Re: [Ace] New Version Notification for draft-selander-ace-cose-ecdhe-10.txt
John Mattsson <john.mattsson@ericsson.com> Tue, 18 September 2018 12:13 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD728130E02 for <ace@ietfa.amsl.com>; Tue, 18 Sep 2018 05:13:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.311
X-Spam-Level:
X-Spam-Status: No, score=-4.311 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=hVoBAZt1; dkim=pass (1024-bit key) header.d=ericsson.com header.b=gIssjH8g
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jMJBJ1J5zc7c for <ace@ietfa.amsl.com>; Tue, 18 Sep 2018 05:13:53 -0700 (PDT)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 28F241277D2 for <ace@ietf.org>; Tue, 18 Sep 2018 05:13:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1537272831; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=wtgHkNWJNKquRGCqnbpo5jdif9TYHqEEheKaTQFBqck=; b=hVoBAZt1Flw611Ul4/1FIYkzh8BMcVnHuiolFi/iMWyw0am4Z2XM9YdW95Sw/EYd iJ60+6nW7z4En6uZOkxkpYwoJJpD8TV3zx2X81z+ro7U2QqCxFhkTHDK+6Sshyw2 yOzLjx6S8Ux8luc4CdUI6zfHzLsDRNMsFx+2ZPX2Kq0=;
X-AuditID: c1b4fb25-8e7ff700000013ad-7f-5ba0ebffa935
Received: from ESESBMB505.ericsson.se (Unknown_Domain [153.88.183.118]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 54.59.05037.FFBE0AB5; Tue, 18 Sep 2018 14:13:51 +0200 (CEST)
Received: from ESESBMB505.ericsson.se (153.88.183.172) by ESESBMB505.ericsson.se (153.88.183.172) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Tue, 18 Sep 2018 14:13:51 +0200
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (153.88.183.157) by ESESBMB505.ericsson.se (153.88.183.172) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3 via Frontend Transport; Tue, 18 Sep 2018 14:13:51 +0200
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=wtgHkNWJNKquRGCqnbpo5jdif9TYHqEEheKaTQFBqck=; b=gIssjH8g0WtRuJqzidGiTIPOAvTMgtFWpKFIAGnZUw9ADKYD8lrDTUtPApVWjTsyiqV48hxiDRZUzyW/ZQurx79RduOVsqrtJmUSTlOibqrIu8J3ZezDk4sO4KT/poQABciKOhPuiAIFgyiAuMBdcFQimZhATZXZpSPOcmlGARs=
Received: from HE1PR07MB4169.eurprd07.prod.outlook.com (20.176.166.22) by HE1PR07MB3243.eurprd07.prod.outlook.com (10.170.246.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1164.15; Tue, 18 Sep 2018 12:13:48 +0000
Received: from HE1PR07MB4169.eurprd07.prod.outlook.com ([fe80::a451:7626:5a73:809]) by HE1PR07MB4169.eurprd07.prod.outlook.com ([fe80::a451:7626:5a73:809%5]) with mapi id 15.20.1164.014; Tue, 18 Sep 2018 12:13:48 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: New Version Notification for draft-selander-ace-cose-ecdhe-10.txt
Thread-Index: AQHUT0D2zxdHauahnEWZW1jb5fvZoaT2FR+A
Date: Tue, 18 Sep 2018 12:13:48 +0000
Message-ID: <15EF8F72-863C-44F7-952E-0CD0B13203FA@ericsson.com>
References: <153726933837.18555.8618119984483175591.idtracker@ietfa.amsl.com>
In-Reply-To: <153726933837.18555.8618119984483175591.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.11.0.180909
authentication-results: spf=none (sender IP is ) smtp.mailfrom=john.mattsson@ericsson.com;
x-originating-ip: [192.176.1.81]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; HE1PR07MB3243; 6:URxGRsDkt5XlPPplCzWPor6ZayxZ6vIMqlt7z+apA2bjvTdeW4M/WujhDpyt3CmHUfIjwPPcOBwLvHjpnJ7dHMzdgkQhNSuVzNEswPlCEJLon9Ow9aoc8vpAsmz4RtOAHWgzgiqCkZ6MwAX3xiuqbYgIx0bLIL6pmpicSCJMk8uvB/ecX7EG74fXeyZYs4oU8Yd4prbG5PrQfjPk/NZUVlN1G4XTZgq1iaQ4Hn5sXh4diPMRD9N+dJ24ObVu4KZHZfdZVx8foPeK/kzRTf/3yus6tSpALuTpobl47cBvrVvtJwIPg8SjzEg5gPJ2nN5UZW5bQ25DDzAWwzJ+flmpheFxCU7ZnIouT6o5PMDs6L2Rk2Q9G55IqX3QVgGUdFAHF2L1YynbQGtEFHTCZ++nnUlJ5Wd5f0/frY4GCJnhaZtMmCN5zbpBWumrTmSZ3Zu1EMhEfi5LNGwqK+/zzcLydg==; 5:vJRqh6Uki/6krdKtLghSM7MXsat1+uJq1JJTJZZho4uDieaGmGSSP8UgP5LdfltA98dcwkUij9N2zuZvtcMk555iFxRJluMQAn0ZO+S3smsUWN0zsGED9g1L84yF3JBvgnWCv3lhQTw6+1R1M75GzwndveoWneeQmz88HOPx7+k=; 7:2O0FecpPDQy6zTV0sK0AKFf2vlMO9O6HxSSF3y+Q8m4RRteVeORACMSVxKhqlKtZ8CLcP0xCsgXKoqytyHXfG7zDUi7eZeGsNdpIOCIbt6vK8XqTCPFW20z6SPfnGAP6nxmS9JNO6wRZBHCS4ibLN12mwpPLHz6Ec55TCt9DvfduW4E9mMb5KPphQKz6JUNFRiXGg03PgH0ELiHqJznxQZl6nSw7MzrwPFonJerMqU58sJjBkWnu0SM8CZtlXIej
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 038a42a6-5116-446c-5f4f-08d61d60306b
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989299)(4534165)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(7193020); SRVR:HE1PR07MB3243;
x-ms-traffictypediagnostic: HE1PR07MB3243:
x-microsoft-antispam-prvs: <HE1PR07MB324357273591DC8DDD019F13891D0@HE1PR07MB3243.eurprd07.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(120809045254105)(192374486261705)(35073007944872);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(93006095)(93001095)(3231355)(944501410)(52105095)(3002001)(10201501046)(149027)(150027)(6041310)(20161123564045)(20161123558120)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(201708071742011)(7699050); SRVR:HE1PR07MB3243; BCL:0; PCL:0; RULEID:; SRVR:HE1PR07MB3243;
x-forefront-prvs: 0799B1B2D7
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(39860400002)(366004)(396003)(376002)(346002)(199004)(189003)(14444005)(81166006)(5640700003)(6436002)(6506007)(8676002)(6486002)(6512007)(106356001)(6306002)(58126008)(36756003)(83716003)(82746002)(6246003)(102836004)(446003)(25786009)(68736007)(53936002)(11346002)(1730700003)(256004)(186003)(2351001)(229853002)(105586002)(15650500001)(76176011)(81156014)(26005)(33656002)(2906002)(97736004)(6916009)(7736002)(486006)(44832011)(305945005)(316002)(5660300001)(2616005)(86362001)(2501003)(66066001)(476003)(478600001)(966005)(99286004)(8936002)(3846002)(6116002)(5250100002)(2900100001)(14454004); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR07MB3243; H:HE1PR07MB4169.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: vpu7ZWFq072nzwfQUF8HyTYAzvEGzlYfepawNgUxeE6WVBSdUAeJx8pLR3MoaKyuzUJ9TTzB4Ar8RtHmi1MjpHyXR2XoZjjPhSNzH2D++sS9G4o/qNwFfb9OIZMdwuYp5pkHCV5b5xsRUXyWRctU6G/MPpovQwLhnZI0tHRaYEJmzSJ/OEw2XMc7mbFmMm0W6Ksptixrao8OahO8zNOQ7uOuqjKMHogTIABkeYniNrRUZ2lBgx+HsRIPR3WNoKHDcWopbLS232VS8OKtx5f1s0Bni/crXBh3YYjdisUnxZh6eICTLNEq1dL63bz1/96Lx46ji9aTbHgdIL4gobVgElR660AqBDFP90Uxtq+d+ZY=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <A6D0EBC1F3DD3D46A5B6BF490DCC79DA@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 038a42a6-5116-446c-5f4f-08d61d60306b
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Sep 2018 12:13:48.4261 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3243
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmphleLIzCtJLcpLzFFi42KZGbG9TPf/6wXRBt03BS2+f+thdmD0WLLk J1MAYxSXTUpqTmZZapG+XQJXxp0LXxgLTmlUTOn7ztTAeES9i5GTQ0LAROLTkRbGLkYuDiGB o4wST38thnK+MUpc/9rBAuEsYZKYuuksM4jDIjCBWWLdiptsEJnJTBIv2/dB9TxglLi0opUJ ZDKbgIHE3D0NQFUcHCICihLXHyWChIUF/CTannxkAbFFBAIlOnZ9gSoxkmhpDwMJswioSnxb 0sMOYvMK2Et8mNkCVi4k4Ctx+NAhVhCbE2jM+0f9YDWMAmIS30+tAdvKLCAucevJfCaI3wQk luw5zwxhi0q8fPwPrFdUQF9i/oMOVojeWInW1umsEDUKEsdmrGSBsGUlLs3vBntLQmAfu0Tj palQCV2JD1OnQg31lfh8awobhH2cUeL5+mwIW0ti2tutUEOzJVbP/AZlx0j8O3sEao6cxKre hywTGI1mIbl7FjAomAU0Jdbv0ocwPSSubc2EqFCUmNL9kH0WOFQEJU7OfMKygJF1FaNocWpx Um66kbFealFmcnFxfp5eXmrJJkZg2ji45bfqDsbLbxwPMQpwMCrx8Aa+WhAtxJpYVlyZe4hR goNZSYSXMwcoxJuSWFmVWpQfX1Sak1p8iFGag0VJnPeh+eYoIYH0xJLU7NTUgtQimCwTB6dU AyNDxMyEI6HyZ22ul/FOTbbzuNvmrvhAjr/C51P457DV1Yt+aHQ8+/96wqljFs0xTptcA/Yb 76zSL67fcXaBQ963a69WMTgtcTbrun4paq+ch9mPO1x29hq3jnWbztPRfs7vvLLL6Mr15Smz Gdi/MTVwG5Z+rDmtNiu6yyX567KeMxEKxl+28yixFGckGmoxFxUnAgAtM7flFwMAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/Vs8BOwZkrpxXCzGwdQyAeUMfEWc>
Subject: Re: [Ace] New Version Notification for draft-selander-ace-cose-ecdhe-10.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Sep 2018 12:13:56 -0000
Hi, We just submitted version 10 of EDHOC, the new version adds quite a lot of clarifications and examples and adds some new optimizations. In particular: - The introduction has been expanded to better describe the security properties of EDHOC, the motivation behind it, and the structure of the document. - The key derivation is described in terms of a function EDHOC-Key-Derivation(AlgorithmID, keyDataLength, other) and an Exporter interface EDHOC-Exporter(label, length). Appendix C and D now uses the exporter interface. - More information and examples on different ways to identify public keys. More security details regarding identities as suggested by University of Copenhagen. - Updated CCDL definitions with .cbor and .cborseq - Changes aad_i and exchange_hash definitions to make implementations more optimized - The algorithm arrays are now defined as algs = alg / [ 2* alg ], an idea borrowed from draft-schaad-cose-x509 - Renamed session IDs to connection IDs to make the purpose clearer. - More explanation and clarification on how error messages work and how they interact with lower layers as requested by Jim Schaad. - Modified the error handling to allow truncation of the list of supported algoritms. - IANA section to register a Content-Format - Added an appendix shortly explaining CBOR, CDDL, and COSE to developers of EDHOC (as suggested by Klaus Hartke) - Significantly expanded security considerations section, now divided in subsections. - Expanded the message size appendix to also cover PSK and certificate. Compared to the TLS 1.3 handshake with TLS 1.3 the number of bytes in EDHOC is less than 1/3 when PSK authentication is used and less than 1/2 when RPK authentication is used PSK RPK x5t x5chain -------------------------------------------------------------------- message_1 47 44 44 44 message_2 49 125 131 121 + Certificate chain message_3 12 86 92 82 + Certificate chain -------------------------------------------------------------------- Total 108 255 267 247 + Certificate chains Figure : Typical message sizes in bytes Cheers, John On 2018-09-18, 13:15, "internet-drafts@ietf.org" <internet-drafts@ietf.org> wrote: A new version of I-D, draft-selander-ace-cose-ecdhe-10.txt has been successfully submitted by John Mattsson and posted to the IETF repository. Name: draft-selander-ace-cose-ecdhe Revision: 10 Title: Ephemeral Diffie-Hellman Over COSE (EDHOC) Document date: 2018-09-18 Group: Individual Submission Pages: 44 URL: https://www.ietf.org/internet-drafts/draft-selander-ace-cose-ecdhe-10.txt Status: https://datatracker.ietf.org/doc/draft-selander-ace-cose-ecdhe/ Htmlized: https://tools.ietf.org/html/draft-selander-ace-cose-ecdhe-10 Htmlized: https://datatracker.ietf.org/doc/html/draft-selander-ace-cose-ecdhe Diff: https://www.ietf.org/rfcdiff?url2=draft-selander-ace-cose-ecdhe-10 Abstract: This document specifies Ephemeral Diffie-Hellman Over COSE (EDHOC), a very compact, and lightweight authenticated Diffie-Hellman key exchange with ephemeral keys that can be used over any layer. EDHOC provides mutual authentication, perfect forward secrecy, and identity protection. EDHOC uses CBOR and COSE, allowing reuse of existing libraries. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat
- Re: [Ace] New Version Notification for draft-sela… John Mattsson