IETF Logo Mail Archive

[Emu] FW: New Version Notification for draft-aura-eap-noob-06.txt

Aura Tuomas <tuomas.aura@aalto.fi> Wed, 03 July 2019 13:04 UTC

Return-Path: <tuomas.aura@aalto.fi>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A172120045 for <emu@ietfa.amsl.com>; Wed, 3 Jul 2019 06:04:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=aalto.fi
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rBClFFWC4RHy for <emu@ietfa.amsl.com>; Wed, 3 Jul 2019 06:04:37 -0700 (PDT)
Received: from smtp-out-01.aalto.fi (smtp-out-01.aalto.fi [130.233.228.120]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8E5DB12000F for <emu@ietf.org>; Wed, 3 Jul 2019 06:04:37 -0700 (PDT)
Received: from smtp-out-01.aalto.fi (localhost.localdomain [127.0.0.1]) by localhost (Email Security Appliance) with SMTP id 89072115823_D1CA66CB for <emu@ietf.org>; Wed, 3 Jul 2019 12:58:20 +0000 (GMT)
Received: from exng4.org.aalto.fi (exng4.org.aalto.fi [130.233.223.23]) (using TLSv1.2 with cipher AES256-GCM-SHA384 (256/256 bits)) (Client CN "exng4.org.aalto.fi", Issuer "org.aalto.fi RootCA" (not verified)) by smtp-out-01.aalto.fi (Sophos Email Appliance) with ESMTPS id 3266D115839_D1CA66CF for <emu@ietf.org>; Wed, 3 Jul 2019 12:58:20 +0000 (GMT)
Received: from exng8.org.aalto.fi (130.233.223.27) by exng4.org.aalto.fi (130.233.223.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Wed, 3 Jul 2019 16:04:32 +0300
Received: from exng8.org.aalto.fi ([fe80::edd7:7397:1f7f:cd7]) by exng8.org.aalto.fi ([fe80::edd7:7397:1f7f:cd7%17]) with mapi id 15.01.1713.007; Wed, 3 Jul 2019 16:04:32 +0300
From: Aura Tuomas <tuomas.aura@aalto.fi>
To: "emu@ietf.org" <emu@ietf.org>
Thread-Topic: New Version Notification for draft-aura-eap-noob-06.txt
Thread-Index: AQHVMZ1dQ7UWsRluhkGym1jQqDQyt6a4181w
Date: Wed, 03 Jul 2019 13:04:32 +0000
Message-ID: <dbfdffa3fa8c4055924e812234d9eb97@aalto.fi>
References: <156215799923.14626.16059927047031828211.idtracker@ietfa.amsl.com>
In-Reply-To: <156215799923.14626.16059927047031828211.idtracker@ietfa.amsl.com>
Accept-Language: fi-FI, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.233.0.5]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-SASI-RCODE: 200
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aalto.fi; h=from:to:subject:date:message-id:references:in-reply-to:content-type:content-transfer-encoding:mime-version; s=its18; bh=yzboMvASXIcIczRCDu5KjelX6w0Bc2oeSnU8iUMfxbU=; b=LUf6G2XwFIqD9ytbk9LV5EcI4ffHmBs8aFSf5e+gaZTlmsRulOGS3SZeMsbKaZqumtmFxdNabg4ihw8BYV0kk1LMZtc6O67N3gAAPEIBsKxDmWemHbTf64GESMRRUvREPmK2ZL/wFQ8C7L3v21AERHM+8TJplv/fPPGEvbfQvxIyLhydwoD8vlfOFhMnJJPbhnWp80lyOlZFrjEPv5UdsrTRvZtgoDypDcIeDh/WiYmUOPrwANhn1xgtoejufbzoNMFBbc5AugZN8nzpyVK7u0YIaba+t8yOk7wxhJgXA230WP5HAloiSXefwwtg++hkeMO0hqQ3FxeHGl717ppoNw==
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/KTPmuqMTj7s4qN7U3blgzd_70A0>
Subject: [Emu] FW: New Version Notification for draft-aura-eap-noob-06.txt
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jul 2019 13:04:40 -0000

Hi all!

I have updated the EAP-NOOB draft. Here is a summary of the changes: 

* The major change was to add a separate request-response pair for communicating the PeerId and peer state to the server, instead of overloading the NAI. This is in conformance with RFC 3748 section 5.1: the NAI is now used only for routing the EAP requests and for selecting the method, and the method-specific peer identifier is communicated inside the method. (Note that the example messages in the appendix have not yet been updated.)

* Rolled back a change introduced in the previous version: the Kz identifier. While this could make implementation slightly easier, it conflicted with a potential future privacy extension where the PeerId is re-randomized periodically. 

* Refactored the text so that the initial handshake part of the exchanges, which is common to all exchanges, is described in its own section. This change is in response to questions from implementors. The text now follows more closely what I expect to be the sever logic in a the typical implementation. There were also other smaller editorial clarifications, e.g. when to start using the server-assigned realm. 

Regards,
Tuomas



-----Original Message-----
From: internet-drafts@ietf.org <internet-drafts@ietf.org> 
Sent: Wednesday, July 3, 2019 3:47 PM
To: Mohit Sethi <mohit@piuha.net>; Aura Tuomas <tuomas.aura@aalto.fi>
Subject: New Version Notification for draft-aura-eap-noob-06.txt


A new version of I-D, draft-aura-eap-noob-06.txt has been successfully submitted by Tuomas Aura and posted to the IETF repository.

Name:		draft-aura-eap-noob
Revision:	06
Title:		Nimble out-of-band authentication for EAP (EAP-NOOB)
Document date:	2019-07-03
Group:		Individual Submission
Pages:		62
URL:            https://www.ietf.org/internet-drafts/draft-aura-eap-noob-06.txt
Status:         https://datatracker.ietf.org/doc/draft-aura-eap-noob/
Htmlized:       https://tools.ietf.org/html/draft-aura-eap-noob-06
Htmlized:       https://datatracker.ietf.org/doc/html/draft-aura-eap-noob
Diff:           https://www.ietf.org/rfcdiff?url2=draft-aura-eap-noob-06

Abstract:
   Extensible Authentication Protocol (EAP) provides support for
   multiple authentication methods.  This document defines the EAP-NOOB
   authentication method for nimble out-of-band (OOB) authentication and
   key derivation.  This EAP method is intended for bootstrapping all
   kinds of Internet-of-Things (IoT) devices that have a minimal user
   interface and no pre-configured authentication credentials.  The
   method makes use of a user-assisted one-directional OOB channel
   between the peer device and authentication server.

                                                                                  


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

v2.23.0 | Report a Bug | By Email