Re: [6tisch] #32 (terminology): New terms for security
"Pascal Thubert (pthubert)" <pthubert@cisco.com> Fri, 05 December 2014 23:53 UTC
Return-Path: <pthubert@cisco.com>
X-Original-To: 6tisch@ietfa.amsl.com
Delivered-To: 6tisch@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8A4CD1A8731 for <6tisch@ietfa.amsl.com>; Fri, 5 Dec 2014 15:53:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.511
X-Spam-Level:
X-Spam-Status: No, score=-14.511 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xIXoKSfgxt2Z for <6tisch@ietfa.amsl.com>; Fri, 5 Dec 2014 15:53:03 -0800 (PST)
Received: from rcdn-iport-9.cisco.com (rcdn-iport-9.cisco.com [173.37.86.80]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 99F241A8739 for <6tisch@ietf.org>; Fri, 5 Dec 2014 15:53:00 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6976; q=dns/txt; s=iport; t=1417823580; x=1419033180; h=from:to:subject:date:message-id: content-transfer-encoding:mime-version; bh=W3V/hrRJeahuueDnRbOMW4KCXBd8Zwmufm28I2U3X4A=; b=T/AUrA/YuLVspaXrfjICpu5PlZbaTXldy5sOI53GH8AZFp99NZeFAWBj sVWyhDa84H6JvF7X/KoNmSox1XrJOa3mcN8KxDO6xf424TlzzyKRymPvX remlzXRm4ZZMwgx48q8TOB9jyCer+0GLJWZeR9gLotLFYIosnl9OVnzAd 0=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AnAIAP1DglStJV2d/2dsb2JhbABZgwZSWASDAcEkgiaBewGEFwIcfBYBAQEBAX2EAwEBAwEjEVcBCBIIAgYgAgQwFQIPAQQTCIgqCQ2vZ49ClmIBAQEHAQEBAR6BKI5iFIMnMoEVBYVYiW6Dfoc9NIJeiD4/hg6Db28BgUR+AQEB
X-IronPort-AV: E=Sophos;i="5.07,525,1413244800"; d="scan'208";a="374887267"
Received: from rcdn-core-6.cisco.com ([173.37.93.157]) by rcdn-iport-9.cisco.com with ESMTP; 05 Dec 2014 23:53:00 +0000
Received: from xhc-aln-x10.cisco.com (xhc-aln-x10.cisco.com [173.36.12.84]) by rcdn-core-6.cisco.com (8.14.5/8.14.5) with ESMTP id sB5NqxXk012283 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <6tisch@ietf.org>; Fri, 5 Dec 2014 23:52:59 GMT
Received: from xmb-rcd-x01.cisco.com ([169.254.1.182]) by xhc-aln-x10.cisco.com ([173.36.12.84]) with mapi id 14.03.0195.001; Fri, 5 Dec 2014 17:52:59 -0600
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: "6tisch@ietf.org" <6tisch@ietf.org>
Thread-Topic: [6tisch] #32 (terminology): New terms for security
Thread-Index: AdAQ5lJOhsJ5nfMnT4mIqsCQzFMuQw==
Date: Fri, 05 Dec 2014 23:52:58 +0000
Deferred-Delivery: Fri, 5 Dec 2014 23:52:00 +0000
Message-ID: <E045AECD98228444A58C61C200AE1BD848A9DF4C@xmb-rcd-x01.cisco.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.61.97.107]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/6tisch/z6vWYsQVFh6yeJhhHrt1C_eoSzg
Subject: Re: [6tisch] #32 (terminology): New terms for security
X-BeenThere: 6tisch@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discuss link layer model for Deterministic IPv6 over the TSCH mode of IEEE 802.15.4e, and impacts on RPL and 6LoWPAN such as resource allocation" <6tisch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch>, <mailto:6tisch-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/6tisch/>
List-Post: <mailto:6tisch@ietf.org>
List-Help: <mailto:6tisch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch>, <mailto:6tisch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Dec 2014 23:53:05 -0000
Dear all: This issue is created to update the terminology draft to: - add support the new security text to come in the architecture and - prepare for eventually including security items in out upcoming rechartering Please consider the proposed text and provide feedback > > JCE the Join Coordination Entity. This acronym is > chosen to parallel the PCE. > > joining node The newly unboxed constrained node that needs to > join a network. > > join protocol the protocol which secures initial communication > between the joining node and the JCE > > join assistant A constrained node near the joining node that > will act as it's first 6LR, and will relay > traffic to/from the joining node. > > unique join key a key shared between a newly joining node, and > the JCE. This key supports smaller installations > for which asymmetric methods are considered too > large > > production network A 802.15.4e network whose encryption/ > authentication keys are determined by some > algorithm/protocol. There may have network-wide > group keys, or per-link keys. > > production network key A L2-key known by all authorized nodes, used > for multicast messages > > per-peer L2 key a key that results from an exchange (such as MLE) > that creates a pair-wise L2 key which is known > only to the two nodes involved, > [I-D.piro-6tisch-security-issues] calls this a > LinkKey > > The following terms are used in this document and come from other > documents: > > DevID [IEEE.802.1AR] defines the secure DEVice > IDentifier as a device identifier that is > cryptographically bound to the device and is > composed of the Secure Device Identifier Secret > and the Secure Device Identifier Credential. > > IDevID The Initial secure DEVice IDentifier (IDevID) is > the Device Identifier which was installed on the > device by the manufacturer. > > LDevID A Locally significant secure DEVice IDentifiers > (LDevIDs) is a Secure Device Identifier > credential that is unique in the local > administrative domain in which the device is > used. The LDevID is usually a new certificate > provisioned by some local means, such as the 6top > mechanism defined in this document. > > CoAP The CoAP protocol, defined in [RFC7252] is an > HTTP-like resource access protocol. CoAP runs > over UDP. > > DTLS The datagram version of TLS, defined in > [RFC6347], and which can be used to secure CoAP > in the same way that TLS secures HTTP. > > ARO [RFC6775]defines a number of new Neighbor > Discovery options including the Address > Registration Option > > DAR/DAC [RFC6775]defines the Duplicate Address Request > and Duplicate Address Confirmation options to > turn the multicasted Duplicate Address Detection > protocol into a client/server process > > EARO [I-D.thubert-6lo-rfc6775-update-reqs]extends the > ARO option to include some additional fields > necessary to distinguish duplicate addresses from > nodes that have moved networks when there are > mulitple LLNs linked over a backbone. > > -- > -------------------------------------------------+---------------------- > -------------------------------------------------+--- > Reporter: Michael Richardson | Owner: > <mcr+ietf@sandelman.ca> | pthubert@cisco.com > Type: defect | Status: new > Priority: major | Milestone: > Component: terminology | Version: > Severity: Active WG Document | Keywords: > -------------------------------------------------+---------------------- > -------------------------------------------------+--- > > Ticket URL: <http://trac.tools.ietf.org/wg/6tisch/trac/ticket/32> > 6tisch <http://tools.ietf.org/6tisch/>
- Re: [6tisch] #32 (terminology): New terms for sec… Pascal Thubert (pthubert)
- Re: [6tisch] #32 (terminology): New terms for sec… Pascal Thubert (pthubert)
- Re: [6tisch] #32 (terminology): New terms for sec… Thomas Watteyne
- Re: [6tisch] #32 (terminology): New terms for sec… Qin Wang
- Re: [6tisch] #32 (terminology): New terms for sec… Rene Struik
- Re: [6tisch] #32 (terminology): New terms for sec… Michael Richardson
- Re: [6tisch] #32 (terminology): New terms for sec… Pat Kinney
- Re: [6tisch] #32 (terminology): New terms for sec… Michael Richardson
- Re: [6tisch] #32 (terminology): New terms for sec… Pat Kinney