IETF Logo Mail Archive

Re: [core] I-D Action: draft-ietf-core-oscore-groupcomm-18.txt

Marco Tiloca <marco.tiloca@ri.se> Thu, 22 June 2023 07:54 UTC

Return-Path: <marco.tiloca@ri.se>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BADADC14CE40 for <core@ietfa.amsl.com>; Thu, 22 Jun 2023 00:54:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ri.se
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JAKwufDYi2WH for <core@ietfa.amsl.com>; Thu, 22 Jun 2023 00:54:45 -0700 (PDT)
Received: from GV3P280CU006.outbound.protection.outlook.com (mail-swedencentralazon11010013.outbound.protection.outlook.com [52.101.75.13]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1ECDCC14CE29 for <core@ietf.org>; Thu, 22 Jun 2023 00:54:44 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=THvShfq/Z+xFgNlQI4EOh7jYk2XN/z9SYSdMitWiaDW4HpoU5i72wbGvgPw0A4kRosfAKeMMUoDEz80AsQ3sPrr0EokDL6lyrzdXtmjXj+6eVUAePALm3JTAQsFXv9HxdGilp5ngc8xt+WapZ1F+R0BwQAQBU/uOx85Y15inVk3QSSAKIAynv65R+vdmUNBie+F5lEor6LweGnkU5ZSgpQj0dZKxrhbRZ6eCI7GU7o1X6IRSRKAqFyYE5PTzGZ0c5IGOoZw4ktegj09RXlCb7rEXBrhj39XWog8iU27AcRikbT4mfj+lzeluBgxB0fNM7ErJzXBii11jwUZHXUmjtg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=F939CN9uj+Qmw+p5mnVdMJW4BSIlNLyw8tDlfx9VAxc=; b=PX0l7epHnISVEWbY9bwyNuQESXPqHIAEDLPmxmHQ8IG0fmIlI+b0qMh6aeIWqtFbt+dxeFInHjW5KYBAD8Z3yXW+Zxbz3QoLfHwtXSb1ROXU0ZEynOcfl5q6Bl0juIVF+iuqEgYOBVhVLjfIRxKP8c3dhlKPGQnree/a/Hiy/VqVXTrmGwFk147Mil9WQYMi3vefd93Tp2uLPv/fJYLNihoF8X6/tCeS/FMTfGL9C0qPsHo4pp3qoKLja5K39FbsPBtDdVtGMIZt853u/0gddOBqcN3dcPkLG0IO6B17Eur6HIme9j6mDDgxKP9obt1naN6jY2g3ieXI7pO+ab8TvA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ri.se; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=F939CN9uj+Qmw+p5mnVdMJW4BSIlNLyw8tDlfx9VAxc=; b=kqpRtsJsFSg5KKufvJ5nEyvS+qLp3eLhEkFugcYhJz4IwGFmx8JxoNORpefOXCNZvgV8Jt36/thQRbosxPQQAOK9KLoNoL1WzcSb4nEWvDtJhiPso76V9x7oJuo4v52C9iebGINInRfGTvVdfUB/FFXRR4u/PhfuB+TDV/0RvVc=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ri.se;
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17) by GVZP280MB0786.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:f8::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6477.29; Thu, 22 Jun 2023 07:54:41 +0000
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::656c:9cda:905:826d]) by GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::656c:9cda:905:826d%7]) with mapi id 15.20.6521.024; Thu, 22 Jun 2023 07:54:41 +0000
Message-ID: <efcceb6b-e35f-682f-7e30-81e8035e7567@ri.se>
Date: Thu, 22 Jun 2023 09:54:39 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.11.0
To: core@ietf.org
References: <168742018970.45965.871281139600616837@ietfa.amsl.com>
Content-Language: en-US
From: Marco Tiloca <marco.tiloca@ri.se>
In-Reply-To: <168742018970.45965.871281139600616837@ietfa.amsl.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------UhN0IoH9U6BvvJL0hJ74YDQ4"
X-ClientProxiedBy: GV3P280CA0006.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:b::6) To GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GVYP280MB0464:EE_|GVZP280MB0786:EE_
X-MS-Office365-Filtering-Correlation-Id: 8782e1b6-bad0-497f-33fa-08db72f5ef33
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230028)(4636009)(346002)(366004)(396003)(376002)(39860400002)(136003)(451199021)(33964004)(36756003)(166002)(478600001)(86362001)(38100700002)(6486002)(45080400002)(26005)(8676002)(8936002)(966005)(235185007)(31696002)(44832011)(6916009)(5660300002)(66946007)(316002)(31686004)(66556008)(66476007)(2906002)(6506007)(41300700001)(2616005)(186003)(6512007)(53546011)(21480400003)(83380400001)(66574015)(43740500002)(45980500001); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: 8782e1b6-bad0-497f-33fa-08db72f5ef33
X-MS-Exchange-CrossTenant-AuthSource: GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 22 Jun 2023 07:54:41.0082 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: mFP8QcnOFoeyKTZEO5obv0Cub+YbIhGSfv6/XgVrPg1vw6/vkSEeXzqWWWYZhf0XZ7qXfG0SkiaDvWXJEuOn7g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GVZP280MB0786
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/TUMlS_rhYHy6YWUqfr1PL7hDLpE>
Subject: Re: [core] I-D Action: draft-ietf-core-oscore-groupcomm-18.txt
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Jun 2023 07:54:49 -0000

Hi all,

This version provides further clarifications and addresses all points 
except one still pending from Christian's Shepherd review [1] --- Thanks 
a lot, Christian!

The next version planned by the cut-off deadline will address the still 
pending point, i.e., presenting the handling of all multiple responses 
in a unified way, instead of separately for Observe notifications and 
non-notifications.

Best,
/Marco

[1] https://mailarchive.ietf.org/arch/msg/core/yAiNmM9_FxhSIvmXpt4WGt8bBx0/

On 2023-06-22 09:49, internet-drafts@ietf.org wrote:
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories. This Internet-Draft is a work item of the Constrained RESTful
> Environments (CORE) WG of the IETF.
>
>     Title           : Group Object Security for Constrained RESTful Environments (Group OSCORE)
>     Authors         : Marco Tiloca
>                       Göran Selander
>                       Francesca Palombini
>                       John Preuß Mattsson
>                       Jiye Park
>     Filename        : draft-ietf-core-oscore-groupcomm-18.txt
>     Pages           : 117
>     Date            : 2023-06-22
>
> Abstract:
>     This document defines the security protocol Group Object Security for
>     Constrained RESTful Environments (Group OSCORE), providing end-to-end
>     security of CoAP messages exchanged between members of a group, e.g.,
>     sent over IP multicast.  In particular, the described protocol
>     defines how OSCORE is used in a group communication setting to
>     provide source authentication for CoAP group requests, sent by a
>     client to multiple servers, and for protection of the corresponding
>     CoAP responses.  Group OSCORE also defines a pairwise mode where each
>     member of the group can efficiently derive a symmetric pairwise key
>     with any other member of the group for pairwise OSCORE communication.
>     Group OSCORE can be used between endpoints communicating with CoAP or
>     CoAP-mappable HTTP.
>
> The IETF datatracker status page for this Internet-Draft is:
> https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-core-oscore-groupcomm%2F&data=05%7C01%7Cmarco.tiloca%40ri.se%7C05474929d89b40dbb93e08db72f55c8e%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638230170362312832%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=%2FhsgixhdGM%2BNmvztEeKxMAvKE%2BayemI1NoyvHf6gm8k%3D&reserved=0
>
> There is also an HTML version available at:
> https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-ietf-core-oscore-groupcomm-18.html&data=05%7C01%7Cmarco.tiloca%40ri.se%7C05474929d89b40dbb93e08db72f55c8e%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638230170362312832%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=Kwe%2BjmUkW%2FnEe9TWVSRedloDtWRd6jBzg7lobC44tVI%3D&reserved=0
>
> A diff from the previous version is available at:
> https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-ietf-core-oscore-groupcomm-18&data=05%7C01%7Cmarco.tiloca%40ri.se%7C05474929d89b40dbb93e08db72f55c8e%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638230170362312832%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=%2FLBpnlk60ln5PG7cjdikTRgUUYxJZlqWRGg1kn17T5o%3D&reserved=0
>
> Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
>
>
> _______________________________________________
> core mailing list
> core@ietf.org
> https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fcore&data=05%7C01%7Cmarco.tiloca%40ri.se%7C05474929d89b40dbb93e08db72f55c8e%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638230170362312832%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=RtpFNqUsI2Pf%2FSn%2BDVeNBJz8t7r3%2BO%2FzMimXypOPXQg%3D&reserved=0

-- 
Marco Tiloca
Ph.D., Senior Researcher

Phone: +46 (0)70 60 46 501

RISE Research Institutes of Sweden AB
Box 1263
164 29 Kista (Sweden)

Division: Digital Systems
Department: Computer Science
Unit: Cybersecurity

https://www.ri.se

v2.23.0 | Report a Bug | By Email