[core] draft-ietf-core-resource-directory-13
Hannes Tschofenig <Hannes.Tschofenig@arm.com> Wed, 04 April 2018 13:28 UTC
Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8757812762F for <core@ietfa.amsl.com>; Wed, 4 Apr 2018 06:28:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l55FbBJWoNgq for <core@ietfa.amsl.com>; Wed, 4 Apr 2018 06:28:30 -0700 (PDT)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on0624.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe02::624]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 554D612D574 for <core@ietf.org>; Wed, 4 Apr 2018 06:28:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=bGbm+KeNHByFlU6T6yhN9O5d7UMA5oJY47NUnKIACSU=; b=UwKh2EUjaA3WNQMIfu/uDRBRYoL3sTiQLAYKRpzN4nZ6nXdWklJKUyoZdI5qYSzYSJY4ICOfXCFbGPaGnhBnjR86kZ4XNPVjbS9rpM3JCmCpZNV7RafnHQYlHwqOpW0Jjfdi1whipRwLdeLwzRR7zqx+1vUUAu97qNZopYCZUQg=
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com (10.173.75.16) by VI1PR0801MB1438.eurprd08.prod.outlook.com (10.167.210.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.631.10; Wed, 4 Apr 2018 13:28:26 +0000
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::64d4:b973:bf81:cfbf]) by VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::64d4:b973:bf81:cfbf%18]) with mapi id 15.20.0631.013; Wed, 4 Apr 2018 13:28:26 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: "core@ietf.org WG" <core@ietf.org>
Thread-Topic: draft-ietf-core-resource-directory-13
Thread-Index: AdPMF9lKXAono47RQq6YE2x1uyweaQ==
Date: Wed, 04 Apr 2018 13:28:26 +0000
Message-ID: <VI1PR0801MB2112765EF716C4A454BCE581FAA40@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [194.136.97.66]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; VI1PR0801MB1438; 7:ImFiR1AiUODy+nuNwPkmhaumbnPiwfAjK97hFzsh8az7kqVc/3eDhXKgNFUIfHKK1Xbx9kNyCzJMrheyjqGbv51eULvL0iRHrvGMAXAWVJShWeRHfWBfDeXSA37P+8oAX7nx4m48Nx1BOR109/0uhJ5Jqy56KAm46D9rvw7ROtONsqFpur9SocwQ1B/c173hbzW/dk6Q+YBNhz3ltGESNwgOEt4I57ZDTd8rZfV5e2haLml+ajZk0JAFov1Hr/n2
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 299f38fa-27b1-41fc-1420-08d59a2ff282
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(48565401081)(5600026)(4604075)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:VI1PR0801MB1438;
x-ms-traffictypediagnostic: VI1PR0801MB1438:
x-microsoft-antispam-prvs: <VI1PR0801MB143872CE9B00278C42725162FAA40@VI1PR0801MB1438.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(192374486261705);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3231221)(944501327)(52105095)(3002001)(93006095)(93001095)(10201501046)(6055026)(6041310)(20161123562045)(20161123558120)(20161123564045)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:VI1PR0801MB1438; BCL:0; PCL:0; RULEID:; SRVR:VI1PR0801MB1438;
x-forefront-prvs: 0632519F33
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(376002)(396003)(39380400002)(39860400002)(366004)(53754006)(199004)(40434004)(189003)(3846002)(6116002)(3660700001)(99286004)(3280700002)(7696005)(2906002)(68736007)(6916009)(14454004)(72206003)(102836004)(186003)(105586002)(478600001)(59450400001)(2900100001)(74316002)(33656002)(8936002)(6506007)(25786009)(5660300001)(106356001)(81166006)(26005)(8676002)(7736002)(66066001)(5250100002)(9686003)(86362001)(55016002)(316002)(53936002)(97736004)(476003)(6436002)(486006)(81156014)(5890100001)(305945005); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR0801MB1438; H:VI1PR0801MB2112.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: kSvbIoPj/ADojcigjsrIx4uE9/f8VblTHDXrAtQap3T1ogxV9Kqwnb8khDgM0m3rrh5sAgF5wZt1hftSwLEgV6jUU6c4Xz6l4Lf6g6MPXISdZoFqx40k3Jhnf4/aYHQg5WnUxl0OMmviLABDGEVRRKNExSC3f5SzCoOmpxp2Wvhk0XWwU1IfAzmj9BiwhvO28eoOwOE7yAv/bJNg8rivk6TBAoqZkDaOF5mEAT97PzSBP6CRzdkB62IxAa0j8pEPIp8z6V+DMiJuz6lIjw9Z6d9SGfGTo2D/RY9TTC8uTXQBfNiy+O6b+3oo9yAWKnzYHlVVPlgaDYEHUDGa9wwyTP3AvonspKAws7OD/iGVNlWQlw78YfGqmR5H5TBBFiWQ/4KFwmccJwsJEvd3Dix1Yc7p3mrOOdqfBkXzG+Ep2hY=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 299f38fa-27b1-41fc-1420-08d59a2ff282
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Apr 2018 13:28:26.3513 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0801MB1438
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/6O8vSguz2M3f3HEwsxxAO2aCklM>
Subject: [core] draft-ietf-core-resource-directory-13
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Apr 2018 13:28:33 -0000
Hi all, I have a remark for the RD draft: Section 5.3 defines the registration procedure and indicates that the endpoint name is "mostly mandatory". I would prefer it is defined as "optional". Section 8.1 highlights the security issues with using this unauthenticated identifier quite nicely. However, it comes up with a strange conclusion IMHO. Here is what it says: " Therfore, Endpoints MUST include the Endpoint identifier in the message, and this identifier MUST be checked by a resource directory to match the Endpoint identifier included in the Registration message. " I would argue that under normal operation there is no reason to include the endpoint name since it is not authenticated and there will be a security protocol used (which offers authenticated endpoint identification). For this reason I would argue that the endpoint name has to be optional and I prefer that it is stated that it will be used only for debugging purposes or for those cases where the identifiers used in the security protocol are insufficient for endpoint identification. Ciao Hannes IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [core] draft-ietf-core-resource-directory-13 Hannes Tschofenig
- Re: [core] draft-ietf-core-resource-directory-13 Christian Amsüss