IETF Logo Mail Archive

[6tisch] Optimizing EAP-over-CoAP payload

Alexander Pelov <a@ackl.io> Thu, 08 October 2015 08:53 UTC

Return-Path: <a@ackl.io>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F1D7C1A8ADA; Thu, 8 Oct 2015 01:53:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.55
X-Spam-Level:
X-Spam-Status: No, score=-1.55 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_FR=0.35] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YSWOKGehimk1; Thu, 8 Oct 2015 01:53:54 -0700 (PDT)
Received: from relay3-d.mail.gandi.net (relay3-d.mail.gandi.net [IPv6:2001:4b98:c:538::195]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A29B81A8AD6; Thu, 8 Oct 2015 01:53:54 -0700 (PDT)
Received: from dhcp-salsa-i143.rennes.enst-bretagne.fr (unknown [IPv6:2001:660:7301:3728:fd93:4d4a:4c6a:394a]) (Authenticated sender: alex@ackl.io) by relay3-d.mail.gandi.net (Postfix) with ESMTPSA id C1263A811C; Thu, 8 Oct 2015 10:53:51 +0200 (CEST)
To: Rafa Marin Lopez <rafa@um.es>
From: Alexander Pelov <a@ackl.io>
Message-ID: <56162F1A.5020503@ackl.io>
Date: Thu, 08 Oct 2015 10:53:46 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:38.0) Gecko/20100101 Thunderbird/38.3.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/6tisch/tIA_oWACSsYpYuHUhgHcr4bw_pI>
Cc: 6tisch@ietf.org, ace@ietf.org
Subject: [6tisch] Optimizing EAP-over-CoAP payload
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Oct 2015 08:53:56 -0000

Dear Rafa,

I've been reading the latest version of your draft ( 
draft-marin-ace-wg-coap-eap-01.txt ), and I have a couple of questions 
regarding some of the payload options, which could be optimized even 
further:

1) Use shorter name for the /auth resource
2) Mandate the use of zero-length CoAP token

The first, and the more simple one, is - would it be possible to change 
the name of the authentication resource from /auth to a shorter one 
(like /a)? Maybe it could be an option to change the name of this 
resource, based on the underlaying architecture, e.g. an RFC could 
mandate that in a specific network the resource could be named /a, 
whereas the default value could remain /auth?

The second, which is a little bit more subtle. Tokens are used to match 
responses to requests, but during the authentication/authorization phase 
a single peer (endpoint) would communicate with a single authenticator. 
Moreover, the communication happens in a serial fashion, and responses 
are piggybacked. This falls in the case when zero-length token is also 
advised by RFC7252. Do you think that it would be appropriate to make 
the use of zero-length token mandatory for EAP-over-CoAP?

Best,
Alexander

v2.23.0 | Report a Bug | By Email