Re: [Ace] I-D Action: draft-ietf-ace-coap-est-14.txt

"Panos Kampanakis (pkampana)" <pkampana@cisco.com> Sat, 21 September 2019 04:10 UTC

Return-Path: <pkampana@cisco.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E80D12003E; Fri, 20 Sep 2019 21:10:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.501
X-Spam-Level:
X-Spam-Status: No, score=-14.501 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=ig+nIfNY; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=n8JWDnTB
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9PHH0UNrqo5s; Fri, 20 Sep 2019 21:10:28 -0700 (PDT)
Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 212F812004F; Fri, 20 Sep 2019 21:10:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2302; q=dns/txt; s=iport; t=1569039028; x=1570248628; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=SevQ+2iHKxg4WjMBwlU7pR1lIixxDaBz98eX+k8zX8c=; b=ig+nIfNYCZgKCfdMn1ybatJaW6hpZlCylouK2+5dItZn1PjcNUa2jt24 EhfF+h1D2Yd+M1lSO5qh+sLKbi0RwkCYnt3AuaS3wh3wVSOUKtMHmN6GA rh4IscZXBtFMWrwswDxnTTeIs4p0QXXVJ7Z5b4/u6h7rkcjLLSssqzSgD 0=;
IronPort-PHdr: =?us-ascii?q?9a23=3AhnaNohAVavWELKFT5raTUyQJPHJ1sqjoPgMT9p?= =?us-ascii?q?ssgq5PdaLm5Zn5IUjD/qs03kTRU9Dd7PRJw6rNvqbsVHZIwK7JsWtKMfkuHw?= =?us-ascii?q?QAld1QmgUhBMCfDkiuNP3jajQzGs1qX15+9Hb9Ok9QS47z?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0BfAABDooVd/4wNJK1kHAEBAQQBAQc?= =?us-ascii?q?EAQGBUwcBAQsBgUpQA21WIAQLKodpA4RShiRNgg+XdIEugSQDVAkBAQEMAQE?= =?us-ascii?q?YCwoCAQGEPwKDCSM0CQ4CAwkBAQQBAQECAQUEbYUtDIVKAQEBAQMBARAoBgE?= =?us-ascii?q?BLAwLBAIBCBEEAQEeARAnCx0IAgQBEggagwGBagMdAQIMnn4CgTiIYYIlgn0?= =?us-ascii?q?BAQWBMwEDAg5Bgn0YghcJgTQBjAgYgUA/gVeCTD6CYQEBAgEBFoFJgzuCJq0?= =?us-ascii?q?RCoIihwWOIII2coZZjyWOGogTkQQCBAIEBQIOAQEFgVI4gVhwFRohgmwJRxA?= =?us-ascii?q?UgU6DcoUUhT9zgSmNZgEB?=
X-IronPort-AV: E=Sophos;i="5.64,531,1559520000"; d="scan'208";a="637562741"
Received: from alln-core-7.cisco.com ([173.36.13.140]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 21 Sep 2019 04:10:26 +0000
Received: from XCH-RCD-005.cisco.com (xch-rcd-005.cisco.com [173.37.102.15]) by alln-core-7.cisco.com (8.15.2/8.15.2) with ESMTPS id x8L4AQ8M024942 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Sat, 21 Sep 2019 04:10:26 GMT
Received: from xhs-rtp-001.cisco.com (64.101.210.228) by XCH-RCD-005.cisco.com (173.37.102.15) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 20 Sep 2019 23:10:26 -0500
Received: from xhs-rtp-002.cisco.com (64.101.210.229) by xhs-rtp-001.cisco.com (64.101.210.228) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Sat, 21 Sep 2019 00:10:25 -0400
Received: from NAM03-CO1-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-002.cisco.com (64.101.210.229) with Microsoft SMTP Server (TLS) id 15.0.1473.3 via Frontend Transport; Sat, 21 Sep 2019 00:10:25 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=eL/ksnOcNvxJJ2LK3tqv/40qYrQxJ1PaXYi1JglMC27i1h9VghkTqkfvUTuhlS2hzWVk3ZyJEr4qetmymjfqkRv1qFlD232GYVwBvi6QStyInRzijiQY9/P+gQ7CBgsnb1KZRQoDk/RDPwHjLoteIpgu2S9wuI3twFOWuKhmH71XZAHukeDx4VGBtUv1OKoekgDEEGQSFGm0m7gjE4k2HLlNROppHqYUbamMJYGTVoGS8jKy7vCsbtXt+I/A6DIxPTsV0B77kEosGtH/BF0zdZUpI/Zoyjjo3BqzODRSMd8IoOqqgJCeIxnc8vKH7PltKVVzJLnd26EDs2B+W4dn7w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eg+flXyLwS8zUYBSdtV8Y7SLg4Ur3bkkdLO8ItXBTWU=; b=MkuAQy2wLa+HLInJ4au93Cl6Ryl6zkbmZIdziUzRzec8uwCDibcZes2lstby4HVmNe27do30y0rAvTg87odTebY1nKhSrp0FSCObIlRKZAyOsXeYTPWmWOXYpQx+sB4PzX9vljTHbUvqxEPIu6hIGN2gKx0ryAHDpuXyxJhrp6CFF0H6rPEU2QVg/iNtydwGwWEJGGEM8WE8K5Qis8CAJRKe7wNPZ6RIm1fcMg8+Y4qIplSmc6rAO9y/nDinSt6Sc4qAsMzLSub3QliAM1dKW5XEHxX/cj8+xR8IoCiy73m6aPSxvfg2y5KczbezBqf0K0UUd5Bp/35svdfLMQMeaw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=eg+flXyLwS8zUYBSdtV8Y7SLg4Ur3bkkdLO8ItXBTWU=; b=n8JWDnTBqb4nqew/5K+jpl2xhjZhpgkrpYUXRSFaBjELk+vkbPDV7MPl78F1327vSucwbdto1rLPS0GM5viD0MLzwDHf2JKGBkGDoY/AAg/8MIpL6wdcTYB1Mw2usOI/8CnaNAJC1u5k8AYVVolK3HxUrKDorBZRfjgUI+Nm4V4=
Received: from BN7PR11MB2547.namprd11.prod.outlook.com (52.135.255.146) by BN7PR11MB2564.namprd11.prod.outlook.com (52.135.244.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2284.23; Sat, 21 Sep 2019 04:10:23 +0000
Received: from BN7PR11MB2547.namprd11.prod.outlook.com ([fe80::20df:b3df:537d:fd20]) by BN7PR11MB2547.namprd11.prod.outlook.com ([fe80::20df:b3df:537d:fd20%7]) with mapi id 15.20.2284.023; Sat, 21 Sep 2019 04:10:23 +0000
From: "Panos Kampanakis (pkampana)" <pkampana@cisco.com>
To: "ace@ietf.org" <ace@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>
Thread-Topic: [Ace] I-D Action: draft-ietf-ace-coap-est-14.txt
Thread-Index: AQHVcDBewLA0wpBHUEm1uJLpXUs0D6c1gS5g
Date: Sat, 21 Sep 2019 04:10:23 +0000
Message-ID: <BN7PR11MB254737DB58CA06839E668227C98B0@BN7PR11MB2547.namprd11.prod.outlook.com>
References: <156903802317.5080.11837127992760755975@ietfa.amsl.com>
In-Reply-To: <156903802317.5080.11837127992760755975@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=pkampana@cisco.com;
x-originating-ip: [2001:420:c0c4:1001::d8]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 498b6be4-f1cd-46de-4c75-08d73e49a030
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600167)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:BN7PR11MB2564;
x-ms-traffictypediagnostic: BN7PR11MB2564:
x-ms-exchange-purlcount: 6
x-microsoft-antispam-prvs: <BN7PR11MB25644BA3840B9695E8B05244C98B0@BN7PR11MB2564.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 0167DB5752
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(346002)(136003)(396003)(39860400002)(366004)(13464003)(189003)(199004)(53754006)(7696005)(2501003)(74316002)(14454004)(6116002)(6506007)(53546011)(76176011)(99286004)(46003)(2906002)(446003)(33656002)(256004)(102836004)(186003)(7736002)(11346002)(476003)(450100002)(9686003)(25786009)(86362001)(6306002)(55016002)(305945005)(6246003)(66476007)(316002)(81156014)(81166006)(110136005)(478600001)(66946007)(8676002)(966005)(486006)(71200400001)(71190400001)(66574012)(6436002)(5660300002)(8936002)(229853002)(76116006)(52536014)(66556008)(64756008)(66446008); DIR:OUT; SFP:1101; SCL:1; SRVR:BN7PR11MB2564; H:BN7PR11MB2547.namprd11.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: cisco.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: o8LxWs6h+T2bS/GAXlYvXXG22mE9qyf5Z3jWBsDqr/qqUl1gqSlHnK+udkK3OYroJBhxBRyqXAjpeERq1NFxHtKO1t5aYt2wuQ8ZszqWLS1ES0RfRvMEGBL8luy9LwVCXEAKC8kvcQ9l9Uf3gW7OSA8HeQJi8GYz9zcm3eHgcbAfwJ1Ogruxf/GvOVd6M6zYFvO7c5fTk/m/2ZqGw9/FSVde3H2YphIicErJqe2lyEEWqMU3JUPjIutWkwu1vFei8kN1wX4kzUxBk3/EgFvjGfKdAs66qwYX1XTE4KNUBYr+s9reuZGsKsNrRWP1jfIPBJ4a30AShAwDWlyPXXdId4nqrUtLvWEric4TCv5vQl7ZwCwAJe9wdR1zO6m02kueGeEbXWF4/PguVvCXxYs8fg0TliXsjU1tNsn7H9GQ3KE=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 498b6be4-f1cd-46de-4c75-08d73e49a030
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Sep 2019 04:10:23.6399 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: HbcS4OEAk/QGVP7PPVikJH07ITA0Wt1d2kqb+8931+ufFb13svaJzyMSm/ZeEBRFZuBGif4F/5bEWkothFaIpA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR11MB2564
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.15, xch-rcd-005.cisco.com
X-Outbound-Node: alln-core-7.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/CJGxVmbekGGDgwp3PTo0efPgoDM>
Subject: Re: [Ace] I-D Action: draft-ietf-ace-coap-est-14.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 21 Sep 2019 04:10:31 -0000

Hi everyone,

This iteration addresses comments we received from Ben's AD Review. Thanks Ben. 

The summary of all comments and what went into the text after the discussions in the list is in the git issue https://github.com/SanKumar2015/EST-coaps/issues/150 

Rgs,
Panos



-----Original Message-----
From: Ace <ace-bounces@ietf.org>; On Behalf Of internet-drafts@ietf.org
Sent: Friday, September 20, 2019 11:54 PM
To: i-d-announce@ietf.org
Cc: ace@ietf.org
Subject: [Ace] I-D Action: draft-ietf-ace-coap-est-14.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Authentication and Authorization for Constrained Environments WG of the IETF.

        Title           : EST over secure CoAP (EST-coaps)
        Authors         : Peter van der Stok
                          Panos Kampanakis
                          Michael C. Richardson
                          Shahid Raza
	Filename        : draft-ietf-ace-coap-est-14.txt
	Pages           : 50
	Date            : 2019-09-20

Abstract:
   Enrollment over Secure Transport (EST) is used as a certificate
   provisioning protocol over HTTPS.  Low-resource devices often use the
   lightweight Constrained Application Protocol (CoAP) for message
   exchanges.  This document defines how to transport EST payloads over
   secure CoAP (EST-coaps), which allows constrained devices to use
   existing EST functionality for provisioning certificates.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-ace-coap-est/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-ace-coap-est-14
https://datatracker.ietf.org/doc/html/draft-ietf-ace-coap-est-14

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-ace-coap-est-14


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace