IETF Logo Mail Archive

Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace-usecases-09: (with COMMENT)

Ludwig Seitz <ludwig@sics.se> Fri, 23 October 2015 13:29 UTC

Return-Path: <ludwig@sics.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 67B151A00F4 for <ace@ietfa.amsl.com>; Fri, 23 Oct 2015 06:29:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lbEm8bjBVzCe for <ace@ietfa.amsl.com>; Fri, 23 Oct 2015 06:29:47 -0700 (PDT)
Received: from mail-lf0-x232.google.com (mail-lf0-x232.google.com [IPv6:2a00:1450:4010:c07::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4D6291A00F5 for <ace@ietf.org>; Fri, 23 Oct 2015 06:29:47 -0700 (PDT)
Received: by lffz202 with SMTP id z202so83708116lff.3 for <ace@ietf.org>; Fri, 23 Oct 2015 06:29:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sics_se.20150623.gappssmtp.com; s=20150623; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-type; bh=ZO3zuDKfs+dAWdE9DTgwzwcQm6NJLyLxFZkDPGtTZhY=; b=SpInB3F/1glhZeFwN3TIIqef9xDpyiFYGileOTBh51QxRZ/AOVxRP7i7xXLFanP5tF QUPHWcmyl4hSZFIrFJ0OxoWzzFLc4f4QfZmLhy4w+NpzTIiwU2+1n3XRrj3gqwRC0F06 0jxctFIBeYx92AzSb/V/TGdgsG0vDfy1dL0htNC5NspYgRnthcTTGJ8DSy3rEts8qXW6 NsvPMy4Wo9ljoenSb4MGc84MD2JW/uwIPaAlfRTJFQCPNp4yCm1wPPiRQBTVzYHtDOdQ HVysVZh5CPLv8DwDnrm4O1cD+Q49anKctI1lnxyfFrnbpMsPKRakP441gnm05lABKImP Rnzg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:cc:from:message-id:date :user-agent:mime-version:in-reply-to:content-type; bh=ZO3zuDKfs+dAWdE9DTgwzwcQm6NJLyLxFZkDPGtTZhY=; b=TLm1wywfotb2KiDvnXao2MZ3J4oeI4U144tG8mhKrr95MLGP3cy3kBFAVVcFs0zB6u C0qU+c5Uqeh7ymgqsTKHxfjTL0hsqAnV2ayxIB1R+lAtvpcCFR6+NNasjsVkhdFwJAZR SCgPfyLJ8bTfOv0ahYw6PwgvJ/xJJIQTkcCuulsUoa4eFu5KJKuUUD1IWeWxJUAgc2x0 eT4/Q7p0uhdZJypdF6XCPcrTqw/NiUaxkIWtIxKU/5gxetuSGkmB4DYUr9AHwclRs/A3 Nail+ezdAgRtVfANB06tcKYVxY2ZjOP4pCFaFxNZId1xgdrIGV6wTsoBjKR1VQJJYJWp Sg4w==
X-Gm-Message-State: ALoCoQnOI7KpHPY/L+9azM7Mupf+XjS6z8e0rVdKG90+V/e1C91Lz7LEZSwmX1Es5wOKduTFmslW
X-Received: by 10.112.156.193 with SMTP id wg1mr10976184lbb.24.1445606985079; Fri, 23 Oct 2015 06:29:45 -0700 (PDT)
Received: from [192.168.0.108] ([85.235.11.178]) by smtp.gmail.com with ESMTPSA id e138sm3305147lfg.36.2015.10.23.06.29.43 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 23 Oct 2015 06:29:44 -0700 (PDT)
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>, Stephen Farrell <stephen.farrell@cs.tcd.ie>
References: <20151022132903.23826.2689.idtracker@ietfa.amsl.com> <5629EA01.6020506@sics.se> <5629EED2.5080005@cs.tcd.ie> <CAHbuEH6LNA6XaY8kUkZZ20A+Jc2V4SWriDajuZOkxq2JFuZX0Q@mail.gmail.com>
From: Ludwig Seitz <ludwig@sics.se>
Message-ID: <562A3647.3030101@sics.se>
Date: Fri, 23 Oct 2015 15:29:43 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0
MIME-Version: 1.0
In-Reply-To: <CAHbuEH6LNA6XaY8kUkZZ20A+Jc2V4SWriDajuZOkxq2JFuZX0Q@mail.gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms050605050307070000050507"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ace/C5tPOBKExBFGfAdsqSjeWcK5Sdo>
Cc: "ace@ietf.org" <ace@ietf.org>
Subject: Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace-usecases-09: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 23 Oct 2015 13:29:49 -0000

On 2015-10-23 14:37, Kathleen Moriarty wrote:
> I just went through Stephen's comments again before approving the
> draft, and I do think his first comment should be added in since it is
> specific to authentication and authorization.  Is there a place this
> can fit in nicely?
>
>[....]
>
> Thank you,
> Kathleen
>
>
[...]
>> 1. Software update is really needed and often missing and
>> usually hard. There's at least a need to authenticate and
>> authorize new firmware, when there is any update. That may not
>> be the same as authorizing a new config.


Isn't this covered in section 2.4.1.3. ?

"At some point the facility management company wants to update the
firmware of lighting devices in order to eliminate software bugs.
Before accepting the new firmware, each device checks the
authorization of the facility management company to perform this
update."

There is simply not a specific authorization problem listed for this, I 
could argue that it is subsumed under U4.4 but if you think it deserves 
specific mention under the problems section I can live with adding a point.

/Ludwig


-- 
Ludwig Seitz, PhD
SICS Swedish ICT AB
Ideon Science Park
Building Beta 2
Scheelevägen 17
SE-223 70 Lund

Phone +46(0)70-349 92 51
http://www.sics.se

v2.23.0 | Report a Bug | By Email