Re: [Iot-onboarding] some straw-man charter text for an IoT Operational Security WG

Michael Richardson <mcr+ietf@sandelman.ca> Thu, 12 September 2019 12:39 UTC

Return-Path: <mcr@sandelman.ca>
X-Original-To: iot-onboarding@ietfa.amsl.com
Delivered-To: iot-onboarding@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC3411200D8; Thu, 12 Sep 2019 05:39:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EprhG3ucBRRr; Thu, 12 Sep 2019 05:39:13 -0700 (PDT)
Received: from relay.sandelman.ca (relay.cooperix.net [176.58.120.209]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0F3351200A3; Thu, 12 Sep 2019 05:39:13 -0700 (PDT)
Received: from dooku.sandelman.ca (unknown [104.244.9.242]) by relay.sandelman.ca (Postfix) with ESMTPS id 6A58A1F480; Thu, 12 Sep 2019 12:39:11 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id A7CB3491B; Thu, 12 Sep 2019 13:30:35 +0100 (WEST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "mud\@ietf.org" <mud@ietf.org>, "iot-onboarding\@ietf.org" <iot-onboarding@ietf.org>
In-reply-to: <30e9de90-68b0-7b45-a94e-165bb6fabbb5@ericsson.com>
References: <19176.1567583108@dooku.sandelman.ca> <30e9de90-68b0-7b45-a94e-165bb6fabbb5@ericsson.com>
Comments: In-reply-to Mohit Sethi M <mohit.m.sethi@ericsson.com> message dated "Wed, 11 Sep 2019 19:21:30 -0000."
X-Mailer: MH-E 8.6; nmh 1.6; GNU Emacs 24.5.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature"
Date: Thu, 12 Sep 2019 13:30:35 +0100
Message-ID: <29106.1568291435@dooku.sandelman.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/iot-onboarding/F1UHd63cIsVLzFQkr_q7Mqco2ho>
Subject: Re: [Iot-onboarding] some straw-man charter text for an IoT Operational Security WG
X-BeenThere: iot-onboarding@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of IoT onboarding mechanisms <iot-onboarding.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iot-onboarding>, <mailto:iot-onboarding-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iot-onboarding/>
List-Post: <mailto:iot-onboarding@ietf.org>
List-Help: <mailto:iot-onboarding-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iot-onboarding>, <mailto:iot-onboarding-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Sep 2019 12:39:15 -0000

Mohit Sethi M <mohit.m.sethi@ericsson.com>; wrote:
    > adopt a cloud-less (MASA-less, AAA-less) onboarding mechanism (possibly
    > a version of EAP-NOOB),

    > There is clearly some misunderstanding about EAP-NOOB here. EAP-NOOB is
    > specifically intended for registering new IoT devices on a server (and

...

    > You clearly see a AAA server in the figures. So calling it AAA-less
    > doesn't make sense.

Thus, why it says, a *version*, but maybe it should have said "variation" of
EAP-NOOB.

I would ask for your help on getting this text correct, but it seems that
you'd rather IoT work was fragmented among many groups? 

My impression is that this makes it very difficult to involve people from
other organizations, and it also results in very uneven reviews.

-- 
]               Never tell me the odds!                 | ipv6 mesh networks [ 
]   Michael Richardson, Sandelman Software Works        | network architect  [ 
]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails    [