IETF Logo Mail Archive

Re: [core] Connection ID

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Wed, 22 November 2017 16:03 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C912A12940E for <core@ietfa.amsl.com>; Wed, 22 Nov 2017 08:03:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.7
X-Spam-Level:
X-Spam-Status: No, score=-4.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SHU5W_ZvumKd for <core@ietfa.amsl.com>; Wed, 22 Nov 2017 08:03:58 -0800 (PST)
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-eopbgr20080.outbound.protection.outlook.com [40.107.2.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ACDF812945F for <core@ietf.org>; Wed, 22 Nov 2017 08:03:57 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=hXqVut8Md8hgE1RpW3UbmqYqmVm2sYo4EvgEp/+PXRI=; b=APaew5qnpI27NqHBm9eMyP38PyzXfa56/YFXZ48KJ/y0SdPMn4oiyCpTXYzHZGiFHAEN9OlXM8vaVmtZe6m/sFpMV+5ypgX7GSwMNukqe4e1sdtUmDEB3epjdaEJ2XZpUgGJ8LlGLmaH+qpXtSY47b9g7NBFzFdjbGEUjgpje1Q=
Received: from AM4PR0801MB2706.eurprd08.prod.outlook.com (10.167.90.148) by AM4PR0801MB2705.eurprd08.prod.outlook.com (10.167.90.147) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.239.5; Wed, 22 Nov 2017 16:03:54 +0000
Received: from AM4PR0801MB2706.eurprd08.prod.outlook.com ([fe80::edae:da33:a0c9:fe3f]) by AM4PR0801MB2706.eurprd08.prod.outlook.com ([fe80::edae:da33:a0c9:fe3f%13]) with mapi id 15.20.0239.009; Wed, 22 Nov 2017 16:03:54 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Klaus Hartke <hartke@projectcool.de>
CC: Carsten Bormann <cabo@tzi.org>, Hannes Tschofenig <hannes.tschofenig@gmx.net>, "core@ietf.org WG" <core@ietf.org>
Thread-Topic: [core] Connection ID
Thread-Index: AQHTYgo/+wn91fnHt0iD+HX5GpOarqMdjTkAgAAFcYCAANvKsIACDmcAgAADWyCAAA5EAIAAA0qw
Date: Wed, 22 Nov 2017 16:03:54 +0000
Message-ID: <AM4PR0801MB2706E393B2E0A19D9D7B821DFA200@AM4PR0801MB2706.eurprd08.prod.outlook.com>
References: <2ab07f35-0f28-c33e-2345-6d8125a0ce43@gmx.net> <8CF8E49A-0EAF-481A-A589-2A00634562D4@tzi.org> <CAAzbHva4vksexWoR87qkomvv+npkfWXy8O8mkZEa+DiYRENnUg@mail.gmail.com> <AM4PR0801MB2706B7FF9050DD48ACFC4E0CFA200@AM4PR0801MB2706.eurprd08.prod.outlook.com> <CAAzbHvbVpjUo5wXnD2mh4CqGgn6kK=fiACRLMVKv8nmWbeWoKQ@mail.gmail.com> <AM4PR0801MB2706545529BF88732F6FB2FAFA200@AM4PR0801MB2706.eurprd08.prod.outlook.com> <CAAzbHvZtTjJ8rsjxo_T9XXjwC-PkK3siPeXXkjJgfmHomEiJAg@mail.gmail.com>
In-Reply-To: <CAAzbHvZtTjJ8rsjxo_T9XXjwC-PkK3siPeXXkjJgfmHomEiJAg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.119.33]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM4PR0801MB2705; 6:7HCCUiYaa+DavXiTgubkq7hCAMh+CG89NbUY3gg0+lzP5vVy7qKeL0Hzo0v2mhxr+jEqnqNP0fjZIarUdfinFQDJkmKJYups0WCHBZXzSqVq+3KXK9FE15b+sL8z8LUA0366mRlhDS2Qpsn3PBeUSOXdKhvovAPdNhHFOph4ZVgMPdXuXUOjAzVginHWlfXORJzZwdD4I7jqEx8RKwUL+H+wrPm6Nt0J6fNfich0jv3wQDP6SUPHYPYrc/GcRzAvq/xohNl4ybV6dm5rKDDwOJNEZMf27Spn5IhtmGHNnG+bzJpdJRm9JKPDhVB9M+qh6qfax3x2h1TRwQwFvqxtKMBXQcVZ79zYB8yBPb/7DxA=; 5:CRG7CeQBYlVTmzrAC23rW9kgZVpQrNBdjkinBzU/IttFWtTlRIPYyQ+CnR6NL6OZgQO/+kH2d0nGlyhsNG0FGge1i6cm05W2ZGzR7jcmCW30+fQjFzAMc3PTGZryXP0WFphThB9PFC57O59jo/bWhqpiYCSGbHi+UCAb+Q0ditI=; 24:EZ+9ruw9MzCSxr20LwDUNWPsarxARn712WNegr7SQuMHRmqnEZEUOHEmtG3jW6TCMCAsTykvVj2IDaRNLy/eRCoO1RNfer24VJA3KuaOjwk=; 7:yMCPU8DVt2z77ePI0LrEIVD4W40m2S1+T/rLaTqLP962jrmUXgknt72wzfTgaZtGVYXp+p6IK8dhFYId85GPVIbBfjIvZsONaJHP3Ozw734kxK9HM9tfUOJ8p+IWyh2VxoI2J/3riSrqWRfdUKN6ehC7kv2h8m0FM1hwAu0QP4kxv2dF0IUBDJxRrXm3It/FHVAEWd/dK3cpUVH/6zcu9EjzxXxv/M5pCtcDM6KbStWowFAmPsyXoJirFPcd1LsM
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 7c8f9f08-0260-49c8-15fd-08d531c2a18d
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(4534020)(4602075)(4627115)(201703031133081)(201702281549075)(48565401081)(2017052603199); SRVR:AM4PR0801MB2705;
x-ms-traffictypediagnostic: AM4PR0801MB2705:
x-microsoft-antispam-prvs: <AM4PR0801MB270525C408C3DF73CC1AC00CFA200@AM4PR0801MB2705.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(278428928389397)(192374486261705);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(2401047)(5005006)(8121501046)(100000703101)(100105400095)(93006095)(93001095)(3231022)(10201501046)(3002001)(6055026)(6041248)(20161123560025)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(20161123555025)(20161123564025)(20161123562025)(20161123558100)(6072148)(201708071742011)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM4PR0801MB2705; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM4PR0801MB2705;
x-forefront-prvs: 0499DAF22A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(346002)(39860400002)(376002)(199003)(189002)(24454002)(13464003)(40434004)(99286004)(54906003)(6506006)(6116002)(53936002)(102836003)(3846002)(9686003)(97736004)(6436002)(4326008)(5890100001)(478600001)(6246003)(8936002)(76176999)(50986999)(54356999)(25786009)(53546010)(33656002)(229853002)(101416001)(55016002)(93886005)(68736007)(316002)(81166006)(81156014)(86362001)(74316002)(5250100002)(305945005)(7736002)(189998001)(72206003)(14454004)(106356001)(66066001)(105586002)(2900100001)(2906002)(6916009)(3280700002)(3660700001)(2950100002)(8676002)(7696004)(5660300001); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR0801MB2705; H:AM4PR0801MB2706.eurprd08.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 7c8f9f08-0260-49c8-15fd-08d531c2a18d
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Nov 2017 16:03:54.5650 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR0801MB2705
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/TTEoLGYboG1Haw38tg1JJIztssw>
Subject: Re: [core] Connection ID
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Nov 2017 16:04:00 -0000

Hi Klaus,

Normally, you would not use post handshake authentication (DTLS/TLS 1.3) or renegotiation (DTLS/TLS 1.2) in an IoT context since the expectation is that you start with mutual authentication right away.

In TLS (1.2 and 1.3) there is no epoch value but you can still have these handshake messages. Hence, making rules that relate to epoch values just gets us into trouble*.

From your design vision point of view it is better to restrict the use of DTLS/TLS features.

Ciao
Hannes

*: I wonder whether we said anything about this issue in the CoAP over TCP/TLS draft....

-----Original Message-----
From: Klaus Hartke [mailto:hartke@projectcool.de]
Sent: 22 November 2017 16:48
To: Hannes Tschofenig
Cc: Carsten Bormann; Hannes Tschofenig; core@ietf.org WG
Subject: Re: [core] Connection ID

Hannes Tschofenig wrote:
> Of course, there are security relevant events that can happen in a TLS/DTLS exchange, such as post-handshake authentication (DTLS 1.3) or renegotiation (DTLS 1.2), that should be of interest to the application. What exactly the applications do in response to such an event is application dependent. I don't think the CoAP spec should mandate a specific behaviour.

I would like CoAP over DTLS to be secure by default.

Application builders should be able to just switch on "coaps://" for their applications and be reasonably secure without performing an in-depth analysis of possible security holes related to epoch changes.
Of course, an application builder who wants to perform an in-depth analysis and implement their own behavior for security relevant events should be able to do that. But I would assume that in the majority of cases application builders will just use the defaults provided by the (most likely application-agnostic) CoAP implementation.

I understand that not all DTLS implementations expose enough information to react to epoch changes. What would be a good, realistic default behavior that application-agnostic CoAP implementations should implement to make applications secure by default?

Klaus
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email