Re: [core] Ben Campbell's Discuss on draft-ietf-core-senml-14: (with DISCUSS and COMMENT)
Ari Keränen <ari.keranen@ericsson.com> Sat, 19 May 2018 12:56 UTC
Return-Path: <ari.keranen@ericsson.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E66112EAE6 for <core@ietfa.amsl.com>; Sat, 19 May 2018 05:56:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.331
X-Spam-Level:
X-Spam-Status: No, score=-3.331 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FROM_EXCESS_BASE64=0.979, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CI5n2sO9L-LO for <core@ietfa.amsl.com>; Sat, 19 May 2018 05:56:09 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F3B8712EAE4 for <core@ietf.org>; Sat, 19 May 2018 05:56:08 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1526734567; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=Fi+/gNyMIJmrW/treEbVXi3AQY3MRCopHRiF3qzD6Ss=; b=gibbBt4ViJ06DokToynAjc1Wz85meae6X+nHK/FkbYIabt/XAZpbWsh+WOWAYYT/ 1k9EhtqOCr7GxPld6KBX+QaJKcgUCNqhyO/F8FOKzZ92OJ1Khzzq7qC3eH476zeL Hssi56XESGSa8PVDJDDMENtvyDKTRDynUXOZSK4ecg4=;
X-AuditID: c1b4fb3a-1dfff70000006a47-df-5b001ee7d528
Received: from ESESSHC003.ericsson.se (Unknown_Domain [153.88.183.27]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id A2.EA.27207.7EE100B5; Sat, 19 May 2018 14:56:07 +0200 (CEST)
Received: from ESESSMB503.ericsson.se (153.88.183.164) by ESESSHC003.ericsson.se (153.88.183.27) with Microsoft SMTP Server (TLS) id 14.3.382.0; Sat, 19 May 2018 14:56:06 +0200
Received: from ESESBMB502.ericsson.se (153.88.183.169) by ESESSMB503.ericsson.se (153.88.183.164) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Sat, 19 May 2018 14:56:06 +0200
Received: from ESESBMB502.ericsson.se ([153.88.183.185]) by ESESBMB502.ericsson.se ([153.88.183.185]) with mapi id 15.01.1466.003; Sat, 19 May 2018 14:56:05 +0200
From: Ari Keränen <ari.keranen@ericsson.com>
To: Ben Campbell <ben@nostrum.com>
CC: core <core@ietf.org>, Jaime Jiménez <jaime.jimenez@ericsson.com>, "core-chairs@ietf.org" <core-chairs@ietf.org>, The IESG <iesg@ietf.org>, "draft-ietf-core-senml@ietf.org" <draft-ietf-core-senml@ietf.org>
Thread-Topic: Ben Campbell's Discuss on draft-ietf-core-senml-14: (with DISCUSS and COMMENT)
Thread-Index: AQHT1UHn+Jopg1j5+EC0sj/ycG3/7aQkjFAAgBEz7QCAAVU2gA==
Date: Sat, 19 May 2018 12:56:05 +0000
Message-ID: <4462B8BD-346F-49E5-B86F-1E2DDB163392@ericsson.com>
References: <152385571314.20985.5160681583375127961.idtracker@ietfa.amsl.com> <FC1AD855-6A06-460B-A688-8CB69A973E09@ericsson.com> <CCD2D740-AFDF-44D3-8258-D751BEFA8FA5@nostrum.com>
In-Reply-To: <CCD2D740-AFDF-44D3-8258-D751BEFA8FA5@nostrum.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.153]
Content-Type: text/plain; charset="utf-8"
Content-ID: <B14132893F622048A405E8CE4EAA50D1@ericsson.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrJIsWRmVeSWpSXmKPExsUyM2K7tO5zOYZogz3LhC3md55mt9i28QKb xb6365ktfr5bwmwx489EZgdWjyVLfjJ5zNr5hCWAKYrLJiU1J7MstUjfLoEr4+GLuSwF54Qr 9u94wNrA2CPcxcjJISFgInG19w17FyMXh5DAEUaJzx8bmSGcLYwSC7ZOZIJwvjFK7Np1nAXC WcYo8auhkw2kn03AVuJJ6z5WEFtEQEniefNWFhCbWeAlo8TdJy4gtrBArMS8E3PYIGriJL4t ncoIYTtJfDk0AcxmEVCVmHC5E2wOr4C9xMR73xghlu1glDh9eDFYMydQ4tmPVnYQm1FATOL7 qTVMEMvEJW49mc8E8ZCAxJI955khbFGJl4//sULYShJ7j10HOo4DqF5TYv0ufYhWa4lTvS+g blaUmNL9kB3iBkGJkzOfgMWFgG67+u8V4wRGyVlIts1CmDQLyaRZSCbNQjJpASPrKkbR4tTi 4tx0IyO91KLM5OLi/Dy9vNSSTYzACD645bfVDsaDzx0PMQpwMCrx8B4WY4gWYk0sK67MPcQo wcGsJMKbafE/Sog3JbGyKrUoP76oNCe1+BCjNAeLkjivU5pFlJBAemJJanZqakFqEUyWiYNT qoFR+e+p9tyJPT9nxexf90Jvi2PIjfzDm97uzbt2v6y8QFQ6Y+45YZ4oo9irsgr12StfiuZf YHgxUTMny1B+e42vnbWcdLNKzarsXc8n+Z4Ufv2FRbRstXRk7vyZxtUzahyubYxXWXvi2bJv mxf/dVfJaomYYKXxpfmO3OZHx1dFtjVNYth9vSNOiaU4I9FQi7moOBEAawR74twCAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/d363bvY4S4L6BWmAu2sf2TPqjkI>
Subject: Re: [core] Ben Campbell's Discuss on draft-ietf-core-senml-14: (with DISCUSS and COMMENT)
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 19 May 2018 12:56:12 -0000
Hi Ben, > On 18 May 2018, at 19.34, Ben Campbell <ben@nostrum.com> wrote: > > Hi Ari, please see comments inline. I’ve removed sections that don’t seem to need further discussion. > >> On May 7, 2018, at 11:52 AM, Ari Keränen <ari.keranen@ericsson.com> wrote: >> > > >>> Hopefully this is easy to address: >>> >>> §4.7 talks about how SenML can also be used to configure parameters and >>> controlling actuators. That capability has some rather significant security >>> implications, but I failed to find mention of it in the security >>> considerations. That needs to be explicitly discussed. >> >> Now Section 13 mentions actuator use explicitly: >> >> When SenML is used for configuration or >> actuation, it can be used to change the state of systems and also >> impact the physical world, e.g., by turning off a heater or opening a >> lock. >> >> The SenML formats alone do not provide any security and instead rely >> on the protocol that carries them to provide security. Applications >> using SenML need to look at the overall context of how these formats >> will be used to decide if the security is adequate. In particular >> for sensitive sensor data and actuation use it is important to ensure >> that proper security mechanims are used. > > That is sufficient to clear my discuss. > > However, I suggest adding something to the following effect to the first paragraph: > > “Malicious use of SenML to change system state could have severe consequences, potentially including violation of physical security, property damage, and even loss of life." > > […] Great! And this addition sounds good to me. Alexey mentioned that we could include this as RFC editor note. Sounded like a good way to ensure we can move forward efficiently. Thanks, Ari
- [core] Ben Campbell's Discuss on draft-ietf-core-… Ben Campbell
- Re: [core] Ben Campbell's Discuss on draft-ietf-c… Peter Saint-Andre
- Re: [core] Ben Campbell's Discuss on draft-ietf-c… Carsten Bormann
- Re: [core] Ben Campbell's Discuss on draft-ietf-c… Carsten Bormann
- Re: [core] Ben Campbell's Discuss on draft-ietf-c… Ari Keränen
- Re: [core] Ben Campbell's Discuss on draft-ietf-c… Ben Campbell
- Re: [core] Ben Campbell's Discuss on draft-ietf-c… Ari Keränen