Re: [6tisch] I-D Action: draft-ietf-6tisch-minimal-security-10.txt
Mališa Vučinić <malisa.vucinic@inria.fr> Fri, 05 April 2019 21:37 UTC
Return-Path: <malisa.vucinic@inria.fr>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A3BE91202E3 for <6tisch@ietfa.amsl.com>; Fri, 5 Apr 2019 14:37:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.921
X-Spam-Level:
X-Spam-Status: No, score=-5.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FROM_EXCESS_BASE64=0.979, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 56rFbWSdoAir for <6tisch@ietfa.amsl.com>; Fri, 5 Apr 2019 14:37:26 -0700 (PDT)
Received: from mail2-relais-roc.national.inria.fr (mail2-relais-roc.national.inria.fr [192.134.164.83]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ACA6E1204BE for <6tisch@ietf.org>; Fri, 5 Apr 2019 14:37:25 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="5.60,313,1549926000"; d="scan'208";a="377438228"
Received: from unknown (HELO [192.168.1.138]) ([79.143.111.171]) by mail2-relais-roc.national.inria.fr with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 05 Apr 2019 23:37:23 +0200
From: Mališa Vučinić <malisa.vucinic@inria.fr>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 12.2 \(3445.102.3\))
Date: Fri, 05 Apr 2019 23:37:19 +0200
References: <155449955342.10004.14520865901363485250@ietfa.amsl.com>
To: 6tisch <6tisch@ietf.org>
In-Reply-To: <155449955342.10004.14520865901363485250@ietfa.amsl.com>
Message-Id: <3EA73952-3DC8-4F69-B6C0-685441882776@inria.fr>
X-Mailer: Apple Mail (2.3445.102.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch/Njue1cRdEfhlQaw9AE_xNSP8Xf0>
Subject: Re: [6tisch] I-D Action: draft-ietf-6tisch-minimal-security-10.txt
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Apr 2019 21:37:31 -0000
Dear all, We have submitted the new version of the minimal-security draft fixing the remaining issues that were brought during the 2nd WGLC and the Prague meeting. In particular, this version: - Resolves the JRC failure issue by relying on the mechanism specified in OSCORE Appendix B.2 - Revisits the CoJP error handling parameters to enable stateless handling of CoJP requests by the JRC - Clarifies the network-wide rekeying process through separate sections for 6LBR and 6LN handling Mališa > On 5 Apr 2019, at 23:25, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the IPv6 over the TSCH mode of IEEE 802.15.4e WG of the IETF. > > Title : Minimal Security Framework for 6TiSCH > Authors : Malisa Vucinic > Jonathan Simon > Kris Pister > Michael Richardson > Filename : draft-ietf-6tisch-minimal-security-10.txt > Pages : 49 > Date : 2019-04-05 > > Abstract: > This document describes the minimal framework required for a new > device, called "pledge", to securely join a 6TiSCH (IPv6 over the > TSCH mode of IEEE 802.15.4e) network. The framework requires that > the pledge and the JRC (join registrar/coordinator, a central > entity), share a symmetric key. How this key is provisioned is out > of scope of this document. Through a single CoAP (Constrained > Application Protocol) request-response exchange secured by OSCORE > (Object Security for Constrained RESTful Environments), the pledge > requests admission into the network and the JRC configures it with > link-layer keying material and other parameters. The JRC may at any > time update the parameters through another request-response exchange > secured by OSCORE. This specification defines the Constrained Join > Protocol and its CBOR (Concise Binary Object Representation) data > structures, and configures the rest of the 6TiSCH communication stack > for this join process to occur in a secure manner. Additional > security mechanisms may be added on top of this minimal framework. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-6tisch-minimal-security/ > > There are also htmlized versions available at: > https://tools.ietf.org/html/draft-ietf-6tisch-minimal-security-10 > https://datatracker.ietf.org/doc/html/draft-ietf-6tisch-minimal-security-10 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-6tisch-minimal-security-10 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > 6tisch mailing list > 6tisch@ietf.org > https://www.ietf.org/mailman/listinfo/6tisch
- [6tisch] I-D Action: draft-ietf-6tisch-minimal-se… internet-drafts
- Re: [6tisch] I-D Action: draft-ietf-6tisch-minima… Mališa Vučinić