Re: [Emu] Adoption call for EAP-DPP
Dan Harkins <dharkins@lounge.org> Fri, 09 September 2022 06:28 UTC
Return-Path: <dharkins@lounge.org>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CF77C157B41 for <emu@ietfa.amsl.com>; Thu, 8 Sep 2022 23:28:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Kl6f3CcNgCbq for <emu@ietfa.amsl.com>; Thu, 8 Sep 2022 23:28:37 -0700 (PDT)
Received: from www.goatley.com (www.goatley.com [198.137.202.94]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7701EC157B34 for <emu@ietf.org>; Thu, 8 Sep 2022 23:28:37 -0700 (PDT)
Received: from kitty.bergandi.net (cpe-76-176-14-122.san.res.rr.com [76.176.14.122]) by wwwlocal.goatley.com (PMDF V6.8 #2433) with ESMTP id <0RHX0IXOGJBO15@wwwlocal.goatley.com> for emu@ietf.org; Fri, 09 Sep 2022 01:28:36 -0500 (CDT)
Received: from [192.168.1.153] (kitty.dhcp.bergandi.net [10.0.42.19]) by kitty.bergandi.net (PMDF V6.8 #2433) with ESMTPSA id <0RHX00IBZJBN47@kitty.bergandi.net> for emu@ietf.org; Thu, 08 Sep 2022 23:28:36 -0700 (PDT)
Received: from customer.lsancax1.pop.starlinkisp.net ([98.97.59.52] EXTERNAL) (EHLO [192.168.1.153]) with TLS/SSL by kitty.bergandi.net ([10.0.42.19]) (PreciseMail V3.3); Thu, 08 Sep 2022 23:28:36 -0700
Date: Thu, 08 Sep 2022 23:28:34 -0700
From: Dan Harkins <dharkins@lounge.org>
In-reply-to: <CAC8QAceZGSvTqUDceDfUW4uK4D1YwaFes7+vxZpArHy=yebzbg@mail.gmail.com>
To: sarikaya@ieee.org
Cc: emu@ietf.org
Message-id: <d68bc8ca-c5c0-6542-acfa-15c2a3022073@lounge.org>
MIME-version: 1.0
Content-type: multipart/alternative; boundary="Boundary_(ID_LJa8ldTtSrGfsCVYSRaixQ)"
Content-language: en-US
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:91.0) Gecko/20100101 Thunderbird/91.9.1
X-PMAS-SPF: SPF check skipped for authenticated session (recv=kitty.bergandi.net, send-ip=98.97.59.52)
X-PMAS-External-Auth: customer.lsancax1.pop.starlinkisp.net [98.97.59.52] (EHLO [192.168.1.153])
References: <006a01d8c33f$89efa6d0$9dcef470$@akayla.com> <CAC8QAceZGSvTqUDceDfUW4uK4D1YwaFes7+vxZpArHy=yebzbg@mail.gmail.com>
X-PMAS-Software: PreciseMail V3.3 [220908a] (kitty.bergandi.net)
X-PMAS-Allowed: system rule (rule allow header:X-PMAS-External noexists)
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/krXiP58Zi6LB01oGHEW9idmGSjo>
Subject: Re: [Emu] Adoption call for EAP-DPP
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Sep 2022 06:28:38 -0000
Hi Behcet, On 9/8/22 8:43 AM, Behcet Sarikaya wrote: > Hi Peter, Joe, > > We made it clear that DPP R2 has already been published with a name > change: > > > > *Wi-Fi Easy Connect™* > > *Specification* > > *Version 2.0* > > > > Wi-Fi Easy Connect is the new DPP, which the authors seemingly did not > know about. Wi-Fi Easy Connect is the name of a certification program at the Wi-Fi Alliance for devices that implement the DPP protocol. I am well aware of Wi-Fi Easy Connect (having invented the protocols that are used in it and have contributed to development of the test plan). It seems that you aren't. > Also the problem that this draft deals with and also Elliott mentioned > in his mail, Wi-Fi Easy Connect already solves it. That is not correct, this draft deals with on-boarding of wired devices on networks that enforce security. Such networks enforce 802.1x and as soon as a device is plugged into such a switch an EAP Identity-Request will be sent. No packets other than EAPoL are allowed. Certainly no TCP frames encapsulating DPP messages! So it is not possible to do any DPP-over-TCP (or if you will "Wi-Fi Easy Connect over TCP") in such a situation. Wi-Fi Easy Connect, which is a certification program, does not solve this problem. Neither does the DPP protocol which Wi-Fi Easy Connect certifies compliance to. The issue that IP connectivity cannot be established until authentication and DPP-over-TCP requires IP connectivity to perform authentication. It's a classic catch-22. Why don't you see this obvious problem? regards, Dan. > Regards, > Behcet > > > > On Wed, Sep 7, 2022 at 11:57 PM Peter Yee <peter@akayla.com> wrote: > > In retrospect, sending the call for adoption at the height of August > vacation season may not have guaranteed the most responses. To be > honest, > the level of responses to this call has been a little light, so > Joe and I > have decided to extend the call for adoption for one week from today. > > We would really like to hear from anyone else who is interested in > reviewing > and/or contributing to this specification or anyone who feels that > it should > not be adopted. Please speak up by the 14th either way. This > specification > would seemingly fit within the WG's existing charter, so let your > voice be > heard! > > Thanks, > > Peter and Joe > > -----Original Message----- > From: Peter Yee <peter@akayla.com> > Sent: Tuesday, August 16, 2022 1:12 PM > To: 'emu@ietf.org' <emu@ietf.org> > Subject: Adoption call for EAP-DPP > > This is an adoption call for EAP-DPP > (draft-friel-tls-eap-dpp-05)[1]. This > document aligns with the charter item to "Define mechanisms by > which EAP > methods can support creation of long-term credentials for the peer > based on > initial limited-use credentials." The latest revision incorporates > feedback > from both the TLS and EMU working groups. Please review and > respond to the > list if you think this document is or is not an appropriate > working group > item for EMU by September 1, 2022. > > Thanks, > > Peter and Joe > > [1] https://datatracker.ietf.org/doc/draft-friel-tls-eap-dpp/ > > > _______________________________________________ > Emu mailing list > Emu@ietf.org > https://www.ietf.org/mailman/listinfo/emu > > > _______________________________________________ > Emu mailing list > Emu@ietf.org > https://www.ietf.org/mailman/listinfo/emu -- "The object of life is not to be on the side of the majority, but to escape finding oneself in the ranks of the insane." -- Marcus Aurelius
- [Emu] Adoption call for EAP-DPP Peter Yee
- Re: [Emu] Adoption call for EAP-DPP M Montemurro
- Re: [Emu] Adoption call for EAP-DPP Behcet Sarikaya
- Re: [Emu] Adoption call for EAP-DPP Eliot Lear
- Re: [Emu] Adoption call for EAP-DPP Dan Harkins
- Re: [Emu] Adoption call for EAP-DPP Behcet Sarikaya
- Re: [Emu] Adoption call for EAP-DPP M Montemurro
- Re: [Emu] Adoption call for EAP-DPP Dan Harkins
- Re: [Emu] Adoption call for EAP-DPP Behcet Sarikaya
- Re: [Emu] Adoption call for EAP-DPP Peter Yee
- Re: [Emu] Adoption call for EAP-DPP Eliot Lear
- Re: [Emu] Adoption call for EAP-DPP Behcet Sarikaya
- Re: [Emu] Adoption call for EAP-DPP Eliot Lear
- Re: [Emu] Adoption call for EAP-DPP Dan Harkins
- Re: [Emu] Adoption call for EAP-DPP Michael Richardson
- Re: [Emu] Adoption call for EAP-DPP Owen Friel (ofriel)
- Re: [Emu] Adoption call for EAP-DPP Owen Friel (ofriel)
- Re: [Emu] Adoption call for EAP-DPP Peter Yee