Re: [Dtls-iot] Reference to mathewson-no-gmtunixtime
Hannes Tschofenig <hannes.tschofenig@gmx.net> Tue, 21 July 2015 12:57 UTC
Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: dtls-iot@ietfa.amsl.com
Delivered-To: dtls-iot@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 82A371A8768 for <dtls-iot@ietfa.amsl.com>; Tue, 21 Jul 2015 05:57:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.91
X-Spam-Level:
X-Spam-Status: No, score=-1.91 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FuFVDWyIXMHA for <dtls-iot@ietfa.amsl.com>; Tue, 21 Jul 2015 05:57:09 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.15.19]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A279B1A9043 for <dtls-iot@ietf.org>; Tue, 21 Jul 2015 05:57:08 -0700 (PDT)
Received: from [192.168.10.134] ([31.133.152.120]) by mail.gmx.com (mrgmx002) with ESMTPSA (Nemesis) id 0MV5tl-1ZRhbC28xZ-00YPvO; Tue, 21 Jul 2015 14:57:00 +0200
Message-ID: <55AE4199.9050104@gmx.net>
Date: Tue, 21 Jul 2015 14:56:57 +0200
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: Carsten Bormann <cabo@tzi.org>
References: <55A6420E.7040703@gmx.net> <55A6480E.5030405@tzi.org>
In-Reply-To: <55A6480E.5030405@tzi.org>
OpenPGP: id=4D776BC9
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="Umkl4LGHBmnURiijcVpXkES7V1EwqUjdD"
X-Provags-ID: V03:K0:AHQ4LhgfUGmnKNTxQqJR4ErYUBtAR63l82FZypCvm5IpOTafHmi BZhKKNBkUibRT9TTn21lzONhOHKtFHm1smbpaGy+PdpLiAuM4ADyGHEBrx9psKTNMy329n5 Hv496inSzV/x/JK0Ct7Q7DOEhpPJPml+234fW7qLWocXauLv9wzKGtlUVKHojnfEvVIdAHx DJvkY/Tns7v6Y5PGpAZ6g==
X-UI-Out-Filterresults: notjunk:1;V01:K0:gGzXiRFqcgI=:a8cxPmkn43i7ykj8+A7o/I klBrRgx31hVr9ayx2GWckjpYYD/SzetqvvBXhJfxKSvGrGAAND1rsjbISpmgoeUq/zDOvC0CC lgau/9iwOxpAHeJsoioJu0n7sGcNp6aOq+gDkvCDC3C2HG/47m/y8K0mgafyhPod0ijkOBDiy CWyDCAX+ZGLlCb7sX6vPIA2tjMZbGw5FTvqrc+jHKs4OgP7Vz+2Z3BFfhxzU16Q+lEFGgKWaD qfpRtjsQe65IBDAY8axCGuWOrNhMbmiSK4jNyxxWW1vyuyLtbABJBt6g0INeQeVb599OWFEGa Q0iSqvZezXlO7Y3G+e7XjghUQtF663LYKR153mRzQcWDCGE8RAC8L2Jij6j2tLfJ4ugcCdYhS 4aRGhL0ahiM0fQ3NNEFbg94Exr9cCRDS+/PwZhD+NxjHAQ+2nkXD3GNphdXgNLmDb1DKDAwRP Es3asSqIbv+zSHyA4NVjlJSed4eRg6nxzRYWyYU7DQQ7bMGhOMX3JXdrn8t43qJb9CbvHipQi JqD3Xp8DJHAdS+Zyz65yJ1IptU0HmP9GGn/FaOD2AtbWIHbOhF7wmyq92T4iuHi/yK5cdeZCa MrXIDTZ6ooT6pVqIVWkhKLGqVAcZE9FvICzdQLKGongaMwUTfYR0eyRjo9bj3+bmg1I+WZCGv cqN7X0938ZIAweDNumucOSH3DudL/Rt9AvEwJ2noZezVieg==
Archived-At: <http://mailarchive.ietf.org/arch/msg/dtls-iot/AzBs2c7dfitGQEQyZ6G1VOTCexU>
Cc: "dtls-iot@ietf.org" <dtls-iot@ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Subject: Re: [Dtls-iot] Reference to mathewson-no-gmtunixtime
X-BeenThere: dtls-iot@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DTLS for IoT discussion list <dtls-iot.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtls-iot/>
List-Post: <mailto:dtls-iot@ietf.org>
List-Help: <mailto:dtls-iot-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jul 2015 12:57:14 -0000
Hi Carsten, thanks for sharing your views. Good that you noticed this paragraph that would indeed make it possible to add appropriate text to the draft. I will work on a proposal and share it with the group. Ciao Hannes On 07/15/2015 01:46 PM, Carsten Bormann wrote: > Hannes Tschofenig wrote: >> a) Remove the reference to mathewson-no-gmtunixtime and point out that >> somewhere a secure time source needs to be made available. >> >> b) Copy the relevant text from mathewson-no-gmtunixtime into this >> document (with appropriate attribution). mathewson-no-gmtunixtime cites >> a different motivation for doing what he suggests, which I believe is >> less applicable to our scenario. >> >> c) Work with Mathewson on mathewson-no-gmtunixtime to get it finished. >> The profile document would be blocked till that time. >> >> >> If you ask me for a preference then I would probably go for (b). I am >> not sure it is, however, in the mandate of the working group to define >> TLS-specific functionality. > > Hmm, profiling this specific field in a way that makes sense for a > constrained implementation is well in the purview of the WG. > > Also, 5246 says: > gmt_unix_time > The current time and date in standard UNIX 32-bit format > (seconds since the midnight starting Jan 1, 1970, UTC, ignoring > leap seconds) according to the sender's internal clock. Clocks > are not required to be set correctly by the basic TLS protocol; > higher-level or application protocols may define additional > requirements. Note that, for historical reasons, the data > element is named using GMT, the predecessor of the current > worldwide time base, UTC. > > "Clocks are not required..." > "higher-level or application protocols may define..." > > The license to fix this in a profile is right there. > > (b) is the right way to handle this. ✅ > > (On a technical level, it seems the intention was to have a source of > entropy that also has a good chance to be unique over time. No idea > whether this sentiment should be picked up here.) > > Grüße, Carsten > > _______________________________________________ > dtls-iot mailing list > dtls-iot@ietf.org > https://www.ietf.org/mailman/listinfo/dtls-iot >
- [Dtls-iot] Reference to mathewson-no-gmtunixtime Hannes Tschofenig
- Re: [Dtls-iot] Reference to mathewson-no-gmtunixt… Carsten Bormann
- Re: [Dtls-iot] Reference to mathewson-no-gmtunixt… Hannes Tschofenig