IETF Logo Mail Archive

Re: [homenet] webauthn for routers

Michael Thomas <mike@fresheez.com> Thu, 13 June 2019 19:46 UTC

Return-Path: <mike@fresheez.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59D9B12047A for <homenet@ietfa.amsl.com>; Thu, 13 Jun 2019 12:46:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=fresheez.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dte4g3TdFkmI for <homenet@ietfa.amsl.com>; Thu, 13 Jun 2019 12:46:31 -0700 (PDT)
Received: from mail-io1-xd33.google.com (mail-io1-xd33.google.com [IPv6:2607:f8b0:4864:20::d33]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C5FFC120096 for <homenet@ietf.org>; Thu, 13 Jun 2019 12:46:31 -0700 (PDT)
Received: by mail-io1-xd33.google.com with SMTP id w25so517007ioc.8 for <homenet@ietf.org>; Thu, 13 Jun 2019 12:46:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fresheez.com; s=fluffulence; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-language; bh=ZFkdS8MBYXxNB4Jnn3XJDivuvZUgz73SNe65RMLH/zU=; b=nHNfGn1rXc4MUn4aT3GfvYciZEtVvakHcDIQ++Id5pPa3C6EBlGAvG2Y8WgZ4UcyBj 6xwfqYiWUzIeOAfab6ERnAV5UW7etpU2XvmrNqOhYwGUKi2OsBx+JJcL8762DJ9Ux92c NCm8xinGReSLrRRGM6/GPSX4pXpXjoTfkq1hc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=ZFkdS8MBYXxNB4Jnn3XJDivuvZUgz73SNe65RMLH/zU=; b=mlp1z+mSSPXGwbdWGHzj/+ccGWo4EGkPpK/jskNFrd1q25VmhJA3NhFYjHodVIaIpE qU1O6dhPmnt21m5vw4wSBMgnsQdNS55myUEE02gqt3xLpZUm7hv8pxfLGtQEHUThxXLX GKtoWGVOEZ/qyToR42sFlTfj2hNOpR/oJNmakrNMNAsh+/ZqAG795Y4Do5EiZCVJAH8o XsvKX6r4zP9FmX6conA3pxqU6YShz7Mz6IK7/V5TXDCM4Z4EHzlPRluN/P4u24MMcfT4 MO8u+iaf1QzAv4fHGbxtNMMg8Fuz/dcz6Qc2uHP0YGb8OQ9+jOMpBYeA8MqVWJgfPEgp +FGg==
X-Gm-Message-State: APjAAAXKQkg1mad6RD31nr3GBiwSp1sNhhsciuOD47SeQFz6uFulDUgA patgAAuC87jPgxhrxE7ml5qcKIqvuZY=
X-Google-Smtp-Source: APXvYqxeCAq87EPqjQpXvvmhUMosk7x/HHn/CjHsFSaUrzlzkLr4IkGzE6oioPRQeHGDHUxDKHSEng==
X-Received: by 2002:a5d:8794:: with SMTP id f20mr9209636ion.128.1560455190530; Thu, 13 Jun 2019 12:46:30 -0700 (PDT)
Received: from Michaels-MacBook.local (107-182-42-248.volcanocom.com. [107.182.42.248]) by smtp.gmail.com with ESMTPSA id h18sm747430iob.80.2019.06.13.12.46.28 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 13 Jun 2019 12:46:29 -0700 (PDT)
To: Ted Lemon <mellon@fugue.com>
Cc: Michael Richardson <mcr@sandelman.ca>, homenet@ietf.org
References: <CADZyTkkgd8f49V+yoZvPZXx3b-_YRzpgUY1-obroq9QMLnFWNw@mail.gmail.com> <EC7FDA4F-1859-4B35-A8AC-D33E1A96F979@fugue.com> <ff7f2700-3862-59bd-abfb-22589562bddb@mtcc.com> <20218.1560366783@localhost> <288a310b-3b99-748d-74ce-a878ff43ee77@fresheez.com> <6179.1560377924@localhost> <604b4062-f2c5-30af-73ff-2e97b7541a9b@fresheez.com> <30470.1560435490@localhost> <cde3329b-cc06-b4eb-5d87-cf74f21368ea@fresheez.com> <496DBED4-24E6-49FE-B9D3-C2BFC7ACEE98@fugue.com> <20d72a3f-0b8f-c958-2482-25358854a96e@fresheez.com> <384451EC-7938-48B6-B167-1C246385C6D7@fugue.com> <fc40f26f-0dc3-91bb-03a0-7e7d8820e931@fresheez.com> <3461D44E-DD00-485D-B1CB-2F5356653403@fugue.com> <4167255a-9766-d155-cafa-44a27bec9a45@fresheez.com> <6B0BD10A-52A8-4DA6-82E2-BE4196041EE4@fugue.com> <d633bcce-cd61-6e86-ae7c-0aa26c7ed815@fresheez.com> <306AAFBA-39D0-489A-8698-F31A6C4BEC78@fugue.com> <8d490410-8ca4-0d74-488e-5c632f8a00b8@fresheez.com> <C3C5279A-14F6-42D2-B436-F2FD88CACC66@fugue.com>
From: Michael Thomas <mike@fresheez.com>
Message-ID: <3090e039-30d8-5304-d208-a009504acc58@fresheez.com>
Date: Thu, 13 Jun 2019 12:46:27 -0700
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.7.0
MIME-Version: 1.0
In-Reply-To: <C3C5279A-14F6-42D2-B436-F2FD88CACC66@fugue.com>
Content-Type: multipart/alternative; boundary="------------5CA27D750AB64398CAA719B6"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/homenet/46fdpY-prB0QBHZ7NRmH2v6MiKg>
Subject: Re: [homenet] webauthn for routers
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF Homenet WG mailing list <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Jun 2019 19:46:33 -0000

On 6/13/19 12:43 PM, Ted Lemon wrote:
> On Jun 13, 2019, at 3:40 PM, Michael Thomas <mike@fresheez.com 
> <mailto:mike@fresheez.com>> wrote:
>> I don't think this needs to be very involved. I would think that a 
>> short bcp which lays out why webauthn is a huge advance, and a set of 
>> different enrollment mechanisms that have some vetting would probably 
>> be enough.
>
> You mean so that we can pick one?   :)
>

Possibly, but I think there are hardware based solutions (eg "press to 
pair") and pure software based ones. The main point is to have something 
to point vendors at. They are probably clueless that this is a 
possibility now.

Mike

v2.23.0 | Report a Bug | By Email