IETF Logo Mail Archive

[Ace] WGLC for draft-ietf-ace-coap-est-oscore

Tim Hollebeek <tim.hollebeek@digicert.com> Thu, 18 September 2025 15:42 UTC

Return-Path: <tim.hollebeek@digicert.com>
X-Original-To: ace@mail2.ietf.org
Delivered-To: ace@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 231B764FD180 for <ace@mail2.ietf.org>; Thu, 18 Sep 2025 08:42:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=digicert.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cSjUNU5MoGNc for <ace@mail2.ietf.org>; Thu, 18 Sep 2025 08:42:22 -0700 (PDT)
Received: from SN4PR0501CU005.outbound.protection.outlook.com (mail-southcentralusazon11021083.outbound.protection.outlook.com [40.93.194.83]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id AC32C64FCFE6 for <ace@ietf.org>; Thu, 18 Sep 2025 08:42:19 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=yk9Z7WbINJGc/IHbLWriALIQtd5NK8OqmlqXIinBefX2CLL8iqBuKsL+ROKKaDXAQvpH6FvUn+meapbKVhAS5rluPbx3lcS8GkVxzlVqozw67dJb6jFufh1HOsWBpmFefVKQBOKi85B5mhPvsFFLScgKELLnMZxERIaKXPiT93ZNOQwaqNNWFKswhB0po6GuwwKPlCT8wt8q6qKicmhfY5mEXhBPS+/JMzDoIUDbxWJChJ6SkJQg03XNbRun9JrCFCUA1XOMdiLr+WugH8ulSbL0e4p3/goUxWcqos/Z40JqXzseTESow5jcOlKQoUk/IJyn7OvsBJq0q7qMh6dm4Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=pyWUTrolil4CAy1pDeKqsftZWFzsvKZS1sQEtF4QOD8=; b=Cl0J/Y7LYq9BTyBC7C7M8aBrJSmPyEjr04BfsloWLNrD5pUOjySdpAPHAGrr5eE2/+f4fcbPNMIanmsPiNs+DKUhF0qXHlraZgbwjdgBwBGAdotN9VhpSBbIpu4yPgMzwYII0xxSTJeh11yit0ydmwjZcj0JXRYBmWjmVwLEZQLlDy5a0Mp/xuKB4bpJjE5mHDQEAn/XpRjTg1g9Yfpbkvg/TIEifQcYT2wR6fXymRF8OW42++uRwFMmT0U0kOtXugB5TSFpncDgBot23IGC+6A2PmkGQj3avNcnDA1AjpM/cjhuexVy3m3MYKBFtOH1I55xiVhSSQwAvowaeKuyRw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=digicert.com; dmarc=pass action=none header.from=digicert.com; dkim=pass header.d=digicert.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=digicert.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=pyWUTrolil4CAy1pDeKqsftZWFzsvKZS1sQEtF4QOD8=; b=KPtdBNJiVjCKj2YabfdkrAzf3euQnJ9w5Qjwu+q20JqanfBSNuPu5enxkifOyDcO77gepFyFmEkLPi38eDtVKU1Vlj9yEMUrCuNt2YKu+udDbvDkikUmoxLyJe+6XpMg85aJlF2M3NceqthNTNez8mmAYaHofJJaxuUeX//B83KUid+bRDNIlteDBbWGNV+s8Olt+xO07E5WK6kNgyO89SbA4KmSYTcQxSYm0CoeYWZpr2/6adlFWm5z14BKID7N17bgKEDlEHG4d+8cwZQ8JohSDOIYu1RAMyXw4EuCtT+mcj1QECBmqAiLYmf/kpWI+kBrnz0WcIPbqR+tPgjByQ==
Received: from SN7PR14MB6492.namprd14.prod.outlook.com (2603:10b6:806:328::17) by CH3PR14MB6916.namprd14.prod.outlook.com (2603:10b6:610:130::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9137.13; Thu, 18 Sep 2025 15:42:10 +0000
Received: from SN7PR14MB6492.namprd14.prod.outlook.com ([fe80::4659:3696:6ad:2630]) by SN7PR14MB6492.namprd14.prod.outlook.com ([fe80::4659:3696:6ad:2630%4]) with mapi id 15.20.9137.012; Thu, 18 Sep 2025 15:42:10 +0000
From: Tim Hollebeek <tim.hollebeek@digicert.com>
To: ace <ace@ietf.org>
Thread-Topic: WGLC for draft-ietf-ace-coap-est-oscore
Thread-Index: AdwosjZ2nkp10pK/RtaV71ofiIzf1A==
Date: Thu, 18 Sep 2025 15:42:10 +0000
Message-ID: <SN7PR14MB649238ACA5CBE3AEF83B7DB98316A@SN7PR14MB6492.namprd14.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=digicert.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SN7PR14MB6492:EE_|CH3PR14MB6916:EE_
x-ms-office365-filtering-correlation-id: 7a42a1c2-a80a-470f-c630-08ddf6c9ee27
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|366016|376014|38070700021|13003099007|4053099003|8096899003;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:SN7PR14MB6492.namprd14.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(366016)(376014)(38070700021)(13003099007)(4053099003)(8096899003);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_0083_01DC2891.41BA0030"
MIME-Version: 1.0
X-OriginatorOrg: digicert.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN7PR14MB6492.namprd14.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 7a42a1c2-a80a-470f-c630-08ddf6c9ee27
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Sep 2025 15:42:10.0672 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf813fa1-bde5-4e75-9479-f6aaa8b1f284
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: sNpfYyMJxc3Dd9780wNiC1jYdvveujmtjIFb0BBJ9PT0Gf+bx0xEwT4f+37QDNVs0IXWp5hjM78gea6iuWrW9++xICyKiymFXD/dDxHc7Ds=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH3PR14MB6916
Message-ID-Hash: JOGWFFNDBICZHVZ24GQTR7JUIUE34GTY
X-Message-ID-Hash: JOGWFFNDBICZHVZ24GQTR7JUIUE34GTY
X-MailFrom: tim.hollebeek@digicert.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ace.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Ace] WGLC for draft-ietf-ace-coap-est-oscore
List-Id: "Authentication and Authorization for Constrained Environments (ace)" <ace.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/ihlzvKJwM5cGTNvIY83axUWHgAE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Owner: <mailto:ace-owner@ietf.org>
List-Post: <mailto:ace@ietf.org>
List-Subscribe: <mailto:ace-join@ietf.org>
List-Unsubscribe: <mailto:ace-leave@ietf.org>

Hello,

 

As we discussed in Madrid, we are ready for Working Group 

Last Call for draft-ietf-ace-coap-est-oscore:

 

Protecting EST Payloads with OSCORE

https://datatracker.ietf.org/doc/draft-ietf-ace-coap-est-oscore/

 

 

Abstract

 

   Enrollment over Secure Transport (EST) is a certificate provisioning

   protocol over HTTPS [RFC7030] or CoAPs [RFC9148].  This document

   specifies how to carry EST over the Constrained Application Protocol

   (CoAP) protected with Object Security for Constrained RESTful

   Environments (OSCORE).  The specification builds on the EST-coaps

   [RFC9148] specification, but uses OSCORE and Ephemeral Diffie-Hellman

   over COSE (EDHOC) instead of DTLS.  The specification also leverages

   the certificate structures defined in

   [I-D.ietf-cose-cbor-encoded-cert], which can be optionally used

   alongside X.509 certificates.

 

Please review the above document and provide any Working Group Last

Call comments on the list by 10 October 2025.

 

-Tim, for the Chairs

v2.34.0 | Report a Bug | By Email | System Status