[6lo] AP-ND 22

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Fri, 24 April 2020 13:54 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: 6lo@ietfa.amsl.com
Delivered-To: 6lo@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0F2993A02BD; Fri, 24 Apr 2020 06:54:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.489
X-Spam-Level:
X-Spam-Status: No, score=-9.489 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTML_TAG_BALANCE_BODY=0.1, SPF_PASS=-0.001, T_HTML_ATTACH=0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=QR2Ar7rE; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=kaKK8qRe
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QhhmLJ4d84Uv; Fri, 24 Apr 2020 06:54:35 -0700 (PDT)
Received: from alln-iport-3.cisco.com (alln-iport-3.cisco.com [173.37.142.90]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E108F3A017E; Fri, 24 Apr 2020 06:54:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=970265; q=dns/txt; s=iport; t=1587736475; x=1588946075; h=from:to:cc:subject:date:message-id:mime-version; bh=9ljd867SFXBDgPEfcETxn9LLBdVDDcVXVKkHMhkh/TM=; b=QR2Ar7rEXBBYsV3xLnGnu3NOKYk3IZba9+kodlhH6zgc5RcqE5wmet13 ZFpOjTZUxoOfcIw7RC56x9D1KHL4gyTUwpdp83B5IEyjTXT4mye7YRqLk D4idjhY/3420i6cH8QiG2KIP7ndC+NXzhMtYMzkiXY9lXyvWDa3RNVeBc M=;
X-Files: image001.png, image002.gif, Diff draft-ietf-6lo-ap-nd-21.txt - draft-ietf-6lo-ap-nd.txt.html, Diff draft-ietf-6lo-ap-nd-20.txt - draft-ietf-6lo-ap-nd.txt.html, draft-ietf-6lo-ap-nd.txt : 57276, 134, 242171, 316488, 78346
X-IPAS-Result: A0CoBADN7qJe/5tdJa2FVIFpkxCfA4dhCAMCDwMFBI0HOsYlkBQ
IronPort-PHdr: 9a23:2E3BEhR6G9vZkYlLt0CpYdeRVNpsv++ubAcI9poqja5Pea2//pPkeVbS/uhpkESXBNfA8/wRje3QvuigQmEG7Zub+FE6OJ1XH15g640NmhA4RsuMCEn1NvnvOjQmHNlIWUV513q6KkNSXs35Yg6a+yfg9zMZFxThOAYwPfz7StKAqcOx2qjy44fUfwhDmDu6Z/V1MQmyqgLS8MIRhNkqIacqwRyPqXxNM+hRyHggI1WP1xrx/ca/+pd//kEy8+os7ctBTbn3c+wjQLpUAS5uM2cu+NaquA==
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.73,311,1583193600"; d="gif'147?txt'147?html'147,217?png'147,217,150?scan'147,217,150,208,217,147,150"; a="456335202"
Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by alln-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 24 Apr 2020 13:54:33 +0000
Received: from XCH-ALN-003.cisco.com (xch-aln-003.cisco.com [173.36.7.13]) by rcdn-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 03ODsXjp031799 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Fri, 24 Apr 2020 13:54:33 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-ALN-003.cisco.com (173.36.7.13) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 24 Apr 2020 08:54:33 -0500
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Fri, 24 Apr 2020 09:54:31 -0400
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Fri, 24 Apr 2020 09:54:31 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FY65yuRU5KuWBSPnazbNBzGoB3xC+VV8nYhuY3H7u8RkQLsvQ9AJiCP2g3GFDwI5eJgDaclPIK04wvhbOfzgqII2dswtdfnXtoHuCF5cBm3VUmLcLrHEFhjwQlSKX407r3Uh9jNDKARiNWYgkO0NbGzru1Tn6aSAEymO5npOH2tiT83YNPmThX6xE2eDj8uFCp90dwZf9C1/XDo0sAJDM5AcyAlom1+y4eQcIdHS3iqZG1bb5S2calna0TXXuLZTWq6LubY8tpB7y/HueF+TYJxmlXepcL/NWee8gJLZvHGjnSZ56potf2UpGKdz+s4DZeyQu88TruLhJFBanQUqpQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=h8fkkGmb33cuzW3BY3xDS+ydcH0QptwLIQ2LgRzCAzo=; b=KvGAIP1m5Zg+6MUNlD5aXh/toPWN64eEfweAjTP5msIOhzYSfUEBPG4PcIvZrEDz5yu3KX6EmOczPzedXeN4w/uURAwij1xMg0W5PInwNsnKzcT/jffOrIqYHTANTMgo8z6Fcv9ndy3xuZ6djKX8ydJn3obl2+Z2ga4c3AH62Hj4QaY0bqi4v8Hngu139Fbh0rdyql3v9HrRfDjq6RL6OreNLyI2RZXdq0BxkdqKLwfJ1OwITOzOKr4EwkvUg/Hvs3c1XkMAI8HfonKBSTft1chiDrW4lx+SbCqY6YBRmY8r622nfekWAZhQUV6eGHWIdkBLoiJHaaLwQKfwjbizcA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=h8fkkGmb33cuzW3BY3xDS+ydcH0QptwLIQ2LgRzCAzo=; b=kaKK8qReDhTFQkfCOtxa20Gf2gj9dlzjoRAPyLAgEolF4duQBxaS3tbYjgKacNMEbY5t14ZISCm0AJmYgbF1EQYssDQdNl2S0uPwVDubPnifrAATZ4bd3t+Q45onBEIXN1/u+O0OaN699mhh2shIAZYyCyf4QzTUzf8dfl6ewS4=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (2603:10b6:208:ea::31) by MN2PR11MB3856.namprd11.prod.outlook.com (2603:10b6:208:ef::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2921.29; Fri, 24 Apr 2020 13:54:29 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::113b:3127:ef12:ea7]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::113b:3127:ef12:ea7%7]) with mapi id 15.20.2921.030; Fri, 24 Apr 2020 13:54:29 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Benjamin Kaduk <kaduk@mit.edu>, Rene Struik <rstruik.ext@gmail.com>, Mohit Sethi <mohit.m.sethi@ericsson.com>
CC: "6lo-chairs@ietf.org" <6lo-chairs@ietf.org>, "Shwetha Bhandari (shwethab)" <shwethab@cisco.com>, Jim Schaad <ietf@augustcellars.com>, Erik Kline <ek@loon.com>, "6lo@ietf.org" <6lo@ietf.org>
Thread-Topic: AP-ND 22
Thread-Index: AdYaPBUI4IIn98FMRfifwO4scqbGqw==
Date: Fri, 24 Apr 2020 13:54:03 +0000
Deferred-Delivery: Fri, 24 Apr 2020 13:53:34 +0000
Message-ID: <MN2PR11MB3565BD638A8BCEE57216998BD8D00@MN2PR11MB3565.namprd11.prod.outlook.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [2a01:cb1d:4ec:2200:3585:716c:7b83:3f72]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 9419aca8-e170-481e-6e18-08d7e8570242
x-ms-traffictypediagnostic: MN2PR11MB3856:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <MN2PR11MB385605035C1BF8CBB4F1F369D8D00@MN2PR11MB3856.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 03838E948C
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB3565.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10009020)(4636009)(39860400002)(376002)(346002)(136003)(366004)(396003)(9686003)(86362001)(54906003)(66446008)(110136005)(99936003)(186003)(21615005)(4326008)(33656002)(478600001)(316002)(66476007)(71200400001)(55016002)(66576008)(66946007)(6506007)(76116006)(81156014)(64756008)(66556008)(6666004)(8936002)(5660300002)(2906002)(52536014)(7696005)(7066003)(8676002); DIR:OUT; SFP:1101;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: kQ35fUKkLoV9c40jhyoVDIR91+o/utGew1MaO5GSU9C4E7iy7gIA/uC3O5EsDwW5coru0r5QBVTredE6M4XPqYFno9BzAO8DBSQlWWnqsRziQhVbFrM1vTMsN+lgZUPYpi4JJGQIT4+ZqI8G3AhdQ6Zic7ml2/65g1YJwFyI0mMN0P1P2M5JU3m/pErVqXH9U7WKIl4VAXIEKjAbr62d/0gdob3Y7qn97vquPar+4rsknUU/BV1MF3X4ARXnJgbMazpGgv9HzY/q8aL+vn/CSqMJO62oI+FL4VYl/e0H3YXKv0aTrCXy4OwOJZYmwB2PLeN4Tze5DjgQmMe0w9CDa5UpMO75OIkWuGkVJBJIYAnGtWzzfZa5JYgIZB0XqtD/4+8iONE3BGdpTgnhbZ6zjeWlvD4fOpU2r/Q9sxQsiO95IqTPVwtvvFa0kkYd9UNAnO6wwPhNnlGoYPAhczTdwbQcxTbJ0tkad1XqOi+aCX19UbuDfPZlyFNUYL68YTh/tieabebCM+iWpcReehzeiQ==
x-ms-exchange-antispam-messagedata: oQO6ucfzogDjnVG+PDbPOPeQP7SlXBE7SHKt2T4jk1i7ETF7YZXjRPcTBfdiwVLdPebZXpuCz2uJfF8Wg+lYfn5JJcLnHJFuPTqWDmFn1CkYdcEq/8Cr/di7zcuoEFo19T+TB4qBAtHKOkHbpqXpvN1CvtJC2dh/qP6BqW8STU/JukReOdS8pgsn9MQSdY8YoMaLIr5P+lVbDeSSerrEcg==
Content-Type: multipart/mixed; boundary="_009_MN2PR11MB3565BD638A8BCEE57216998BD8D00MN2PR11MB3565namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 9419aca8-e170-481e-6e18-08d7e8570242
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Apr 2020 13:54:29.0883 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 8D4UUhwZUALq6QidTzdpKGS02oNDCcWN+koFMaDrmjK+/lOUmseBgNaRe/n14YAm76wrS/gmsDu4AMmIuOUv8A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3856
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.13, xch-aln-003.cisco.com
X-Outbound-Node: rcdn-core-4.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/6lo/Yn0a_egRSemQITgLvLVu78XtqjI>
Subject: [6lo] AP-ND 22
X-BeenThere: 6lo@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Mailing list for the 6lo WG for Internet Area issues in IPv6 over constrained node networks." <6lo.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lo>, <mailto:6lo-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6lo/>
List-Post: <mailto:6lo@ietf.org>
List-Help: <mailto:6lo-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lo>, <mailto:6lo-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Apr 2020 13:54:44 -0000

Hello Benjamin (and 6lo)

We are soliciting your help on AP ND for hopefully the last time, about the last step, that was supposed to be the IANA section that was missing for JOSE and Crypto Type 2.

Rene worked quite a bit with Jim and the conclusion that I made from that is that the formats that we already discussed in appendix B (SEC1) were better suited than JOSE (or COSE) and avoided both the registry issue and gaps in the existing specifications.

We had a conversation yesterday with our AD (Erik) and Shepherd (Shwetha) and we agreed to give a try at using those formats for -22. The conclusion that it looked OK but we need a validation that the new key and signature formats do not alter the security of the spec.

So there we go; 20 being the version that made it through IESG, and 21 the increments that you already reviewed and provides encoding agility, please find the proposed 22 attached and the diff between the proposed 22 and either 20 or 21.

The main diffs from 21 are
 - the removal of JWK,
 - a discussion on brown field that basically indicates that a back level 6LR constitutes a breach in the perimeter, meaning that all 6LRs need to be upgraded.
 - the J flag from 21 is gone, since we dropped JWK and dismissed the idea of operating AP ND in a brown field.

Can you please have a look and validate that we did OK?

Many, many thanks for all your help throughout!

Pascal, Rene and Mohit


[cid:image001.png@01D61A4E.1282C6A0]
Pascal Thubert
PRINCIPAL ENGINEER.ENGINEERING
pthubert@cisco.com<mailto:pthubert@cisco.com>
Tel: +33 49 723 2634
 cisco.com
Cisco Systems, Inc.
45 All Des Ormes Regus Centre
BP1200
06250 MOUGINS CEDEX
France
[cid:image002.gif@01D61A4E.1282C6A0]
Think before you print.
This email may contain confidential and privileged material for the sole use of the intended recipient. Any review, use, distribution or disclosure by others is strictly prohibited. If you are not the intended recipient (or authorized to receive for the recipient), please contact the sender by reply email and delete all copies of this message.
Please click here<http://www.cisco.com/c/en/us/about/legal/terms-sale-software-license-agreement/company-registration-information.html> for Company Registration Information.