Re: [6lowpan] IEEE 802.15.9 KMP over 802.15.4 and 802.15.7 approved

Robert Cragie <robert.cragie@gridmerge.com> Mon, 14 November 2011 17:30 UTC

Return-Path: <robert.cragie@gmail.com>
X-Original-To: 6lowpan@ietfa.amsl.com
Delivered-To: 6lowpan@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F8F111E8314 for <6lowpan@ietfa.amsl.com>; Mon, 14 Nov 2011 09:30:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.676
X-Spam-Level:
X-Spam-Status: No, score=-2.676 tagged_above=-999 required=5 tests=[AWL=0.300, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gXszm1t+X435 for <6lowpan@ietfa.amsl.com>; Mon, 14 Nov 2011 09:30:15 -0800 (PST)
Received: from mail-vw0-f44.google.com (mail-vw0-f44.google.com [209.85.212.44]) by ietfa.amsl.com (Postfix) with ESMTP id 8B2E611E8301 for <6lowpan@ietf.org>; Mon, 14 Nov 2011 09:30:15 -0800 (PST)
Received: by vws5 with SMTP id 5so6318739vws.31 for <6lowpan@ietf.org>; Mon, 14 Nov 2011 09:30:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:reply-to:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:cc:content-type; bh=lL92kZVZlTeUU677xsyjdTg6/hid/WUcBJrEnQ/VULM=; b=MAnI42Pvi3UcdLbJKlpkOyVAeEDG87bG6h4DxpKzq4ibZz+iTSudBzJXCXcdQsmP2P 9BRkjAkQ2yd40s8NJcY+/Hwylr1beI6v2zlZppsmrmRDSQk+ulIEububAKrp+Dtqd0aa /m/afzzC7IryCWN2FCsEJZjrAF6OQS14XYX7I=
MIME-Version: 1.0
Received: by 10.52.37.165 with SMTP id z5mr35654674vdj.117.1321291813975; Mon, 14 Nov 2011 09:30:13 -0800 (PST)
Sender: robert.cragie@gmail.com
Received: by 10.220.188.202 with HTTP; Mon, 14 Nov 2011 09:30:13 -0800 (PST)
In-Reply-To: <4EC145FC.4030601@labs.htt-consult.com>
References: <4EBD7EC9.4090705@labs.htt-consult.com> <7122CCCC-BF56-4A67-B255-DF126BEA495D@yegin.org> <4EC145FC.4030601@labs.htt-consult.com>
Date: Mon, 14 Nov 2011 17:30:13 +0000
X-Google-Sender-Auth: NJGyq3cGX7OrvzFrQdppYwJp9Xs
Message-ID: <CADrU+d++Z4gVVeQmu0nh2Y9kxsSyaEFKwtnP+y3SAtMzs9iYCA@mail.gmail.com>
From: Robert Cragie <robert.cragie@gridmerge.com>
To: Robert Moskowitz <rgm@labs.htt-consult.com>
Content-Type: multipart/alternative; boundary=bcaec51d281a3775c904b1b5394b
Cc: 6lowpan@ietf.org
Subject: Re: [6lowpan] IEEE 802.15.9 KMP over 802.15.4 and 802.15.7 approved
X-BeenThere: 6lowpan@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: robert.cragie@gridmerge.com
List-Id: Working group discussion for IPv6 over LowPan networks <6lowpan.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6lowpan>, <mailto:6lowpan-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/6lowpan>
List-Post: <mailto:6lowpan@ietf.org>
List-Help: <mailto:6lowpan-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6lowpan>, <mailto:6lowpan-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 14 Nov 2011 17:30:19 -0000

Bob,

I have to say I object to the following statement in the PAR:

"Lack of key management support in IEEE Std 802.15.4 and IEEE Std 802.15.7
results in weak keys which is a common avenue for attacking the security
system."

"results in weak keys" implies this is always the case, which is simply not
true. This should be rephrased as "may result in weak keys". Users of
802.15.4 such as ZigBee have put in place a KMP which does not result in
weak keys,

And I agree with Alper - if you are mentioning IETF and 802.1X, you really
have to mention PANA as it is entirely relevant.

Robert

On Mon, Nov 14, 2011 at 4:46 PM, Robert Moskowitz
<rgm@labs.htt-consult.com>wrote;wrote:

> **
> On 11/14/2011 03:17 PM, Alper Yegin wrote:
> >
> > Hi Bob,
> >
> > This PAR document still does not refer to IETF's PANA (IETF RFC that
> > is already adopted by the Zigbee IP spec.) I'm hoping the PAR changes
> > you are referring are already addressing that. Please let us know.
>
> It was a procedural question as to what is 'wanted' here.  Strictly IEEE
> standards or broader interpretation?  The 802EC clearified that a broader
> inclusion was desired so words have been added to point out that Zibgee IP
> has addressed this within their upper layer.  A 'literal' interpretation
> was that 802.1X does not work over 802.15.4 or 15.7 so there was no
> comparable standard.
>
> Also 802.1 pointed out the need to include the potential need of an
> Registry Authority (6.1b) and that too was added.  The final posted PAR
> will reflect these two changes.
>
>
> >
> > Thanks.
> >
> > Alper
> >
> >
> > On Nov 11, 2011, at 10:00 PM, Robert Moskowitz wrote:
> >
> >> The IEEE 802ec approved the PAR this afternoon. The PAR documents
> >> are at:
> >>
> >>
> https://mentor.ieee.org/802.15/dcn/11/15-11-0613-05-0kmp-key-management-protocol-par.doc
> >>
> >>
> https://mentor.ieee.org/802.15/dcn/11/15-11-0665-05-0kmp-kmp-5c-draft.doc
> >>
> >> We did agree to two procedural changes in the PAR, so there will be
> >> a rev 6 posted sometime soon.
> >>
> >>
> >> _______________________________________________ 6lowpan mailing
> >> list 6lowpan@ietf.org
> >> https://www.ietf.org/mailman/listinfo/6lowpan
> >
> >
>
>
> _______________________________________________
> 6lowpan mailing list
> 6lowpan@ietf.org
> https://www.ietf.org/mailman/listinfo/6lowpan
>
>


-- 

Robert Cragie

Gridmerge Ltd.
89 Greenfield Crescent,
Wakefield, WF4 4WA, UK
+44 1924 910888
+1 415 513 0064
http://www.gridmerge.com