Re: [homenet] Next steps for draft-behringer-homenet-trust-bootstrap?
"Michael Behringer (mbehring)" <mbehring@cisco.com> Tue, 05 March 2013 17:52 UTC
Return-Path: <mbehring@cisco.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B579D21F85CC for <homenet@ietfa.amsl.com>; Tue, 5 Mar 2013 09:52:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.599
X-Spam-Level:
X-Spam-Status: No, score=-10.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OOjVaAhGaQyL for <homenet@ietfa.amsl.com>; Tue, 5 Mar 2013 09:52:42 -0800 (PST)
Received: from rcdn-iport-8.cisco.com (rcdn-iport-8.cisco.com [173.37.86.79]) by ietfa.amsl.com (Postfix) with ESMTP id ECD7621F859A for <homenet@ietf.org>; Tue, 5 Mar 2013 09:52:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2596; q=dns/txt; s=iport; t=1362505962; x=1363715562; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=Me/8oMMNxYYIz0qJGE1ALsuP6mCt/dU1sWgH0lJWOOg=; b=JgHIiIISuFRnMuq2JHxgqV4sfnR5R2nn3QXRFEabMfmMAwd4VY1Nhtyf cjVGxK/76hNk/7Fqi5btlBss8KLVL+Mx1zIGudI15f4NYh7bIQIQWBjQG zmGbqePomONycdVvgXS6ou1NBSWgV4I6LORU/ZHi1RWctb720V9BwTkUi g=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgEFALovNlGtJXHA/2dsb2JhbAA7CsRygWwWc4IrAQEBBAEBATc0CwwEAgEIEQQBAQEKFAkHJwsUCQgBAQQOBQiICwysS5AJBI1SBIEGMQcGgllhA6c4gwiBaT4
X-IronPort-AV: E=Sophos;i="4.84,788,1355097600"; d="scan'208";a="184022003"
Received: from rcdn-core2-5.cisco.com ([173.37.113.192]) by rcdn-iport-8.cisco.com with ESMTP; 05 Mar 2013 17:52:41 +0000
Received: from xhc-aln-x05.cisco.com (xhc-aln-x05.cisco.com [173.36.12.79]) by rcdn-core2-5.cisco.com (8.14.5/8.14.5) with ESMTP id r25HqfuO014421 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Tue, 5 Mar 2013 17:52:41 GMT
Received: from xmb-rcd-x14.cisco.com ([169.254.4.51]) by xhc-aln-x05.cisco.com ([173.36.12.79]) with mapi id 14.02.0318.004; Tue, 5 Mar 2013 11:52:41 -0600
From: "Michael Behringer (mbehring)" <mbehring@cisco.com>
To: Mark Townsley <mark@townsley.net>
Thread-Topic: [homenet] Next steps for draft-behringer-homenet-trust-bootstrap?
Thread-Index: Ac4J+Pw0eYMPjXgJRAe/w/WICK0LAQHWsymAAhwST9A=
Date: Tue, 05 Mar 2013 17:52:40 +0000
Message-ID: <3AA7118E69D7CD4BA3ECD5716BAF28DF0F6E45BB@xmb-rcd-x14.cisco.com>
References: <3AA7118E69D7CD4BA3ECD5716BAF28DF0F6D5EF0@xmb-rcd-x14.cisco.com> <D0E7A867-0300-49B6-93D4-4D30A61D7BAB@townsley.net>
In-Reply-To: <D0E7A867-0300-49B6-93D4-4D30A61D7BAB@townsley.net>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.55.194.22]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "homenet@ietf.org" <homenet@ietf.org>, "draft-behringer-homenet-trust-bootstrap@tools.ietf.org" <draft-behringer-homenet-trust-bootstrap@tools.ietf.org>
Subject: Re: [homenet] Next steps for draft-behringer-homenet-trust-bootstrap?
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2013 17:52:42 -0000
> -----Original Message----- > From: Mark Townsley [mailto:mark@townsley.net] > Sent: 22 February 2013 18:25 > To: Michael Behringer (mbehring) > Cc: homenet@ietf.org; draft-behringer-homenet-trust- > bootstrap@tools.ietf.org > Subject: Re: [homenet] Next steps for draft-behringer-homenet-trust- > bootstrap? > > > On Feb 13, 2013, at 3:55 PM, Michael Behringer (mbehring) wrote: > > > Homenet WG, > > > > In Atlanta we presented draft-behringer-homenet-trust-bootstrap-00, > which explains (high level) how trust could be bootstrapped in a homenet > environment. > > > > The feedback we got during the meeting was mostly positive; we would > like to understand the next steps for this draft? We believe this is a useful > approach, and would like to have the document accepted as a WG doc at > some point. > > > > What is the next step? > > Ray and I are open to more WG discussion on this given the positive > reception at the last meeting, but I'd rather see more discussion on the list > beforehand. Where do *you* see this model fitting in? Mark, thanks for the response, and sorry for my delay; I was co-organising an event last week and didn't have the time to follow up. In the limited understanding I have (not following as closely as I should...) I think trust in the homenet is still an open issue. It is usually referred to as "border discovery", but I think it goes beyond that. There needs to be a way to accept/reject a device into a particular homenet. You can do this with pressing buttons at the right time in the right place. You can configure that manually. After that, there needs to be some reasonably secure way for any device in the homenet to know whether another device is part of this homenet or not. I think there is a need for a reasonably secure way to - identify a new device - accept it onto the homenet domain or not - make that device talk to the existing devices, in a reasonably secure way. Or, conversely, make sure that devices don't put trust in devices that shouldn't be in the domain. Our draft shows a way to do that in a relatively simple and secure way. I believe this is a fundamental requirement in a homenet; there are other ways to more or less achieve this goal - that needs to be discussed. But we should have the discussion. Michael > > - Mark > > > Michael > > _______________________________________________ > > homenet mailing list > > homenet@ietf.org > > https://www.ietf.org/mailman/listinfo/homenet
- [homenet] Next steps for draft-behringer-homenet-… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Mark Townsley
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Tim Chown
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Michael Thomas
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Michael Thomas
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Brian E Carpenter
- Re: [homenet] Next steps for draft-behringer-home… Robert Cragie
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Brian E Carpenter
- Re: [homenet] Next steps for draft-behringer-home… Michael Behringer (mbehring)
- Re: [homenet] Next steps for draft-behringer-home… Michael Thomas
- Re: [homenet] Next steps for draft-behringer-home… Brian E Carpenter
- Re: [homenet] Next steps for draft-behringer-home… Russ White