best practice would be to specify them at the 
   edge. In opposition to the strict and loose path, AS inclusion or 
   exclusion doesn't impose topology disclosure as ASes are public 
   entity as well as their interconnection.

6.2 Inter-AS Bandwidth Guarantees

   Many operators with multi-AS domains will have deployed MPLS-TE 
   DiffServ either across their entire network or at the domain edges 
   on CE-PE links. In situations where strict QOS bounds are required, 
   admission control inside the network may also be required.

   When the propagation delay can be bounded, the performance targets,
   such as maximum one-way transit delay may be guaranteed by providing
   bandwidth guarantees along the DiffServ-enabled path, these 
   requirements are described in [RFC4216].


King, et al.                Expires January, 2020              [Page 12]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   One typical example of the requirements in [RFC4216] is to provide 
   bandwidth guarantees over an end-to-end path for VoIP traffic 
   classified as EF (Expedited Forwarding) class in a DiffServ-enabled 
   network. In the case where the EF path is extended across multiple 
   ASes, inter-AS bandwidth guarantee would be required.

   Another case for inter-AS bandwidth guarantee is the requirement for
   guaranteeing a certain amount of transit bandwidth across one or
   multiple ASes.

6.3 Inter-AS Recovery

   During a path computation process, a PCC request may contain the
   requirement to compute a backup LSP for protecting the primary LSP, 
   1+1 protection. A single LSP or multiple backup LSPs may also be 
   used for a group of primary LSPs, this is typically known as m:n 
   protection. 
      
   Other inter-AS recovery mechanisms include [RFC4090] which adds fast 
   re-route (FRR) protection to an LSP. So, the PCE could be used to 
   trigger computation of backup tunnels in order to protect Inter-AS 
   connectivity. 
   
   Inter-AS recovery clearly requires backup LSPs for service 
   protection but it would also be advisable to have multiple PCEs 
   deployed for path computation redundancy, especially for service 
   restoration in the event of catastrophic network failure.

6.4 Inter-AS PCE Peering Policies

   Like BGP peering policies, inter-AS PCE peering policies is a
   requirement for operator. In inter-AS BRPC process, PCE must 
   cooperate in order to compute the end-to-end LSP. So, the AS path 
   must not only follow technical constraints, e.g. bandwidth 
   availability, but also policies defined by the operator.

   Typically PCE interconnections at an AS level must follow agreed 
   contract obligations, also known as peering agreements. The PCE 
   peering policies are the result of the contract negotiation and 
   govern the relation between the different PCE.


7. Multi-domain PCE Deployment Options

7.1 Traffic Engineering Database and Synchronization

   An optimal path computation requires knowledge of the available 
   network resources, including nodes and links, constraints, 


King, et al.                Expires January, 2020              [Page 13]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   link connectivity, available bandwidth, and link costs.  The PCE 
   operates on a view of the network topology as presented by a 
   TED.  As discussed in [RFC4655] the TED used by a PCE may be learnt 
   by the relevant IGP extensions. 

   Thus, the PCE may operate its TED is by participating 
   in the IGP running in the network.  In an MPLS-TE network, this 
   would require OSPF-TE [RFC3630] or ISIS-TE [RFC5305].  In a GMPLS 
   network it would utilize the GMPLS extensions to OSPF and IS-IS 
   defined in [RFC4203] and [RFC5307]. Inter-as connectivity 
   information may be populated via [RFC5316] and [RFC5392].
 
   An alternative method to provide network topology and resource 
   information is offered by [RFC7752], which is described in the 
   following section. 

7.1.1 Applicability of BGP-LS to PCE

   The concept of exchange of TE information between Autonomous Systems
   (ASes) is discussed in [RFC7752].  The information exchanged in this
   way could be the full TE information from the AS, an aggregation of
   that information, or a representation of the potential connectivity
   across the AS.  Furthermore, that information could be updated
   frequently (for example, for every new LSP that is set up across the
   AS) or only at threshold-crossing events.

   In an H-PCE deployment, the parent PCE will require the inter-domain 
   topology and link status between child domains. This information may 
   be learnt by a BGP-LS speaker and provided to the parent PCE, 
   furthermore link-state performance including delay, available 
   bandwidth and utilized bandwidth may also be provided to the parent 
   PCE for optimal path link selection.  

7.2 Pre-Planning and Management-Based Solutions
 
   Offline path computation is performed ahead of time, before the LSP
   setup is requested.  That means that it is requested by, or performed
   as part of, an Operation Support System (OSS) management application.
   This model can be seen in Section 5.5 of [RFC4655].

   The offline model is particularly appropriate to long-lived LSPs
   (such as those present in a transport network) or for planned
   responses to network failures.  In these scenarios, more planning is
   normally a feature of LSP provisioning.

   The management system may also use a PCE and BRPC to pre-plan an AS 
   sequence, and the source domain PCE and per-domain path    
   computation to be used when the actual end-to-end path is 


King, et al.                Expires January, 2020              [Page 14]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   required. This model may also be used where the operator 
   wishes to retain full manual control of the placement of LSPs, 
   using the PCE only as a computation tool to assist the operator, 
   not as part of an automated network.
   
   In environments where operators peer with each other to provide end-
   to-end paths, the operator responsible for each domain must agree 
   to what extent paths must be pre-planned or manually controlled.


8. Domain Confidentiality

   This section discusses the techniques that co-operating PCEs
   can use to compute inter-domain paths without each domain
   disclosing sensitive internal topology information (such as
   explicit nodes or links within the domain) to the other domains.

   Confidentiality typically applies to inter-provider (inter-AS) PCE
   communication. Where the TE LSP crosses multiple domains (ASes or 
   areas), the path may be computed by multiple PCEs that cooperate 
   together. With each local PCE responsible for computing a segment 
   of the path. 
   
   In situations where ASes are administered by separate Service 
   Providers, it would break confidentiality rules for a PCE to supply
   a path segment details to a PCE responsible another domain, thus 
   disclosing AS-internal or area topology information.
   
   
8.1 Loose Hops

   A method for preserving the confidentiality of the path segment is 
   for the PCE to return a path containing a loose hop in place of the
   segment that must be kept confidential.  The concept of loose and
   strict hops for the route of a TE LSP is described in [RFC3209]. 
   
   [RFC5440] supports the use of paths with loose hops, and it is a
   local policy decision at a PCE whether it returns a full explicit
   path with strict hops or uses loose hops.  A path computation 
   request may require an explicit path with strict hops, or may allow 
   loose hops as detailed in [RFC5440].

8.2 Confidential Path Segments and Path Keys

   [RFC5520] defines the concept and mechanism of Path-Key. A Path-Key 
   is a token that replaces the path segment information in an explicit
   route. The Path-Key allows the explicit route information to be 
   encoded and in the PCEP ([RFC5440]) messages exchanged between the 


King, et al.                Expires January, 2020              [Page 15]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   PCE and PCC.
   
   This Path-Key technique allows explicit route information to be used
   for end-to-end path computation, without disclosing internal topology
   information between domains.   


9. Point-to-Multipoint

   For inter-domain point-to-multipoint application scenarios using 
   MPLS-TE LSPs, the complexity of domain sequences, domain policies, 
   choice and number of domain interconnects is magnified compared to 
   point-to-point path computations. As the size of the network 
   grows, the number of leaves and branches increase, further 
   increasing the complexity of the overall path computation problem. 
   A solution for managing point-to-multipoint path computations may 
   be achieved using the PCE inter-domain point-to-multipoint path 
   computation [RFC7334] procedure.


10. Optical Domains

   The International Telecommunications Union (ITU) defines the ASON
   architecture in [G-8080]. [G-7715] defines the routing architecture
   for ASON and introduces a hierarchical architecture. In this
   architecture, the Routing Areas (RAs) have a hierarchical
   relationship between different routing levels, which means a parent
   (or higher level) RA can contain multiple child RAs. The
   interconnectivity of the lower RAs is visible to the higher-level RA.

   In the ASON framework, a path computation request is termed a Route
   Query. This query is executed before signaling is used to establish
   an LSP termed a Switched Connection (SC) or a Soft Permanent
   Connection (SPC). [G-7715-2] defines the requirements and
   architecture for the functions performed by Routing Controllers (RC)
   during the operation of remote route queries - an RC is synonymous
   with a PCE. 
    
   In the ASON routing environment, an RC responsible for an RA may
   communicate with its neighbor RC to request the computation of an
   end-to-end path across several RAs. The path computation components
   and sequences are defined as follows:
   
   o Remote route query. An operation where a routing controller 
     communicates with another routing controller, which does not have
     the same set of layer resources, in order to compute a routing 
     path in a collaborative manner.



King, et al.                Expires January, 2020              [Page 16]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   o Route query requester. The connection controller or RC that sends a
     route query message to a routing controller requesting for one or
     more routing paths that satisfy a set of routing constraints.
   
   o Route query responder. An RC that performs path computation upon
     reception of a route query message from a routing controller or
     connection controller, sending a response back at the end of 
     computation.

   When computing an end-to-end connection, the route may be computed by
   a single RC or multiple RCs in a collaborative manner and the two
   scenarios can be considered a centralized remote route query model
   and distributed remote route query model. RCs in an ASON environment
   can also use the hierarchical PCE [RFC6805] model to match fully the 
   ASON hierarchical routing model. 
   
10.1 Abstraction and Control of TE Networks (ACTN)

   Where a single operator operates multiple TE domains (including 
   optical environments) then Abstraction and Control of TE Networks 
   (ACTN) framework [RFC8453] may be used to create an abstracted 
   (virtualized network) view of underlay interconnected domains. This 
   underlay connectivity then be exposed to higher-layer control 
   entities and applications.
   
   ACTN describes the method and procedure for coordinating the 
   underlay per-domain Physical Network Controllers (PNCs), which may 
   be PCEs, via a hierarchical model to facilitate setup of 
   end-to-end connections across inter-connected TE domains.


11. Policy

   Policy is important in the deployment of new services and the 
   operation of the network. [RFC5394] provides a framework for PCE-
   based policy-enabled path computation. This framework is based on 
   the Policy Core Information Model (PCIM) as defined in [RFC3060] and 
   further extended by [RFC3460]. 
   
   When using a PCE to compute inter-domain paths, policy may be 
   invoked by specifying: 

   o Each PCC must select which computations will be requested to a PCE;

   o Each PCC must select which PCEs it will use;

   o Each PCE must determine which PCCs are allowed to use its services
     and for what computations;


King, et al.                Expires January, 2020              [Page 17]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   o The PCE must determine how to collect the information in its TED,
     whom to trust for that information, and how to refresh/update the
     information;

   o Each PCE must determine which objective functions and which
     algorithms to apply.


12. Manageability Considerations

   General PCE management considerations are discussed in [RFC4655].    
   In the case of multi-domains within a single service provider 
   network, the management responsibility for each PCE would most 
   likely be handled by the same service provider.  In the case of 
   multiple ASes within different service provider networks, it will 
   likely be necessary for each PCE to be configured and managed   
   separately by each participating service provider, with policy 
   being implemented based on a previously agreed set of principles. 

12.1 Control of Function and Policy

   As per PCEP [RFC5440] implementation allow the user to configure
   a number of PCEP session parameters. These are detailed in section 
   8.1 of [RFC5440]. 
   
   In H-PCE deployments the administrative entity responsible for the 
   management of the parent PCEs for multi-areas would typically be a 
   single service provider. In the multiple ASes (managed by different 
   service providers), it may be necessary for a third party to manage 
   the parent PCE.

12.2  Information and Data Models

   A PCEP MIB module is defined in [RFC7420] that describes managed
   objects for modeling of PCEP communication including:

   o  PCEP client configuration and status,

   o  PCEP peer configuration and information,

   o  PCEP session configuration and information,

   o  Notifications to indicate PCEP session changes.
   
   A YANG module for PCEP has also been proposed [PCEP-YANG].
   
   An H-PCE MIB module, or YANG data model, will be required to
   report parent PCE and child PCE information, including:


King, et al.                Expires January, 2020              [Page 18]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   o  parent PCE configuration and status,

   o  child PCE configuration and information,

   o  notifications to indicate session changes between parent PCEs and
      child PCEs, and

   o  notification of parent PCE TED updates and changes. 

12.3 Liveness Detection and Monitoring

   PCEP includes a keepalive mechanism to check the liveliness of a PCEP
   peer and a notification procedure allowing a PCE to advertise its
   overloaded state to a PCC. In a multi-domain environment [RFC5886] 
   provides the procedures necessary to monitor the liveliness and 
   performances of a given PCE chain.

12.4 Verifying Correct Operation

   It is important to verify the correct operation of PCEP, [RFC5440] 
   specifies the monitoring of key parameters. These parameters are 
   detailed in [RFC5520]. 

12.5 Impact on Network Operation

   [RFC5440] states that in order to avoid any unacceptable impact on 
   network operations, a PCEP implementation should allow a limit to be 
   placed on the number of sessions that can be set up on a PCEP 
   speaker, it may also be practical to place a limit on the rate 
   of messages sent by a PCC and received my the PCE. 


13. Security Considerations

   PCEP Security considerations are discussed in [RFC5440] and [RFC6952] 
   Potential vulnerabilities include spoofing, snooping, falsification 
   and using PCEP as a mechanism for denial of service attacks. 
    
   As PCEP operates over TCP, it may make use of TCP security 
   encryption mechanisms, such as Transport Layer Security (TLS) and TCP 
   Authentication Option (TCP-AO). Usage of these security mechanisms 
   for PCEP is described in [RFC8253], and recommendations and best 
   current practices in [RFC7525].

13.1 Multi-domain Security 

   Any multi-domain operation necessarily involves the exchange of 
   information across domain boundaries.  This does represent 


King, et al.                Expires January, 2020              [Page 19]

Internet-Draft           Inter-Area-AS Applicability           July 2019


   significant security and confidentiality risk. 
   
   It is expected that PCEP is used between PCCs and PCEs belonging to 
   the same administrative authority, and using one of the 
   aforementioned encryption mechanisms. Furthermore,  PCEP allows 
   individual PCEs to maintain confidentiality of their domain path 
   information using path-keys.


14. IANA Considerations 

   This document makes no requests for IANA action.


15. Acknowledgements

   The author would like to thank Adrian Farrel for his review, and 
   Meral Shirazipour and Francisco Javier Jimenex Chico for their 
   comments.


16. References 

16.1. Normative References 

     [RFC3209] Awduche, D., Berger, L., Gan, D., Li, T., Srinivasan, V.,
               and G. Swallow, "RSVP-TE: Extensions to RSVP for LSP
               Tunnels", RFC 3209, December 2001.

     [RFC3473] Berger, L., Ed., "Generalized Multi-Protocol Label
               Switching (GMPLS) Signaling Resource ReserVation
               Protocol-Traffic Engineering (RSVP-TE) Extensions", RFC
               3473, January 2003.

     [RFC4216] Zhang, R., Ed., and J.-P. Vasseur, Ed., "MPLS Inter-
               Autonomous System (AS) Traffic Engineering (TE)
               Requirements", RFC 4216, November 2005.

     [RFC4655] Farrel, A., Vasseur, J., and J. Ash, "A Path Computation
               Element (PCE)-Based Architecture", RFC 4655, August 2006.

     [RFC4726] Farrel, A., Vasseur, J., and A. Ayyangar, "A Framework
               for Inter-Domain Multiprotocol Label Switching Traffic
               Engineering", RFC 4726, November 2006.
               
     [RFC5152] Vasseur, JP., Ayyangar, A., and R. Zhang, "A Per-Domain
               Path Computation Method for Establishing Inter-Domain
               Traffic Engineering (TE) Label Switched Paths (LSPs)",


King, et al.                Expires January, 2020              [Page 20]

Internet-Draft           Inter-Area-AS Applicability           July 2019


               RFC 5152, February 2008.

     [RFC5440] Ayyangar, A., Farrel, A., Oki, E., Atlas, A., Dolganow,
               A., Ikejiri, Y., Kumaki, K., Vasseur, J., and J. Roux,
               "Path Computation Element (PCE) Communication Protocol
               (PCEP)", RFC 5440, March 2009.

     [RFC5441] Vasseur, J.P., Ed., "A Backward Recursive PCE-based
               Computation (BRPC) procedure to compute shortest inter-
               domain Traffic Engineering Label Switched Paths", 
               RFC5441, April 2009.

     [RFC5520] Bradford, R., Ed., Vasseur, JP., and A. Farrel,
               "Preserving Topology Confidentiality in Inter-Domain Path
               Computation Using a Path-Key-Based Mechanism", RFC 5520,
               April 2009.

     [RFC5541] Le Roux, J., Vasseur, J., Lee, Y., "Encoding
               of Objective Functions in the Path Computation Element
               Communication Protocol (PCEP)", RFC5541, December 2008.

     [RFC6805] King, D. and A. Farrel, "The Application of the Path
               Computation Element Architecture to the Determination
               of a Sequence of Domains in MPLS & GMPLS", RFC6805, July 
               2010.

16.2. Informative References 

     [RFC3060] Moore, B., Ellesson, E., Strassner, J., and A.
               Westerinen, "Policy Core Information Model -- Version 1
               Specification", RFC 3060, February 2001.

     [RFC3460] Moore, B., Ed., "Policy Core Information Model (PCIM)
               Extensions", RFC 3460, January 2003.

     [RFC3630] Katz, D., Kompella, K., and D. Yeung, "Traffic
               Engineering (TE) Extensions to OSPF Version 2", RFC
               3630, September 2003.

     [RFC4090] Pan, P., Swallow, G., and A. Atlas, "Fast Reroute
               Extensions to RSVP-TE for LSP Tunnels", RFC 4090, May
               2005.

     [RFC4203] Kompella, K., Ed., and Y. Rekhter, Ed., "OSPF
               Extensions in Support of Generalized Multi-
               Protocol Label Switching (GMPLS)", RFC
               4203, October 2005.



King, et al.                Expires January, 2020              [Page 21]

Internet-Draft           Inter-Area-AS Applicability           July 2019


     [RFC4920] Farrel, A., Ed., Satyanarayana, A., Iwata, A., Fujita,
                N., and G. Ash, "Crankback Signaling Extensions for MPLS
                and GMPLS RSVP-TE", RFC 4920, July 2007.

     [RFC5088] Le Roux, JL., Vasseur, JP., Ikejiri, Y., and R. Zhang,
               "OSPF Protocol Extensions for Path Computation Element
               (PCE) Discovery", RFC 5088, January 2008.

     [RFC5089] Le Roux, JL., Ed., Vasseur, JP., Ed., Ikejiri, Y., and R.
               Zhang, "IS-IS Protocol Extensions for Path Computation
               Element (PCE) Discovery", RFC 5089, January 2008.

     [RFC5305] Li, T. and H. Smit, "IS-IS Extensions for Traffic
               Engineering", RFC 5305, October 2008.
                  
     [RFC5307] Kompella, K., Ed., and Y. Rekhter, Ed., "IS-IS
               Extensions in Support of Generalized Multi-Protocol
               Label Switching (GMPLS)", RFC 5307,
               October 2008.   

     [RFC5316] Chen, M., Zhang, R., and X. Duan, "ISIS Extensions in
               Support of Inter-Autonomous System (AS) MPLS and GMPLS
               Traffic Engineering", December 2008. 

     [RFC5392] Chen, M., Zhang, R., and X. Duan, "OSPF Extensions in
               Support of Inter-Autonomous System (AS) MPLS and GMPLS
               Traffic Engineering", RFC 5392, January 2009.

     [RFC5394] Bryskin, I., Papadimitriou, D., Berger, L., and J. Ash,
               "Policy-Enabled Path Computation Framework", RFC 5394,
               December 2008.

     [RFC5521] Oki, E., Takeda, T., and A. Farrel, "Extensions to the 
               Path Computation Element Communication Protocol (PCEP) 
               for Route Exclusions", RFC 5521, April 2009.

     [RFC5886] Vasseur, JP., Le Roux, JL., and Y. Ikejiri, "A Set of 
               Monitoring Tools for Path ComputationElement (PCE)-Based 
               Architecture", RFC 5886, June 2010.

     [RFC6007] Nishioka, I., King, D., "Use of the Synchronization 
               VECtor (SVEC) List for Synchronized Dependent Path
               Computations", RFC6007, September 2010.

     [G-8080]  ITU-T Recommendation G.8080/Y.1304, Architecture for
               the automatically switched optical network (ASON).

     [G-7715]  ITU-T Recommendation G.7715 (2002), Architecture


King, et al.                Expires January, 2020              [Page 22]

Internet-Draft           Inter-Area-AS Applicability           July 2019


               and Requirements for the Automatically Switched
               Optical Network (ASON).

     [G-7715-2] ITU-T Recommendation G.7715.2 (2007), ASON routing
               architecture and requirements for remote route query.
               
     [RFC6952] Jethanandani, M., Patel, K., and L. Zheng, "Analysis of
               BGP, LDP, PCEP, and MSDP Issues According to the Keying
               and Authentication for Routing Protocols (KARP) Design
               Guide", RFC 6952, May 2013.

     [RFC7334] Zhao, Q., Dhody, D., Ali Z.,  King, D., 
               Casellas, R., "PCE-based Computation                
               Procedure To Compute Shortest Constrained 
               P2MP Inter-domain Traffic Engineering Label Switched 
               Paths", August 2014.
               
     [RFC7420] Stephan, E., Koushik, K., Zhao, Q., King, D., "PCE
               Communication Protocol (PCEP) Management Information
               Base", December 2014.

     [RFC7525] Sheffer, Y., Holz, R., and P. Saint-Andre,
               "Recommendations for Secure Use of Transport Layer
               Security (TLS) and Datagram Transport Layer Security
               (DTLS)", BCP 195, RFC 7525, May 2015.

     [RFC7752] Gredler, H., Medved, J., Previdi, S., Farrel, A., and
               S. Ray, "North-Bound Distribution of Link-State and TE
               Information using BGP", March 2016.
               
     [RFC7897] Dhody, D., Palle, U., and R. Casellas, "Domain Subobjects
               for the Path Computation Element Communication Protocol
               (PCEP)", June 2016. 
               
     [RFC8253] Lopez, D., Gonzalez de Dios, O., Wu, Q., and D. Dhody,
               "PCEPS: Usage of TLS to Provide a Secure Transport for 
               the Path Computation Element Communication Protocol 
               (PCEP)", RFC 8253, October 2017.
               
     [RFC8453] Ceccarelli, D., Lee, Y. et al., "Framework for 
               Abstraction and Control of TE Networks (ACTN)", RFC8453, 
               August 2018.

   [PCEP-YANG] Dhody, D., Hardwick, J., Beeram, V., and J. Tantsura, "A
               YANG Data Model for Path Computation Element             
               Communications Protocol (PCEP)", work in progress, 
               October 2018.



King, et al.                Expires January, 2020              [Page 23]

Internet-Draft           Inter-Area-AS Applicability           July 2019


17. Contributors

   Dhruv Dhody
   Huawei Technologies
   Divyashree Techno Park, Whitefield
   Bangalore, Karnataka  560066
   India

   Email: dhruv.ietf@gmail.com   

   Quintin Zhao
   Huawei Technology
   125 Nagog Technology Park
   Acton, MA  01719
   US
   
   Email: qzhao@huawei.com

   Julien Meuric
   France Telecom
   2, avenue Pierre-Marzin
   22307 Lannion Cedex
   
   Email: julien.meuric@orange-ftgroup.com

   Olivier Dugeon
   France Telecom
   2, avenue Pierre-Marzin
   22307 Lannion Cedex
   
   Email: olivier.dugeon@orange-ftgroup.com
   
   Jon Hardwick
   Metaswitch Networks
   100 Church Street
   Enfield, Middlesex
   United Kingdom

   Email: jonathan.hardwick@metaswitch.com

   Oscar Gonzalez de Dios  
   Telefonica I+D
   Emilio Vargas 6, Madrid
   Spain
   
   Email: ogondio@tid.es
   



King, et al.                Expires January, 2020              [Page 24]

Internet-Draft           Inter-Area-AS Applicability           July 2019


18. Author's Addresses 

   Daniel King
   Old Dog Consulting
   UK
   
   Email: daniel@olddog.co.uk

   Haomian Zheng
   Huawei Technologies
   F3 R&D Center, Huawei Industrial Base, Bantian, Longgang District
   Shenzhen, Guangdong  518129
   P.R.China

   Email: zhenghaomian@huawei.com



































King, et al.                Expires January, 2020              [Page 25]