IETF Logo Mail Archive

Re: [homenet] [Anima] Ted Lemon's Block on charter-ietf-anima-00-09: (with BLOCK)

"Acee Lindem (acee)" <acee@cisco.com> Sun, 05 October 2014 19:51 UTC

Return-Path: <acee@cisco.com>
X-Original-To: homenet@ietfa.amsl.com
Delivered-To: homenet@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1B00E1A1AF6; Sun, 5 Oct 2014 12:51:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.287
X-Spam-Level:
X-Spam-Status: No, score=-15.287 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.786, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fkfmpD1pBA8w; Sun, 5 Oct 2014 12:51:19 -0700 (PDT)
Received: from rcdn-iport-4.cisco.com (rcdn-iport-4.cisco.com [173.37.86.75]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A2C531A1AF5; Sun, 5 Oct 2014 12:51:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1090; q=dns/txt; s=iport; t=1412538679; x=1413748279; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=8MWjYrvrbBexEpNvk3nB+kAK0OMS1umU4kL3jb17lxA=; b=Nh8OGaNo9vRdwe1vvRi24dtGsefY0QEvd1OyFnUmuTN7LTI+zvbBGgGt 1o0j2JnN2IV6vNdhoG83JvUEopGcM9LR8srLZdZL5Lb9N9m8YWDnsJ47S OwJ1VlqqfQNix1zsUYbnAffmQ5bBptUxYMDo74aK2jfA1/4CzpYOunCSV k=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgsFALegMVStJA2B/2dsb2JhbABegw5TWATMDIdLAn8WAXuEAwEBAQMBeRACAQgYGBYhESUCBA4FCYghAwkIDbdpDYcYAReOFIIxBxiEMwWLHYZXiTmCEYEtg0KKQIJSg3+CIIFDbAGBR4ECAQEB
X-IronPort-AV: E=Sophos;i="5.04,660,1406592000"; d="scan'208";a="360892003"
Received: from alln-core-9.cisco.com ([173.36.13.129]) by rcdn-iport-4.cisco.com with ESMTP; 05 Oct 2014 19:51:19 +0000
Received: from xhc-rcd-x13.cisco.com (xhc-rcd-x13.cisco.com [173.37.183.87]) by alln-core-9.cisco.com (8.14.5/8.14.5) with ESMTP id s95JpIjO030915 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Sun, 5 Oct 2014 19:51:18 GMT
Received: from xmb-aln-x06.cisco.com ([169.254.1.175]) by xhc-rcd-x13.cisco.com ([173.37.183.87]) with mapi id 14.03.0195.001; Sun, 5 Oct 2014 14:51:18 -0500
From: "Acee Lindem (acee)" <acee@cisco.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Thread-Topic: [homenet] [Anima] Ted Lemon's Block on charter-ietf-anima-00-09: (with BLOCK)
Thread-Index: AQHP3k73okqaa0NBjkebeYQrfyizUZwd6ywAgACHyICAAOlwgIABGhUAgAClbgCAAOOxAA==
Date: Sun, 05 Oct 2014 19:51:17 +0000
Message-ID: <D0571620.4283%acee@cisco.com>
References: <20141002144136.GA1847@cisco.com> <5D36713D8A4E7348A7E10DF7437A4B923AF5E248@nkgeml512-mbx.china.huawei.com> <D0541C19.4165%acee@cisco.com> <7A9C7BA6-E8DD-48F0-9B0E-CC2F36CBA05A@cisco.com> <D055CF54.4271%acee@cisco.com> <5430A9F4.3000802@gmail.com>
In-Reply-To: <5430A9F4.3000802@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.116.152.196]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <4B3EAB3ECCCDD1468924767FA52A2D2C@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/homenet/w8aN60V1Mrn5XQJvswUpGNUIdDs
Cc: "Toerless Eckert (eckert)" <eckert@cisco.com>, Ted Lemon <ted.lemon@nominum.com>, "Leddy, John" <John_Leddy@cable.comcast.com>, "Michael Behringer (mbehring)" <mbehring@cisco.com>, The IESG <iesg@ietf.org>, Sheng Jiang <jiangsheng@huawei.com>, "homenet@ietf.org" <homenet@ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>, "anima@ietf.org" <anima@ietf.org>, "Mark Baugher (mbaugher)" <mbaugher@cisco.com>
Subject: Re: [homenet] [Anima] Ted Lemon's Block on charter-ietf-anima-00-09: (with BLOCK)
X-BeenThere: homenet@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <homenet.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/homenet>, <mailto:homenet-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/homenet/>
List-Post: <mailto:homenet@ietf.org>
List-Help: <mailto:homenet-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/homenet>, <mailto:homenet-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 05 Oct 2014 19:51:21 -0000


On 10/4/14, 10:16 PM, "Brian E Carpenter" <brian.e.carpenter@gmail.com>
wrote:

>On 05/10/2014 09:24, Acee Lindem (acee) wrote:
>> Right - but we still have to agree on the admin or, as you put it,
>> ownership model. At least one of the proposal for autonomic networking
>>is
>> a centralized approach as opposed to configuring a single authentication
>> password on each new device (as one with do with a WiFi network).
>
>Let me check that I understand. Are you saying that there are two basic
>models for enrollment?
>
>1. "Hello, I am Brian. Please enrol me; the shared secret is *!&$£@."
>
>2. "Hello, I am Brian. My public key is 12345, and should already
>be in your list. [Signed with my private key.]"

That¹s basically the trade-off although there are many variations of #2.
Here is one example:

http://www.ietf.org/id/draft-pritikin-bootstrapping-keyinfrastructures-01.t
xt

The question is what are we willing to accept in the homenet in terms of
both device configuration and device requirements.

Thanks,
Acee 



>
>    Brian
>

v2.23.0 | Report a Bug | By Email