IETF Logo Mail Archive

Re: [Ace] Group Communication Security Disagreements

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Wed, 27 July 2016 19:01 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B50212D896 for <ace@ietfa.amsl.com>; Wed, 27 Jul 2016 12:01:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YgsW6sheM9Vj for <ace@ietfa.amsl.com>; Wed, 27 Jul 2016 12:01:32 -0700 (PDT)
Received: from mail-ua0-x22a.google.com (mail-ua0-x22a.google.com [IPv6:2607:f8b0:400c:c08::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B71EC12D89F for <ace@ietf.org>; Wed, 27 Jul 2016 12:01:26 -0700 (PDT)
Received: by mail-ua0-x22a.google.com with SMTP id j59so23998175uaj.3 for <ace@ietf.org>; Wed, 27 Jul 2016 12:01:26 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=Zg4aYqJFeFSWhyO7jj8a1VImQnuTEaXORNorVIS1QaQ=; b=szi9eZ6AP9EmSYt8I5H1wgj4TCXP/x844+sb9A2Hzf50+sVWTWpyY8fb4aROj1QSdN GLEWCgECOP8LRckm3d6MuwtBvVlaNID7ReKePQUljhfWwQFCxXk8FSuUx98j17Htvfa4 oWpB7lCVR/R9CF/Qr9vyCdlAGNMHulnIIoxo96f1bTc9VD/xXmx35t0gDFKlUigCPd3Q fWdBIACmCy+2Ex427/w2PSD41gg3f+IgSH7VumdKMDzyZf9ZdYknk6EZf1f4GsGd8vgo CgF+yVpSdrBsw+ug+mr7KkTnd8HTYso7aLxHnIMTo/9rpkD9UFGB0ScjW4mjszo1aZiM dExQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=Zg4aYqJFeFSWhyO7jj8a1VImQnuTEaXORNorVIS1QaQ=; b=VoqNAbfbidQaF963jZhoAO8636baSyluV7QpnF3apWrkzEP+UOC6h0JtS2g/+73kT3 Zicht6Q+U9OoVUw6hOQpaGG/iQ2TmmIUo2NRFdmfjVREzozQPzZ+Bhqbc4OgJ/tLs9hk ztu0FKNPkACeQnYh3Xr8hGNRlwXMXkfsxJAu3HM7QwlMxwybaUgYN6pIVKReNgy0SlT/ qPhdSusfwrqbsBBHT0ocsJKiJwXMHw1HGXUUsQBLGYChZsqi4H+P+ECZ//pC/1Q7/pIh O8/HkTsxhNfBDe7yntIChoovVhZPuCPJfetlewp8P7iW0mvlGtm5kep8uhZnW7JfWICh BLHw==
X-Gm-Message-State: AEkoouvaHF5veSWDZwa+QhGu+VbC6bggMJeTufTC5rMsxagrhDlxodyiVC/Ip36hQKC7kSRDxB+d/5R6Cm8ePg==
X-Received: by 10.176.6.232 with SMTP id g95mr12850786uag.95.1469646085725; Wed, 27 Jul 2016 12:01:25 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.159.37.104 with HTTP; Wed, 27 Jul 2016 12:01:25 -0700 (PDT)
In-Reply-To: <15169.1469642303@obiwan.sandelman.ca>
References: <57909032.10809@gmx.net> <6d259c5b-28e3-c748-4590-0c9f942fe343@comcast.net> <378a0359-6b31-a30c-af28-8ea567b06b00@cisco.com> <57963480.2000809@gmx.net> <0d4c6d56-ebb5-2f43-d555-29c336396033@ericsson.com> <15169.1469642303@obiwan.sandelman.ca>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Date: Wed, 27 Jul 2016 15:01:25 -0400
Message-ID: <CAHbuEH4u=AF1LSoDq+YfLwt+VX1OOrj54331GuZmyjLswHvNnw@mail.gmail.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/YiEd6cxHCmJ9jleDWHI7oaiPTkU>
Cc: "ace@ietf.org" <ace@ietf.org>
Subject: Re: [Ace] Group Communication Security Disagreements
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 27 Jul 2016 19:01:34 -0000

On Wed, Jul 27, 2016 at 1:58 PM, Michael Richardson
<mcr+ietf@sandelman.ca> wrote:
>
> Mohit Sethi <mohit.m.sethi@ericsson.com> wrote:
>     > designed/developed/specified for their use-case. I could definitely
>     > see some IoT startup building a solution that switches on the lights
>     > in a room as soon as you unlock the door (thus keeping them in the
>     > same group).
>
> Or perhaps more usefully, turning the lights (and the oven) off when you
> leave the house.

Good points, but you could do this without them being in the same
group with some controller that managed the interactions with each.
This would be a good set of examples for the security considerations
sections, providing guidance to use a controller rather than group
keys to perform useful functions like these.

Kathleen

>
> (How long did it take to get automobiles that turned the headlights off when the key
> was removed?)
>
> --
> Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works
>  -= IPv6 IoT consulting =-
>
>
>
>
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace
>



-- 

Best regards,
Kathleen

v2.35.0 | Report a Bug | By Email | System Status