Re: [Ace] EST over CoAP in ACE wg

peter van der Stok <stokcons@xs4all.nl> Thu, 08 December 2016 08:12 UTC

Return-Path: <stokcons@xs4all.nl>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F0E8A129B58 for <ace@ietfa.amsl.com>; Thu, 8 Dec 2016 00:12:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.602
X-Spam-Level:
X-Spam-Status: No, score=-2.602 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vl1MQE0FNnfd for <ace@ietfa.amsl.com>; Thu, 8 Dec 2016 00:12:24 -0800 (PST)
Received: from lb1-smtp-cloud6.xs4all.net (lb1-smtp-cloud6.xs4all.net [194.109.24.24]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C54C129CB7 for <ace@ietf.org>; Thu, 8 Dec 2016 00:12:16 -0800 (PST)
Received: from webmail.xs4all.nl ([194.109.20.195]) by smtp-cloud6.xs4all.net with ESMTP id HLCE1u0034CYHle01LCEJ8; Thu, 08 Dec 2016 09:12:14 +0100
Received: from 2001:983:a264:1:e4b5:c90e:f42d:52ed by webmail.xs4all.nl with HTTP (HTTP/1.1 POST); Thu, 08 Dec 2016 09:12:14 +0100
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII; format=flowed
Content-Transfer-Encoding: 7bit
Date: Thu, 08 Dec 2016 09:12:14 +0100
From: peter van der Stok <stokcons@xs4all.nl>
To: ace@ietf.org
Organization: vanderstok consultancy
Mail-Reply-To: consultancy@vanderstok.org
In-Reply-To: <14831.1481139454@obiwan.sandelman.ca>
References: <6525c5f0b6e040b683ccd9c43b1c5e2f@VI1PR9003MB0237.MGDPHG.emi.philips.com> <14831.1481139454@obiwan.sandelman.ca>
Message-ID: <5ac94ac231bc766afdb72776f6ea5e0f@xs4all.nl>
X-Sender: stokcons@xs4all.nl (hXPlVLSW7/ja0OkiFMaSjBRy1n/Lryw4)
User-Agent: XS4ALL Webmail
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/YRxiAzOE4Uio27zQl-hLSuhWfFo>
Cc: 6tisch@ietf.org, anima-bootstrap@ietf.org, 6tisch-security@ietf.org
Subject: Re: [Ace] EST over CoAP in ACE wg
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: consultancy@vanderstok.org
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Dec 2016 08:12:25 -0000

Hi Michael,

> 
> As such, what we would really like is an EST-like mechanism which runs
> over OSCOAP with EDHOC keying.  Ideally, it would also permit the 
> process
> to be managed/initiated from the new device (the pledge), or from the 
> JCE
> (Registrar, which might also be the AS in ACE terminology).
> 
About yesterday I started to understand the approach you suggest.
Just some more information, to be absolutely sure about what you 
propose.

Do you propose to keep the content formats used by EST unchanged?
and keep all the different modes specified in EST RFC?

Greetings,

Peter