IETF Logo Mail Archive

Re: [6tisch-security] minimal security draft

Mališa Vučinić <malisa.vucinic@inria.fr> Thu, 09 February 2017 13:58 UTC

Return-Path: <malisa.vucinic@inria.fr>
X-Original-To: 6tisch-security@ietfa.amsl.com
Delivered-To: 6tisch-security@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 14B6F129A28 for <6tisch-security@ietfa.amsl.com>; Thu, 9 Feb 2017 05:58:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.899
X-Spam-Level:
X-Spam-Status: No, score=-6.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hp7SyPCSaBM2 for <6tisch-security@ietfa.amsl.com>; Thu, 9 Feb 2017 05:58:31 -0800 (PST)
Received: from mail3-relais-sop.national.inria.fr (mail3-relais-sop.national.inria.fr [192.134.164.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F184C129A11 for <6tisch-security@ietf.org>; Thu, 9 Feb 2017 05:58:30 -0800 (PST)
X-IronPort-AV: E=Sophos;i="5.35,349,1484002800"; d="scan'208,217";a="212644993"
Received: from unknown (HELO [128.93.85.17]) ([128.93.85.17]) by mail3-relais-sop.national.inria.fr with ESMTP/TLS/DHE-RSA-AES256-SHA; 09 Feb 2017 14:58:29 +0100
Content-Type: multipart/alternative; boundary="Apple-Mail=_E44440DB-7262-49D4-9FCA-5F996568EE18"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Mališa Vučinić <malisa.vucinic@inria.fr>
In-Reply-To: <22684.27510.499873.955382@fireball.acr.fi>
Date: Thu, 09 Feb 2017 14:58:28 +0100
Message-Id: <44AF5DF7-CA08-403F-ABD1-5E6E07B83797@inria.fr>
References: <1f99708ffbacaa7235d05b535f669291@xs4all.nl> <6D6AE790-1234-403B-9429-992B4E168AF3@inria.fr> <22684.27510.499873.955382@fireball.acr.fi>
To: Tero Kivinen <kivinen@iki.fi>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch-security/4ewtP888lcTPOF2F7dy2A_e-Kb8>
Cc: 6tisch Security <6tisch-security@ietf.org>, consultancy@vanderstok.org
Subject: Re: [6tisch-security] minimal security draft
X-BeenThere: 6tisch-security@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Extended Design Team for 6TiSCH security architecture <6tisch-security.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch-security/>
List-Post: <mailto:6tisch-security@ietf.org>
List-Help: <mailto:6tisch-security-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Feb 2017 13:58:33 -0000

Thanks, Tero. I created an issue in the bitbucket so we will resolve this with the next published version.

For minimal, I propose that we limit the document to either implicit or KeyIndex mode and use the kid parameter of COSE_Key struct to identify the value of the index. If kid is not present -> use implicit mode, if kid is present use it for KeyIndex mode. What do you think?

Mališa

> On 09 Feb 2017, at 14:15, Tero Kivinen <kivinen@iki.fi> wrote:
> 
> You would also need to have 802.15.4 specific key identification
> information, i.e. the KeyIdMode, KeyIndex (if KeyIdMode is not 0) and
> KeySource (if KeyIdMode is 2 or 3).

v2.23.0 | Report a Bug | By Email