IETF Logo Mail Archive

Re: [core] feedback on resource-directory and mirror-proxy (and base) drafts

Jari Arkko <jari.arkko@piuha.net> Tue, 27 March 2012 06:43 UTC

Return-Path: <jari.arkko@piuha.net>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ED7DD21F845A for <core@ietfa.amsl.com>; Mon, 26 Mar 2012 23:43:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.546
X-Spam-Level:
X-Spam-Status: No, score=-102.546 tagged_above=-999 required=5 tests=[AWL=0.053, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MCnmWxni3U9z for <core@ietfa.amsl.com>; Mon, 26 Mar 2012 23:43:41 -0700 (PDT)
Received: from p130.piuha.net (p130.piuha.net [IPv6:2001:14b8:400::130]) by ietfa.amsl.com (Postfix) with ESMTP id DDADF21F844A for <core@ietf.org>; Mon, 26 Mar 2012 23:43:40 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by p130.piuha.net (Postfix) with ESMTP id 3BD7B2D35A for <core@ietf.org>; Tue, 27 Mar 2012 09:43:40 +0300 (EEST)
X-Virus-Scanned: amavisd-new at piuha.net
Received: from p130.piuha.net ([127.0.0.1]) by localhost (p130.piuha.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jZZrAc_eHfid for <core@ietf.org>; Tue, 27 Mar 2012 09:43:39 +0300 (EEST)
Received: from [127.0.0.1] (p130.piuha.net [IPv6:2001:14b8:400::130]) by p130.piuha.net (Postfix) with ESMTP id 538AE2CC56 for <core@ietf.org>; Tue, 27 Mar 2012 09:43:39 +0300 (EEST)
Message-ID: <4F71619B.1020707@piuha.net>
Date: Tue, 27 Mar 2012 08:43:39 +0200
From: Jari Arkko <jari.arkko@piuha.net>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
MIME-Version: 1.0
To: core <core@ietf.org>
References: <4F59F906.4080906@piuha.net> <6144B86F-0CAF-47E9-BE60-16647BFF22DA@tzi.org> <4F5A370A.7090308@piuha.net> <AF4A7660-2822-4167-89FE-0ACF3554DCC6@sensinode.com>
In-Reply-To: <AF4A7660-2822-4167-89FE-0ACF3554DCC6@sensinode.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: Re: [core] feedback on resource-directory and mirror-proxy (and base) drafts
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/core>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 27 Mar 2012 06:43:42 -0000

Incidentally, as a part of our work on testing public key crypto on small devices, we also implemented an early prototype to give end-to-end security for mirror proxying. We think the approach has some appeal, given that validity can be checked at any time, through any number of proxies, can use zero-config or SSH like models, etc. Obviously this is very early work and we don't have all the pieces that we'd need to make this work fully. But nevertheless, we're putting it out for your consideration:

http://tools.ietf.org/html/draft-aks-crypto-sensors-02

(We also have some slides from the smart object security workshop about this, see http://www.arkko.com/publications/draft-aks-preso.pdf)

Jari

v2.23.0 | Report a Bug | By Email