Re: [6tisch] #32 (terminology): New terms for security
Qin Wang <qinwang6top@yahoo.com> Fri, 19 December 2014 14:42 UTC
Return-Path: <qinwang6top@yahoo.com>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 389141A8947 for <6tisch@ietfa.amsl.com>; Fri, 19 Dec 2014 06:42:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.009
X-Spam-Level:
X-Spam-Status: No, score=-2.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ohwlZ351Ttgy for <6tisch@ietfa.amsl.com>; Fri, 19 Dec 2014 06:42:47 -0800 (PST)
Received: from nm4.bullet.mail.bf1.yahoo.com (nm4.bullet.mail.bf1.yahoo.com [98.139.212.163]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4FDC81A8943 for <6tisch@ietf.org>; Fri, 19 Dec 2014 06:42:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s2048; t=1419000166; bh=exgSeOZJwTv32flfsSxGu+huXci7EFjn7HSu8KrRPrc=; h=Date:From:Reply-To:To:Cc:In-Reply-To:References:Subject:From:Subject; b=dBpuvlyYC8mtHraHd1NotJaXFxpyheACD0IU7G3Ex9DZFzSc2UctA6aEoRii/CoMQWnXtOzFaz+Dt1RaOXi+OiHcVWctmTAujcgNO3H5b34e5Z759YIh86MPJfiQAA0UeDcD5ihcV16mC503+dccLAv+4zuGVUWoepLWZo/JNUNnT7c9UvxeXg0I4PtUZ0t9k7z5rRg37bTHbBJ382Kv7a5QmDmg/k3xwDg+/y0l24hl4fOBKpOzEjQNUTsKp5LDtzv4EcHQdblUE0gCaVp7DwaWe5H+vZ85GMYjJsyNJs3RBCRdoYEzu1kv0oxPwa7LoX59u9DkrnFm7J4e0JUWGA==
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s2048; d=yahoo.com; b=l03aV4cdCNcmcf5X/qeeN9XcQ2XImT8+U131DynOlHsM5O+syfl5FAQpDF4r4q+i3pg64BbvTIi7Tqbrmv9dmdM0a2hz0BQV6dyN/vBfBlEXYs32+KPga9NaATUJWyBOoKbMYZhRCEgtNrwrlx3dk6CjwD9UaUt9xlsEHXJ1+6YUGrqHyrTvB8o0tn6XPxPTJv4AzSZ+cZaSn/U9P5i1A81FBjbYe2wGRV5RUALEEWGJ/mNMtA/AQbmfeuVVv6UfXnEF4P7BdaohItGo206+22SnBc4OTtvSFPbnZi3ueu0H5ofXmSy3/mxq2iFeDyyVsUYb8pY/9tI50ME53WwaMw==;
Received: from [98.139.215.143] by nm4.bullet.mail.bf1.yahoo.com with NNFMP; 19 Dec 2014 14:42:46 -0000
Received: from [98.139.212.237] by tm14.bullet.mail.bf1.yahoo.com with NNFMP; 19 Dec 2014 14:42:46 -0000
Received: from [127.0.0.1] by omp1046.mail.bf1.yahoo.com with NNFMP; 19 Dec 2014 14:42:46 -0000
X-Yahoo-Newman-Property: ymail-3
X-Yahoo-Newman-Id: 455530.44039.bm@omp1046.mail.bf1.yahoo.com
X-YMail-OSG: gIKYtnEVM1ma.Fk_72HV7_GNex2R14oGSU_w.fK_qM0_6rJPZusk8DRczoM66YW xIReP1slfFD2Sqd5QLmAA.5DVjgE8WZQmQoInJ6792wKV.VInb.oxvr99BlmrqnwkdQpVFLzKkyE U9pQXKhEQceNA50tDVf8D98s21I2Z1fQn_OrWCRbVUpCjAZykJDyyD5WdjP0VST4UDZnp7b.Iuiw k7Dka4Z1_q56kICC68EwE.E8T0Qw0sdWRJqQArAn1Z_xDqFe3TeFlEF_L.t6gm4Ky63z3ixDLndt bmdb03xx2RiDxY6JLB77emwOfs.yyXg5b_lOlQsbi_0WlV572Ng2egPt5Ky.S.scCMgD2MqAUiko 8IuqAAohUDFM16cCHflle0h598agnvMwr4SBVcTIxk4xYQLWWS5XAWovEhL5gRcdSIwnBebAZuN2 W_SnNI45zwLlvAfFrlobye00ByJppeM.hplcPsyr7JQCnSXRQlbRC69ez
Received: by 66.196.80.121; Fri, 19 Dec 2014 14:42:46 +0000
Date: Fri, 19 Dec 2014 14:42:45 +0000
From: Qin Wang <qinwang6top@yahoo.com>
To: Thomas Watteyne <watteyne@eecs.berkeley.edu>, "Pascal Thubert (pthubert)" <pthubert@cisco.com>
Message-ID: <1621842411.1310198.1419000165377.JavaMail.yahoo@jws106122.mail.bf1.yahoo.com>
In-Reply-To: <CADJ9OA9ULEn+Y7j+WanwN68aNEPh-4CM0Q50eMU=-AJenYGf2A@mail.gmail.com>
References: <CADJ9OA9ULEn+Y7j+WanwN68aNEPh-4CM0Q50eMU=-AJenYGf2A@mail.gmail.com>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="----=_Part_1310195_225504770.1419000165364"
Archived-At: http://mailarchive.ietf.org/arch/msg/6tisch/56kti2WpzGrNbgcvY68gbrQ88Qg
Cc: "6tisch@ietf.org" <6tisch@ietf.org>
Subject: Re: [6tisch] #32 (terminology): New terms for security
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: Qin Wang <qinwang6top@yahoo.com>
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Dec 2014 14:42:50 -0000
+1
Qin
On Friday, December 19, 2014 8:56 PM, Thomas Watteyne <watteyne@eecs.berkeley.edu> wrote:
+1 on Pascal's suggestions.
Maria Rita, are those definitions you would have time to add to the draft?
On Sat, Dec 6, 2014 at 1:22 AM, Pascal Thubert (pthubert) <pthubert@cisco.com> wrote:
My own revue:
Cheers
> > JCE the Join Coordination Entity. This acronym is
> > chosen to parallel the PCE.
[PT] I'd remove "This acronym is chosen to parallel the PCE." And say that this is a central entity like the PCE that is in charge of authorization in the network and providing security material to the joining devices.
> > joining node The newly unboxed constrained node that needs to
> > join a network.
[PT] The joining node (JN) leverages the JA and the JCE to learn or refresh its knowledge of the network operational state, typically the TSCH schedule, and to obtain security material such as keys, so as to participate to the production network.
> > join protocol the protocol which secures initial communication
> > between the joining node and the JCE
> >
> > join assistant A constrained node near the joining node that
> > will act as it's first 6LR, and will relay
> > traffic to/from the joining node.
> >
[PT] Again, add the acronym
> > unique join key a key shared between a newly joining node, and
> > the JCE. This key supports smaller installations
> > for which asymmetric methods are considered too
> > large
> >
> > production network A 802.15.4e network whose encryption/
> > authentication keys are determined by some
> > algorithm/protocol. There may have network-wide
> > group keys, or per-link keys.
> >
> > production network key A L2-key known by all authorized nodes, used
> > for multicast messages
> >
> > per-peer L2 key a key that results from an exchange (such as MLE)
> > that creates a pair-wise L2 key which is known
> > only to the two nodes involved,
> > [I-D.piro-6tisch-security-issues] calls this a
> > LinkKey
> >
> > The following terms are used in this document and come from other
> > documents:
> >
> > DevID [IEEE.802.1AR] defines the secure DEVice
> > IDentifier as a device identifier that is
> > cryptographically bound to the device and is
> > composed of the Secure Device Identifier Secret
> > and the Secure Device Identifier Credential.
> >
> > IDevID The Initial secure DEVice IDentifier (IDevID) is
> > the Device Identifier which was installed on the
> > device by the manufacturer.
> >
> > LDevID A Locally significant secure DEVice IDentifiers
> > (LDevIDs) is a Secure Device Identifier
> > credential that is unique in the local
> > administrative domain in which the device is
> > used. The LDevID is usually a new certificate
> > provisioned by some local means, such as the 6top
> > mechanism defined in this document.
> >
> > CoAP The CoAP protocol, defined in [RFC7252] is an
> > HTTP-like resource access protocol. CoAP runs
> > over UDP.
> >
> > DTLS The datagram version of TLS, defined in
> > [RFC6347], and which can be used to secure CoAP
> > in the same way that TLS secures HTTP.
> >
> > ARO [RFC6775]defines a number of new Neighbor
> > Discovery options including the Address
> > Registration Option
> >
> > DAR/DAC [RFC6775]defines the Duplicate Address Request
> > and Duplicate Address Confirmation options to
> > turn the multicasted Duplicate Address Detection
> > protocol into a client/server process
> >
> > EARO [I-D.thubert-6lo-rfc6775-update-reqs]extends the
> > ARO option to include some additional fields
> > necessary to distinguish duplicate addresses from
> > nodes that have moved networks when there are
> > mulitple LLNs linked over a backbone.
> >
> > --
> > -------------------------------------------------+----------------------
> > -------------------------------------------------+---
> > Reporter: Michael Richardson | Owner:
> > <mcr+ietf@sandelman.ca> | pthubert@cisco.com
> > Type: defect | Status: new
> > Priority: major | Milestone:
> > Component: terminology | Version:
> > Severity: Active WG Document | Keywords:
> > -------------------------------------------------+----------------------
> > -------------------------------------------------+---
> >
> > Ticket URL: <http://trac.tools.ietf.org/wg/6tisch/trac/ticket/32>
> > 6tisch <http://tools.ietf.org/6tisch/>
>
> _______________________________________________
> 6tisch mailing list
> 6tisch@ietf.org
> https://www.ietf.org/mailman/listinfo/6tisch
_______________________________________________
6tisch mailing list
6tisch@ietf.org
https://www.ietf.org/mailman/listinfo/6tisch
_______________________________________________
6tisch mailing list
6tisch@ietf.org
https://www.ietf.org/mailman/listinfo/6tisch
- Re: [6tisch] #32 (terminology): New terms for sec… Pascal Thubert (pthubert)
- Re: [6tisch] #32 (terminology): New terms for sec… Pascal Thubert (pthubert)
- Re: [6tisch] #32 (terminology): New terms for sec… Thomas Watteyne
- Re: [6tisch] #32 (terminology): New terms for sec… Qin Wang
- Re: [6tisch] #32 (terminology): New terms for sec… Rene Struik
- Re: [6tisch] #32 (terminology): New terms for sec… Michael Richardson
- Re: [6tisch] #32 (terminology): New terms for sec… Pat Kinney
- Re: [6tisch] #32 (terminology): New terms for sec… Michael Richardson
- Re: [6tisch] #32 (terminology): New terms for sec… Pat Kinney