Re: [6tisch] Progress zero-touch document

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Tue, 02 April 2019 15:03 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9AC4C120159 for <6tisch@ietfa.amsl.com>; Tue, 2 Apr 2019 08:03:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.502
X-Spam-Level:
X-Spam-Status: No, score=-14.502 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=EH209xn/; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=cNpqef57
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wsCFwfRd4tjP for <6tisch@ietfa.amsl.com>; Tue, 2 Apr 2019 08:03:52 -0700 (PDT)
Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 18560120156 for <6tisch@ietf.org>; Tue, 2 Apr 2019 08:03:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=4906; q=dns/txt; s=iport; t=1554217432; x=1555427032; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=CdOfAKgC5+76VkmxUZzwT8dasbcEv+5D2NJHgjOpU1g=; b=EH209xn/tMx1rdA0LDIVvkGSSAH/U4Nf+S0+OsXquRqgL01cvHnzOXYe /GnV/qpZXY4t4D5F7vAS60MGOAaCw9uT+vqVfIbxEnjvhd4iO6KmZguSA pDJ4I14gcqsu4zpO1knpSceXMM8YQkyHRywb95A6l/prqWfg9ajD77WeF w=;
IronPort-PHdr: =?us-ascii?q?9a23=3AUMl5UhfiiayHSgvwORZT/MAilGMj4e+mNxMJ6p?= =?us-ascii?q?chl7NFe7ii+JKnJkHE+PFxlwGQD57D5adCjOzb++D7VGoM7IzJkUhKcYcEFn?= =?us-ascii?q?pnwd4TgxRmBceEDUPhK/u/dzA6Ac5PTkNN9HCgOk8TE8H7NBXf?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0BdAABOeKNc/5ldJa1lGgEBAQEBAgE?= =?us-ascii?q?BAQEHAgEBAQGBZYE+UANodAQLJ4QOg0cDjziCV5cRglIDVA4BARgLCYN6RgI?= =?us-ascii?q?XhSUiOBIBAQMBAQkBAwJtHAyFSgEBAQEDAQEhEQwBASUHCwELBAIBCBEBAwE?= =?us-ascii?q?BAQICJgICAiULFQIGCAIEDgUIE4MIgV0DFQECDKMGAooUcYEvgnkBAQWBMQE?= =?us-ascii?q?TQYMHGIIMAwWBCySEXoZVF4FAP4ERRoJMPoJhAQECAQGBX4MIMYIEIoo+gke?= =?us-ascii?q?YUgkCh3KMDpQ4kVyNRgIEAgQFAg4BAQWBZCGBVnAVO4JsggqDboUUhT9yDIE?= =?us-ascii?q?cjzEBAQ?=
X-IronPort-AV: E=Sophos;i="5.60,301,1549929600"; d="scan'208";a="254488265"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 02 Apr 2019 15:03:50 +0000
Received: from XCH-RCD-013.cisco.com (xch-rcd-013.cisco.com [173.37.102.23]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id x32F3ocq002051 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 2 Apr 2019 15:03:50 GMT
Received: from xhs-aln-001.cisco.com (173.37.135.118) by XCH-RCD-013.cisco.com (173.37.102.23) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 2 Apr 2019 10:03:49 -0500
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by xhs-aln-001.cisco.com (173.37.135.118) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Tue, 2 Apr 2019 10:03:49 -0500
Received: from NAM03-CO1-obe.outbound.protection.outlook.com (72.163.14.9) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Tue, 2 Apr 2019 10:03:49 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector1-cisco-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=CdOfAKgC5+76VkmxUZzwT8dasbcEv+5D2NJHgjOpU1g=; b=cNpqef57ZY1+DykR2OXPWhs3SeW/xP4MTNo0l5NSsARIqWuGJKf3qLxN2y8bbgnWKaBcMDrLO9a9YRJI84f55IF0IntQd5auoofLnXRNBPxLRcplBvDLEz19XrPNU8e1xerKctgvJA1+4ythHZYPHlzIkxZn391H39g/ynGlY40=
Received: from MN2PR11MB3565.namprd11.prod.outlook.com (20.178.250.159) by MN2PR11MB3632.namprd11.prod.outlook.com (20.178.251.211) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1750.17; Tue, 2 Apr 2019 15:03:48 +0000
Received: from MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::975:4644:7891:e2b1]) by MN2PR11MB3565.namprd11.prod.outlook.com ([fe80::975:4644:7891:e2b1%3]) with mapi id 15.20.1750.017; Tue, 2 Apr 2019 15:03:48 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: =?utf-8?B?TWFsacWhYSBWdcSNaW5pxIc=?= <malisa.vucinic@inria.fr>
CC: Michael Richardson <mcr+ietf@sandelman.ca>, 6tisch <6tisch@ietf.org>
Thread-Topic: [6tisch] Progress zero-touch document
Thread-Index: AQHU6VNtE8HY08QcQki/mXT6U/kPJaYo261QgAAa4QCAAADMwA==
Date: Tue, 2 Apr 2019 15:03:45 +0000
Deferred-Delivery: Tue, 2 Apr 2019 15:03:43 +0000
Message-ID: <MN2PR11MB35658194A6641FA3E55E8B9BD8560@MN2PR11MB3565.namprd11.prod.outlook.com>
References: <800982CD-FCE1-48AC-A4BB-0FE249685806@inria.fr> <MN2PR11MB35658B0DF7F6F9B1BB98DFA7D8560@MN2PR11MB3565.namprd11.prod.outlook.com> <EA21C160-4976-4B48-AE32-9DD02086F5FD@inria.fr>
In-Reply-To: <EA21C160-4976-4B48-AE32-9DD02086F5FD@inria.fr>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pthubert@cisco.com;
x-originating-ip: [2001:420:44f3:1300:552f:ff32:b86:aad7]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 7f065266-f5eb-43bd-e6ed-08d6b77c68d6
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600139)(711020)(4605104)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:MN2PR11MB3632;
x-ms-traffictypediagnostic: MN2PR11MB3632:
x-ms-exchange-purlcount: 5
x-microsoft-antispam-prvs: <MN2PR11MB36323AB749A54C54F86673F5D8560@MN2PR11MB3632.namprd11.prod.outlook.com>
x-forefront-prvs: 0995196AA2
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(346002)(396003)(376002)(39860400002)(366004)(199004)(189003)(52054003)(13464003)(8936002)(6306002)(54906003)(229853002)(6246003)(6436002)(25786009)(106356001)(9686003)(6506007)(6116002)(7736002)(966005)(97736004)(52536014)(476003)(99286004)(186003)(33656002)(14454004)(55016002)(53546011)(53936002)(6666004)(478600001)(105586002)(4326008)(102836004)(305945005)(74316002)(256004)(5660300002)(14444005)(6916009)(446003)(316002)(8676002)(71190400001)(68736007)(11346002)(76176011)(66574012)(81166006)(81156014)(2906002)(46003)(486006)(7696005)(71200400001)(86362001); DIR:OUT; SFP:1101; SCL:1; SRVR:MN2PR11MB3632; H:MN2PR11MB3565.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: noQCt3QxxkHc0TZMrUbINPuexptAAfytMS2J2OByG6BIPcyPjiNrJMKH8EW4klw1M8CfPFdln64RPsenUFlxx93wR1c07R+e24C4IsI26w+uzSgIyzgR9ZWgyb0nXU2kSoeRi23f/9Vz+B92QYOQ7usdekYWntzRdIQ3lRaMv6E66BETjPmxjD0KtMAQzXXLDalv3mTQAR8I9ce10C0ExQ/d0WHwDJ5y7W+VjXDaE3+hVc2scoRGhXI9ei5t1oBxjzMSDjFLGC8+pIbMbG3a9AmfBQWehj04DmHmDHjGwYF4AW7PclvZ4Zv7BbrOUAUwsRrmHzPrs1Db/i/9Ufu+iuNxbIfoBpOJBHO3s5Wj0UlMyJQ9JgtWHuPzNNQs8HjJCHa87suqVScvsaHtIXMcs4d1UlC0UnKEvBhsg9TvTyc=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 7f065266-f5eb-43bd-e6ed-08d6b77c68d6
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Apr 2019 15:03:48.1285 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB3632
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.23, xch-rcd-013.cisco.com
X-Outbound-Node: rcdn-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch/E4afQ-zwW7yGDJhIPRrlVdn-Fa4>
Subject: Re: [6tisch] Progress zero-touch document
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Apr 2019 15:03:54 -0000

No, I'm saying that maybe we can refrain from publishing in the next weeks till the decision is made to form the group.
Hopefully that's not too long!

All the best,

Pascal

> -----Original Message-----
> From: Mališa Vučinić <malisa.vucinic@inria.fr>
> Sent: mardi 2 avril 2019 16:59
> To: Pascal Thubert (pthubert) <pthubert@cisco.com>
> Cc: Michael Richardson <mcr+ietf@sandelman.ca>ca>; 6tisch <6tisch@ietf.org>
> Subject: Re: [6tisch] Progress zero-touch document
> 
> Hello Pascal,
> 
> Are you suggesting that we should start working out the details on using
> EDHOC but keep an alternative as an appendix in the document? Since we
> have stalled on this work for some time for reasons outside of the working
> group control, I think it would make sense to catch up..
> 
> Let me know.
> 
> Mališa
> 
> > On 2 Apr 2019, at 15:34, Pascal Thubert (pthubert) <pthubert@cisco.com>
> wrote:
> >
> > Hello Malisa
> >
> > Speaking for myself here, I'm happy that you start on that direction already;
> but would like to see the edhoc group formed and progressing before
> committing fully to it.
> >
> > All the best,
> >
> > Pascal
> >
> >> -----Original Message-----
> >> From: 6tisch <6tisch-bounces@ietf.org> On Behalf Of Mališa Vucinic
> >> Sent: mardi 2 avril 2019 14:55
> >> To: Michael Richardson <mcr+ietf@sandelman.ca>
> >> Cc: 6tisch <6tisch@ietf.org>
> >> Subject: [6tisch] Progress zero-touch document
> >>
> >> Michael, all,
> >>
> >> With the EDHOC specification finally seeing progress (see [1]), it
> >> seems like a good time to restart the work on zero touch and progress
> >> the adopted working group document.
> >>
> >> Reading the current version of
> >> draft-ietf-6tisch-dtsecurity-zerotouch-join-03, it seems that there
> >> are many options available, including the choice between DTLS and
> >> EDHOC for authentication. Many available options may pose
> >> interoperability challenges and also add unnecessary code complexity.
> >> Given that the working group decided on using OSCORE during network
> >> access [2], as well as for application purposes [3], the
> >> implementation of the 6TiSCH stack includes the CBOR/COSE primitives
> >> in the footprint, as well as the support to go through an
> >> application-layer proxy as specified in [2]. EDHOC protocol is built
> >> on these primitives, can be easily carried within messages specified
> >> in [2] for network access to go through an application-layer proxy,
> >> and is quite efficient when it comes to the encoding overhead using CBOR
> resulting in a small number of L2 frames to complete the key exchange. It
> seems as a natural way forward for the working group to focus on using
> EDHOC in [4].
> >>
> >> Therefore, I would like to propose to keep track of the EDHOC
> >> progress and to work on a more streamlined zero-touch solution. Doing
> >> these changes in [4] seems to make the most sense at this point.
> >>
> >> What are your thoughts on this?
> >>
> >> Mališa
> >>
> >> [1]
> >> https://mailarchive.ietf.org/arch/msg/secdispatch/Kz_6y6Jq4HsWxglsUHa
> >> fWj
> >> XIm0c
> >> [2]
> >> https://datatracker.ietf.org/doc/draft-ietf-6tisch-minimal-security/
> >> [3] https://datatracker.ietf.org/doc/draft-ietf-6tisch-architecture/
> >> [4]
> >> https://datatracker.ietf.org/doc/draft-ietf-6tisch-dtsecurity-zerotou
> >> ch-
> >> join/
> >> _______________________________________________
> >> 6tisch mailing list
> >> 6tisch@ietf.org
> >> https://www.ietf.org/mailman/listinfo/6tisch