IETF Logo Mail Archive

Re: [Anima] Adam Roach's Discuss on draft-ietf-anima-bootstrapping-keyinfra-22: (with DISCUSS and COMMENT)

Brian E Carpenter <brian.e.carpenter@gmail.com> Mon, 15 July 2019 22:28 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: anima@ietfa.amsl.com
Delivered-To: anima@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9D4C8120091 for <anima@ietfa.amsl.com>; Mon, 15 Jul 2019 15:28:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MSeVFz3ezU7T for <anima@ietfa.amsl.com>; Mon, 15 Jul 2019 15:28:18 -0700 (PDT)
Received: from mail-pg1-x532.google.com (mail-pg1-x532.google.com [IPv6:2607:f8b0:4864:20::532]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 98A8812002E for <anima@ietf.org>; Mon, 15 Jul 2019 15:28:18 -0700 (PDT)
Received: by mail-pg1-x532.google.com with SMTP id m4so8396407pgk.0 for <anima@ietf.org>; Mon, 15 Jul 2019 15:28:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=kW3P7PSJcwbT0Ad4yPoSeKNq/U8Dyg1jfmnsu6iupwU=; b=vD2kcNRf2L5DwvhY/d1GKrG9hTxRN7W0P+xyjyl6HmRWMhx6p2DgcaRNafORIpgyr5 Z5J1tq3MMJNpXB9R8f28AAmuF1WDC5bAgw+YaShvLe6Sk3qRBsaG+4EG5FiAz44yAqAU +yIkfazN+7muwh4Df8pt3RuZ1qz9e34Wq6fwycA0nPm76qR/tccXS4SNoWSRQ85h5dhL yueuWZuBEgvAPF3E9+5bIavEt1hR1v0JTOk9xiw3Y90e+ZN5RH6k51ENZ57BRG6IGBUL 0+rr00bIiod1CjUx0LBuFJwp9JOZlOJZ+h6CaVBlS42maI5+7Hm9UI/rr5/y7mDON0Uf GTFw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=kW3P7PSJcwbT0Ad4yPoSeKNq/U8Dyg1jfmnsu6iupwU=; b=avzcJoPta3ILqW16j+0vgcvkHg9c58akelVREy3CW5C42J8Rpa64HRuIAZpwEqVzTl vHIemMW1zkFTEEo6v9oMruLl5Qq0moUDNVbilavmbjmIKbU6cjIkUdFqDkVfKj5NbZx3 33TQA8cWIHTpay+J8+V2JTgeBiZd7vyNCtQrW9CWobsHKk878TUFk9uDYsm5YEjRw2f9 Mgf5ErxJEbEntk303bSrY9L0tLMoKzAZ/upkKlSzf6uScGaRa0XVohS80pfzrP9qzElq Bbsuojwzz2owIKCDjLMUYcXjlmqEWn/UTWdLbbkQ80T/py0oJ4/gjV8O5EUiAkgjjIEn WIcQ==
X-Gm-Message-State: APjAAAXjs/hv6L+YwxBpwuwHwdx0ebpQBUlCJBrDqfaAP3j6rENFWZ0m zICfrCkhp/AE1nLu+9VT/PO/ngim
X-Google-Smtp-Source: APXvYqylIuVZ9SGEJo6zr+mvxho0ca3+mPSMZxIEuZXijcGnsZ/rzb66STBwMw3bUvuEfYlLuubOpQ==
X-Received: by 2002:a65:4045:: with SMTP id h5mr30209631pgp.247.1563229697881; Mon, 15 Jul 2019 15:28:17 -0700 (PDT)
Received: from [192.168.178.30] (40.226.69.111.dynamic.snap.net.nz. [111.69.226.40]) by smtp.gmail.com with ESMTPSA id l15sm18428224pgf.5.2019.07.15.15.28.15 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 15 Jul 2019 15:28:17 -0700 (PDT)
To: "Joel M. Halpern" <jmh@joelhalpern.com>, Eliot Lear <lear@cisco.com>
Cc: Adam Roach <adam@nostrum.com>, anima@ietf.org
References: <156282703648.15280.17739830959261983790.idtracker@ietfa.amsl.com> <17580.1562874933@localhost> <ACEB4033-707F-47AF-B58A-5227B444BEAB@cisco.com> <E2DA8D30-805E-478D-925D-534C04A0727F@cisco.com> <8869.1563140002@dooku.sandelman.ca> <cedc515e-22ab-94a9-e6ef-c55b345687ba@joelhalpern.com> <376eee31-0264-38a8-1d32-901bb1a0671b@gmail.com> <9e341730-dc47-8860-47d4-6421ab04d0dc@nostrum.com> <6ecdae7f-4fb7-d9fc-f19f-bf742c6fe83c@joelhalpern.com>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Message-ID: <b315c317-4e81-8b6a-28a6-0241bd59fa48@gmail.com>
Date: Tue, 16 Jul 2019 10:28:14 +1200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <6ecdae7f-4fb7-d9fc-f19f-bf742c6fe83c@joelhalpern.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/anima/TrnWkaIfTnd2bX-ecIJjUm5gtwY>
Subject: Re: [Anima] Adam Roach's Discuss on draft-ietf-anima-bootstrapping-keyinfra-22: (with DISCUSS and COMMENT)
X-BeenThere: anima@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Autonomic Networking Integrated Model and Approach <anima.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/anima>, <mailto:anima-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/anima/>
List-Post: <mailto:anima@ietf.org>
List-Help: <mailto:anima-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/anima>, <mailto:anima-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 15 Jul 2019 22:28:21 -0000

Joel,

I'd be happy with that as long as there is a scope statement that makes
it clear to the reader.

Regards
   Brian

On 16-Jul-19 09:42, Joel M. Halpern wrote:
> I would probably go a step further than Adam.  Protecting the device so 
> a thief can not use it in the thiefs' own network seems to me to be 
> something that we should not be trying to achieve.  An active non-goal. 
> It is not our problem.  And trying to achieve it has the implications 
> that lead to this whole discussion about the original manufacturer 
> controlling who can resell / re-buy the device.  While manufacturers may 
> like that, it does not seem to be something we should get involved in. 
> At all.
> 
> Yours,
> Joel
> 
> On 7/15/2019 5:10 PM, Adam Roach wrote:
>> On 7/15/19 3:38 PM, Brian E Carpenter wrote:
>>> On 15-Jul-19 16:45, Joel M. Halpern wrote:
>>>> I presume I am missing something basic.
>>>> I have tried to follow this discussion, as it seems to be about a
>>>> critical aspect of whether the BRSKI work is acceptable.
>>>>
>>>> I have assumed that what we needed is the ability for a buyer, who has
>>>> physical possession of the device, and possibly some simple (non
>>>> cryptographic) credentials provided by the seller to force the device to
>>>> reset what it thinks it is part of, and to emit in some accessible form
>>>> the information the buyer needs to be able to make this device part of
>>>> his network, using his authentication servers, etc.
>>> Yes, but *not* a solution that works if the device is stolen.
>>
>>
>> I'm actually a little ambivalent with respect to this use case. For the 
>> kind of devices that the document purports to be targeting, I would 
>> imagine that theft is in the range of parts-per-thousand (or lower) as 
>> compared to things like post-bankruptcy liquidation. If you can fix the 
>> first without ruining the second, great.
>>
>> /a
>>
> 
> _______________________________________________
> Anima mailing list
> Anima@ietf.org
> https://www.ietf.org/mailman/listinfo/anima
>

v2.23.0 | Report a Bug | By Email