[Ace] draft-ietf-ace-dtls-authorize

Daniel Migault <daniel.migault@ericsson.com> Thu, 28 January 2021 17:03 UTC

Return-Path: <daniel.migault@ericsson.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2C36A3A163F for <ace@ietfa.amsl.com>; Thu, 28 Jan 2021 09:03:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.35
X-Spam-Level:
X-Spam-Status: No, score=-2.35 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.25, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jmekIkHhYuXw for <ace@ietfa.amsl.com>; Thu, 28 Jan 2021 09:03:36 -0800 (PST)
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (mail-dm6nam12on2040.outbound.protection.outlook.com [40.107.243.40]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EC3DB3A1640 for <ace@ietf.org>; Thu, 28 Jan 2021 09:03:35 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=TKOwpp/DmgHKb9/gFB4sSG2Aui7WiLLu0wAvi+SevvFxsNSJpLHUGWaI7GObHmJDEDgpK+kBN/s0Hx6rlwzSXZNzj3E4unUSECbQElwn5zN5euvXG6HeGQ3yn2vvO/XWx8P0PsV5EYJpBsgkZ0sOTjGA0FyTjjql492KPSLSyCPiEezoQuiEAD9OjLYA2lC+FX2vUPUjn1oVpfe0qPTRENSYtyMlHK6LMpNU6c0tAtYim4Ngs1SvHFqtogs6YQan+3yhgz2TD0glrtveF7PBxGl0UR8SJ1GnyGTvlKB+LpTHFsjZ2UI8v8fr5nXXm6Q+CLlczSetKF8Jjqaa79j9vA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=49DkA+7gnGtU6KsKIjaMqxi++V7L6WE0hsRHCbtdIeE=; b=mhg8gXUKMd5ZQHZ0SWjHv9i1Zrb916zpFQC8lURH8lSwgsLUdXeeEtE5zTiu51Yc4r1/st+EYRljmAPP3+Q8/28FVgah6DLlcpubaCtyQA0ke2Eejbc7iL/i+jwbqDmrpfTdBg7lsnaIbrk+v7rab7MlNXOICNRFtk1JKTrACsmOZcU3PBgnXo8JY0aTyo6d2/kiShuLbiudUfkZY95ocuwocGYVzFH95JR6MVM8O2q2PERtkhXl1x1fZmteTk0WwOWBDfiInFo7lLANtmvZ63Of9Fs4SldAxMQKAhnW5Zqt37BCGLAxmOPuV1b7zOL75hYY/MMNBq2zRyiC8EyOiQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=49DkA+7gnGtU6KsKIjaMqxi++V7L6WE0hsRHCbtdIeE=; b=k42vF9f42umK/EHRmVa/DudCdD/v6zEuLXP1KZQjeapSqHhqG+BUMDBj4GmqDGEKogCsLnV5hO+BJRUHVeNm1R3mCyuuDTIzSLED4d4v+V6/WuK06ZLxqoJDyCGWnbVviOlOxwHG5zuOy4lV/rNrIWckSL0uUN6impu+FuSrMiI=
Received: from DM6PR15MB2379.namprd15.prod.outlook.com (2603:10b6:5:8a::16) by DM5PR15MB1850.namprd15.prod.outlook.com (2603:10b6:4:4e::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3805.17; Thu, 28 Jan 2021 17:03:31 +0000
Received: from DM6PR15MB2379.namprd15.prod.outlook.com ([fe80::a9f9:326f:8cfb:157b]) by DM6PR15MB2379.namprd15.prod.outlook.com ([fe80::a9f9:326f:8cfb:157b%7]) with mapi id 15.20.3784.019; Thu, 28 Jan 2021 17:03:31 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: draft-ietf-ace-dtls-authorize
Thread-Index: AQHW9ZUs7LKYTzgsQE6xxm6/1BNMyQ==
Date: Thu, 28 Jan 2021 17:03:30 +0000
Message-ID: <DM6PR15MB237928B2B84B18E9AE050EC3E3BA9@DM6PR15MB2379.namprd15.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [96.22.11.129]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 988db676-a25e-401a-7415-08d8c3aea3b2
x-ms-traffictypediagnostic: DM5PR15MB1850:
x-microsoft-antispam-prvs: <DM5PR15MB18502B453DCC7CFAD7E15E1FE3BA9@DM5PR15MB1850.namprd15.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR15MB2379.namprd15.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(136003)(396003)(346002)(376002)(366004)(316002)(76116006)(91956017)(6506007)(66446008)(64756008)(8676002)(66476007)(44832011)(66556008)(86362001)(52536014)(66946007)(8936002)(6916009)(5660300002)(26005)(33656002)(4744005)(2906002)(9686003)(186003)(478600001)(71200400001)(83380400001)(19627405001)(7696005)(55016002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?iso-8859-1?Q?m58lSFYsCOc2dami4lZcJFUmd+J06+7TB7daKu9a/gGp9u17t9EVORI6f3?= =?iso-8859-1?Q?opqJVyUm1jLa/3HCzhHgjT+FOyIrPn27SDnpWNcSLFYREpkRGwTEmSDHug?= =?iso-8859-1?Q?urX3MAAmWanNPjreZWkKUvK7/YeH1jSSogTPOn1tdIU52L6VADyKV+SK7u?= =?iso-8859-1?Q?8bj8Tj9khWmniafYnNXWVmb2T+v11NkCszYCVsaACGAY8J8TOslFGSXGv3?= =?iso-8859-1?Q?S43NBrV9wn7kElPDAJ+4VHUegnK3XpFohqQFr7/f1cHp4XsAGF5IySXeZF?= =?iso-8859-1?Q?b2UpxwkuQzds5poYsWemer/swpgLZd7EscR9MoLjfSSmOkWoP4TU2oU4zE?= =?iso-8859-1?Q?Nbo2TuFjyrnh4nT+Q4mD/OycVdc2XhSbYgV7f13LK6iAwP0g0CvMYfTD6J?= =?iso-8859-1?Q?3GuDXMWlCM7uf/rvt/3DCGh2XyDWfXykH2AjssCcUhiWFr8To8Q9xtuCuh?= =?iso-8859-1?Q?UqZ6U11ylm+xer7FrdXem9ISVaCnBI50zwRtCI0Mn5ihOzTWzjOvmkETLu?= =?iso-8859-1?Q?Gh7uZk2XLKQG9aUSDWUPESXFBAyf8l/P4ynTEzD2WS/4/GK0wC9gEEK+VB?= =?iso-8859-1?Q?zMX8kIAUZl1K6GYLbB3YpAIX72GCJ9HbN0hX8MXpcaf+iDjDj52pprZoDo?= =?iso-8859-1?Q?+yjtEss4iOmK0NQZwXkdlPhOfIJ9Twj6fUgAbggXJINP31Ufc4iIchyB46?= =?iso-8859-1?Q?245Ri56abub5zOE//JJGcGUDQpIeRNIeFS4UVh6dR0w2Wrx46P+jaEMgPY?= =?iso-8859-1?Q?o3ID8EFu5lJOBsNfJ+iqZMLj0Ug9H/DeMZiJx6pUwDK3NvmwQS5PdpFUCI?= =?iso-8859-1?Q?BVkKBqL3yHcaMyaw6UwqkOb9UwHdOPYVBAXL6hrsS7THF01ExhQMOrwszp?= =?iso-8859-1?Q?GHlEYnMvenYWPX5/XCr0/0G4JGZtSdlutNV+oodv4vBkuu41hRi5nH1dkM?= =?iso-8859-1?Q?4CnHsxyE16aahwKlLwfQRYAbZv3I5gQDqLS3qnVfXHt0IcVcR8bARy9t5s?= =?iso-8859-1?Q?uC4hBdCQzaI0ppYnW2bTz/Aq2/S6OcaNBAHsJY4/SVMhw/wOh5STBRv+2s?= =?iso-8859-1?Q?WMs6fH0y0l5rWbh+R9cMi+M=3D?=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_DM6PR15MB237928B2B84B18E9AE050EC3E3BA9DM6PR15MB2379namp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR15MB2379.namprd15.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 988db676-a25e-401a-7415-08d8c3aea3b2
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Jan 2021 17:03:31.0192 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: EVcC7lYhu7wW/UBxPckKDbL6xIJeM10L1PEBdUScnUMrgkT2aCZULBw6f7caFgHpmFen/EbpUHgVWsvISJDgjj/VETohk9bU+haRX0MtWcE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR15MB1850
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/kfiXAHluL5LlLrKPMMsJCe8q1NQ>
Subject: [Ace] draft-ietf-ace-dtls-authorize
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jan 2021 17:03:38 -0000

Apparently, the change on the DTLS profile has not been noticed by everyone in the WG, so I am bringing the discussion here.

The change has been made as a response to a comment from the security directorate. Please provide your feed backs by Feb 4 (but preferably before)- and potentially propose the text you would like to see if you disagree with the change.



This is how has just been updated.


 The use of CoAP

   and DTLS for this communication is RECOMMENDED REQUIRED in this profile, other profile.  Other

   protocols (such as HTTP and TLS, or CoAP and OSCORE [RFC8613]) MAY be

   used instead. will

   require specification of additional profile(s).

Yours,
Daniel