Re: [Dtls-iot] Fwd: New Draft Notification - [draft-raza-dice-compressed-dtls-00]
Michael StJohns <msj@nthpermutation.com> Thu, 03 April 2014 17:52 UTC
Return-Path: <msj@nthpermutation.com>
X-Original-To: dtls-iot@ietfa.amsl.com
Delivered-To: dtls-iot@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB1781A0104 for <dtls-iot@ietfa.amsl.com>; Thu, 3 Apr 2014 10:52:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id v5mHYQamZMXK for <dtls-iot@ietfa.amsl.com>; Thu, 3 Apr 2014 10:52:34 -0700 (PDT)
Received: from mail-qc0-f172.google.com (mail-qc0-f172.google.com [209.85.216.172]) by ietfa.amsl.com (Postfix) with ESMTP id 2EAF91A0264 for <dtls-iot@ietf.org>; Thu, 3 Apr 2014 10:52:34 -0700 (PDT)
Received: by mail-qc0-f172.google.com with SMTP id i8so2289706qcq.31 for <dtls-iot@ietf.org>; Thu, 03 Apr 2014 10:52:29 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:references:in-reply-to:content-type; bh=Mv3O2K0i2DuC+A2uxFTjMocb5OWsigZ3UZzZNw69LKU=; b=kr7p1LjHMFwPtA7UFR42Xwe3dOdQcPXwi2s8Sd2klHAaE9USIZu28f6mzkMrqV39SI 3epVYC5Mw6x9iZwHddbvk92lSxKWLcUG4yi1W1X+DU5SkQpeR/VEhpG8GB0ti9n8iE4F 7jdkrguQb01KuQEMVnRWYFrCP/ApBoM8HB5F5Bx00ap9QgZYXdnSucge4XOgRLZRu+Rd bcz4cIu8Wq1XvsRsg/KN2KGqDvLzeU5cL1F2FqhPfM7t8y5NrtjOCI1sMDbpv4eUtDCq tKc5gozMahmAQiTrReoCETHfDaOLQDeHgHzFKkg/TW06OXO9cmYRgAKjNw02V/kDhxJ8 /E1g==
X-Gm-Message-State: ALoCoQlVP7tWyuzYh2QSvhLi2kwkPzaYqvliZItBGH8SpMildWM7t/25o1Ow4RXLmKcm2fBVvmQD
X-Received: by 10.140.50.231 with SMTP id s94mr8416952qga.33.1396547549690; Thu, 03 Apr 2014 10:52:29 -0700 (PDT)
Received: from [192.168.1.105] (c-68-34-113-195.hsd1.md.comcast.net. [68.34.113.195]) by mx.google.com with ESMTPSA id g7sm11307832qaf.14.2014.04.03.10.52.28 for <dtls-iot@ietf.org> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Thu, 03 Apr 2014 10:52:29 -0700 (PDT)
Message-ID: <533D9FE0.1050105@nthpermutation.com>
Date: Thu, 03 Apr 2014 13:52:32 -0400
From: Michael StJohns <msj@nthpermutation.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: dtls-iot@ietf.org
References: <4D6EDE04-5315-48F3-93C5-2B9E9D5625B6@sics.se> <8AA354BC-78FF-4051-AF8E-9C723AA54874@sics.se>
In-Reply-To: <8AA354BC-78FF-4051-AF8E-9C723AA54874@sics.se>
Content-Type: multipart/alternative; boundary="------------070908040808070505060604"
Archived-At: http://mailarchive.ietf.org/arch/msg/dtls-iot/8xrIdBgB68KPXfDWms9aSruLyKA
Subject: Re: [Dtls-iot] Fwd: New Draft Notification - [draft-raza-dice-compressed-dtls-00]
X-BeenThere: dtls-iot@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DTLS for IoT discussion list <dtls-iot.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dtls-iot/>
List-Post: <mailto:dtls-iot@ietf.org>
List-Help: <mailto:dtls-iot-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Apr 2014 17:52:40 -0000
On 4/2/2014 12:22 PM, Shahid Raza wrote: > It would be great if IETFers in the DICE WP provide us reviews on this > draft. > > /Shahid A couple of quick notes: While the DICE folks should certainly look at this, given that this is all about 6Lowpan header compression, it may be more useful to move it forward in the 6lowpan group. Among other reasons - the expertise to evaluate this is more about the 6lowpan than it is about DTLS. During the last TLS f2f meeting, and given current discussions on the TLS mailing list, it's unclear that compression is on the table for the future of TLS due to various attacks related to compression. This may or may not impact consideration of this draft. With respect to the document approach related to DTLS there are a few possible gotchas: 1) Cipher Suite compression - this ties the draft to a specific COAP required cipher suite - TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 as a default. That makes that suite somewhat mandatory to implement, and leaves some issues with respect to how to deal with regional cipher suites requirements as well as futures. Given the relatively small size of a cipher suite spec (2 bytes), and given a possible loss of flexibility, it's unclear that this is a reasonable field to compress. Also, that suite uses - I believe - the HMAC-SHA-256 as the PRF. I understand the goal is to get to an IOT implementation that only needs to implement the block encrypt function of AES so that suite may be the wrong suite to specify as a default. 2) Compression Methods compression - given the discussion on the TLS list it may be useful in the DICE DTLS profile to just ban TLS style compression for DICE DTLS. That's a separate discussion from the 6lowpan dtls header and protocol compression. 3) Section 4 - next to last paragraph - "The length field of the handshake headers is always omitted as it can be deduced from the lower layers" - I don't think I have a big problem with deducing length from 6lowpan even though that's a layer violation, but I would object to the need to look at the 802.15.4 header as that's far outside the IETF's scope and changes that happen there could be problematic. Maybe note that 802.15.4 has a header compression scheme, and that it losslessly recovers the IPv6 6lowpan datagram and leave it at that? 4) This document needs a section describing when and in what order compression and decompression and other calculations happen - e.g. form the normal DTLS datagram, calculate the MIC, THEN compress the dtls headers THEN calculate the UDP checksum THEN compress the UDP headers then compress the IP headers. Mike > > Begin forwarded message: > >> *From: *Shahid Raza <shahid@sics.se <mailto:shahid@sics.se>> >> *Subject: **[Dtls-iot] New Draft Notification - >> [draft-raza-dice-compressed-dtls-00]* >> *Date: *21 Mar 2014 15:13:18 GMT+5 >> *To: *dtls-iot@ietf.org <mailto:dtls-iot@ietf.org> >> *Cc: *Shahid Raza <aazan@ciit.net.pk <mailto:aazan@ciit.net.pk>>, >> "Olivier Dupont \(odupont\)" <odupont@cisco.com >> <mailto:odupont@cisco.com>>, Hossein Shafagh <shafagh@inf.ethz.ch >> <mailto:shafagh@inf.ethz.ch>> >> >> Dear All, >> >> A new draft is submitted to the DICE Working Group. >> http://tools.ietf.org/html/draft-raza-dice-compressed-dtls-00 >> >> This work provides a lightweight CoAPs by compressing the underneath >> DTLS protocol with 6LoWPAN header compression mechanisms. With DTLS >> header compression we achieve energy efficiency by reducing the >> message size, since communication requires more energy than >> computation. Also, it avoids 6LoWPAN fragmentation that is applied >> when the size of datagram is larger than the link layer MTU. Our >> compressed DTLS maintains true End-to-End (E2E) security between >> resource constrained hosts in 6LoWPAN networks and typical Internet >> hosts that use uncompressed CoAPs. >> >> Regards >> Shahid >> >> --------------------------------------------------------------- >> Shahid Raza >> PhD, Senior Researcher >> Networked Embedded Systems group >> Swedish Institute of Computer Science (SICS) >> *SICS Swedish ICT,*Stockholm, Sweden >> Ph. No. +46 768831797 >> http://www.shahidraza.info <http://www.shahidraza.info/> >> >> Research Interests: IoT, Security, WSNs >> --------------------------------------------------------------- >> >> _______________________________________________ >> dtls-iot mailing list >> dtls-iot@ietf.org <mailto:dtls-iot@ietf.org> >> https://www.ietf.org/mailman/listinfo/dtls-iot > > > > _______________________________________________ > dtls-iot mailing list > dtls-iot@ietf.org > https://www.ietf.org/mailman/listinfo/dtls-iot
- [Dtls-iot] New Draft Notification - [draft-raza-d… Shahid Raza
- [Dtls-iot] Fwd: New Draft Notification - [draft-r… Shahid Raza
- Re: [Dtls-iot] Fwd: New Draft Notification - [dra… Michael StJohns