[Dtls-iot] Fwd: New Version Notification for draft-tiloca-dice-secure-groupcomm-00.txt
Marco Tiloca <marco@sics.se> Wed, 14 October 2015 13:07 UTC
Return-Path: <marco@sics.se>
X-Original-To: dtls-iot@ietfa.amsl.com
Delivered-To: dtls-iot@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 731971A6F58 for <dtls-iot@ietfa.amsl.com>; Wed, 14 Oct 2015 06:07:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.259
X-Spam-Level:
X-Spam-Status: No, score=-2.259 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2sGtNpXKBd-c for <dtls-iot@ietfa.amsl.com>; Wed, 14 Oct 2015 06:07:22 -0700 (PDT)
Received: from outbox.sics.se (outbox.sics.se [193.10.64.137]) by ietfa.amsl.com (Postfix) with ESMTP id E32D01A6F3C for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 06:07:21 -0700 (PDT)
Received: from e-mailfilter01.sunet.se (e-mailfilter01.sunet.se [192.36.171.201]) by outbox.sics.se (Postfix) with ESMTPS id D247817A2 for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 15:07:20 +0200 (CEST)
Received: from norm.sics.se (norm.sics.se [193.10.64.192]) by e-mailfilter01.sunet.se (8.14.4/8.14.4/Debian-4) with ESMTP id t9ED7Kf7001661 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 15:07:20 +0200
Received: from [193.10.66.141] (marco-desktop.sics.se [193.10.66.141]) by norm.sics.se (Postfix) with ESMTPSA id 5722F3E for <dtls-iot@ietf.org>; Wed, 14 Oct 2015 15:07:20 +0200 (CEST)
Message-ID: <561E5381.8000408@sics.se>
Date: Wed, 14 Oct 2015 15:07:13 +0200
From: Marco Tiloca <marco@sics.se>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.8.0
MIME-Version: 1.0
To: dtls-iot@ietf.org
References: <20151014125711.4613.34719.idtracker@ietfa.amsl.com>
In-Reply-To: <20151014125711.4613.34719.idtracker@ietfa.amsl.com>
X-Forwarded-Message-Id: <20151014125711.4613.34719.idtracker@ietfa.amsl.com>
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="iVLpn3UWutVv188SRa7NJ09BKKA6I4rAK"
X-Bayes-Prob: 0.005 (Score 0, tokens from: outbound, outbound-sics-se:default, sics-se:default, base:default, @@RPTN)
X-p0f-Info: os=Linux 2.2.x-3.x, link=Ethernet or modem
X-CanIt-Geo: ip=193.10.66.141; country=SE; latitude=59.3294; longitude=18.0686; http://maps.google.com/maps?q=59.3294,18.0686&z=6
X-CanItPRO-Stream: outbound-sics-se:outbound (inherits from outbound-sics-se:default, sics-se:default, base:default)
X-Canit-Stats-ID: 09Pt17kWF - 2871e0ed3451 - 20151014
X-Antispam-Training-Forget: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=f
X-Antispam-Training-Nonspam: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=n
X-Antispam-Training-Phish: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=p
X-Antispam-Training-Spam: https://canit.sunet.se/canit/b.php?i=09Pt17kWF&m=2871e0ed3451&t=20151014&c=s
X-CanIt-Archive-Cluster: PfMRe/vJWMiXwM2YIH5BVExnUnw
Received-SPF: neutral (e-mailfilter01.sunet.se: 193.10.66.141 is neither permitted nor denied by domain marco@sics.se) receiver=e-mailfilter01.sunet.se; client-ip=193.10.66.141; envelope-from=<marco@sics.se>; helo=norm.sics.se; identity=mailfrom
X-Scanned-By: CanIt (www . roaringpenguin . com) on 192.36.171.201
Archived-At: <http://mailarchive.ietf.org/arch/msg/dtls-iot/zPmhGftK9F2nPh6Fv91OoBFO9lU>
Subject: [Dtls-iot] Fwd: New Version Notification for draft-tiloca-dice-secure-groupcomm-00.txt
X-BeenThere: dtls-iot@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DTLS for IoT discussion list <dtls-iot.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dtls-iot/>
List-Post: <mailto:dtls-iot@ietf.org>
List-Help: <mailto:dtls-iot-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dtls-iot>, <mailto:dtls-iot-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Oct 2015 13:07:25 -0000
Hello DICE, We have submitted a new draft covering an improved adaptation of DTLS to support secure multicast communication. This work is explicitly related to the second task in charter-ietf-dice-01. Following the discussions around past proposals [I-D.keoh-dice-multicast-security-08][I-D.kumar-dice-multicast-security-00], this draft overcomes the limitations of previous approaches by: 1) highlighting and motivating relevant use cases with secure multicast communication; 2) protecting multicast request messages as well as related unicast response messages; 3) providing source or group authentication of both group request messages and group response messages; 4) avoiding any DTLS handshake to enable secure multicast communication. We would sincerely appreciate any comment on the draft. Best regards, /Marco -------- Forwarded Message -------- Subject: New Version Notification for draft-tiloca-dice-secure-groupcomm-00.txt Date: Wed, 14 Oct 2015 05:57:11 -0700 From: internet-drafts@ietf.org To: Shahid Raza <shahid@sics.se>, Sandeep Kumar <sandeep.kumar@philips.com>, Marco Tiloca <marco@sics.se>, Sandeep S. Kumar <sandeep.kumar@philips.com>, Kirill Nikitin <kirill.nikitin@epfl.ch> A new version of I-D, draft-tiloca-dice-secure-groupcomm-00.txt has been successfully submitted by Marco Tiloca and posted to the IETF repository. Name: draft-tiloca-dice-secure-groupcomm Revision: 00 Title: Secure Two-Way DTLS-Based Group Communication in the IoT Document date: 2015-10-14 Group: Individual Submission Pages: 35 URL: https://www.ietf.org/internet-drafts/draft-tiloca-dice-secure-groupcomm-00.txt Status: https://datatracker.ietf.org/doc/draft-tiloca-dice-secure-groupcomm/ Htmlized: https://tools.ietf.org/html/draft-tiloca-dice-secure-groupcomm-00 Abstract: CoAP has emerged as the de-facto IoT standard for communication involving resource-constrained devices composing Low-power and Lossy Networks (LLNs). CoAP mandates the adoption of the DTLS protocol to secure unicast communication. However, in several IoT application scenarios involving a group of multiple devices, the adoption of CoAP multicast communication through IPv6 results in a number of advantages, especially in terms of performance and scalability. Yet, CoAP does not specify how to secure multicast group communication in an interoperable way. This draft presents a method to secure communication in a multicast group, through an adaptation of the DTLS record layer. In particular, group members rely on the same group keying material in order to secure both request messages sent via multicast and possible unicast messages sent as response. Since the group keying material is provided upon joining the group, all group members are not required to perform any DTLS handshake with each other. The proposed method makes it possible to provide either group authentication or source authentication of secured messages. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat
- [Dtls-iot] Fwd: New Version Notification for draf… Marco Tiloca