IETF Logo Mail Archive

Re: [Emu] Adoption call for EAP-DPP

Dan Harkins <dharkins@lounge.org> Fri, 09 September 2022 06:28 UTC

Return-Path: <dharkins@lounge.org>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CF77C157B41 for <emu@ietfa.amsl.com>; Thu, 8 Sep 2022 23:28:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kl6f3CcNgCbq for <emu@ietfa.amsl.com>; Thu, 8 Sep 2022 23:28:37 -0700 (PDT)
Received: from www.goatley.com (www.goatley.com [198.137.202.94]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7701EC157B34 for <emu@ietf.org>; Thu, 8 Sep 2022 23:28:37 -0700 (PDT)
Received: from kitty.bergandi.net (cpe-76-176-14-122.san.res.rr.com [76.176.14.122]) by wwwlocal.goatley.com (PMDF V6.8 #2433) with ESMTP id <0RHX0IXOGJBO15@wwwlocal.goatley.com> for emu@ietf.org; Fri, 09 Sep 2022 01:28:36 -0500 (CDT)
Received: from [192.168.1.153] (kitty.dhcp.bergandi.net [10.0.42.19]) by kitty.bergandi.net (PMDF V6.8 #2433) with ESMTPSA id <0RHX00IBZJBN47@kitty.bergandi.net> for emu@ietf.org; Thu, 08 Sep 2022 23:28:36 -0700 (PDT)
Received: from customer.lsancax1.pop.starlinkisp.net ([98.97.59.52] EXTERNAL) (EHLO [192.168.1.153]) with TLS/SSL by kitty.bergandi.net ([10.0.42.19]) (PreciseMail V3.3); Thu, 08 Sep 2022 23:28:36 -0700
Date: Thu, 08 Sep 2022 23:28:34 -0700
From: Dan Harkins <dharkins@lounge.org>
In-reply-to: <CAC8QAceZGSvTqUDceDfUW4uK4D1YwaFes7+vxZpArHy=yebzbg@mail.gmail.com>
To: sarikaya@ieee.org
Cc: emu@ietf.org
Message-id: <d68bc8ca-c5c0-6542-acfa-15c2a3022073@lounge.org>
MIME-version: 1.0
Content-type: multipart/alternative; boundary="Boundary_(ID_LJa8ldTtSrGfsCVYSRaixQ)"
Content-language: en-US
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Thunderbird/91.9.1
X-PMAS-SPF: SPF check skipped for authenticated session (recv=kitty.bergandi.net, send-ip=98.97.59.52)
X-PMAS-External-Auth: customer.lsancax1.pop.starlinkisp.net [98.97.59.52] (EHLO [192.168.1.153])
References: <006a01d8c33f$89efa6d0$9dcef470$@akayla.com> <CAC8QAceZGSvTqUDceDfUW4uK4D1YwaFes7+vxZpArHy=yebzbg@mail.gmail.com>
X-PMAS-Software: PreciseMail V3.3 [220908a] (kitty.bergandi.net)
X-PMAS-Allowed: system rule (rule allow header:X-PMAS-External noexists)
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/krXiP58Zi6LB01oGHEW9idmGSjo>
Subject: Re: [Emu] Adoption call for EAP-DPP
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Sep 2022 06:28:38 -0000

   Hi Behcet,

On 9/8/22 8:43 AM, Behcet Sarikaya wrote:
> Hi Peter, Joe,
>
> We made it clear that DPP R2 has already been published  with a name 
> change:
>
>
>
> *Wi-Fi Easy Connect™*
>
> *Specification*
>
> *Version 2.0*
>
>
>
> Wi-Fi Easy Connect is the new DPP, which the authors seemingly did not 
> know about.

   Wi-Fi Easy Connect is the name of a certification program at the 
Wi-Fi Alliance
for devices that implement the DPP protocol.

   I am well aware of Wi-Fi Easy Connect (having invented the protocols 
that are used
in it and have contributed to development of the test plan). It seems 
that you aren't.

> Also the problem that this draft deals with and also Elliott mentioned 
> in his mail, Wi-Fi Easy Connect already solves it.

   That is not correct, this draft deals with on-boarding of wired 
devices on networks
that enforce security. Such networks enforce 802.1x and as soon as a 
device is plugged
into such a switch an EAP Identity-Request will be sent. No packets 
other than EAPoL are
allowed. Certainly no TCP frames encapsulating DPP messages! So it is 
not possible to
do any DPP-over-TCP (or if you will "Wi-Fi Easy Connect over TCP") in 
such a situation.

   Wi-Fi Easy Connect, which is a certification program, does not solve 
this problem. Neither
does the DPP protocol which Wi-Fi Easy Connect certifies compliance to.

   The issue that IP connectivity cannot be established until 
authentication and DPP-over-TCP
requires IP connectivity to perform authentication. It's a classic 
catch-22. Why don't you
see this obvious problem?

   regards,

   Dan.

> Regards,
> Behcet
>
>
>
> On Wed, Sep 7, 2022 at 11:57 PM Peter Yee <peter@akayla.com> wrote:
>
>     In retrospect, sending the call for adoption at the height of August
>     vacation season may not have guaranteed the most responses. To be
>     honest,
>     the level of responses to this call has been a little light, so
>     Joe and I
>     have decided to extend the call for adoption for one week from today.
>
>     We would really like to hear from anyone else who is interested in
>     reviewing
>     and/or contributing to this specification or anyone who feels that
>     it should
>     not be adopted. Please speak up by the 14th either way. This
>     specification
>     would seemingly fit within the WG's existing charter, so let your
>     voice be
>     heard!
>
>     Thanks,
>
>     Peter and Joe
>
>     -----Original Message-----
>     From: Peter Yee <peter@akayla.com>
>     Sent: Tuesday, August 16, 2022 1:12 PM
>     To: 'emu@ietf.org' <emu@ietf.org>
>     Subject: Adoption call for EAP-DPP
>
>     This is an adoption call for EAP-DPP
>     (draft-friel-tls-eap-dpp-05)[1]. This
>     document aligns with the charter item to "Define mechanisms by
>     which EAP
>     methods can support creation of long-term credentials for the peer
>     based on
>     initial limited-use credentials." The latest revision incorporates
>     feedback
>     from both the TLS and EMU working groups. Please review and
>     respond to the
>     list if you think this document is or is not an appropriate
>     working group
>     item for EMU by September 1, 2022.
>
>     Thanks,
>
>     Peter and Joe
>
>     [1] https://datatracker.ietf.org/doc/draft-friel-tls-eap-dpp/
>
>
>     _______________________________________________
>     Emu mailing list
>     Emu@ietf.org
>     https://www.ietf.org/mailman/listinfo/emu
>
>
> _______________________________________________
> Emu mailing list
> Emu@ietf.org
> https://www.ietf.org/mailman/listinfo/emu

-- 
"The object of life is not to be on the side of the majority, but to
escape finding oneself in the ranks of the insane." -- Marcus Aurelius

v2.23.0 | Report a Bug | By Email