Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace-usecases-09: (with COMMENT)
Ludwig Seitz <ludwig@sics.se> Mon, 26 October 2015 07:39 UTC
Return-Path: <ludwig@sics.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF66B1AD277 for <ace@ietfa.amsl.com>; Mon, 26 Oct 2015 00:39:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LBwjzqw3LhNn for <ace@ietfa.amsl.com>; Mon, 26 Oct 2015 00:39:50 -0700 (PDT)
Received: from mail-lf0-x235.google.com (mail-lf0-x235.google.com [IPv6:2a00:1450:4010:c07::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 458F31AD26B for <ace@ietf.org>; Mon, 26 Oct 2015 00:39:50 -0700 (PDT)
Received: by lfaz124 with SMTP id z124so138038716lfa.1 for <ace@ietf.org>; Mon, 26 Oct 2015 00:39:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sics_se.20150623.gappssmtp.com; s=20150623; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-type; bh=zW96W5w5uRXKwxm3LEY72IXNQbkqFoAjwzb4sRlq3po=; b=iHx8yBim4Rsz259HLdPjD6lTNmLAVx5a22WlNUmdU/LLy8vyPnQcE+2uEhnkdEDPfM 4CWm0R5+hErcAJSEUTxMhjAxcnzTI92i3W8AiRDMbF6cExLd70JenVU8sRdFRaA5re0o r0UUIBLw8v+m28sZzwQOLnA8rKq87lmUxJ0ashzJlRssk542O/tShcM3gMZxC0bgwu1X T5OM/gsOfpUJYZoA6TMDdYnf/xASwpgQiLecYHgEyj6NrxSmUx9t+VSxd18Z3xChBh6m B693fXiCoL0dSPCn3uRAMUs+AIiqWhw2OzAmb7ahc489OUc9D0WCkDi8oVLi7MYZErRB SAXA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:cc:from:message-id:date :user-agent:mime-version:in-reply-to:content-type; bh=zW96W5w5uRXKwxm3LEY72IXNQbkqFoAjwzb4sRlq3po=; b=D4fuJ9H6skhXR8Y4dVFWTpeyPEA4QKSrQ1TyKM7l6uw/koyN6gB+olAOUItuwXBkLB eTADvFTCVuqYz0ljPu6iyV8uf+bI3LgZrlJNwCEa0Z4eFOwJhLUeRwI+RUemtZ6BW3qC jSC6mk+TFpF0ZlYw6KdbjXYC6S9Oy1fhD9DmgMF8KcXJRCYqlQ6ggoK87z2JWL/hRtsF u8UYmJ81EJlD0P9DKsr8aiSFFI+ixPwEdya5k2DI3zLeezswPTTRsihnShuvdICkZLCe q0IY7Ba+Jr6XfXvw41NrRLosu7VTaiebigvm0Cy+PMn4yPuLLiiE++Irdz66B0jUWqCQ Rjcg==
X-Gm-Message-State: ALoCoQloTx2KJrTuZ2qQD5/C215oiz895qcGYCmdRZT2KK5JaRiRIiJetViMxpXqfQONAeOYdiCI
X-Received: by 10.112.16.164 with SMTP id h4mr3645661lbd.63.1445845188220; Mon, 26 Oct 2015 00:39:48 -0700 (PDT)
Received: from [192.168.0.108] ([85.235.11.178]) by smtp.gmail.com with ESMTPSA id w143sm5800920lfd.2.2015.10.26.00.39.46 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 26 Oct 2015 00:39:47 -0700 (PDT)
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
References: <20151022132903.23826.2689.idtracker@ietfa.amsl.com> <5629EA01.6020506@sics.se> <5629EED2.5080005@cs.tcd.ie> <CAHbuEH6LNA6XaY8kUkZZ20A+Jc2V4SWriDajuZOkxq2JFuZX0Q@mail.gmail.com> <562A3647.3030101@sics.se> <562A4B07.9080305@tzi.de> <6E79B71B-FBE1-4FB6-B9B9-16E6C44C67BA@gmail.com>
From: Ludwig Seitz <ludwig@sics.se>
Message-ID: <562DD8C2.3020508@sics.se>
Date: Mon, 26 Oct 2015 08:39:46 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0
MIME-Version: 1.0
In-Reply-To: <6E79B71B-FBE1-4FB6-B9B9-16E6C44C67BA@gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms010004050500030203080906"
Archived-At: <http://mailarchive.ietf.org/arch/msg/ace/atL8XkKgSbw3a8H_bCakodniFos>
Cc: Stefanie Gerdes <gerdes@tzi.de>, "ace@ietf.org" <ace@ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Subject: Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace-usecases-09: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Oct 2015 07:39:53 -0000
On 2015-10-23 17:21, Kathleen Moriarty wrote: > > > Sent from my iPhone > >> On Oct 23, 2015, at 10:58 AM, Stefanie Gerdes <gerdes@tzi.de> >> wrote: >> >> Hi all, >> >>>>> 1. Software update is really needed and often missing and >>>>> usually hard. There's at least a need to authenticate and >>>>> authorize new firmware, when there is any update. That may >>>>> not be the same as authorizing a new config. >>> >>> >>> Isn't this covered in section 2.4.1.3. ? >>> >>> "At some point the facility management company wants to update >>> the firmware of lighting devices in order to eliminate software >>> bugs. Before accepting the new firmware, each device checks the >>> authorization of the facility management company to perform this >>> update." >>> >>> There is simply not a specific authorization problem listed for >>> this, I could argue that it is subsumed under U4.4 but if you >>> think it deserves specific mention under the problems section I >>> can live with adding a point. >> >> I think adding a point in 2.4.3 is a good idea. We could also add >> an item to 3.3 that emphasizes the problem. >> > > Great, I think adding a point would be helpful. You'd be > authenticating the device to receive the update preventing fraud, > which is different from the existing point referenced. > Hello Kathleen, I'm a bit puzzled by this last sentence. That is not at all how I read Stephen's comment, which was, in my understanding, all about authenticating and authorizing the software update, not the receiver of the update. Now obviously, authenticating the receiver of a software update is not a bad idea either, but do you think this also requires specific mention? /Ludwig -- Ludwig Seitz, PhD SICS Swedish ICT AB Ideon Science Park Building Beta 2 Scheelevägen 17 SE-223 70 Lund Phone +46(0)70-349 92 51 http://www.sics.se
- [Ace] Stephen Farrell's Yes on draft-ietf-ace-use… Stephen Farrell
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Carsten Bormann
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Stephen Farrell
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Kumar, Sandeep
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Carsten Bormann
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Kathleen Moriarty
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Ludwig Seitz
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Stephen Farrell
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Kathleen Moriarty
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Ludwig Seitz
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Stefanie Gerdes
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Kathleen Moriarty
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Ludwig Seitz
- Re: [Ace] Stephen Farrell's Yes on draft-ietf-ace… Kathleen Moriarty