Re: [core] Updated CoAP option template and OSCORE handling
mohamed.boucadair@orange.com Thu, 10 December 2020 09:09 UTC
Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ACA483A0B5A for <core@ietfa.amsl.com>; Thu, 10 Dec 2020 01:09:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.118
X-Spam-Level:
X-Spam-Status: No, score=-2.118 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xmRD9zU1Fqhu for <core@ietfa.amsl.com>; Thu, 10 Dec 2020 01:09:15 -0800 (PST)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.66.40]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ACB663A0B50 for <core@ietf.org>; Thu, 10 Dec 2020 01:09:14 -0800 (PST)
Received: from opfedar06.francetelecom.fr (unknown [xx.xx.xx.8]) by opfedar21.francetelecom.fr (ESMTP service) with ESMTP id 4Cs7QK3F92z7v05; Thu, 10 Dec 2020 10:09:13 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1607591353; bh=MDGnVyaAiXouQRTgV+ak22bJmYyMt0wTfl8fTN+Vgo0=; h=From:To:Subject:Date:Message-ID:Content-Type: Content-Transfer-Encoding:MIME-Version; b=LZoXfRFNW3CmSXJWJnpqrFvczZV57D/NcMfz/jkkVnYOV3L5jT+9SU+UVaRHJADQB /5BQ4a8ZZwH3oECu4UQ1x+h2d+qMqsOmEb0mRhtnkMc07+LEEsesbK3pumwMPpPH+q eeLV0vvE7XMXWCfWRFWy53Gf9AMjy70tqUu/y+PwVtOunxREwmXlUrQGH3rjUFo2Ex YbDB/ekLVyoyw57OXaEwwmfthnbLVwDPhcmfZBOumNzEak5byRfIz61ph4BGP2rogj Xak1oaF31hx69cDsgx4UGmE2wi4WtT8ZLUScN8yOiTLm95VDDc3wFfulB1GKY6GGue fF5HIOPBEoizw==
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.86]) by opfedar06.francetelecom.fr (ESMTP service) with ESMTP id 4Cs7QK0WKFz3wbh; Thu, 10 Dec 2020 10:09:13 +0100 (CET)
From: mohamed.boucadair@orange.com
To: Christian Amsüss <christian@amsuess.com>, Core WG mailing list <core@ietf.org>
Thread-Topic: [core] Updated CoAP option template and OSCORE handling
Thread-Index: AQHWzjeYYfUF5wL6s0+v84xKVn1C96nwBobA
Date: Thu, 10 Dec 2020 09:09:11 +0000
Message-ID: <17546_1607591353_5FD1E5B9_17546_51_1_787AE7BB302AE849A7480A190F8B93303159AF5A@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
References: <X9DfB12PZe2/08F2@hephaistos.amsuess.com>
In-Reply-To: <X9DfB12PZe2/08F2@hephaistos.amsuess.com>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.114.13.247]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/svWFtM20RZGgiRLOipRFn5pnnaw>
Subject: Re: [core] Updated CoAP option template and OSCORE handling
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Dec 2020 09:09:17 -0000
Hi Christian,
As we need to capture both E ad U for OSCORE and the need for consistent use of "x" to tag a given characteristic, another approach would be:
+--------+---+---+---+---+-----------+--------+--------+---------+---+
| Number | C | U | N | R | Name | Format | Length | Default | O |
| | | | | | | | | +-+-+
| | | | | | | | | |E|U|
+========+===+===+===+===+===========+========+========+=========+===+
| 16 | | | | | Hop-Limit | uint | 1 | 16 | |x|
+--------+---+---+---+---+-----------+--------+--------+---------+---+
But given the conflict with the already used "Unsafe" column, I tend to prefer not overloading the existing table, but have a dedicated table that mimics Figure 5 of RFC8613:
+------+-----------------+---+---+
| No. | Name | E | U |
+------+-----------------+---+---+
| 16 | Hop-Limit | | x |
+------+-----------------+---+---+
If this approach is followed, we will update the new-block draft to include this NEW table:
+------+-----------------+---+---+
| No. | Name | E | U |
+------+-----------------+---+---+
| TBA1 | Q-Block1 | x | x |
| TBA2 | Q-Block2 | x | x |
+------+-----------------+---+---+
Table 2: Protection of Q-Block1 and Q-Block2 Options
Cheers,
Med
> -----Message d'origine-----
> De : core [mailto:core-bounces@ietf.org] De la part de Christian
> Amsüss
> Envoyé : mercredi 9 décembre 2020 15:28
> À : Core WG mailing list <core@ietf.org>
> Objet : [core] Updated CoAP option template and OSCORE handling
>
> Hello CoRE,
>
> it is custom so far with all RFCs that introduce CoAP options to
> summarize their options in a table like
>
>
> +--------+---+---+---+---+-----------+--------+--------+---------+
> | Number | C | U | N | R | Name | Format | Length | Default |
> +========+===+===+===+===+===========+========+========+=========+
> | 16 | | | | | Hop-Limit | uint | 1 | 16 |
> +--------+---+---+---+---+-----------+--------+--------+---------+
>
> With OSCORE, its [table 5] introduces two more columns that, when
> plainly added, but their naming conflicts on "U" as noted in the
> Genart review[1].
>
> As "how is this handled with object security" is a good thing to
> have at hand, I propose
>
> +--------+---+---+---+---+-----------+--------+--------+---------+-
> --+
> | Number | C | U | N | R | Name | Format | Length | Default |
> O |
>
> +========+===+===+===+===+===========+========+========+=========+==
> =+
> | 16 | | | | | Hop-Limit | uint | 1 | 16 |
> U |
> +--------+---+---+---+---+-----------+--------+--------+---------+-
> --+
>
> annotated as "O: OSCORE classification (U: unprotected)", and intend
> to use this with echo-request-tag (ERT).
>
> The practical alternative is to leave that information out of the
> table, and only have it present textually; I think that would make
> it harder for an implementer to grasp at one look how the option is
> supposed to behave.
>
>
> KR
> Christian
>
> PS. Yeah I know this is not something that needs WG-wide agreement
> on or
> would be binding for anyone registering an option, but still we
> can
> contribute to a consistent ecosystem here.
>
> [table 5]: https://tools.ietf.org/html/rfc8613#page-17
> [1]: https://datatracker.ietf.org/doc/review-ietf-core-echo-request-
> tag-11-genart-lc-robles-2020-12-02/
>
> --
> To use raw power is to make yourself infinitely vulnerable to
> greater powers.
> -- Bene Gesserit axiom
_________________________________________________________________________________________________________________________
Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.
This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.
- [core] Updated CoAP option template and OSCORE ha… Christian Amsüss
- Re: [core] Updated CoAP option template and OSCOR… mohamed.boucadair
- Re: [core] Updated CoAP option template and OSCOR… supjps-ietf