[6band] FW: New Version Notification for draft-aura-eap-noob-00.txt
Mohit Sethi M <mohit.m.sethi@ericsson.com> Wed, 10 February 2016 09:34 UTC
Return-Path: <mohit.m.sethi@ericsson.com>
X-Original-To: 6band@ietfa.amsl.com
Delivered-To: 6band@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3317A1A03ED for <6band@ietfa.amsl.com>; Wed, 10 Feb 2016 01:34:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7JADZhXROsUd for <6band@ietfa.amsl.com>; Wed, 10 Feb 2016 01:34:35 -0800 (PST)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55C341A03E1 for <6band@ietf.org>; Wed, 10 Feb 2016 01:34:35 -0800 (PST)
X-AuditID: c1b4fb30-f79a76d000000a93-86-56bb042997ad
Received: from ESESSHC010.ericsson.se (Unknown_Domain [153.88.183.48]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 94.AC.02707.9240BB65; Wed, 10 Feb 2016 10:34:33 +0100 (CET)
Received: from ESESSMB205.ericsson.se ([169.254.5.36]) by ESESSHC010.ericsson.se ([153.88.183.48]) with mapi id 14.03.0248.002; Wed, 10 Feb 2016 10:34:32 +0100
From: Mohit Sethi M <mohit.m.sethi@ericsson.com>
To: "'6band@ietf.org'" <6band@ietf.org>
Thread-Topic: New Version Notification for draft-aura-eap-noob-00.txt
Thread-Index: AdFihh2/WnLd5xyHRJ+BuP/LMH/wvABXyiyA
Date: Wed, 10 Feb 2016 09:34:31 +0000
Message-ID: <E2628CB7186C7D4F9E2B2D5B325866205347C31F@ESESSMB205.ericsson.se>
References: <20160208123035.1562.80507.idtracker@ietfa.amsl.com> <56B8B561.8040300@ericsson.com>
In-Reply-To: <56B8B561.8040300@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.20]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmplkeLIzCtJLcpLzFFi42KZGbHdQFeTZXeYwbo9shaLen8xWbyZuJHd gcnj+OvFrB5LlvxkCmCK4rJJSc3JLEst0rdL4MrobtjJUrDBuuLyssfMDYxvLLsYOTkkBEwk Jl/ewAxhi0lcuLeerYuRi0NI4DCjxMTr95khnMWMEvcebmUFqWITMJCYPGUFexcjB4eIgLpE 31VXkDCzgLHE45WbwEqEBVwk3jxvZAOxRQRcJe5d62aGsI0k9rU9ZAZpZRFQlehqjwUJ8wr4 Smy/uIARxBYSSJJY/vUcmM0poCNx8+l9FhCbEei276fWMEGsEpe49WQ+E8TNAhJL9pyHul9U 4uXjf6wQtqLE1enLmUBWMQtoSqzfpQ/RqigxpfshO8RaQYmTM5+wTGAUm4Vk6iyEjllIOmYh 6VjAyLKKUbQ4tTgpN93ISC+1KDO5uDg/Ty8vtWQTIzByDm75bbCD8eVzx0OMAhyMSjy8Bua7 woRYE8uKK3MPMUpwMCuJ8Ar8AArxpiRWVqUW5ccXleakFh9ilOZgURLnXe28PkxIID2xJDU7 NbUgtQgmy8TBKdXAKLW8aNO66PC0gyK+oV1fXfOYvnwSfzzfqD7DmiPlYtLcxn+FEdvqL5UV uhxgnSH19GvsnIi1pfZbmH6vPPJ5Z63G5cduq3pU6tnCdgsVubZIBrPPflch4mMt0aFeNUPs lH6B8e2YmQpKKQIKvk3Wn8++17bVlf1pqno6fpqo3PSIxSGOjVJKLMUZiYZazEXFiQD4tCzS mAIAAA==
Archived-At: <http://mailarchive.ietf.org/arch/msg/6band/NfmXFsBvrk7FTtj4o94o6_p2koY>
Cc: "'Tuomas.aura@aalto.fi'" <Tuomas.aura@aalto.fi>
Subject: [6band] FW: New Version Notification for draft-aura-eap-noob-00.txt
X-BeenThere: 6band@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "6lo Bootstrapping, Access for Networked Devices" <6band.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6band>, <mailto:6band-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6band/>
List-Post: <mailto:6band@ietf.org>
List-Help: <mailto:6band-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6band>, <mailto:6band-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 10 Feb 2016 09:34:38 -0000
Dear all We have submitted a new IETF Draft titled “Nimble out-of-band authentication for EAP (EAP-NOOB)” to the saag mailing list. We thought it might be interesting to some folks here as well since the draft deals with secure bootstrapping. The draft defines an EAP method where the authentication is based on a user-assisted out-of-band (OOB) channel between the server and peer. It is intended as a generic bootstrapping solution for Internet-of-Things devices which have no pre-configured authentication credentials and which are not yet registered on the authentication server. Consider devices you just bought or borrowed. The EAP-NOOB method is more generic than most ad-hoc bootstrapping solutions in that it supports many types of OOB channels. We specify the exact in-band messages but only the OOB message contents and not the OOB channel details. Also, EAP-NOOB supports ubicomp devices with only output (e.g. display) or only input (e.g. camera). Moreover, it makes combined use of both secrecy and integrity of the OOB channel for more robust security than the ad-hoc solutions. We have put a lot of effort into designing a robust security protocol. For one application example, we have used an earlier version of the protocol for bootstrapping security for ubiquitous displays: the user can configure wireless network access, link the device to a cloud service, and register ownership of the device for a specific cloud user – all in one simple step of scanning a QR code with a smart phone. There seemed to more potential to this idea than just using it for our own system, and thus we decided to write a generic EAP method for out-of-band authentication. The draft is available here: https://tools.ietf.org/html/draft-aura-eap-noob-00 Please see if you can make use of it. We look forward to your feedback and comments here or on the saag mailing list. Thanks /--Mohit -----Original Message----- From: Mohit Sethi [mailto:mohit.m.sethi@ericsson.com] Sent: Monday, February 08, 2016 5:34 PM To: saag@ietf.org; emu@ietf.org Cc: tuomas.aura@aalto.fi Subject: Fwd: New Version Notification for draft-aura-eap-noob-00.txt Dear all We have just submitted a new IETF Draft titled “Nimble out-of-band authentication for EAP (EAP-NOOB)”. The draft defines an EAP method where the authentication is based on a user-assisted out-of-band (OOB) channel between the server and peer. It is intended as a generic bootstrapping solution for Internet-of-Things devices which have no pre-configured authentication credentials and which are not yet registered on the authentication server. Consider devices you just bought or borrowed. The EAP-NOOB method is more generic than most ad-hoc bootstrapping solutions in that it supports many types of OOB channels. We specify the exact in-band messages but only the OOB message contents and not the OOB channel details. Also, EAP-NOOB supports ubicomp devices with only output (e.g. display) or only input (e.g. camera). Moreover, it makes combined use of both secrecy and integrity of the OOB channel for more robust security than the ad-hoc solutions. We have put a lot of effort into designing a robust security protocol. For one application example, we have used an earlier version of the protocol for bootstrapping security for ubiquitous displays: the user can configure wireless network access, link the device to a cloud service, and register ownership of the device for a specific cloud user – all in one simple step of scanning a QR code with a smart phone. There seemed to more potential to this idea than just using it for our own system, and thus we decided to write a generic EAP method for out-of-band authentication. The draft is available here: https://tools.ietf.org/html/draft-aura-eap-noob-00 Please see if you can make use of it. We look forward to your feedback and comments. Regards /--Mohit -------- Forwarded Message -------- Subject: New Version Notification for draft-aura-eap-noob-00.txt Date: Mon, 08 Feb 2016 04:30:35 -0800 From: internet-drafts@ietf.org To: Tuomas Aura <tuomas.aura@aalto.fi>, Mohit Sethi <mohit@piuha.net> A new version of I-D, draft-aura-eap-noob-00.txt has been successfully submitted by Tuomas Aura and posted to the IETF repository. Name: draft-aura-eap-noob Revision: 00 Title: Nimble out-of-band authentication for EAP (EAP-NOOB) Document date: 2016-02-08 Group: Individual Submission Pages: 35 URL: https://www.ietf.org/internet-drafts/draft-aura-eap-noob-00.txt Status: https://datatracker.ietf.org/doc/draft-aura-eap-noob/ Htmlized: https://tools.ietf.org/html/draft-aura-eap-noob-00 Abstract: Extensible Authentication Protocol (EAP) [RFC3748] provides support for multiple authentication methods. This document defines the EAP- NOOB authentication method for nimble out-of-band (OOB) authentication and key derivation. This EAP method is intended for bootstrapping all kinds of Internet-of-Things (IoT) devices that have a minimal user interface and no pre-configured authentication credentials. The method makes use of a user-assisted one-directional OOB channel between the peer device and authentication server. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat
- [6band] FW: New Version Notification for draft-au… Mohit Sethi M