Re: [homenet] webauthn for routers
Michael Thomas <mike@fresheez.com> Thu, 13 June 2019 19:46 UTC
Return-Path: <mike@fresheez.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59D9B12047A for <homenet@ietfa.amsl.com>; Thu, 13 Jun 2019 12:46:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=fresheez.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dte4g3TdFkmI for <homenet@ietfa.amsl.com>; Thu, 13 Jun 2019 12:46:31 -0700 (PDT)
Received: from mail-io1-xd33.google.com (mail-io1-xd33.google.com [IPv6:2607:f8b0:4864:20::d33]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5FFC120096 for <homenet@ietf.org>; Thu, 13 Jun 2019 12:46:31 -0700 (PDT)
Received: by mail-io1-xd33.google.com with SMTP id w25so517007ioc.8 for <homenet@ietf.org>; Thu, 13 Jun 2019 12:46:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fresheez.com; s=fluffulence; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language; bh=ZFkdS8MBYXxNB4Jnn3XJDivuvZUgz73SNe65RMLH/zU=; b=nHNfGn1rXc4MUn4aT3GfvYciZEtVvakHcDIQ++Id5pPa3C6EBlGAvG2Y8WgZ4UcyBj 6xwfqYiWUzIeOAfab6ERnAV5UW7etpU2XvmrNqOhYwGUKi2OsBx+JJcL8762DJ9Ux92c NCm8xinGReSLrRRGM6/GPSX4pXpXjoTfkq1hc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=ZFkdS8MBYXxNB4Jnn3XJDivuvZUgz73SNe65RMLH/zU=; b=mlp1z+mSSPXGwbdWGHzj/+ccGWo4EGkPpK/jskNFrd1q25VmhJA3NhFYjHodVIaIpE qU1O6dhPmnt21m5vw4wSBMgnsQdNS55myUEE02gqt3xLpZUm7hv8pxfLGtQEHUThxXLX GKtoWGVOEZ/qyToR42sFlTfj2hNOpR/oJNmakrNMNAsh+/ZqAG795Y4Do5EiZCVJAH8o XsvKX6r4zP9FmX6conA3pxqU6YShz7Mz6IK7/V5TXDCM4Z4EHzlPRluN/P4u24MMcfT4 MO8u+iaf1QzAv4fHGbxtNMMg8Fuz/dcz6Qc2uHP0YGb8OQ9+jOMpBYeA8MqVWJgfPEgp +FGg==
X-Gm-Message-State: APjAAAXKQkg1mad6RD31nr3GBiwSp1sNhhsciuOD47SeQFz6uFulDUgA patgAAuC87jPgxhrxE7ml5qcKIqvuZY=
X-Google-Smtp-Source: APXvYqxeCAq87EPqjQpXvvmhUMosk7x/HHn/CjHsFSaUrzlzkLr4IkGzE6oioPRQeHGDHUxDKHSEng==
X-Received: by 2002:a5d:8794:: with SMTP id f20mr9209636ion.128.1560455190530; Thu, 13 Jun 2019 12:46:30 -0700 (PDT)
Received: from Michaels-MacBook.local (107-182-42-248.volcanocom.com. [107.182.42.248]) by smtp.gmail.com with ESMTPSA id h18sm747430iob.80.2019.06.13.12.46.28 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 13 Jun 2019 12:46:29 -0700 (PDT)
To: Ted Lemon <mellon@fugue.com>
Cc: Michael Richardson <mcr@sandelman.ca>, homenet@ietf.org
References: <CADZyTkkgd8f49V+yoZvPZXx3b-_YRzpgUY1-obroq9QMLnFWNw@mail.gmail.com> <EC7FDA4F-1859-4B35-A8AC-D33E1A96F979@fugue.com> <ff7f2700-3862-59bd-abfb-22589562bddb@mtcc.com> <20218.1560366783@localhost> <288a310b-3b99-748d-74ce-a878ff43ee77@fresheez.com> <6179.1560377924@localhost> <604b4062-f2c5-30af-73ff-2e97b7541a9b@fresheez.com> <30470.1560435490@localhost> <cde3329b-cc06-b4eb-5d87-cf74f21368ea@fresheez.com> <496DBED4-24E6-49FE-B9D3-C2BFC7ACEE98@fugue.com> <20d72a3f-0b8f-c958-2482-25358854a96e@fresheez.com> <384451EC-7938-48B6-B167-1C246385C6D7@fugue.com> <fc40f26f-0dc3-91bb-03a0-7e7d8820e931@fresheez.com> <3461D44E-DD00-485D-B1CB-2F5356653403@fugue.com> <4167255a-9766-d155-cafa-44a27bec9a45@fresheez.com> <6B0BD10A-52A8-4DA6-82E2-BE4196041EE4@fugue.com> <d633bcce-cd61-6e86-ae7c-0aa26c7ed815@fresheez.com> <306AAFBA-39D0-489A-8698-F31A6C4BEC78@fugue.com> <8d490410-8ca4-0d74-488e-5c632f8a00b8@fresheez.com> <C3C5279A-14F6-42D2-B436-F2FD88CACC66@fugue.com>
From: Michael Thomas <mike@fresheez.com>
Message-ID: <3090e039-30d8-5304-d208-a009504acc58@fresheez.com>
Date: Thu, 13 Jun 2019 12:46:27 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.7.0
MIME-Version: 1.0
In-Reply-To: <C3C5279A-14F6-42D2-B436-F2FD88CACC66@fugue.com>
Content-Type: multipart/alternative; boundary="------------5CA27D750AB64398CAA719B6"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet/46fdpY-prB0QBHZ7NRmH2v6MiKg>
Subject: Re: [homenet] webauthn for routers
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jun 2019 19:46:33 -0000
On 6/13/19 12:43 PM, Ted Lemon wrote: > On Jun 13, 2019, at 3:40 PM, Michael Thomas <mike@fresheez.com > <mailto:mike@fresheez.com>> wrote: >> I don't think this needs to be very involved. I would think that a >> short bcp which lays out why webauthn is a huge advance, and a set of >> different enrollment mechanisms that have some vetting would probably >> be enough. > > You mean so that we can pick one? :) > Possibly, but I think there are hardware based solutions (eg "press to pair") and pure software based ones. The main point is to have something to point vendors at. They are probably clueless that this is a possibility now. Mike
- [homenet] securing zone transfer Daniel Migault
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Ray Bellis
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Ted Lemon
- Re: [homenet] securing zone transfer Ray Hunter (v6ops)
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Ted Lemon
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Mark Andrews
- Re: [homenet] securing zone transfer Juliusz Chroboczek
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] [EXT] securing zone transfer Jacques Latour
- Re: [homenet] [EXT] securing zone transfer Ted Lemon
- Re: [homenet] [EXT] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Juliusz Chroboczek
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] [EXT] securing zone transfer Ted Lemon
- Re: [homenet] securing zone transfer Juliusz Chroboczek
- Re: [homenet] [EXT] securing zone transfer Daniel Migault
- Re: [homenet] number of devices in homenet Daniel Migault
- Re: [homenet] [EXT] securing zone transfer Ray Hunter (v6ops)
- Re: [homenet] securing zone transfer Ray Hunter (v6ops)
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Ted Lemon
- Re: [homenet] webauthn for routers (was: securing… MIchael Thomas
- Re: [homenet] webauthn for routers (was: securing… Michael Richardson
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Michael Richardson
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] securing zone transfer Juliusz Chroboczek
- Re: [homenet] securing zone transfer Juliusz Chroboczek
- Re: [homenet] securing zone transfer Michael Richardson
- Re: [homenet] securing zone transfer Ray Hunter (v6ops)
- Re: [homenet] webauthn for routers Michael Richardson
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] securing zone transfer Juliusz Chroboczek
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] webauthn for routers Ted Lemon
- Re: [homenet] webauthn for routers Michael Thomas
- Re: [homenet] [EXT] securing zone transfer Ray Hunter (v6ops)