IETF Logo Mail Archive

Re: [Ace] EST over CoAP in ACE wg

Michael Richardson <mcr+ietf@sandelman.ca> Wed, 07 December 2016 19:50 UTC

Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B590D129AD6 for <ace@ietfa.amsl.com>; Wed, 7 Dec 2016 11:50:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.797
X-Spam-Level:
X-Spam-Status: No, score=-4.797 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-2.896, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l4m_PPg22ruZ for <ace@ietfa.amsl.com>; Wed, 7 Dec 2016 11:50:29 -0800 (PST)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 44581129ACA for <ace@ietf.org>; Wed, 7 Dec 2016 11:50:26 -0800 (PST)
Received: from sandelman.ca (obiwan.sandelman.ca [209.87.249.21]) by tuna.sandelman.ca (Postfix) with ESMTP id 22416203AE; Wed, 7 Dec 2016 15:07:53 -0500 (EST)
Received: from obiwan.sandelman.ca (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 3C1A163768; Wed, 7 Dec 2016 14:50:25 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "ace@ietf.org" <ace@ietf.org>
In-Reply-To: <CA8F9730-844F-47C7-B0B5-7FB0EB93691D@nexusgroup.com>
References: <CA8F9730-844F-47C7-B0B5-7FB0EB93691D@nexusgroup.com>
X-Mailer: MH-E 8.6; nmh 1.6+dev; GNU Emacs 24.5.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Date: Wed, 07 Dec 2016 14:50:25 -0500
Message-ID: <17997.1481140225@obiwan.sandelman.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/4mc3Z_4nJ5ASuqw0sNkt5FXO1ro>
Cc: Martin Furuhed Nexus <martin.furuhed@nexusgroup.com>
Subject: Re: [Ace] EST over CoAP in ACE wg
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Dec 2016 19:50:32 -0000

see inline

Martin Furuhed Nexus <martin.furuhed@nexusgroup.com> wrote:
    > My first post after joining the list.

welcome!

    > As mentioned by Shahid and Samuel, Nexus Group and SICS began a joint
    > project over a year ago for enabling constrained devices enroll for
    > certificates using EST over CoAP.

    > A standard EST server add-on will soon be part of the Nexus
    > Certificate Manager CA software. Additional EST CoAP server work is
    > now done in parallel with the work on the SICS EST CoAP client. Our
    > current implementation shares many similarities to the draft, and the
    > objective is to update and align our implementation to the draft going
    > forward. We would be happy to contribute experience together with SICS
    > based on our ongoing work.

It would be great if you could review the two drafts and say if there were
significant changes from what you implemented, and ideally to say if
they were arbitrary decisions, or were motivated by a need to solve
a problem we have not yet realized needed to be solved.

--
Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works
 -= IPv6 IoT consulting =-

v2.23.0 | Report a Bug | By Email