IETF Logo Mail Archive

Re: [Homenet-babel-sec] [babel] What's up with HNCP security?

Toke Høiland-Jørgensen <toke@toke.dk> Mon, 29 May 2017 10:24 UTC

Return-Path: <toke@toke.dk>
X-Original-To: homenet-babel-sec@ietfa.amsl.com
Delivered-To: homenet-babel-sec@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B05CC124BFA; Mon, 29 May 2017 03:24:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.602
X-Spam-Level:
X-Spam-Status: No, score=-0.602 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=toke.dk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dAAKUEGxUuiS; Mon, 29 May 2017 03:24:16 -0700 (PDT)
Received: from mail.toke.dk (mail.toke.dk [52.28.52.200]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B26451242F7; Mon, 29 May 2017 03:24:16 -0700 (PDT)
From: Toke Høiland-Jørgensen <toke@toke.dk>
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=toke.dk; s=20161023; t=1496053448; bh=B7IoP9aPHxhOJGL9o7lt2azTSXwZoKOz/XahQH6jODI=; h=From:To:Cc:Subject:References:Date:In-Reply-To:From; b=AaJqJeUAiYGJRm15Gh01K0bZe4nmEOlfzjI0Yevsp5mcr1ToEwVJ8N7ERLhbiXd+5 FT9KzTaVyUC5wMVt2wTCCjvKsWVduXSlb7qE3Z7+c6wa7RmviILgbE4i+N4ubt7INz +0KMGFmiWSo97gOsnhI7XsXfqebHqD/ToZ5SuOrDYS8jVTV1i/LAA7RlGyAdeP0d05 OVfqXVwANRYJ28f2ivQYeY4OAMdjVUmswW16AUoOVukB60xK5AqAMbaeNejAUbfKsL u6i8c6QPiCAmUGn7PivjJknuaDN+36Xxrp43t8ZmFORClmq6WVoRR4ST6iDK0w40Ay wqm6Ai1xGJFiw==
To: Juliusz Chroboczek <jch@irif.fr>
Cc: Markus Stenberg <markus.stenberg@iki.fi>, Ted Lemon <mellon@fugue.com>, homenet-babel-sec@ietf.org, babel@ietf.org
References: <87d1ask7d9.wl-jch@irif.fr> <B67775FF-31CB-42F6-ABDF-BD47BEA1DB56@iki.fi> <1F8BA8E0-7518-4288-B679-749906B1B19F@fugue.com> <87shjoihnz.wl-jch@irif.fr> <416AD4BB-7A24-41D4-9C91-96B23BE65EF3@fugue.com> <EC469E5B-4E9A-4A6F-818F-EA52E654DE4C@iki.fi> <877f10owh7.wl-jch@irif.fr>
Date: Mon, 29 May 2017 12:24:06 +0200
In-Reply-To: <877f10owh7.wl-jch@irif.fr> (Juliusz Chroboczek's message of "Mon, 29 May 2017 11:15:00 +0200")
X-Clacks-Overhead: GNU Terry Pratchett
Message-ID: <87wp909d15.fsf@alrua-kau>
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet-babel-sec/jRarzqXxY_MMvFR0e_AY1qI7PPQ>
Subject: Re: [Homenet-babel-sec] [babel] What's up with HNCP security?
X-BeenThere: homenet-babel-sec@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Homenet Babel Security <homenet-babel-sec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet-babel-sec>, <mailto:homenet-babel-sec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet-babel-sec/>
List-Post: <mailto:homenet-babel-sec@ietf.org>
List-Help: <mailto:homenet-babel-sec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet-babel-sec>, <mailto:homenet-babel-sec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 May 2017 10:24:19 -0000

Juliusz Chroboczek <jch@irif.fr> writes:

> use a master SSID with a cool protocol to securely negotiate keys with
> individual devices...

Aren't you basically describing "enterprise" (802.1X) WPA here?

> and watch bitterly as nobody adopts your protocol.

Apart from enterprises, universities and anyone who bothers to install
freeradius, you mean? ;)

-Toke

v2.23.0 | Report a Bug | By Email