IETF Logo Mail Archive

Re: [COSE] Agenda for interim on 17.02.2021

John Mattsson <john.mattsson@ericsson.com> Tue, 16 February 2021 12:36 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 253A63A0B13; Tue, 16 Feb 2021 04:36:22 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.371
X-Spam-Level:
X-Spam-Status: No, score=-3.371 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.57, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LlnKCgQAI-VN; Tue, 16 Feb 2021 04:36:20 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2045.outbound.protection.outlook.com [40.107.20.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04EF53A0B0E; Tue, 16 Feb 2021 04:36:19 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=cEBg4VpiP5YRYB1DnpQtaPjmZT7QWiJm7P6MKpMBX/CEHCiWO1AVy1Hoe9v3KgXYqUmVKmqdoNePLzUyOzT7TKqGOtHN5EySEo00YV8IDKX4DnQFZReMK5bpSq0CCJ1zZtBrV2kMVWbK+OUXFBwcSVibQ6PPo8m+BTyQkMXqbF45B0YwJeC69UfIbyGEgsWUH8tnYnonkEaicT/RaqRRtwbzZLA7flFTOrCTZ5MB1LL1r8c+e7HHOFtC0HfRsd/Tjam3PC07F+C7rxSKsHQjomWuilq6qTIcHN3GFWjQS4eyWShVW5eaZLqEEAng3MbxH162SGwtsn8aXIfTp1KGZA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=j/KgGKBoa/Pu3rXOkxn6xjxzI6u1mtjqlvDCeNFQxgE=; b=YUG08B8QX7Q0kKn9ez0v2/U44cNYplNdZLXukfKQWl90wkdGNrnT5vMPM2k9pGrfolgzgTL4fb9+4vTrVIkGBS6d5J4Mb3Zcq+FVSO2UIHhtPsgfYQ2yXV4OXlPkIEk8uABMSRMPKSzBQhU6wkwSoshNhQNOSauVfqhaqm4LcPXhKU+HPP8EKNHb+ojd6Fp91D5Icp1tXejq+ualOWkxjIK6uKmvBhfMq9VypDvC6caAe0YZmYlHkhktOPvED2jgglIk20HRtQcCTfx11/SKJp27z4IqRxUclYK2I+3B60jONUR1Axsg6LsPgWalb9Oc6w6Rlv4F1bikHRibKyDpYA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=j/KgGKBoa/Pu3rXOkxn6xjxzI6u1mtjqlvDCeNFQxgE=; b=eTfVoUlk4wXatkP/7fqedP0F8AIXQCwRvH7+ilSzjzwOSdnDpgpqI2qCy+E4yck5glJSXE/vsmAhmh9/fnx3Xc80IHqND/1evizIZWGfbpyiJIaohtTXkaqy/Eq1oIIuNuw1ns9s3c/FGQeBUuSIG8kzuRKoVqzlg6JCpZIa4Ek=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by HE1PR0702MB3547.eurprd07.prod.outlook.com (2603:10a6:7:85::31) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3868.19; Tue, 16 Feb 2021 12:36:17 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::c555:6e47:970c:1268]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::c555:6e47:970c:1268%11]) with mapi id 15.20.3868.025; Tue, 16 Feb 2021 12:36:17 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Göran Selander <goran.selander=40ericsson.com@dmarc.ietf.org>, Ivaylo Petrov <ivaylo@ackl.io>, cose <cose@ietf.org>
CC: Cose Chairs Wg <cose-chairs@ietf.org>
Thread-Topic: [COSE] Agenda for interim on 17.02.2021
Thread-Index: AQHXBDAE/juTWD0eYkKRuzvXoRn9UqpayQYA
Date: Tue, 16 Feb 2021 12:36:17 +0000
Message-ID: <09FBED7B-FC6D-47F2-A23A-274E003E0E56@ericsson.com>
References: <FD406D39-A014-43C8-9943-A23B126FC291@ericsson.com>
In-Reply-To: <FD406D39-A014-43C8-9943-A23B126FC291@ericsson.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.45.21011103
authentication-results: dmarc.ietf.org; dkim=none (message not signed) header.d=none;dmarc.ietf.org; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [81.225.97.222]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 51aaba44-60d7-4e41-7143-08d8d27774b6
x-ms-traffictypediagnostic: HE1PR0702MB3547:
x-microsoft-antispam-prvs: <HE1PR0702MB354707A9F2056E7E0C49ED8689879@HE1PR0702MB3547.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(346002)(376002)(366004)(396003)(39860400002)(136003)(4326008)(110136005)(2906002)(71200400001)(66556008)(86362001)(966005)(2616005)(478600001)(36756003)(6512007)(66574015)(6486002)(83380400001)(64756008)(66446008)(6506007)(8676002)(5660300002)(76116006)(33656002)(66946007)(53546011)(66476007)(26005)(44832011)(8936002)(316002)(186003)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 4mnrIwdW37gYPhYUYafidL3M5Zk2tjX6RJQ+hKfuwzLuWvmFEn/tuIyKvCL12LxADUmHwCriwoSXE2j/d+AauONyCJtgwJyQIKDgVEainS5zTLXeFZuZyEOpsRqqZb3JwpW6VoK9eWwU/zL/gozDPzweDzQZmEDlQHG0fH11U3Jc2jQQEkL+edcxn41UjbDNUc5UkZpl1MTxJoDdvvZ63yJHiMjSW/X/owkdy7qA8kMkzYonHkA4T0ltCIR70Ctkw5VsexwQls/60bkZ77dFFK0Q5YGz+jR5je4ojdKwNtmOClyBdfDzhuMap8+cla6Y3Jvw1OMP1fKTCqhXlmfRvLK7gBuc5zhRx7GeQhmECoUbk0g6U2Vit5WS30XhUlH4vo97UOr4nRW9V/Q+5FGa2P5wy4RnUH2bKxY2QWmKwUE16qv6gmQtHb3/i+p5S+T+r3BKnF97WWagfbUXUUsG6piCJY09QkclwfwzWmGbemKKVBYF3RDyAOf2P98JTGJBjAdKR03d7Lk3RHZTzkysM6XejmHYkktUEsmfeXg600kwSmXfldkBvnza3yVHiyLWrcum5X7JpgsONHu/bNY8fnTO6wlX6ih1bu5vxQr+GtsLZZv8T8izxhRKm0u8ur1ACxgF2d3mE3juImZnkUvqzycjfeGwRDAl4k023yCdrGM7RBhHFFFwRHPzalOPn0zUUXbv2Vm0Rvxxhhux9XE6kHOS9i/7RiyENojf0WIxzggvMm6kHAmSjQPFq9xgSTEswd/cbq6T/ODQPJyNd5GQ8BbGyeNGlbTO9Kb7wB5iOLoEyesTrMutBu8HR/ffmJy+K3yc6FcSTqpkp+fxOkIgBuucw+I0qtRvpC1NeQ/L9lROq+ZJJYPJB13DJYObKzG8cdYKyat5wVlfnA1c1mv+kWqI055K8lJzK539KpStpfNOsDG/VrN2q1hqG0EQx1N6owaJul6/eDdlLmaubmBQcxepVOTWxJqIzrtFVFu+jk8SJNyAURWhMaYamzr4T8mQP2PLqfA5U1QHqr2wHfcElhmylqmdVHw8Vwq/dV8prD4Slu5hkYtfriqBQTRND/6zD2aHF0vzkxJSm5TzaQPMncIXMLnZTanl3zS7XnvuE3E4QsNtEh5xtrKchHzQ96TlNv6RiB9d4/PDInF9fq4VLQHomwBhnoSV9Bp4C5pDXlirAql5Vnc9LrHecdRdnA/YqwRQfgz6JyEuv+thvfSV3fBn+kUPVfLOao760/fAKL8zeKzWrqfxWtCp9S0kSLh5C5vJVeAp7dEbIja2WnQTvYJSOb6fREFgTO2/04vvMecfR0Mv7qhLgLUp9hjTruXgmE9HpZN5R1s7Y1kOb+riaA==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <CA1F5EA69342824085E0C9A4B9EC384E@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 51aaba44-60d7-4e41-7143-08d8d27774b6
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Feb 2021 12:36:17.3150 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ++N8aJFFkUtx4oIpwQ7rnFGVXMQrZwPdkkoMblLExXipzKtGNdZKauN8ePcMwE9KAqTaAIuU+qA1RowjeXdhudmW0CAhE+xwHU3okhaCce8=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0702MB3547
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/fJPjL8_vQMIIx-A08C3pK_RtnA8>
Subject: Re: [COSE] Agenda for interim on 17.02.2021
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Feb 2021 12:36:22 -0000

Below are my short summary of what I think needs discussion regarding [1]

X.509 discussion topics
--------------------------

Major discussion points:

1. Many people have expressed that they don't understand the trust assumptions mentioned for x5u. Is x5u meant to distribute trust anchors in some way? 

2. It was suggested that parts of the end-entity certificate need to be integrity protected. This would make the current specification of x5bag and x5chain insecure.
  - Putting everything in protected would be problematic for Michael's use case with middleboxes removing intermediary certs.
  - Putting the cert in external_aad like EDHOC would change the COSE processing...

Less major discussion points:

- Protection requirements for x5u use of HTTP CoAP.
- Not allowing OSCORE, Mandating PKCS7.

If time allow, we can continue with how we would like things to work for CBOR encoded X.509 certificates. There we have more flexibility.

John

-----Original Message-----
From: Göran Selander <goran.selander=40ericsson.com@dmarc.ietf.org>
Date: Tuesday, 16 February 2021 at 07:50
To: John Mattsson <john.mattsson@ericsson.com>, Ivaylo Petrov <ivaylo@ackl.io>, cose <cose@ietf.org>
Cc: Cose Chairs Wg <cose-chairs@ietf.org>
Subject: Re: [COSE] Agenda for interim on 17.02.2021

Hi,

I second John's proposal to have the interim meeting. These are topics of recent mail threads ([1], [2]) and although these are not sharply defined issues, the meeting may if not solve at least help us come to a sharper formulation of the issues. 

I can prepare a slide on the second point.

Göran


[1] https://mailarchive.ietf.org/arch/msg/cose/RaeiOMvtAVuP710uHuYCLU3AU_4/
[2] https://mailarchive.ietf.org/arch/browse/cose/?index=RaeiOMvtAVuP710uHuYCLU3AU_4




On 2021-02-11, 08:42, "COSE on behalf of John Mattsson" <cose-bounces@ietf.org on behalf of john.mattsson=40ericsson.com@dmarc.ietf.org> wrote:

    Hi,

    I would like the WG to discuss and hopefully agree on:


    * X509. Trust relations, protection, and formats. This is relevant for the EDHOC and the CBOR certificate work as well.
    * IANA registrations policies, in particular co-factor ECC, as brought up by Wei25519.


    I think these are the two most urgent things to discuss. I am however not the driver for any of these.

    Cheers,
    John

    From: Ivaylo Petrov <ivaylo@ackl.io>
    Date: Wednesday, 10 February 2021 at 23:30
    To: cose <cose@ietf.org>
    Cc: Cose Chairs Wg <cose-chairs@ietf.org>
    Subject: Agenda for interim on 17.02.2021



    Dear all,




    Our next interim is scheduled for 17.02.2021 from 16:00 UTC. The chairs would like to know what topics the WG would like to discuss during the interim. If there is nothing to discuss at that time, we could cancel the interim as the IETF 110 meeting will be less than a month later.



    - Matthew and Ivaylo

    COSE WG Chairs

v2.23.0 | Report a Bug | By Email