Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leaving implementers in the dark
Hannes Tschofenig <Hannes.Tschofenig@arm.com> Sun, 18 February 2018 16:52 UTC
Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2F08F1201F2 for <ace@ietfa.amsl.com>; Sun, 18 Feb 2018 08:52:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5wk234UUq2CX for <ace@ietfa.amsl.com>; Sun, 18 Feb 2018 08:52:38 -0800 (PST)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0043.outbound.protection.outlook.com [104.47.0.43]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 00CE41200B9 for <ace@ietf.org>; Sun, 18 Feb 2018 08:52:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=OBJuI5ffcQnAPUg2wtMCarW7+Yo1+RgI/su8wCAOjyM=; b=p+hhuNSb/mnXSwb3ZVh3DUqs+1/jvfib0aohCgrnKsZPn3g0NOAs3KOMp59FdUvyFPoVJbV0HEUInE4JAxRr+7g7R29HNTEpOQQ2b9YZuVi0yTjR6URkcd3PcmfVQwY49mMAwIR4RQuRCAeR3q57InkEbumUDIY29UOq8AFfxlA=
Received: from AM4PR0801MB2706.eurprd08.prod.outlook.com (10.167.90.148) by AM4PR0801MB1537.eurprd08.prod.outlook.com (10.168.5.151) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.506.18; Sun, 18 Feb 2018 16:52:35 +0000
Received: from AM4PR0801MB2706.eurprd08.prod.outlook.com ([fe80::7954:44ac:aab4:bc2c]) by AM4PR0801MB2706.eurprd08.prod.outlook.com ([fe80::7954:44ac:aab4:bc2c%14]) with mapi id 15.20.0506.021; Sun, 18 Feb 2018 16:52:34 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Carsten Bormann <cabo@tzi.org>
CC: ace <ace@ietf.org>
Thread-Topic: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leaving implementers in the dark
Thread-Index: AQHTqM6IxAS77gQkjk+VU/b7JuvkYaOqWx3wgAAC+4CAAAASYA==
Date: Sun, 18 Feb 2018 16:52:34 +0000
Message-ID: <AM4PR0801MB270639E05AEB6201860503A4FAC90@AM4PR0801MB2706.eurprd08.prod.outlook.com>
References: <A5100B3E-DBA2-4FBF-9AE4-8E54CE161BCB@tzi.org> <AM4PR0801MB2706F84DFA48E37BBED4C512FAC90@AM4PR0801MB2706.eurprd08.prod.outlook.com> <05040BBB-5E6E-4569-8F8C-944CA04BBA3C@tzi.org>
In-Reply-To: <05040BBB-5E6E-4569-8F8C-944CA04BBA3C@tzi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.122.50]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM4PR0801MB1537; 6:tQiENNcZTxACco7KJrcyV5qz5i0EMVq3/pRIR4+UPj+Qs4Sb8QVNWhWA8cBZPRcPIvKI1s4NvHjPCCrbM5efU0kzwzaqt7dGptUyM5rdopv9DqpfAXPFHEqO+espbu47zLQPsyezP3W14bPanZO3CijaskPiQLydwdupEpyDsEYCotP5g2RwRD/a6cgmz0XVcq6HR1ErrzyT5LjJDA2wlAhMvTmAl6MzDB37h0XjW40nbVdzwPiIit8/I86su+JHG/iLAyo6dy+rkDRGz0IpdcVRekNjXDlm0R0oFUHcRB2lXqnFtWWa1p5YRZB/9QNr2UThiB6iNKH/SzeCL2aEl8HCYzKnGgfqokseKktzhfqjMmTun/S4R2OTpYamZs7g; 5:a+NjY5GTfErTpIvgNjqrEKZcUK5o+u50BK+VOq8ju62D76j9etDHU4QgsXA/Lv8H6ok/Nq0WwTGvMmGOyNhttFL33ZnCh40q/kt00fF20oQsZ181kx7E7Ebyq3xbb3QIsvNTG28jz8IeqjVZXVZyFawWcRoV/ilwSl2L7ddQin0=; 24:Muz5ld38bY+2Fdvrysr5AWQQF3sYhUQ0TpH4nUC2uRR0n3cQgq87wNSvrBoUQnET6i7IPLCu7NqWMZXTb78mIvDl/OBoJgDpU0OVPHgcpBc=; 7:4TBrUZD+tUlWvtFRBHPhvU896xGjMt3SVL3WP5lf+5Ozl35WpotL3pP+vH/WknyHxjI/3+v6Wctbm6w5PCiuWXOwsGy6BmiOiLrPJyj8rlx85Qon/uVV1TKZrWxZvpPMZFRhV2ZfiA6Si4e6kXAjFt7HDP3J+YlpVU5FUlzWGvccl7vie9SyxlFCoplivdaLcmdOXPdlyjS861RWBFAQZ7IKRFNQDQL7TmSM1Ya7Z9mgHmHkR0rILz30u65b71WK
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 9fe5f67f-3b34-42a9-4480-08d576f00268
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(4534165)(4627221)(201703031133081)(201702281549075)(48565401081)(5600026)(4604075)(3008032)(2017052603307)(7153060)(7193020); SRVR:AM4PR0801MB1537;
x-ms-traffictypediagnostic: AM4PR0801MB1537:
x-microsoft-antispam-prvs: <AM4PR0801MB1537A14C9FAE02964F33284AFAC90@AM4PR0801MB1537.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(180628864354917);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001056)(6040501)(2401047)(8121501046)(5005006)(10201501046)(3231101)(944501161)(3002001)(93006095)(93001095)(6055026)(6041288)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123560045)(20161123564045)(6072148)(201708071742011); SRVR:AM4PR0801MB1537; BCL:0; PCL:0; RULEID:; SRVR:AM4PR0801MB1537;
x-forefront-prvs: 058707456E
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39850400004)(366004)(39380400002)(376002)(346002)(396003)(189003)(199004)(40434004)(13464003)(2900100001)(6436002)(106356001)(72206003)(186003)(3660700001)(26005)(102836004)(86362001)(97736004)(7696005)(53936002)(3846002)(55016002)(316002)(59450400001)(99286004)(6246003)(76176011)(9686003)(6506007)(6116002)(53546011)(229853002)(6916009)(105586002)(3280700002)(14454004)(478600001)(2906002)(305945005)(4326008)(25786009)(7736002)(33656002)(74316002)(81166006)(8676002)(5250100002)(5660300001)(2950100002)(8936002)(5890100001)(68736007)(81156014)(66066001); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR0801MB1537; H:AM4PR0801MB2706.eurprd08.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 4myhjv67Ul/kS6f9NURGYlaSLT+kHAnwSpQTD2XiTgK4Jo4yqIl8yd63cYzdJRf0zUBG30PjoiNAB2mDc0+AN02FhYokMYVbOSlS96YGeMa7EWiKbDUYJWx+Z09xIa2Oo0n/YYbWZ4y0nOcpBkpPqWcJK+rXa4+Kj39WITKNNuw=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9fe5f67f-3b34-42a9-4480-08d576f00268
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Feb 2018 16:52:34.6784 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR0801MB1537
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/KjdPInAIAnOwBHszuiS1lSd-MZk>
Subject: Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leaving implementers in the dark
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 18 Feb 2018 16:52:40 -0000
Hi Carsten, The challenge is that there is not a single way used in deployments. Some of the techniques fall outside the scope of the IETF (such as the manufacturing-related interactions), link layer specific approaches (such as a Blueooth Smart App), or Secure Element-based concepts. Note that related solutions, such as ZeroTouch, ANIMA, EST, also leave this initial provisioning undefined. I am not saying that nothing should be standardized but it will be difficult to recruit the appropriate expertise and to get the relevant companies to participate. Ciao Hannes -----Original Message----- From: Carsten Bormann [mailto:cabo@tzi.org] Sent: 18 February 2018 17:45 To: Hannes Tschofenig Cc: ace Subject: Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leaving implementers in the dark On Feb 18, 2018, at 08:35, Hannes Tschofenig <Hannes.Tschofenig@arm.com> wrote: > > Hi Carsten, > > We should maybe add that this information is provisioned either during manufacturing, via a commissioning tool or some other mechanisms. Not sure whether this will indeed add more but it might be useful to know. For a protocol that is meant to be interoperable, there need to be standard (if not MTI) ways of getting this done. At least we need to have a defined interface between CAM (“commissioning tool”) and C for letting C know what was agreed about how to address AS and which RSes it should be used for. Grüße, Carsten IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [Ace] draft-ietf-ace-oauth-authz-10.txt: Leaving … Carsten Bormann
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Carsten Bormann
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Hannes Tschofenig
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Carsten Bormann
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Hannes Tschofenig
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Hannes Tschofenig
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Ludwig Seitz
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Michael Richardson
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Hannes Tschofenig
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Carsten Bormann
- Re: [Ace] draft-ietf-ace-oauth-authz-10.txt: Leav… Hannes Tschofenig