IETF Logo Mail Archive

Re: [6tisch-security] EALS and how to go from 6tisch-minimal-security to zero-touch enrollment

Mališa Vučinić <malisa.vucinic@inria.fr> Mon, 20 March 2017 13:13 UTC

Return-Path: <malisa.vucinic@inria.fr>
X-Original-To: 6tisch-security@ietfa.amsl.com
Delivered-To: 6tisch-security@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 66FD5131475 for <6tisch-security@ietfa.amsl.com>; Mon, 20 Mar 2017 06:13:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id whK94z5B_HaJ for <6tisch-security@ietfa.amsl.com>; Mon, 20 Mar 2017 06:13:38 -0700 (PDT)
Received: from mail3-relais-sop.national.inria.fr (mail3-relais-sop.national.inria.fr [192.134.164.104]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 67374126FDC for <6tisch-security@ietf.org>; Mon, 20 Mar 2017 06:13:37 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.36,194,1486422000"; d="scan'208,217";a="217367237"
Received: from unknown (HELO [128.93.85.17]) ([128.93.85.17]) by mail3-relais-sop.national.inria.fr with ESMTP/TLS/DHE-RSA-AES256-SHA; 20 Mar 2017 14:13:34 +0100
Content-Type: multipart/alternative; boundary="Apple-Mail=_4C0CD106-B1F0-4F30-BA50-E1A081B7CEDF"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Mališa Vučinić <malisa.vucinic@inria.fr>
In-Reply-To: <19411.1489268391@obiwan.sandelman.ca>
Date: Mon, 20 Mar 2017 14:13:33 +0100
Cc: 6tisch Security <6tisch-security@ietf.org>
Message-Id: <7E6CC32A-020E-4437-8972-1FD40991D198@inria.fr>
References: <D4E34D31.783F2%goran.selander@ericsson.com> <7579.1488907684@obiwan.sandelman.ca> <14442.1489106136@obiwan.sandelman.ca> <07EC7DD8-F0B2-4CFB-A402-1CBB50729CE1@inria.fr> <19411.1489268391@obiwan.sandelman.ca>
To: Michael Richardson <mcr+ietf@sandelman.ca>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch-security/sZDlw2o4t2rqk4G07RvypVOM7-g>
Subject: Re: [6tisch-security] EALS and how to go from 6tisch-minimal-security to zero-touch enrollment
X-BeenThere: 6tisch-security@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Extended Design Team for 6TiSCH security architecture <6tisch-security.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch-security/>
List-Post: <mailto:6tisch-security@ietf.org>
List-Help: <mailto:6tisch-security-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 20 Mar 2017 13:13:40 -0000

> On 11 Mar 2017, at 22:39, Michael Richardson <mcr+ietf@sandelman.ca> wrote:
> 
> Your description is too simple, and I don't think it makes any sense to put
> it here. I think it should simply refer to dtsecurity-secure-join.

I think that we definitely need to expand somewhere on the security handshake in minimal-security document, it is a matter of preference where the section should exactly go. The overview sections only show the security handshake as a single transaction between JRC and the pledge. I’ve put the expanded security handshake in the current place in order to precede the simple join protocol section that similarly expands on the join request/response exchange. What part do you find too simple? The paragraph on special certificate being issued to JRC? If so, what text do you propose to replace that?

> As for the Discovery Message, this seems reasonable.
> Is this process optional, or is it caused by the init bit in the EB being
> clear?

To my understanding, init bit is there to differentiate between the minimal-security and NS DAD dtsecurity-secure-join processes. Ideally, I think it would be great if we could converge on the initiation process between the two documents with the Discovery Message, therefore removing the need for the init bit. In minimal-security, Discovery Message is mandatory *when* performing the security handshake. The security handshake, however, is optional and is performed in case the pledge was provisioned with asymmetric keys. The decision what message to send first, i.e. the Discovery Message or the Join Request, is internal to the pledge and depends on the credential it has been provisioned with. 

> It needs to have a mandatory reply so that the pledge knows that it has
> succeeded in reaching the JRC.  

The reply to the Discovery Message is either an empty CoAP ACK signaling to the pledge it has reached the JRC but needs to wait, or an immediate response from JRC initiating the EDHOC handshake. Either way, pledge knows it has succeeded in reaching JRC. Which response JRC opts for could be dependent on how many pledges are currently enrolling.

> A reply from the JRC might also need to
> indicate that the pledge should proceed to initiate?

I don’t understand, could you elaborate?

v2.23.0 | Report a Bug | By Email