[6lo] Paul Wouters' No Objection on draft-ietf-6lo-use-cases-14: (with COMMENT)
Paul Wouters via Datatracker <noreply@ietf.org> Thu, 15 December 2022 01:44 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: 6lo@ietf.org
Delivered-To: 6lo@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 60885C14CE2E; Wed, 14 Dec 2022 17:44:42 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Paul Wouters via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-6lo-use-cases@ietf.org, 6lo-chairs@ietf.org, 6lo@ietf.org, shwetha.bhandari@gmail.com
X-Test-IDTracker: no
X-IETF-IDTracker: 9.3.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Paul Wouters <paul.wouters@aiven.io>
Message-ID: <167106868238.47173.700671994676538057@ietfa.amsl.com>
Date: Wed, 14 Dec 2022 17:44:42 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/QdqfjnWwmEm4K_OpWYXsqGbd6Lk>
Subject: [6lo] Paul Wouters' No Objection on draft-ietf-6lo-use-cases-14: (with COMMENT)
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.39
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Dec 2022 01:44:42 -0000
Paul Wouters has entered the following ballot position for draft-ietf-6lo-use-cases-14: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/ for more information about how to handle DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-6lo-use-cases/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Like Roman, I am a bit concerned about the security aspects. As this is a use cases document, I've limited my issues to comments. But it would have to be satisfied in any further specification RFCs. Security and Encryption: Though 6LoWPAN basic specifications do not address security at the network layer, the assumption is that L2 security must be present. While I do understand that some L2 security is possible, eg via pairing, there is still a gap for some technologies - eg NFC where I wouldn't know which payment terminal I really connect to. End-to-end communication is expected to be secured by means of common mechanisms, such as IPsec, TLS/DTLS or object security [RFC8613]. EDHOC (draft-ietf-lake-edhoc) could also be a good match Note that while the common mechanism is a good start, it only presents the use of a technology. Those technologies have requirements that might not be usable in the context of 6lo (eg when there is no internet connection to verify X.509 certificates (OCSP or CRLs) or DNS identifiers).
- [6lo] Paul Wouters' No Objection on draft-ietf-6l… Paul Wouters via Datatracker
- Re: [6lo] Paul Wouters' No Objection on draft-iet… Yong-Geun Hong