Re: [6tisch] xxx-bootstrap
peter van der Stok <stokcons@xs4all.nl> Mon, 05 December 2016 08:15 UTC
Return-Path: <stokcons@xs4all.nl>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C7D711293FD for <6tisch@ietfa.amsl.com>; Mon, 5 Dec 2016 00:15:18 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.602
X-Spam-Level:
X-Spam-Status: No, score=-2.602 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tiWInsNpETvQ for <6tisch@ietfa.amsl.com>; Mon, 5 Dec 2016 00:15:16 -0800 (PST)
Received: from lb3-smtp-cloud6.xs4all.net (lb3-smtp-cloud6.xs4all.net [194.109.24.31]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 208F31293F8 for <6tisch@ietf.org>; Mon, 5 Dec 2016 00:15:15 -0800 (PST)
Received: from webmail.xs4all.nl ([194.109.20.205]) by smtp-cloud6.xs4all.net with ESMTP id G8FC1u00M4RV18J018FCWU; Mon, 05 Dec 2016 09:15:13 +0100
Received: from 2001:983:a264:1:b010:7bb9:db9a:fa72 by webmail.xs4all.nl with HTTP (HTTP/1.1 POST); Mon, 05 Dec 2016 09:15:12 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset="US-ASCII"; format="flowed"
Content-Transfer-Encoding: 7bit
Date: Mon, 05 Dec 2016 09:15:12 +0100
From: peter van der Stok <stokcons@xs4all.nl>
To: Göran Selander <goran.selander@ericsson.com>
Organization: vanderstok consultancy
Mail-Reply-To: consultancy@vanderstok.org
In-Reply-To: <D4661689.6E10A%goran.selander@ericsson.com>
References: <efb18853e63642bc4a996dc419cd1efb@xs4all.nl> <31466.1480551529@obiwan.sandelman.ca> <72f491eeb444448daa34196c9ac656ea@xs4all.nl> <D4661689.6E10A%goran.selander@ericsson.com>
Message-ID: <665289534e5998cff9e208dcaffc0e95@xs4all.nl>
X-Sender: stokcons@xs4all.nl (9pfrwf9AgS1n6P/If5Mo42DenGA6ppJ2)
User-Agent: XS4ALL Webmail
Archived-At: <https://mailarchive.ietf.org/arch/msg/6tisch/_ErMVVgzGpjRj0xPGUfDLdp4NGc>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, 6tisch <6tisch@ietf.org>, sandeep kumar <sandeep.kumar@philips.com>, consultancy@vanderstok.org
Subject: Re: [6tisch] xxx-bootstrap
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: consultancy@vanderstok.org
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Dec 2016 08:15:18 -0000
Hi Goran, thanks for this low overhead and clear explanation. > > If you are interested in a simple lightweight enrolment protocol, EDHOC > and OSCOAP may be used for that. For authentication of enrolment using > e.g. manufacturer certificates, you may run EDHOC and OSCOAP in > sequence > and carry the PKCS#10 in the OSCOAP request and the certificate issued > with the OSCOAP response, in total 2 round-trips (not considering > additional messages for delayed responses, CoAP response code 2.06 > etc.). > For PSK authenticated enrolment it may suffice with one round-trip, the > OSCOAP request/response. These examples are JN-initiated, but similar > setup is possible for the JCE-initiated variant. > > Note that this would not at all be as elaborate as the anima work, but > just as a comparison. > I don't think EDHOC is meant to replace EST or the anima work. It is a proposal to replace the EST part of the anima bootstrap by something targeted to the bootstrap case and use of CoAP for low resource devices without human intervention. Peter
- [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap Mališa Vučinić
- Re: [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap Mališa Vučinić
- Re: [6tisch] xxx-bootstrap Michael Richardson
- Re: [6tisch] xxx-bootstrap Michael Richardson
- Re: [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap Göran Selander
- Re: [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap Michael Richardson
- Re: [6tisch-security] [6tisch] xxx-bootstrap Michael Richardson
- Re: [6tisch-security] [6tisch] xxx-bootstrap Göran Selander
- Re: [6tisch] xxx-bootstrap Göran Selander
- Re: [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap Mališa Vučinić
- Re: [6tisch] xxx-bootstrap peter van der Stok
- Re: [6tisch] xxx-bootstrap Mališa Vučinić