[6tisch] Terminology for minimal security
Mohit Sethi <mohit.m.sethi@ericsson.com> Mon, 10 April 2017 08:31 UTC
Return-Path: <mohit.m.sethi@ericsson.com>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E1CF127869 for <6tisch@ietfa.amsl.com>; Mon, 10 Apr 2017 01:31:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.322
X-Spam-Level:
X-Spam-Status: No, score=-2.322 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XxxW7pblwoLP for <6tisch@ietfa.amsl.com>; Mon, 10 Apr 2017 01:31:30 -0700 (PDT)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF215127698 for <6tisch@ietf.org>; Mon, 10 Apr 2017 01:31:29 -0700 (PDT)
X-AuditID: c1b4fb30-ea83298000006667-5d-58eb42e066ce
Received: from ESESSHC016.ericsson.se (Unknown_Domain [153.88.183.66]) by (Symantec Mail Security) with SMTP id F7.4B.26215.0E24BE85; Mon, 10 Apr 2017 10:31:28 +0200 (CEST)
Received: from nomadiclab.fi.eu.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.68) with Microsoft SMTP Server id 14.3.339.0; Mon, 10 Apr 2017 10:32:01 +0200
Received: from nomadiclab.fi.eu.ericsson.se (localhost [127.0.0.1]) by nomadiclab.fi.eu.ericsson.se (Postfix) with ESMTP id EDB964EB0B; Mon, 10 Apr 2017 11:33:58 +0300 (EEST)
Received: from [127.0.0.1] (localhost [127.0.0.1]) by nomadiclab.fi.eu.ericsson.se (Postfix) with ESMTP id 8B7CA4E94F; Mon, 10 Apr 2017 11:33:58 +0300 (EEST)
To: 6tisch@ietf.org, malisa.vucinic@inria.fr
From: Mohit Sethi <mohit.m.sethi@ericsson.com>
Message-ID: <cb72c154-5a7e-9493-95f4-384bc3ba9543@ericsson.com>
Date: Mon, 10 Apr 2017 11:31:26 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: ClamAV using ClamSMTP
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrKLMWRmVeSWpSXmKPExsUyM2K7k+4Dp9cRBnt3C1ssu9vHbLHz/GUm ByaPJUt+MnlMenGIJYApissmJTUnsyy1SN8ugSvj7oxHjAULOSouz13O3MC4l62LkYNDQsBE Yv0FqS5GTg4hgfWMEnu/KHYxcgHZOxglPi4+zgrhbGKUOLNpChOEs5BR4viJ48wgLSICBhIb V71jArHZBPQkOs9BxIUFNCXePJ3BAmLzCthLvPu4CizOIqAqcahpAZgtKhAh8bBzFztEjaDE yZlPwOqZBSwkZs4/zwhhy0tsfzsHrF5CQE3i6rlNzBCnqkts7TjAOIFRYBaS9llI2mchaV/A yLyKUbQ4tTgpN93ISC+1KDO5uDg/Ty8vtWQTIzAwD275bbCD8eVzx0OMAhyMSjy8D9a9ihBi TSwrrsw9xCjBwawkwhvq8DpCiDclsbIqtSg/vqg0J7X4EKM0B4uSOK/jvgsRQgLpiSWp2amp BalFMFkmDk6pBsZJnLWqex1toiLyPJX+5foeuOvJKMzOzZUVve2Txb82bcXo7sVPRdepaGtV BLhN7bCbb+2lwvp+wfX25eqXP1iLnGq6V+Mp/b3Mhk25+GHwqo0Oyu05FsfmTTSf2Hv1IQO/ q826I8e/BT27tf/St4MzQ2M1v7q56s2/J2v0q5NBV1X9hM76t0osxRmJhlrMRcWJACGNDqhI AgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch/2kRR0UuhS9h96ivBBof15beHPNk>
Subject: [6tisch] Terminology for minimal security
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Apr 2017 08:31:31 -0000
Hi Malisa I am now reviewing the minimal security as well as the OSCoAP and EDHOC documents. While it will still take some time for me send out a detailed review, I have some comments on the confusing terminology used in your presentation. First, the slides where you explain key generation at pledge. What is the "Key" on the slide? How is this "Key" different from the PSK? The slide says key generation but use a HKDF. Which one is it? Key generation or derivation? Do you use them interchangeably? Also for the Nonce generation slides and in the draft, please say explicitly "AEAD Nonce" so that it is not confused with the nonces used in TLS and EDHOC handshakes. Those nonces need to be fresh random bytes while the AEAD nonce only needs to be unique for each invocation of AEAD. These terms maybe well understood and trivial for those working on the drafts, for others these can be confusing. I have a separate question on uniqueness of AEAD nonce that I would send out on the CoRE mailing list. --Mohit
- Re: [6tisch] Terminology for minimal security Mališa Vučinić
- [6tisch] Terminology for minimal security Mohit Sethi