[Ace] ACE-OAuth implementation
Hannes Tschofenig <Hannes.Tschofenig@arm.com> Mon, 19 March 2018 10:26 UTC
Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7516F126E64 for <ace@ietfa.amsl.com>; Mon, 19 Mar 2018 03:26:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.909
X-Spam-Level:
X-Spam-Status: No, score=-2.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vEoszgCS_HR1 for <ace@ietfa.amsl.com>; Mon, 19 Mar 2018 03:26:03 -0700 (PDT)
Received: from EUR02-HE1-obe.outbound.protection.outlook.com (mail-eopbgr10075.outbound.protection.outlook.com [40.107.1.75]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D8139126DC2 for <ace@ietf.org>; Mon, 19 Mar 2018 03:26:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=cJizBDSRKKP1rO5Z1t/uhkuA+zSB0rb+NjmrqXzVIaQ=; b=DSicOhXjyyu3VGX+d7p41SsC0RG/jlf/c96C3u+5km3QBr3q8xfWyB6XzGkFrvcsBucvIKKSpO+A8n2hmhvMH2m8nUTFRYcGmaEfDFC5lvfDUrxvAFfYVTCLApjRDvjxV3zB7K/BXf9zZRmojewZYBblXWlepUKZjQzenra2xM0=
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com (10.173.75.16) by VI1PR0801MB1440.eurprd08.prod.outlook.com (10.167.210.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.588.14; Mon, 19 Mar 2018 10:25:57 +0000
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::783f:d09c:fea6:f83d]) by VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::783f:d09c:fea6:f83d%17]) with mapi id 15.20.0588.016; Mon, 19 Mar 2018 10:25:57 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: ACE-OAuth implementation
Thread-Index: AdO/bB/7Umfci31dTCuSTMhv/VmhNQ==
Date: Mon, 19 Mar 2018 10:25:57 +0000
Message-ID: <VI1PR0801MB2112CBBD53B3BB4A036E1849FAD40@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [31.133.155.188]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; VI1PR0801MB1440; 6:beLktxvU+3F6FcvKu9OHJJd8YXWawB3HXFKZGoap2WdTov8otzk2NaaaEzSFPyJV1S50UjteI+cLFU68YlIHLklxF0EvN0H5lNSKFPzKnS77YBrqqxeebYS2mHXG1DYW7t1C5oCiscGyjSrqzCggF6z5ILGNvtKL5Xb9MWZxG1slaj0gWRJw0UDAURXPKpLW/I6JyWNKM2jYfhlH89bVwXMNm9pmwHfKPi+ougzTNwcckYFre+McJ9NRP/XRwEfUZIeShWxMNC+/TzEkyS3SWScr9h9O6QxdW/XybBTCpw1FL+XpJsHLhGH/m5HGeQ366J1Fo9UGlRNv2bEpZLDEQdYXOtPs9HHqPCGDMCuSRecAK/UVlzWXboMoPXAjw9Ap; 5:ZNVsaIsZUvdt+Yr6omkeMWMW6936BAoLB+4FPR+CTgvioln5I+tiT7WXwciVITxvEPaP/fA8aIwPy+pwbJTXg/x8yOrZBMkTWzQDFjMIpV6Rv2ZtMVlmVvN6Hz9pUFJp1DE/2GL8Ng3COP1RlXZH1qdbpOmv1unga5sVLcbt6IY=; 24:FZtQXFHYboX8/ks3mlcO+XevsefNgcT4Ra/HbZXaXLaLp3Rvx0f84XIza2bnLy7bdgxi6rBzHciI+fQXO9M5WsWoTExDDHwfng23y19pExs=; 7:RpDbHwzY9iAQJwvaHhWjcMgkgwO5RUPYnP6btwTxRL251u0YZxJzRhZFPKMWfbJRg7aYIzJJusbLAGgtLROzdRUyhJ/f9QZlZDpK4bh2KMOdDGRRdH6vHzDJ6MZ6qhGF5V7ko5PGT5O6KPkJTkYyG4x6y9LNwO6LUo5qBnFZqL1KKZR4hdDH9X27cuvev3e7D9TMXpHq0baNYnnRQJ+jddTsatQGlLUekV+uAOQyupcAN5OdRjD0fOvtry4neDFo
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 9f777161-9390-40ec-165c-08d58d83cd9e
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(48565401081)(5600026)(4604075)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:VI1PR0801MB1440;
x-ms-traffictypediagnostic: VI1PR0801MB1440:
x-microsoft-antispam-prvs: <VI1PR0801MB14407F45F2780A3E4E74D4C4FAD40@VI1PR0801MB1440.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(192374486261705)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3002001)(3231221)(944501300)(52105095)(10201501046)(93006095)(93001095)(6055026)(6041310)(20161123558120)(20161123560045)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(6072148)(201708071742011); SRVR:VI1PR0801MB1440; BCL:0; PCL:0; RULEID:; SRVR:VI1PR0801MB1440;
x-forefront-prvs: 06167FAD59
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39380400002)(39860400002)(346002)(396003)(376002)(366004)(199004)(189003)(40154002)(40434004)(8936002)(6436002)(966005)(2501003)(14454004)(72206003)(105586002)(5890100001)(106356001)(86362001)(478600001)(5250100002)(66066001)(9686003)(54896002)(53936002)(316002)(5640700003)(6306002)(3280700002)(7696005)(6116002)(99286004)(790700001)(186003)(55016002)(3480700004)(59450400001)(2900100001)(6506007)(7736002)(81166006)(5660300001)(68736007)(3660700001)(6916009)(102836004)(97736004)(33656002)(2351001)(5630700001)(1730700003)(3846002)(25786009)(74316002)(81156014)(26005)(8676002)(2906002); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR0801MB1440; H:VI1PR0801MB2112.eurprd08.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: qX3tNCMgGrRusaDWO8rGufHnkepvHDeZkIva0pfRvQVDxuqtG+AbKeXUQMnlyJl3bleV/lHq9yNbt5rqgVXUtcjH/gRrLkKhkyLdtTkPZir9vyunDFw//w7h48oYZuuyUT7ImKmL5IE/W7w+XvJrQFf/mUS9JpBOlwIWzVGjWLuI5mcdO33AX3lFhMhbUmbIx39QLFXVVxSP61cOTeoCbZ9IqsvdjktAnPAq/OQ9wrRzdIDTmNHTXX3/u27hS+TP6Rjxrt56y9BF1rK/Dik/bIAIp6NtxoWq/pe3hRVL/GklInF0kwvR2MFGMIpvIrCcSEu48cqLLgunC3CYqE2wXQ==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_VI1PR0801MB2112CBBD53B3BB4A036E1849FAD40VI1PR0801MB2112_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9f777161-9390-40ec-165c-08d58d83cd9e
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Mar 2018 10:25:57.1777 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0801MB1440
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/RZV2MznUv8AGPAB2PkZd9S03BMU>
Subject: [Ace] ACE-OAuth implementation
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2018 10:26:06 -0000
As mentioned at the working group meeting today we, Arm, released a product feature with the name "Secure Device Access" for our Mbed Cloud product. It implements functionality of the ACE-OAuth framework. I talked about it during the OAuth security workshop last week, see http://st.fbk.eu/sites/st.fbk.eu/files/osw2018-hannestschofenig.pdf I believe that this is the first product announcement concerning ACE-OAuth. A corresponding press release can be found at: https://blog.mbed.com/post/mbed-cloud-secure-devices My slides as well as the blog post explain what we have been doing and what functionality we cover. Ciao Hannes IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [Ace] ACE-OAuth implementation Hannes Tschofenig