[Dtls-iot] Fwd: New Version Notification for draft-tiloca-dice-secure-groupcomm-00.txt

Marco Tiloca <marco@sics.se> Wed, 14 October 2015 13:07 UTC

Return-Path: <marco@sics.se>
X-Original-To: dtls-iot@ietfa.amsl.com
Delivered-To: dtls-iot@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 731971A6F58 for <dtls-iot@ietfa.amsl.com>; Wed, 14 Oct 2015 06:07:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.259
X-Spam-Status: No, score=-2.259 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id 2sGtNpXKBd-c for <dtls-iot@ietfa.amsl.com>; Wed, 14 Oct 2015 06:07:22 -0700 (PDT)
Received: from outbox.sics.se (outbox.sics.se []) by ietfa.amsl.com (Postfix) with ESMTP id E32D01A6F3C for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 06:07:21 -0700 (PDT)
Received: from e-mailfilter01.sunet.se (e-mailfilter01.sunet.se []) by outbox.sics.se (Postfix) with ESMTPS id D247817A2 for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 15:07:20 +0200 (CEST)
Received: from norm.sics.se (norm.sics.se []) by e-mailfilter01.sunet.se (8.14.4/8.14.4/Debian-4) with ESMTP id t9ED7Kf7001661 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 15:07:20 +0200
Received: from [] (marco-desktop.sics.se []) by norm.sics.se (Postfix) with ESMTPSA id 5722F3E for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 15:07:20 +0200 (CEST)
Message-ID: <561E5381.8000408@sics.se>
Date: Wed, 14 Oct 2015 15:07:13 +0200
From: Marco Tiloca <marco@sics.se>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.8.0
MIME-Version: 1.0
To: dtls-iot@ietf.org
References: <20151014125711.4613.34719.idtracker@ietfa.amsl.com>
In-Reply-To: <20151014125711.4613.34719.idtracker@ietfa.amsl.com>
X-Forwarded-Message-Id: <20151014125711.4613.34719.idtracker@ietfa.amsl.com>
Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="iVLpn3UWutVv188SRa7NJ09BKKA6I4rAK"
X-Bayes-Prob: 0.005 (Score 0, tokens from: outbound, outbound-sics-se:default, sics-se:default, base:default, @@RPTN)
X-p0f-Info: os=Linux 2.2.x-3.x, link=Ethernet or modem
X-CanIt-Geo: ip=; country=SE; latitude=59.3294; longitude=18.0686; http://maps.google.com/maps?q=59.3294,18.0686&z=6
X-CanItPRO-Stream: outbound-sics-se:outbound (inherits from outbound-sics-se:default, sics-se:default, base:default)
X-Canit-Stats-ID: 09Pt17kWF - 2871e0ed3451 - 20151014
X-Antispam-Training-Forget: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=f
X-Antispam-Training-Nonspam: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=n
X-Antispam-Training-Phish: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=p
X-Antispam-Training-Spam: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=s
X-CanIt-Archive-Cluster: PfMRe/vJWMiXwM2YIH5BVExnUnw
Received-SPF: neutral (e-mailfilter01.sunet.se: is neither permitted nor denied by domain marco@sics.se) receiver=e-mailfilter01.sunet.se; client-ip=; envelope-from=<marco@sics.se>; helo=norm.sics.se; identity=mailfrom
X-Scanned-By: CanIt (www . roaringpenguin . com) on
Archived-At: <http://mailarchive.ietf.org/arch/msg/dtls-iot/zPmhGftK9F2nPh6Fv91OoBFO9lU>
Subject: [Dtls-iot] Fwd: New Version Notification for draft-tiloca-dice-secure-groupcomm-00.txt
X-BeenThere: dtls-iot@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DTLS for IoT discussion list <dtls-iot.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtls-iot/>
List-Post: <mailto:dtls-iot@ietf.org>
List-Help: <mailto:dtls-iot-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Oct 2015 13:07:25 -0000

Hello DICE,

We have submitted a new draft covering an improved adaptation of DTLS
to support secure multicast communication. This work is
explicitly related to the second task in charter-ietf-dice-01.

Following the discussions around past proposals
this draft overcomes the limitations of previous approaches by:

1) highlighting and motivating relevant use cases with secure multicast
2) protecting multicast request messages as well as related unicast
response messages;
3) providing source or group authentication of both group request
messages and group response messages;
4) avoiding any DTLS handshake to enable secure multicast communication.

We would sincerely appreciate any comment on the draft.

Best regards,

-------- Forwarded Message --------
Subject: 	New Version Notification for
Date: 	Wed, 14 Oct 2015 05:57:11 -0700
From: 	internet-drafts@ietf.org
To: 	Shahid Raza <shahid@sics.se>se>, Sandeep Kumar
<sandeep.kumar@philips.com>om>, Marco Tiloca <marco@sics.se>se>, Sandeep S.
Kumar <sandeep.kumar@philips.com>om>, Kirill Nikitin <kirill.nikitin@epfl.ch>

A new version of I-D, draft-tiloca-dice-secure-groupcomm-00.txt
has been successfully submitted by Marco Tiloca and posted to the
IETF repository.

Name:		draft-tiloca-dice-secure-groupcomm
Revision:	00
Title:		Secure Two-Way DTLS-Based Group Communication in the IoT
Document date:	2015-10-14
Group:		Individual Submission
Pages:		35
URL:            https://www.ietf.org/internet-drafts/draft-tiloca-dice-secure-groupcomm-00.txt
Status:         https://datatracker.ietf.org/doc/draft-tiloca-dice-secure-groupcomm/
Htmlized:       https://tools.ietf.org/html/draft-tiloca-dice-secure-groupcomm-00

   CoAP has emerged as the de-facto IoT standard for communication
   involving resource-constrained devices composing Low-power and Lossy
   Networks (LLNs). CoAP mandates the adoption of the DTLS protocol to
   secure unicast communication. However, in several IoT application
   scenarios involving a group of multiple devices, the adoption of CoAP
   multicast communication through IPv6 results in a number of
   advantages, especially in terms of performance and scalability. Yet,
   CoAP does not specify how to secure multicast group communication in
   an interoperable way. This draft presents a method to secure
   communication in a multicast group, through an adaptation of the DTLS
   record layer. In particular, group members rely on the same group
   keying material in order to secure both request messages sent via
   multicast and possible unicast messages sent as response. Since the
   group keying material is provided upon joining the group, all group
   members are not required to perform any DTLS handshake with each
   other. The proposed method makes it possible to provide either group
   authentication or source authentication of secured messages.


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat