CDNI Logging Extensions

Introduction

The CDNI Logging Interface defines requirements for the exchange of log data between CDN participants, including a Logging Reference Model, a Logging File Structure, and Logging Records, along with an Atom-based index for retrieving the generated log files. This specification expands on the functionality defined in the CDNI Logging Interface to provide clear definitions and an expanded set of log record fields, additional mechanisms for transporting logs, new log container formats, log archive files, logging metadata sidecar files, new log record formats, configured inclusion of OPTIONAL request and response header fields, and methods for advertising and configuring transformations of individual log fields. In the future, this specification will be expanded to cover other CDN component logs (e.g., request router), custom log container formats, and log record formats, as well as uCDN-controlled configuration for aggregation, filtering, and sampling of log records. The following subsections summarize the importance of logging in the context of content acquisition and its delivery by surrogates on behalf of the CDN.

Log Generation As described in section 2.2.1 of the CDNI Logging Interface , logging is generated by the downstream CDN (dCDN), which applies to the OCS in this context, to record all significant task completions, events, and failures. It is expected that all devices acting as caching nodes SHALL generate logging information, including devices performing request routing and other control functions. It is to be noted that this does not preclude open caching nodes (OCNs) from generating and reporting transactions that are in progress and not fully completed, such as progressive downloads that may run for a longer duration and are therefore considered good candidates for partial reporting prior to fully completing a transaction. The individual implementations are, however, expected to make a determination as to when it is appropriate to generate reports for partial transactions.

Log Retention The OCN SHALL retain logs for a specified duration. The specific duration is up to individual implementations to determine. Presumably, in the absence of logs being uploaded to or acquired by the CDN, it is possible the size of logging information would grow exponentially, therefore, it is also RECOMMENDED to define a shorter duration for upload/acquisition, such as a period of a few hours.

Log Record Sampling To manage the volume of logging data, a dCDN MAY support sampling of log records. When supported, a uCDN can configure a sampling strategy using metadata objects to reduce the number of generated log records while retaining a representative subset of data. Additionally, the dCDN can apply sampling to pull-only logging sources. The dCDN advertises its sampling capabilities via properties on advertisement interface capability objects.

Accounting Logging information is essential for accounting. The logging information provided by the OCS enables the CDNs to compute the total amount of traffic delivered by every OCN for a given content service provider (CSP), as well allow the CDNs to determine associated bandwidth usage (peak or percentile) and key performance indicators, such as maximum (or minimum) number of simultaneous sessions over a given period of time.

Analytics And Reporting The goals of analytics include gathering all relevant information in order to be able to develop statistics on content download, analyze user behavior, and monitor the performance and quality of content delivery. For instance, logging information enables CDN providers to report on content consumption (e.g., delivered sessions per content) in a specific geographic area. The goal of reporting is to gather all relevant information to monitor the performance and quality of content delivery, and allow detection of delivery issues. For instance, reporting could track the average delivery throughput experienced by end users in a given region for a specific CSP or content set over a period of time.

Content Protection The goal of content protection is to monitor and prevent unauthorized access, misuse, modification, and denial of access to content. A set of information is logged in a CDN (by an OCN) for security purposes. In particular, a record of access to content is usually collected to permit the CSP to detect infringements of content delivery policies and other abnormal end-user behaviors.

Private Data Protection As described in section 10.4, the goal of logging transforms is to modify the outputs of fields that may include private information to comply with the confidentiality requirements of both the uCDCN and dCDN. The uCDN configurations are bundled within the transport configuration to support configurations that may be specific to the jurisdictions of individual reporting endpoints and service footprints. Additionally, the dCDN can advertise field transformations that have been applied in the footprint and capabilities interface.

The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in .

Container File Formats For non-streaming logging formats, the container/file format describes the structure of the file that contains the individual log records. The following container/file formats are supported:

CDNI Logging File described in section 3 of , inspired by W3C Extended Log File Format (cdni_v1)
JSON (json_v1)
Newline delimited records:
- \n (linefeed_v1)
- \n\r (carriage_return_v1)
Compressed Archive containers (tar.gz) that support inclusion of multiple files in other container formats (tar_v1)
protobuf containers, according to the record types definitions in section 10.

JSON The JSON container/file format consists of a single root object with file metadata, fields common to all records, and an array of log records. Where the JSON format MUST be referenced from other configurations (e.g., in the container-format property of MI.LoggingTransport), it MAY be referred to by the string: "json_v1" Property: shortname

Description: A unique identifier for the dCDN.
Type: String
Mandatory-to-Specify: No

Property: timestamp-start-ns

Description: The starting timestamp for the time range for which the log file was generated. This can be earlier than the timestamp of the file's first log record.
Type: Integer time in nanoseconds since Unix epoch
Mandatory-to-Specify: No

Property: timestamp-start-iso8601

Description: The starting timestamp for the time range for which the log file was generated. This can be earlier than the timestamp of the file's first log record.
Type: ISO-8601-1:2019
Mandatory-to-Specify: No

Property: timestamp-end-ns

Description: The ending timestamp for the time range for which the log file was generated. This can be later than the timestamp of the file's last log record.
Type: Integer time in nanoseconds since Unix epoch
Mandatory-to-Specify: No

Property: timestamp-end-iso8601

Description: The ending timestamp for the time range for which the log file was generated. This can be later than the timestamp of the file's last log record.
Type: ISO-8601-1:2019
Mandatory-to-Specify: No

Property: account-id

Description: Account ID as defined by the account-id property of MI.LoggingMetadata.
Type: String
Mandatory-to-Specify: No

Property: metadata

Description: Metadata associated with configuration of the logging records, e.g., associated record-type.
Type: Object. Valid properties:
- record-type: String. The record type string defining the format of included logging records. See section 6.
- transforms: Object. The MI.LoggingTransforms object applied to the record set. See section 7.4.
- secret-stores: Array. Any MI.SecretStore objects referenced from MI.LoggingTransforms.
- include-headers: Array. Any optionally included request or response header fields. See section 7.1.
Mandatory-to-Specify: Yes

Property: records

Description: The log records consisting of an array wherein all properties are valid log record fields as described in Section 5.
Type: Array of objects
Mandatory-to-Specify: Yes

The following is an example of the JSON container format:

JSON Metadata Sidecar A metadata sidecar file MAY be used as a companion to other record container files, allowing detailed metadata as specified in the JSON container format. Metadata sidecars are identical to the full JSON container format except that the records property is NOT included. Sidecar files are identified by a file naming convention; the corresponding sidecar for a particular log file has the same name as the log file with an appended suffix of ".metadata.json". For example, a log file named "2023-01-01-12_00_00-region1.csv" would have a corresponding metadata sidecar file named "2023-01-01_12_00_00-region1.csv.metadata.json". dCDN support for metadata sidecars is indicated with the allow-metadata-sidecar property of FCI.LoggingPush Use of metadata sidecars for a particular configuration is indicated by the include-metadata-sidecar boolean property in MI.LoggingTransport and FCI.LoggingPullTransport See section 7.3 and section 8.3

Newline Delimited Records A newline delimited container consists of individual log records separated by a linefeed (UNIX) or linefeed plus carriage return (Windows). The format of the log records is specified independently of the record delimiter.

format-type	Description
linefeed_v1	Log records separated by linefeed (\n).
carriage_return_v1	Log records separated by linefeed, carriage return (\n\r).

The following is an example of the Newline Delimited container format:

Archive Containers File-based transport modes MAY bundle a set of log files together in a gzipped tar archive. When utilizing tar_v1 as the container-type, the properties of the MI.LoggingContainerMetadata object refer to the generation of the archive file, and the archive-metadata property of that object contains another MI.LoggingContainerMetadata object that specifies the configuration for the individual files within that archive. For example, if the archive container is specified with an interval of 86400, and the inner archive-metadata has an interval of 3600, a tar.gz archive will be produced once a day containing 24 individual log files, each containing one hour of log records.

Protobuf Containers Each log MAY be serialized using protobuf protocol buffers. This document provides the protobuf definition languages (.proto files) for different record types in Appendix section 10.1

Record Fields The following table describes the log record fields that are included in each of the standard log record formats. Y - Yes, N - No, O - Optional.

Field	Minimal	Standard	Extended
timestamp-ns	Y	Y	Y
timestamp-iso8601	N	N	Y
s-time-total-ms	N	Y	Y
c-groupid	N	N	Y
cs-method	N	N	Y
cs-version	N	N	Y
cs-uri	Y	Y	Y
cs-uri-transformed	N	N	Y
sc-status	Y	Y	Y
sc-total-bytes	Y	Y	Y
s-ccid	Y	Y	Y
s-sid	N	Y	Y
s-cached	N	Y	Y
cs-hdr-Referer	N	N	Y
cs-hdr-Range	N	N	Y
cs-hdr-User-Agent	N	Y	Y
sc-hdr-Content-Type	N	N	Y
sc-header-size-bytes	N	N	Y
c-ip	N	Y	Y
s-shortname	N	Y	Y
s-id	N	N	Y
s-time-first-ms	N	N	Y
s-sdur-ms	N	N	Y
s-time-upstream-ms	N	N	Y
s-upstream-header-size-bytes	Y	Y	Y
s-upstream-total-bytes	Y	Y	Y
s-upstream-status	N	N	Y
s-upstream-ip	N	N	Y
sc-hdr-, cs-hdr-	O	O	O

Fields

timestamp-ns

Description: The timestamp of the first byte read by the OCN application to a best effort of accuracy.
Format: Integer time in nanoseconds since Unix epoch
Record Types: Minimal, Standard, Extended

timestamp-iso8601

Description: The timestamp of the first byte read by the OCN application to a best effort of accuracy. It is RECOMMENDED that timestamps use Coordinated Universal Time (UTC).
Format: Time in ISO-8601/RFC3339 format, milliseconds OPTIONAL (e.g., 1985-04-12T23:20:50.52Z)
Record Types: Extended

s-time-total-ms

Description: The elapsed time between reading the first byte of the request and sending the last byte of the response to a best effort of accuracy.
Format: Duration, in milliseconds
Record Types: Standard, Extended

c-groupid

Description: An opaque identifier for an aggregate set of clients, derived from the client IPv4 or IPv6 address in the request received by the surrogate and/or other network-level identifying information. See section 3.4.1.
Format: String
Record Types: Minimal, Standard, Extended

cs-method

Description: The HTTP request method.
Format: String
Record Types: Extended

cs-version

Description: The protocol version (e.g., HTTP/1.1).
Format: String
Record Types: Extended

cs-uri

Description: Request URI prior to any transformation from MI.ProcessingStages. It is RECOMMENDED to limit the maximum length of this field with an applied MI.LoggingTransformTruncate, allowing at least 2,048 bytes.
Format: String
Record Types: Minimal, Standard, Extended

cs-uri-transformed

Description: Full request URI, including query parameters. If this field is identical to cs-uri, the field SHOULD be truncated to an empty string.
Format: String
Record Types: Extended

sc-status

Description: The response status code.
Format: String, 3 digit status code
Record Types: Minimal, Standard, Extended

sc-total-bytes

Description: The response size total bytes, including headers.
Format: Integer
Record Types: Minimal, Standard, Extended

s-ccid (ccid)

Description: The ccid assigned via MI.Grouping or MI.GroupingExtended configuration. For backward compatibility, s-ccid is aliased to ccid, and either identifier may be used to refer to this field.
Format: String
Record Types: Minimal, Standard, Extended

s-sid

Description: The Session ID assigned by the dCDN. This can be derived from Common Media Client Data (CMCD) or another mechanism, but it is defined by the dCDN, and uCDN allocated session identifiers are outside the scope of this field.
Format: String
Record Types: Standard, Extended

s-cached

Description: Indicates a cache hit or cache miss. For this field, a cache hit is defined as a request that does not result in content retrieval from the upstream source.
Format: Boolean; a value of "True" indicates a cache hit.
Record Types: Standard, Extended

s-upstream-status

Description: The response status code returned by the upstream source in the event of a cache miss.
Format: String, 3 digit status code
Record Types: Extended

cs-hdr-*

Description: The request headers as available from the dCDN and specified in FCI.Logging In the standard record type, only the cs-hdr-User-Agent header is included, if available. The extended record type additionally includes cs-hdr-Range and cs-hdr-Referer See the Record Fields Table for reference.
Format: String or null if the field does not exist (or is not supported by record encoding)
- Special care needs to be taken while composing the value of these fields as the requested HTTP header name MAY be present multiple times in the request. When such cases are encountered, implementations are expected to follow the semantics defined for combining HTTP field values in sections 5.2 and 5.3, in order to compose the final value to be logged for this field in the record.
Record Types: Standard, Extended

sc-hdr-*

Description: The response headers as available from the dCDN and specified in FCI.Logging In the extended type, sc-hdr-Content-Type is always included. See the Record Fields Table for reference.
Format: String or null if the field does not exist (or is not supported by record encoding)
- Special care needs to be taken while composing the value of these fields as the requested HTTP header name MAY be present multiple times in the response. When such cases are encountered, implementations are expected to follow the semantics defined for combining HTTP field values in sections 5.2 and 5.3, in order to compose the final value to be logged for this field in the record.
Record Types: Standard, Extended

sc-header-size-bytes

Description: The response header size bytes.
Format: Integer
Record Types: Extended

c-ip

Description: The client IP address.
Format: String
Record Types: Standard, Extended

s-shortname

Description: A short name for the dCDN intended to be used as an identifier, e.g. in log records. Example: "CDN Example Company" might have s-shortname of "cdn-ec".
Format: String
Record Types: Standard, Extended

s-id

Description: The server instance ID assigned by the dCDN. This value SHOULD be unique to a particular instance.
Format: String
Record Types: Extended

s-time-first-ms

Description: The elapsed time from the first request byte read until the first response byte sent.
Format: Integer duration, in milliseconds
Record Types: Extended

s-sdur-ms

Description: The session duration as determined by the dCDN.
Format: Integer duration, in milliseconds
Record Types: Extended

s-time-upstream-ms

Description: The time spent accessing the upstream source. The value of this field is a "best effort". If there are intermediate cache layers, it is understood that this value may not accurately reflect the complete upstream picture.
Format: Integer duration, in milliseconds. If no upstream is accessed, the duration is 0.
Record Types: Extended

s-upstream-header-size-bytes

Description: Content header length from the upstream source. The value of this field is a "best effort". If there are intermediate cache layers, it is understood that this value may not accurately reflect the complete upstream picture.
Format: Integer, size in bytes. If no upstream is accessed, the size is 0.
Record Types: Minimal, Standard, Extended

s-upstream-total-bytes

Description: Total bytes transferred from the upstream source. The value of this field is a "best effort". If there are intermediate cache layers, it is understood that this value may not accurately reflect the complete upstream picture.
Format: Integer, size in bytes. If no upstream is accessed, the size is 0.
Record Types: Minimal, Standard, Extended

s-upstream-ip

Description: The IP address of the upstream source.
Format: String, IP address
Record Types: Extended

Record Types Standard record types consist of a field set, a format, and a version that together form the record type, identified by a string like: "opencaching_minimal_json_v1" or "opencaching_standard_csv_v1" or "opencaching_extended_whitespace_v1". The identifier is then referenced in the supported-record-types field of FCI.Logging and the record-type field of MI.LoggingTransport. For this draft, we do not support custom record types, but future drafts will provide a way to define custom record types with their own associated identifiers.

Log Record Formats

JSON The JSON log record format consists of a JSON object wherein each defined field of the record type is a property of the JSON object; the field name is the property name and the field value is the property value. If a field is not present in the log data, the property MAY be omitted. The following is an example record in the JSON record format:

CSV The comma-separated value record format follows the definition in with the addition of a special value to handle null values. If a field value is null, it MUST be represented by the following unquoted literal value: $NULL$

Whitespace The whitespace delimited record format consists of field values enclosed in QUOTATION MARK (U+0022: ") characters, with characters separated by any number of SPACE (U+0020) or TAB (U+0009) characters. If a field value is null, it must be represented by the following unquoted literal value: $NULL$

Protobuf Appendix section 10.1 provides the protobuf definitions in the proto file format for the protobuf record types defined.

Predefined Log Record Types

A predefined log record type is a set of fields in a defined textual or binary format (JSON, CSV, whitespace delimited, or protobuf). This specification includes three predefined record types:
- A ‘minimal' type optimized for data size, including only the fields necessary to perform billing functions.
- A ‘standard' type with a set of fields likely to be useful for operational monitoring.
- An ‘extended' type with an exhaustive field set likely to cover most operational and troubleshooting use cases.

Minimal

Order	Field
1	timestamp-ns
2	c-groupid
3	cs-uri
4	sc-status
5	sc-total-bytes
6	s-ccid
7	s-upstream-header-size-bytes
8	s-upstream-total-bytes
9+	sc-hdr-, cs-hdr-

The Minimal log record type field set consists of the fields denoted as 'Minimal' in section 5.

JSON format: 'opencaching_minimal_json_v1'
CSV format: 'opencaching_minimal_csv_v1'
Whitespace delimited format:'opencaching_minimal_whitespace_v1'

Standard

Order	Field
1	timestamp-ns
2	s-time-total-ms
3	c-groupid
4	cs-uri
5	sc-status
6	sc-total-bytes
7	s-ccid
8	s-sid
9	s-cached
10	s-shortname
11	s-upstream-header-size-bytes
12	s-upstream-total-bytes
13	cs-hdr-User-Agent
14+	sc-hdr-, cs-hdr-

The Standard log record type field set consists of the fields denoted as 'Standard' in section 5.

JSON format: 'opencaching_standard_json_v1'
CSV format: 'opencaching_standard_csv_v1'
Whitespace delimited format: 'opencaching_standard_whitespace_v1'

Extended

Order	Field
1	timestamp-ns
2	timestamp-iso8601
3	s-time-total-ms
4	c-groupid
5	cs-method
6	cs-version
7	cs-uri
8	cs-uri-transformed
9	sc-status
10	sc-total-bytes
11	s-ccid
12	s-sid
13	s-cached
14	c-ip
15	s-shortname
16	s-id
17	s-time-first-ms
18	s-sdur-ms
19	s-time-upstream-ms
20	s-upstream-header-size-bytes
21	s-upstream-total-bytes
22	s-upstream-status
23	s-upstream-ip
24	cs-hdr-Referer
25	cs-hdr-Range
26	cs-hdr-User-Agent
27	sc-hdr-Content-Type
28	sc-header-size-bytes
29+	sc-hdr-, cs-hdr-

The Extended log record type field set consists of the fields denoted as 'Extended' in section 5.

JSON format: 'opencaching_extended_json_v1'
CSV format: 'opencaching_extended_csv_v1'
Whitespace delimited format: 'opencaching_extended_whitespace_v1'
Protobuf format: ‘opencaching_protobuf_v1' as defined in section 10.1. The protobuf fields are optional, so this protobuf format may be used for the use cases covered by minimal and standard.

uCDN Configured Header Inclusion If the dCDN advertises the allow-include-headers property in FCI.LoggingPush (see section 8.1), a uCDN can configure additional request/response headers as custom fields to be included with the MI.LoggingTransport property include-headers (see section 7.3). Included headers are added to the log records in the order defined, with names cs-hdr-* and sc-hdr-*, to indicate request and response headers respectively. Per the text in the specification of cs-hdr-*, duplicate header fields should be concatenated per sections 5.2 and 5.3. The following is an example of MI.LoggingMetadata that includes headers:

Custom Record Types It is permitted with the out-of-band agreement of the participants to use a record type not defined in this specification. In this case, the format of the record type is entirely dependent on cooperation between the uCDN and dCDN outside the scope of this specification. A unique identifier SHOULD be assigned for every custom record type, and it MAY be utilized in place of record types defined in this specification wherever a record-type value is required.

uCDN Configured Field Inclusion By specifying the include-fields property of MI.LoggingTransport, additional fields can be appended to an existing record type. The dCDN must advertise allow-include-fields as true for this operation to be permitted. Fields appended by include-fields are always after the predefined fields of the record-type and any additional fields advertised by the dCDN in the included-fields property of FCI.LoggingPush.

Record Type 'Empty' The record-type value of "empty" is defined as the empty set. If this record-type is advertised, the only fields present in the logging records will be defined by include-fields and included-fields.

Logging Metadata The MI.LoggingMetadata object provides configuration that instructs the dCDN how to transmit log files or streams of log records to the uCDN. MI.LoggingTransport objects are enclosed in the MI.LoggingMetadata object described below. The dCDN specifies supported logging transports in the FCI.LoggingSource advertisement as specified in Section 8.2.

MI.LoggingMetadata Property: transports

Description: An array of MI.LoggingTransport objects.
Type: Array
Mandatory-to-Specify: No

Property: pull-transport-metadata

Description: An object that can be used to configure certain properties of dCDN pull transports.
Type: MI.LoggingPullTransportMetadata
Mandatory-to-Specify: No

MI.LoggingPullTransportMetadata Property: sftp-public-keys

Description: An array of SSH public keys that the dCDN SHOULD authorize on SFTP logging endpoints.
Type: Array of strings
Mandatory-to-Specify: No

MI.LoggingTransport MI.LoggingTransport objects are enclosed in the MI.LoggingMetadata object and instruct the dCDN how to transmit log files or streams to the uCDN. Property: transport-type

Description: The type discriminator for the endpoint property. The following values are supported:
- MI.LoggingTransportKafka
- MI.LoggingTransportSFTP
- MI.LoggingTransportS3
Type: String
Mandatory-to-Specify: Yes

Property: record-type

Description: The format of the individual log records. This MUST be a valid value as defined in Section 6
Type: String
Mandatory-to-Specify: Yes

Property: container-metadata

Description: The configuration for the generation of log files when operating in file-based modes.
Type: MI.LoggingContainerMetadata
Mandatory-to-Specify:
- File or object-based transports: Yes
- Streaming transports: No

Property: include-headers

Description: Additional header fields to include, dependent on dCDN support via the allow-include-headers flag of MI.LoggingPush.
Type: Ordered array of header fields in sc-hdr-* and cs-hdr-* naming format
Mandatory-to-Specify: No

Property: include-fields

Description: Additional fields to include, dependent on dCDN support via the allow-include-fields flag of MI.LoggingPush.
Type: Ordered array of field names
Mandatory-to-Specify: No

Property: account-id

Description: An account identifier value that the dCDN must include in log records.
Type: String
Mandatory-to-Specify: No

Property: endpoint

Description: An object with any configuration necessary for the specific logging transport, discriminated on the transport-type property. Objects for each transport type are described in the sections below.
Type: Object
Mandatory-to-Specify: Yes

Property: transforms

Description: Transformations on sets of fields as defined in an MI.LoggingTransform. The sets of record-fields field names MUST NOT overlap for the transport.
Type: Array of MI.LoggingTransforms objects
Mandatory-to-Specify: No

Property: sampling

Description: An object defining the sampling configuration to be applied to the log records for this transport. If omitted, no sampling is applied.
Type: MI.LoggingSampler object
Mandatory-to-Specify: No

MI.LoggingTransportKafka Property: bootstrap-servers

Description: An array of the bootstrap connection servers in host:port format.
Type: Array of strings
Mandatory-to-Specify: Yes

Property: topic

Description: The Kafka topic to which log records SHOULD be published.
Type: String
Mandatory-to-Specify: Yes

The following is an MI.LoggingMetadata Apache Kafka example:

MI.LoggingTransportSFTP Property: host

Description: The hostname of the SFTP server, which MAY be specified as either hostname or hostname:port.
Type: String
Mandatory-to-Specify: Yes

Property: username

Description: The remote username to use for connecting to the SFTP server.
Type: String
Mandatory-to-Specify: Yes

Property: password

Description: The remote password to use for connecting to the SFTP server when using password-based authentication.
Type: MI.SecretValue
Mandatory-to-Specify: No

The following is an MI.LoggingTransportSFTP example:

MI.LoggingTransportS3API Property: host

Description: The hostname to connect to the S3-compatible API.
Type: String
Mandatory-to-Specify: Yes

Property: access-key-id

Description: The access key ID to use when connecting to the API.
Type: String
Mandatory-to-Specify: No

Property: access-key-secret

Description: The access key secret to use when connecting to the API.
Type: MI.SecretValue
Mandatory-to-Specify: No

Property: bucket-name

Description: The bucket name to use for pushed log file objects.
Type: String
Mandatory-to-Specify: Yes

The following is an MI.LoggingTransportS3API example:

MI.LoggingTransforms Logging fields can contain personal user information that cannot be shared upstream or stored in the operating jurisdictions. These operations allow for obfuscation and anonymization of logging record fields. An array of MI.LoggingTransforms objects can be enclosed in the MI.LoggingTransport object transform field for uCDN configured obfuscation. The dCDN specifies privacy obfuscations in the FCI.Logging advertisement applied-transforms field. Property: record-fields

Description: The list of privacy-sensitive log record fields for which obfuscation is applied.
Type: Array of strings
Mandatory-to-Specify: Yes

Property: transforms

Description: The transform operations to apply on the record fields, in order.
Type: Array of MI.LoggingTransform objects
Mandatory-to-Specify: Yes

MI.LoggingTransform Property: type

Description: The type discriminator for the value property. The following values are supported:
- MI.LoggingTransformReplace
- MI.LoggingTransformTruncate
- MI.LoggingTransformUrlRemoveParam
- MI.LoggingTransformUrlStripParams
- MI.LoggingTransformMaskIp
- MI.LoggingTransformEncrypt
- MI.LoggingTransformHash
- MI.LoggingTransformEncode
Type: String
Mandatory-to-Specify: Yes

Property: value

Description: The privacy operation configuration value.
Type: Object of type
Mandatory-to-Specify: Yes

MI.LoggingTransformReplace Property: regex

Description: A POSIX substitution expression.
Type: String
Mandatory-to-Specify: Yes

Property: value

Description: The privacy operation configuration value.
Type: String
Mandatory-to-Specify: Yes

MI.LoggingTransformTruncate This object removes characters from the end of a field value if it exceeds a defined length. Property: length

Description: The maximum field length.
Type: Number
Mandatory-to-Specify: Yes

MI.LoggingTransformUrlRemoveParam This object parses record-fields values as URLs, stripping specified query parameters along with their values. Property: remove-param

Description: Omits URL query parameters whose name match a regular expression.
Type: POSIX Regular expression string
Mandatory-to-Specify: Yes

MI.LoggingTransformUrlStripParams Property: strip-params

Description: Strips all query parameters from the URL.
Type: Boolean
Mandatory-to-Specify: Yes

The following is an MI.LoggingTransformUrlParam example:

MI.LoggingTransformUrlPath This object parses record-fields values as URLs, and can replace or truncate path elements from the front or end. At least one of replace-path or path-trim MUST be present. Property: replace-path

Description: Modify URL path elements with a regular expression.
Type: String. POSIX
Mandatory-to-Specify: No, if URL parameter modification is not desired.

Property: path-trim

Description: Trims elements from URL paths to a specified depth. A positive value will truncate the specified number of path elements from the end. A negative value will truncate from the front.
Type: Number
Mandatory-to-Specify: No, if path truncation is not desired.

The following is an MI.LoggingTransformUrlPath example:

MI.LoggingTransformMaskIp This object parses values as IPv4 or IPv6 strings, and outputs an address that strips the indicated number of bits. Property: mask-lsb-v4

Description: The number of bits to strip from the end of an IPv4 address.
Type: Number, maximum 32 for IPv4
Mandatory-to-Specify: No, if IPv4 masking is not desired

Property: mask-lsb-v6

Description: The number of bits to strip from the end of an IPv6 address.
Type: Number, maximum 128 for IPv6
Mandatory-to-Specify: No, if IPv6 masking is not desired

The following is an MI.LoggingTransformMaskIp example:

MI.LoggingTransformHash This object replaces record-fields values with their Hash-Based Message Authentication Code (HMAC). Property: function

Description: The hashing function to use in computing the HMAC of the private field value.
Type: String. The following values are supported:
- MD5
- SHA256
Mandatory-to-Specify: Yes

Property: key

Description: The key used in computing the HMAC.
Type: MI.SecretValue
Mandatory-to-Specify: No, if no key is used or an empty string, if the key is confidential to the dCDN

The following is an MI.LoggingTransformHash example:

MI.LoggingTransformEncrypt With this object, fields are encrypted with the selected scheme, and the nonce used is prepended to the outputted ciphertext. The encryption key is specified as an MI.SecretValue and is transmitted in the transforms field with log records in the metadata header or as a sidecar. When a new key is configured, a new file and sidecar must be created with an updated key reference. Property: algorithm

Description: The algorithm to use in encrypting the private field value.
Type: String. The following values are supported:
- AEAD-XCHACHA20-POLY1305-IETF
- AEAD-CHACHA20-POLY1305-IETF
- AEAD-AES256-GCM
- RC4
Mandatory-to-Specify: Yes

Property: key

Description: A reference to an externally defined encryption key.
Type: MI.SecretValue
Mandatory-to-Specify: No

The following is an MI.LoggingTransformEncrypt example:

MI.LoggingTransformEncode Property: encoding

Description: The encoding to use for the obfuscated value.
Type: String. The following values are supported:
- BASE64
- BIN2HEX
Mandatory-to-Specify: Yes

The following is an MI.LoggingTransformEncode example:

MI.LoggingFilenameTemplate The MI.LoggingFilenameTemplate type is used to specify the path and filename for files created by batch mode MI.LoggingTransport and FCI.LoggingTransport services. If the resulting filename is longer than 255 characters, it will be truncated to 255 characters in length, including the filename extension that will be retained. Fields that MAY be truncated are noted in the table below. It is the responsibility of the dCDN to ensure that file names are unique. It is strongly RECOMMENDED that the %id field is used to ensure the uniqueness requirement is satisfied. The overall path length is limited to 32 KiB, and each path component is limited to 255 characters. Any element exceeding the length limitation will be truncated to the maximum length. An instance of MI.LoggingFilenameTemplate is a string with the following supported substitution variables:

Variable	Definition	Length	Values
%cY	File creation timestamp: Year.	4	Example: 2023
%cm	File creation timestamp: Month. Numeric. Length 2. 01-12.	2	01-12
%cd	File creation timestamp: Day. Length 2. 0-31.	2	0-31
%cH	File creation timestamp: Hour. Length 2. 00-23.	2	00-23
%cM	File creation timestamp: Minutes. Length 2. 00-59.	2	00-59
%cS	File creation timestamp: Seconds. 00-59.	2	0-59
%sY	Timestamp of first record: Year. Length 4. Example: 2023.	4	Example: 2023
%sm	Timestamp of first record: Month. Numeric. Length 2. 01-12.	2	01-12
%sd	Timestamp of first record: Day. Length 2. 0-31.	2	00-31
%sH	Timestamp of first record: Hour. Length 2. 00-23.	2	00-23
%sM	Timestamp of first record: Minutes. Length 2. 00-59.	2	00-59
%sS	Timestamp of first record: Seconds. 00-59.	2	00-59
%eY	Timestamp of last record: Year. Length 4. Example: 2023.	4	Example: 2023
%em	Timestamp of last record: Month. Numeric. Length 2. 01-12.	2	01-12
%ed	Timestamp of last record: Day. Length 2. 0-31.	2	0-31
%eH	Timestamp of last record: Hour. Length 2. 00-23.	2	00-23
%eM	Timestamp of last record: Minutes. Length 2. 00-59.	2	00-59
%eS	Timestamp of last record: Seconds. 00-59.	2	00-59
%source	Logging source identifier.MAY be truncated.	Variable	Alphanumeric:[A-Za-z0-9]+
%account	Account ID as configured via MI.LoggingTransport. MAY be truncated.	Variable	Alphanumeric: [A-Za-z0-9\-]+
%id	A unique identifier for this file. MAY be truncated.	Variable	Alphanumeric: [A-Za-z0-9\-]+
%ccid	ccid assigned via MI.Grouping configuration. MAY be truncated.	Variable	Alphanumeric: [A-Za-z0-9\-]+

MI.LoggingFilenameTemplate Examples

Template	Example Filename
/%cY-%cM-%cD/%cH_%cM_%cS.%source.%id.json	/2023-01-21/11_23_58.region1.fbdc303a.json
/%source/%id.csv	/region1/fbdc303a.csv

MI.LoggingContainerMetadata This object defines configuration parameters used in file-based logging transports to define how files are created and formatted. Property: container-type

Description: The container type as defined in section 7
Type: String. The following values are supported:
- cdni_v1
- json_v1
- linefeed_v1
- carriage_return_v1
- tar_v1
Mandatory-to-Specify: Yes

Property: filename-template

Description: The template to be used for files pushed by a batch mode transport.
Type: MI.LoggingFilenameTemplate
Mandatory-to-Specify: No

Property: include-metadata-sidecar

Description: Used to specify if a metadata sidecar file is generated for each log file. See section 7.1.1
Type: Boolean
Mandatory-to-Specify: No

Property: interval

Description: For file-based logging transports, the time period for which a single log file SHOULD cover before being pushed to the endpoint, with the duration in seconds.
Type: Integer
Mandatory-to-Specify: No

Property: maximum-size

Description: For batch-type logging transports, the maximum file or object size before the log file SHOULD be pushed to the endpoint and a new file created for further entries. The value of the format is "<Integer><Specifier>" where Specifier is one of the following:
- M: megabyte
- G: gigabyte
Type: String
Mandatory-to-Specify: No

Property: archive-metadata

Description: Used with the tar_v1 container type, it specifies the container metadata for files inside of the archive.
Type: MI.LoggingContainerMetadata
Mandatory-to-Specify: No

MI.LoggingSampler This object defines the sampling configuration for a logging transport. It acts as a container for a specific sampler type and its corresponding configuration. Property: sampler-type

Description: The type discriminator for the value property.
Type: String. The following values are supported:
- MI.LoggingSamplerPercentage
- MI.LoggingSamplerConditional
- MI.LoggingSamplerSession
- MI.LoggingSamplerDebug
Mandatory-to-Specify: Yes

Property: value

Description: UThe configuration object for the specified sampler type.
Type: Object
Mandatory-to-Specify: Yes

The following is an example of an MI.LoggingSampler object in the context of MI.LoggingTransport:

MI.LoggingSamplerPercentage This object defines the configuration for random, percentage-based sampling. Property: rate

Description: The fraction of total records to log, expressed as a value between 0.0 and 1.0.
Type: Number
Mandatory-to-Specify: Yes

MI.LoggingSamplerMEL This sampler applies different sampling rates based on the values of fields within the log record. Property: rules

Description: An ordered list of MEL sampling rules. Each rule is applied in turn. If the rule matches but the record is not selected for sampling based on the `rate` parameter, the next rule is then tested.
Type: Array of objects. Each object has the following properties:
- filter: A MEL filter expression string. A special value of `"default"` matches all records and SHOULD be placed last in the list.
- rate: The sampling rate to apply for matching records.
Mandatory-to-Specify: Yes

The following is an example of an MI.LoggingSamplerConditional object:

= 500 && record.default", "rate": 1.0 }, { "filter": "record.s-cached == false", "rate": 0.5 }, { "filter": "record.default", "rate": 0.01 } ] }]]>

MI.LoggingSamplerSession This sampler performs consistent sampling based on a session identifier. When a session is selected for logging, all records sharing that session identifier are logged. Property: rate

Description: The fraction of unique session identifiers to sample, expressed as a value between 0.0 and 1.0.
Type: Number
Mandatory-to-Specify: Yes

Property: session-id-field

Description: The identifier of the request field to use for session grouping.
Type: String
Mandatory-to-Specify: Yes

Property: session-id-source

Description: Specifies where the dCDN should look for the identifier in the original request.
Type: String. Valid values are "header", "query-param", or "both".
Mandatory-to-Specify: Yes

MI.LoggingSamplerDebug This sampler forces logging for any request that contains a specific debug identifier. This is intended for diagnostic purposes. If the identifier is not present, the request is not logged by this sampler. Property: header-name

Description: The name of an HTTP header that, if present in a request, will trigger logging for that request.
Type: String.
Mandatory-to-Specify: No

Property: query-param-name

Description: The name of a URL query parameter that, if present in a request, will trigger logging for that request.
Type: String.
Mandatory-to-Specify: No

At least one of header-name or query-param-name MUST be specified.

Logging Capabilities

FCI.LoggingPush The FCI.Logging object described in is restricted to announcing available record types and OPTIONAL fields supported by the dCDN from those listed in . This specification includes more record types that can be used by the uCDN in the log configuration as well as other possible metadata that can be used as container formats and possible pull transport methods. To permit the dCDN to announce multiple record types, container formats, and transport methods for the same footprint, this capability extends that described in with a new capability dedicated to the push mechanisms. The following is an FCI.LoggingPush example:

Property: record-types

Description: The supported list of CDNI logging record-types.
Type: Array of strings corresponding to an entry from the "CDNI logging record-types" registry , or this specification
Mandatory-to-Specify: Yes

Property: container-formats

Description: The supported list of container formats according to this specification.
Type: Array of strings corresponding to available container formats
Mandatory-to-Specify: No. If only streaming transports are used, container formats are not used. If not included, no non-streaming containers would be available.

Property: allow-include-headers

Description: A flag indicating support for custom headers configured by the uCDN for inclusion in the log records.
Type: Boolean
Mandatory-to-Specify: No

Property: applied-transforms

Description: Transforms applied by the dCDN on all logs to the upstream. The sets of record-fields field names MUST NOT overlap for the transport.
Type: Array of MI.LoggingTransforms objects
Mandatory-to-Specify: No

Property: sftp-public-keys

Description: An array of SSH public keys that the dCDN SHOULD authorize on SFTP logging endpoints.
Type: Array of strings
Mandatory-to-Specify: No

Property: allow-include-fields

Description: A flag indicating support for appended additional logging fields configured by the uCDN.
Type: Boolean
Mandatory-to-Specify: No

Property: custom-fields

Description: Custom advertised logging fields that may be appended to a logging record via include-fields and included-fields.
Type: Array of FCI.LoggingField objects. Each object MUST have a unique value for field-name.
Mandatory-to-Specify: No

Property: sampling-support

Description: An object that describes the dCDN's sampling capabilities.
Type: Object
Mandatory-to-Specify: No
Object properties:

The following is an example of FCI.LoggingPush with sampling-support:

FCI.LoggingSource A dCDN can provide information on available logging endpoints to the uCDN that do not require metadata configuration. The FCI.LoggingSource capability object can be announced with the relevant information for the uCDN to get the log from the dCDN. The dCDN could provide different endpoints, depending on footprint and/or delegated hosts. It could be possible that the sources in FCI.LoggingSource in the dCDN are not available for all delegated hosts or all available footprints, permitting flexibility and control of its own infrastructure (e.g., a dCDN could limit logging endpoints to suitable hosts included in an agreement between a dCDN and uCDN). Property: hosts

Description: One or more uCDN hosts for which the logs are available for pull logging transports. A redirecting host SHOULD be a host that was published in an MI.HostMatch object by the uCDN as defined in section 4.1.2 of .
Type: A list of endpoint objects (see section 4.3.3 of )
Mandatory-to-Specify:No. If absent or empty, the logging endpoint is available for all hosts of the redirecting uCDN.

Property: transports

Description: List of available sources for an uCDN to obtain the logs for its delegated services
Type: Array of FCI.LoggingPullTransport objects
Mandatory-to-Specify: No

Property: included-fields

Description: Additional log record fields to be appended to the fields defined by the predefined type specified in record-type. Headers may also be specified using the sc-hdr-* and cs-hdr-* field name convention.
Type: Ordered array of fields
Mandatory-to-Specify: No

Property: custom-fields

Description: Custom advertised logging fields that may be appended to a logging record via included-fields.
Type: Array of FCI.LoggingField objects. Each object MUST have a unique value for field-name.
Mandatory-to-Specify: No

Property: sampling

Description: An MI.LoggingSampler object that describes the sampling configuration that has been applied to the log records available at this pull transport.
Type: MI.LoggingSampler
Mandatory-to-Specify: No

The following is an FCI.LoggingSource example that shows use of an S3 bucket for retrieving JSON formatted logs in a JSON container:

FCI.LoggingPullTransport Property: transport-type

Description: The type discriminator for the endpoint property. The following values are supported:
- FCI.LoggingPullTransportAtomFeed
- FCI.LoggingPullTransportSFTP
- FCI.LoggingPullTransportS3API
Type: String
Mandatory-to-Specify: Yes

Property: record-type

Description: The format of the individual log records. This must be a valid value as defined in section 5.
Type: String
Mandatory-to-Specify: Yes

Property: container-metadata

Description: The configuration for the generation of log files when operating in file-based modes.
Type: MI.LoggingContainerMetadata
Mandatory-to-Specify:
- File or object-based transports: Yes
- Streaming transports: No

Property: transforms

Description: A list of transformations to be applied to sets of record fields before transport. A record field name SHOULD NOT appear more than once.
Type: Array of MI.LoggingTransforms objects
Mandatory-to-Specify: No

Property: endpoint

Description: An object with any configuration necessary for the specific logging transport, discriminated on the transport-type property. Objects for each transport type are described below.
Type: Object
Mandatory-to-Specify: Yes

FCI.LoggingPullTransportAtomFeed Property: feed-href

Description: The URL of the CDNI logging feed in Atom format per .
Type: String
Mandatory-to-Specify: Yes

The following is an FCI.LoggingSourceAtomFeed example:

FCI.LoggingPullTransportSFTP Property: host

Description: The hostname of the SFTP server, which MUST be specified as either hostname or hostname:port.
Type: String
Mandatory-to-Specify: Yes

Property: username

Description: The remote username to use for connecting to the SFTP server.
Type: String
Mandatory-to-Specify: Yes

Property: password

Description: The remote password to use for connecting to the SFTP server when using password-based authentication. This field is not used when SSH keys are provided by the uCDN via MI.LoggingPullTransportMetadata.
Type: MI.SecretValue
Mandatory-to-Specify: No

The following is an FCI.LoggingPullTransportSFTP example:

FCI.LoggingPullTransportS3API Property: host

Description: The hostname to connect to the S3-compatible API.
Type: String
Mandatory-to-Specify: Yes

Property: access-key-id

Description: The access key ID to use when connecting to the API.
Type: String
Mandatory-to-Specify: Yes

Property: access-key-secret

Description: The access key secret to use when connecting to the API.
Type: MI.SecretValue
Mandatory-to-Specify: Yes

Property: bucket-name

Description: The bucket name to use to pull log file objects.
Type: String
Mandatory-to-Specify: Yes

The following is an FCI.LoggingPullTransportS3API example:

FCI.LoggingField Property: field-name

Description: A unique identifier for this custom logging field.
Type: String
Mandatory-to-Specify: Yes

Property: field-type

Description: The data type of the field value.
Type: One of "String", "Numeric"
Mandatory-to-Specify: Yes

Property: description

Description: A human readable description of the field.
Type: String
Mandatory-to-Specify: No

Property: documentation-href

Description: A link to external documentation for this field.
Type: URL
Mandatory-to-Specify: No

Appendix

Protobuf Record Type Definitions This subsection provides the protobuf definitions in the proto file format for the protobuf record types defined in Section 4.4

Security Considerations

Field Privacy Logging records may contain a user's personally identifiable information (PII), which may be inappropriate for the dCDN to share, and/or for the uCDN to store. This is particularly important when the dCDN is supporting custom headers. This specification provides MI.LoggingTransforms defined in section 7.4. as a mechanism for truncating, replacing, encrypting, and/or hashing record field values. The uCDN can request transformations be applied to record fields with the transforms property of the MI.LoggingTransport object defined in section 7.3. The dCDN advertises transformations applied to record fields with the applied-transforms property of FCI.LoggingPush defined in section 8.1

Field Encryption In using the MI.LoggingTransformEncrypt defined in section 7.4.9, the nonce SHOULD NOT be reused across OCN nodes using a counter permutation. When the uniqueness of nonces cannot be ensured, you can use the XChaCha20 algorithm with a nonce from a random source with sufficient entropy, or you can take the hash of a weaker random source, concatenate it with the message and hash it with a cryptographic hash function that is safe against length-extension attacks, such as BLAKE2 or the HMAC construction. Rivest Cipher 4 (RC4) is listed to support annotating values originating from a packet cores' header enrichment network function for sharing subscriber or network identifiers with web applications. It SHOULD NOT be used as a security construct for concealing data in logs. An implementation would effectively be a no-op passing the value with bound credentials. It is RECOMMENDED to chain another MI.LoggingTransformEncrypt operation with a modern algorithm for actual confidentiality.

Field Length It is important to consider using an MI.LoggingTransformTruncate in implementations that MAY have constraints on individual field record lengths. The dCDN can advertise these field length constraints in the applied-transforms property of FCI.LoggingPush and the transforms property of FCI.LoggingPullTransport*. It is strongly RECOMMENDED to include an MI.LoggingTransformTruncate when including any cs-hdr-* OR sc-hdr-* fields in the logging format to protect against any denial of service (DoS) risks that arise from inadvertently malformed or actively malicious values in the headers.

Atom Endpoints Authentication and authorization mechanisms for the Atom feed are outside the scope of this document.

The authors would like to express their gratitude to the members of the Streaming Video Technology Alliance Open Caching Working Group for their guidance / contribution / reviews ...) Particulary the following people contributed to the content of this draft:

Glenn Goldstein (Lumen)
Christoph Neumann (Broadpeak)
Rajeev RK (PicoNETS)
Dave Seddon (Siden)
Alfonso Silóniz (Telefónica)
Matt Stock (Viasat)