CATS X. Liu Internet-Draft R. Yang Intended status: Informational Y. Zhang Expires: 6 May 2026 Pengcheng Laboratory D. Ma ZDNS 2 November 2025 DNS-based Service Discovery for Computing-Aware Traffic Steering (CATS) draft-liu-cats-dns-service-discovery-01 Abstract This document specifies how DNS-based Service Discovery (DNS-SD) can be used as a discovery and resolving method for mapping service identifiers to specific addresses within the CATS framework. It details extensions to DNS-SD to support CATS-specific service discovery requirements and describes how the discovery mechanism integrates with other components of the CATS architecture to enable compuating-aware traffic steering. Status of This Memo This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet- Drafts is at https://datatracker.ietf.org/drafts/current/. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." This Internet-Draft will expire on 6 May 2026. Copyright Notice Copyright (c) 2025 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/ license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights Liu, et al. Expires 6 May 2026 [Page 1] Internet-Draft DNS-based Service Discovery for Computin November 2025 and restrictions with respect to this document. Code Components extracted from this document must include Revised BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Revised BSD License. Table of Contents 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . 2 2. Requirements Language . . . . . . . . . . . . . . . . . . . . 3 3. Terminology . . . . . . . . . . . . . . . . . . . . . . . . . 3 4. Service Instance Names for CATS . . . . . . . . . . . . . . . 3 4.1. Service Names . . . . . . . . . . . . . . . . . . . . . . 4 4.2. Service Instance Names . . . . . . . . . . . . . . . . . 4 4.3. Service Parameters and CATSPARAM Records . . . . . . . . 5 4.4. SRV Records for Service Location . . . . . . . . . . . . 6 5. Integration with CATS Framework . . . . . . . . . . . . . . . 6 5.1. Relationship with CATS Control Plane . . . . . . . . . . 6 5.2. Service Parameter Advertising . . . . . . . . . . . . . . 7 5.3. Dynamic Updates . . . . . . . . . . . . . . . . . . . . . 7 6. Service Discovery Process and Protocol Flow . . . . . . . . . 7 6.1. Registration Phase . . . . . . . . . . . . . . . . . . . 9 6.2. Discovery Phase . . . . . . . . . . . . . . . . . . . . . 9 6.3. Selection and Resolution Phase . . . . . . . . . . . . . 9 6.4. Deregistration Phase . . . . . . . . . . . . . . . . . . 10 7. Implementation Considerations . . . . . . . . . . . . . . . . 10 7.1. Multicast DNS Considerations . . . . . . . . . . . . . . 10 7.2. DNS-SD/DNS Integration . . . . . . . . . . . . . . . . . 11 7.3. Performance Considerations . . . . . . . . . . . . . . . 11 8. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 11 9. Security Considerations . . . . . . . . . . . . . . . . . . . 11 10. References . . . . . . . . . . . . . . . . . . . . . . . . . 12 10.1. Normative References . . . . . . . . . . . . . . . . . . 12 10.2. Informative References . . . . . . . . . . . . . . . . . 12 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 13 1. Introduction The Computing-Aware Traffic Steering (CATS) framework [I-D.draft-ietf-cats-framework-07] is designed to enable traffic steering that takes into account both network conditions and computing resource availability. A key requirement of this framework is providing a discovery and resolving method for the mapping of a service identifier to a speficic address [I-D.draft-ietf-cats-usecases-requirements-06]. where computing resources are available. Liu, et al. Expires 6 May 2026 [Page 2] Internet-Draft DNS-based Service Discovery for Computin November 2025 This document specifies how DNS-based Service Discovery (DNS-SD) [RFC6763] can be extended and used to fulfull this requirement within the CATS framework. DNS-SD provides a standardized mechanism for service discovery using existing DNS infrastructure, making it well- suited for integration with the CATS architecture. The approach outlined in this document enables: * Publishing of computing service availability through DNS-SD * Discovery of appropriate CATS service instances based on service and resource requirements * Resolution of CATS service identifiers to specific network addresses. * Advertisement of CATS service capabilities and parameters using a dedicated, strucutured Resource Record. * Dynamic and secure updates of service availability and characteristics. This document describes the necessary extensions to DNS-SD to support CATS-specific parameters and how the discovery mechanism integrates with other components of the CATS framework. 2. Requirements Language The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in BCP 14 [RFC2119] [RFC8174] when, and only when, they appear in all capitals, as shown here. 3. Terminology This document uses the terms defined in [RFC6763] and [I-D.draft-ietf-cats-framework-07]. 4. Service Instance Names for CATS CATS service instances MUST be identified using DNS-SD service instance name following the format defined in RFC 6763 [RFC6763]: Service Instance Name = .. where Liu, et al. Expires 6 May 2026 [Page 3] Internet-Draft DNS-based Service Discovery for Computin November 2025 * the portion is a user-friendly name for the instance * the portion indicates the name of a specific type of service * the portion indicates the domain name where the service registered 4.1. Service Names As defined in RFC 6763 [RFC6763], the portion of a Service Instance Name consists of a pair of DNS labels _._ where _ is a symbolic name of the desired service, and _ is the symbolic name of the desired transport protocol. For services using TCP, the second label is "_", and for services using any transort protocol than TCP, the second label is _ This document defines the following primary types of service for CATS services: * _cats-inference._tcp (for ML inference services) * _cats-storage._tcp (for storage services) * _cats-computing._tcp (for general computing services) 4.2. Service Instance Names Service instance names in CATS follow the DNS-SD convention: .service-name._tcp. Where: * is a user-friendly name for the service instance * is the DNS domain in which the service is registered For example: edge-inference-1._cats-inference._tcp.example.com Liu, et al. Expires 6 May 2026 [Page 4] Internet-Draft DNS-based Service Discovery for Computin November 2025 The instance name SHOULD be unique within the domain to avoid conflicts. 4.3. Service Parameters and CATSPARAM Records In RFC RFC 6763 [RFC6763] requires that every DNS-SD service MUST have a TXT record in additon to its SRV record, with the same name, even if the service has no addtional data to store and the TXT record contains no more than a single zero Byte. However, it is widely recognized that using TXT records will introduce security issues such as being abused by malwares. To avoid the security and parsing issues associated with TXT records, this document defines a new DNS Resource Record type, CATSPARAM, for advertising CATS services parameters. The CATSPARAM RR is associated with a service instance name and contains a structured set of key-value paers representing the service instance's capabilities and state. The RDATA for a CATSPARAM record consists of a series of parameters blocks. Each block is a key = value pair, represented as a length- prefix string. This format allows for extensibility while maintaining a clear structure. The following parameters are defined: * "cpu": CPU capacity in normalized units (integer) * "mem": Memory capacity in MB (integer) * "lat": Expected processing latency in milliseconds (float) * "load": Current load level (0-100) as a percentage (integer) * "gpu": GPU availability and type (string) * "accel": Other accelerator availability and type (string) * "vers": Service version (string) * "caps": Capabilities as a comma-separated list (string) * "prio": Priority tier (integer, lower values indicate higher priority) * "cost": Relative cost metric (integer) * "avail": Availability status (0=offline, 1=online, 2=degraded) Liu, et al. Expires 6 May 2026 [Page 5] Internet-Draft DNS-based Service Discovery for Computin November 2025 4.4. SRV Records for Service Location For each service instance, an SRV record MUST be published according to RFC 2782 to enable clients to locate the service. The SRV record format for CATS services instance is: ._cats._tcp. IN SRV Where: * represents the priority of the target host (lower values indicate higher priority) * is used for load balancing among targets with the same priority * is the TCP port where the service is available * is the hostname of the machine providing the service For example: edge-inference-1._cats._tcp.example.com. SRV 0 5 8080 compute1.example.com. 5. Integration with CATS Framework 5.1. Relationship with CATS Control Plane The DNS-SD discovery mechanism integrates with the CATS control plane in the following ways: * The CATS control plane MAY act as a discovery client, querying for available computing services and maintaining a database of available resources. * The CATS control plane MAY facilitate service registration by providing interfaces and automation for DNS record management. * The CATS control plane MAY implement advanced selection algorithms that consider both the parameters advertised via DNS-SD and additional network and computing metrics. * For centralized deployments, the CATS control plane MAY provide a proxy service that mediates between clients and the DNS-SD infrastructure. Liu, et al. Expires 6 May 2026 [Page 6] Internet-Draft DNS-based Service Discovery for Computin November 2025 5.2. Service Parameter Advertising Service parameters advertised through DNS-SD TXT records provide inputs to the CATS framework's decision-making process for traffic steering. The computing service MUST ensure that advertised parameters accurately reflect the current state and capabilities of the computing resource. Parameters SHOULD be updated when significant changes in resource availability or characteristics occur. The CATS control plane MAY augment the DNS-SD parameters with additional information from other sources when making steering decisions. 5.3. Dynamic Updates Computing services MUST update their DNS-SD records when significant changes in availability or capabilities occur. These updates can be performed through: * Standard DNS Dynamic Update mechanisms [RFC2136] * DNS Update Leases [RFC7553] for time-limited registrations * Multicast DNS (mDNS) for local network scenarios The frequency of updates SHOULD be balanced to reflect accurate information while avoiding excessive DNS traffic. Services SHOULD implement a dampening mechanism to avoid frequent updates for minor or transient changes. For highly dynamic parameters like current load, services MAY implement a threshold-based update policy, only updating the DNS records when the parameter crosses predefined thresholds. 6. Service Discovery Process and Protocol Flow The DNS-SD for CATS protocol flow can be shown in the following figure. +----------+ +---------+ +---------+ +---------+ | CATS | | DNS | | CATS | | CATS | | Service | | | | C-SMA | | Client | +----------+ +---------+ +---------+ +---------+ | | | | | | | | Phase 1: Registration | | | Liu, et al. Expires 6 May 2026 [Page 7] Internet-Draft DNS-based Service Discovery for Computin November 2025 | | | | | 1. DNS_UPDATE(PTR, SRV, TXT records)| | |----------------->| | | | | | | | 2. UPDATE_ RESPONSE(success) | | |<-----------------| | | | | | | | 3. CATS_REGESTER(svc_name, instance_name, | domain, host, port, params) | | |------------------------------------>| | | | | | | 4. CATS_REGISTER_RESPONSE(success) | | |<------------------------------------| | | | | | Phase 2: Discovery | | | | | | | | | 5. DNS_QUERY(type=PTR,svc_name) | | |<--------------------------------------| | | | | | | 6. DNS_RESPONSE(instance names) | | |-------------------------------------->| | | | | | | 7. DNS_QUERY(type=SRV+CATSPARAM,| | | instance name) | | |<--------------------------------------| | | | | | |8. DNS_RESPONSE(host, port, parameters)| | |-------------------------------------->| | | | | Phase 3: Selection and resolution | | | | | | | | 9. SERVICE_REQUEST(service type,| | | requirements)| | | |<-------------------| | | | | | | 10. SERVICE_SELECTED(hosts,port)| | | |------------------->| | | | | | | 11. DNS_LOOKUP(host) | | |<--------------------------------------| | | | | | | 12. DNS_RESPONSE(IP address) | | |-------------------------------------->| | | | | 13. CONNECT(IP address, port) | |<-------------------------------------------------------->| | Liu, et al. Expires 6 May 2026 [Page 8] Internet-Draft DNS-based Service Discovery for Computin November 2025 6.1. Registration Phase Registration can be performed using authenticated DNS update mechanisms [RFC2136] or Dynamic DNS update protocols. For each CATS service: 1. Create a PTR record pointing from the service type to the service instance name 2. Create an SRV record specifying the host and port for the service 3. Create a CATSPARAM record containing the CATS-specific parameters 4. Send a DNS_UPDATE message to the DNS server to add or update these records to the zone file. 5. Register to the C-SMA with service name, instance name and parameters. The DNS_UPDATE message MUST be authenticated using TSIG or SIG(0) as described in Section 9. To prevent name collision, the update transaction SHOUDLD use preconditions. For a new service, the update MUST assert that the PTR, SRV and CATSPARAM record names do not already exist (NXDOMAIN precondition). The CATS control plane MAY facilitate this registration process through an appropriate management interface. 6.2. Discovery Phase Clients requesting CATS services initiate the discovery process by querying for PTR records matching the appropriate service type. For example: _cats-inference._tcp. The response includes the list of matching service instance names. The client then queries for the SRV and CATSPARAM records associated with each service instance to obtain location information and service parameters. 6.3. Selection and Resolution Phase After obtaining the list of available services and their parameters, the client or the CATS control plane performs service selection based on the application requirements and the advertised parameters. Liu, et al. Expires 6 May 2026 [Page 9] Internet-Draft DNS-based Service Discovery for Computin November 2025 The selection process MAY consider: * resource capabilities (CPU, memory, GPU, etc.) * Current load and availability * Expected latency and performance metrics * Priority and cost considerations * Specific capabilities required by the application Once a suitable service is selected, the client resolves the hostname from the SRV record to an IP address using standard DNS A or AAAA queries, and establishes a connection to the service using the specified port. 6.4. Deregistration Phase When a service instance is terminated or becomes permanenetly unavailable, is MUST be deregistered. This ensures the clients no longer discover ot attempt to connect to the unavailable services. The deregistration is performed by sending an authenticated DNS_UPDATE message that deletes all records associated with the dervice isntance (PTR, SRV, and CATSPARAM). The delete request MUST be authenticated with the same credentials used for registration to prove ownership. 7. Implementation Considerations 7.1. Multicast DNS Considerations In local network environments, Multicast DNS (mDNS) [RFC6762] MAY be used in conjunction with DNS-SD to provide service discovery without requiring a centralized DNS server. When using mDNS, CATS services SHOULD: * Respond to mDNS queries for their service type * Advertise their presence periodically as specified in RFC 6762 * Implement proper conflict resolution mechanisms * Consider the scope and scale of the deployment, as mDNS is primarily designed for local network use Liu, et al. Expires 6 May 2026 [Page 10] Internet-Draft DNS-based Service Discovery for Computin November 2025 7.2. DNS-SD/DNS Integration For larger-scale deployments across multiple networks, traditional unicast DNS infrastructure is RECOMMENDED. In these scenarios: * CATS services SHOULD be registered in appropriate DNS zones * DNS infrastructure SHOULD support DNS Dynamic Updates * DNS servers SHOULD be configured to allow updates from authorized CATS components * Consider using DNS Update Leases for time-limited registrations * Implement appropriate caching policies for DNS records 7.3. Performance Considerations Implementers SHOULD consider the following performance aspects: * DNS query volume: In large deployments with many clients, implement appropriate caching and consolidation of discovery requests. * Update frequency: Balance the need for accurate information with the overhead of frequent DNS updates. * Scalability: For very large deployments, consider hierarchical discovery approaches or specialized discovery proxies. 8. IANA Considerations This memo includes no request to IANA. 9. Security Considerations The use of DNS-SD for CATS service discovery introduces several security considerations: * Authentication: DNS updates for service registration SHOULD be authenticated to prevent unauthorized registration of services. DNS Security Extensions (DNSSEC) [RFC4033] SHOULD be implemented to provide authentication of DNS data. * Information disclosure: Service parameters may reveal sensitive information about computing capabilities and deployment details. Consider the privacy implications of the parameters being advertised. Liu, et al. Expires 6 May 2026 [Page 11] Internet-Draft DNS-based Service Discovery for Computin November 2025 * Denial of Service: Large-scale DNS-SD queries could potentially be used for denial-of-service attacks. Implement rate limiting and monitoring for unusual query patterns. * Spoofing: Without DNSSEC, DNS responses could potentially be spoofed, leading to service misdirection. DNSSEC validation SHOULD be enabled for DNS-SD queries. * Data integrity: Ensure that computing parameter updates go through proper validation to prevent advertising incorrect capabilities, which could lead to suboptimal traffic steering decisions. 10. References 10.1. Normative References [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, DOI 10.17487/RFC2119, March 1997, . [RFC8174] Leiba, B., "Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words", BCP 14, RFC 8174, DOI 10.17487/RFC8174, May 2017, . 10.2. Informative References [RFC4033] Arends, R., Austein, R., Larson, M., Massey, D., and S. Rose, "DNS Security Introduction and Requirements", March 2005. [RFC6762] Cheshire, S. and M. Krochmal, "Multicast DNS", February 2013. [RFC6763] Cheshire, S. and M. Krochmal, "DNS-Based Service Discovery", February 2013. [RFC7553] Faltstrom, P. and O. Kolkman, "The Uniform Resource Identifier (URI) DNS Resource Record", June 2015. [RFC2136] Vixie, P., Thomson, S., Rekhter, Y., and J. Bound, "Dynamic Updates in the Domain Name System (DNS UPDATE)", April 1997. [I-D.draft-ietf-cats-framework-07] Li, C., Du, Z., Boucadair, M., Contreras, L. M., and J. Drake, "A Framework for Computing-Aware Traffic Steering (CATS)", April 2025. Liu, et al. Expires 6 May 2026 [Page 12] Internet-Draft DNS-based Service Discovery for Computin November 2025 [I-D.draft-ietf-cats-usecases-requirements-06] Yao, K., Contreras, L. M., Shi, H., Zhang, S., and Q. An, "Computing-Aware Traffic Steering (CATS) Problem Statement, Use Cases, and Requirements", February 2025. Authors' Addresses Xiang Liu Pengcheng Laboratory No.2 Xingke 1 Street Shenzhen 518055 China Email: liux15@pcl.ac.cn Rongwei Yang Pengcheng Laboratory No.2 Xingke 1 Street Shenzhen 518055 China Email: yangrw@pcl.ac.cn Yu Zhang Pengcheng Laboratory No.2 Xingke 1 Street Shenzhen 518055 China Email: zhangy08@pcl.ac.cn Di Ma ZDNS Email: madi@zdns.cn Liu, et al. Expires 6 May 2026 [Page 13]