IETF Logo Mail Archive

[Iotops] IoT device certificate guidance

"Tschofenig, Hannes" <hannes.tschofenig@siemens.com> Tue, 24 October 2023 14:36 UTC

Return-Path: <hannes.tschofenig@siemens.com>
X-Original-To: iotops@ietfa.amsl.com
Delivered-To: iotops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A4EAC14CF1F for <iotops@ietfa.amsl.com>; Tue, 24 Oct 2023 07:36:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=siemens.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PqyT5yLOvLpG for <iotops@ietfa.amsl.com>; Tue, 24 Oct 2023 07:35:59 -0700 (PDT)
Received: from EUR02-AM0-obe.outbound.protection.outlook.com (mail-am0eur02on2072.outbound.protection.outlook.com [40.107.247.72]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5463DC15154E for <iotops@ietf.org>; Tue, 24 Oct 2023 07:35:59 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BcUAziwkMvIknCJvn1A00ffV69MCKBVyu7Lg9/pRQf6OupYccbCI1W0PA1zlL0y37swtugBZfhQbpa7O47csbKLKYXhBhDhp8n45x3S9j92xFxM6KDz1airRuSp22XVubD3Fey9kaOpyKB/rtSIkbxqsuVI8xF/iwj+mVo4W4vjgQG9Dbd+MzLq2hAkuZO9s+N8mzsB3kbbQYvSNaBpxKd58KPdkefXN0zefqTmsiNUDdMJBbCsjNHzSVVGmXtNVHuzrfxKhchLKb4CNtXbaIL8u0uOzXCXxdnVcK51UJLmih/muwDDSGvUAt5HFYpwX10WlUtOJDI1vbANLe3//tw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=OiaYjZ4ZYbLnpCI3njPSckwkncs1uQbfnGsSIYUerdE=; b=gldk/JfsavnlomdmSQlJU972LElpKvRcqNMowAvllysXoCUz8nPclS4Ib5UsFUBEQ7Ee72/SpKk1flLVyPCtgP30QKlt7KKkfNbqsQcVDpiocOT8Hl94O67wkjh+Z9tqAH5PVhbWru/niBZngCoDxAR1EcUjPA0B+Wzv/Y4QUGiUFFkhvAXyP5cC9mtAtP2tPKqEsAZUu9akvPYYORbuwtwpYCNaKo2hm2ItLOquHzieo9smnA8xVfJKv0F/MGxcKfC86mEoDcR8QKCpEPIzcYvdRSNM2Io+GF9lvqomKgZazXdWcHchridyP0iVeNEJniEDPI/c5pd9q2P/4wQXfw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=siemens.com; dmarc=pass action=none header.from=siemens.com; dkim=pass header.d=siemens.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=OiaYjZ4ZYbLnpCI3njPSckwkncs1uQbfnGsSIYUerdE=; b=cciN+D7XKF8S9E69OqN1MEgro6Z7THvxfvG6DZ1JiP4Hf10kWTHWcz/eO0leM7qOe4lThHem8fbT6ieQ1u6Pm0DC9G5GZLa0OCYM0yVZNuWJIPoZ5tXz/oOKlUqY56JvXWrVrfkiseSQbYQqCc5atz7CX2miUo50WwV5bXL7723LMnHmt0S/btJCZyxHPqcV2QdOWnLZfLzEnOuFbtJWO3Fc7SlsUSrjmG6rAepHSLSpQl4HRqH/pn/dsUZi/jgH6YrjjV8QO4khsyZkfBHGbwuVdLRMsAdh4LynXyCHt4jR+zkh5gfSw2pu4nRIn2OcAFp4fd4dm5hVpl/Ad8fOWQ==
Received: from AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:5ab::22) by DB4PR10MB6213.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:10:386::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6907.33; Tue, 24 Oct 2023 14:35:56 +0000
Received: from AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM ([fe80::19e1:9e36:43f0:6498]) by AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM ([fe80::19e1:9e36:43f0:6498%6]) with mapi id 15.20.6907.032; Tue, 24 Oct 2023 14:35:56 +0000
From: "Tschofenig, Hannes" <hannes.tschofenig@siemens.com>
To: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, "alexey.melnikov@isode.com" <alexey.melnikov@isode.com>, "iotops@ietf.org" <iotops@ietf.org>
CC: Michael Richardson <mcr+ietf@sandelman.ca>, Thomas Fossati <thomas.fossati@linaro.org>
Thread-Topic: IoT device certificate guidance
Thread-Index: AdoGhfqc6PfT/wqbTA2jj+DHmp3bAw==
Date: Tue, 24 Oct 2023 14:35:56 +0000
Message-ID: <AS8PR10MB742722010DB618619485BFA1EEDFA@AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_ActionId=9a75d248-aa0e-4c82-816a-f1137f9351c2; MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_ContentBits=0; MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Enabled=true; MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Method=Standard; MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_Name=restricted; MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_SetDate=2023-10-24T14:25:28Z; MSIP_Label_9d258917-277f-42cd-a3cd-14c4e9ee58bc_SiteId=38ae3bcd-9579-4fd4-adda-b42e1495d55a;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=siemens.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AS8PR10MB7427:EE_|DB4PR10MB6213:EE_
x-ms-office365-filtering-correlation-id: 5a374eaf-f744-4e60-fe5a-08dbd49e8893
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: nAcvkaqJmtxBKMyGKyT1ownkFpPbBFwFwMgn6Jth3xjHusRukk3cTI/q1zNpVAzHU88CfrdTajgZZf5sz4ihtL+7Qfaf0/qF0F3TGQks95ko2iM870I8+xvZVKVEe7aUYeC/ylBCBn2LS3q5/J6NSupZGVyW7uMMJFFS+w8avf2LSGTp/GzfnihVnK2lpJTSur60v9oO6M3Lfov0S7pNyu27XiROE0Na7V4YtXoYNaiuPVF2KLkbYwCU+aZVJ7jNAOR24aixYfbSX+laB9iB4+rse0L4YkpTXp9vm9HB9Gk7MPN9jUzAf8ady1jU572kmIHgNeWpmN80If7G4N1+Yiz74jP0VbUwYAECYZvqYfgIzEPL4SnHg7NOQ0J5YtaxH9/cgS1/pXTXyYjdR8qu7HQPnbiMnC6VkQiEwDhCG6ldyGeTLYiA77WyXLV9nER9V5EPDcox8D/c2J4J6IK6fPTohjKUlYowHs808I24quGWItdvqqS70ykuSi4V3sv3o68jZrapMa6is8cTs+JY4Sc97AfH16X2gJAIDZdRE1ubQJm7SObs4i4RjITodI5NYhJK15Axh6YUViB0MRpW4rBbvzs8syDhfuUZ0ouXpLo=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230031)(366004)(396003)(136003)(39860400002)(376002)(346002)(230922051799003)(451199024)(1800799009)(186009)(64100799003)(55016003)(4744005)(41300700001)(2906002)(38100700002)(166002)(110136005)(316002)(82960400001)(122000001)(66446008)(66946007)(3480700007)(66476007)(66556008)(54906003)(478600001)(64756008)(6506007)(7696005)(71200400001)(76116006)(966005)(9686003)(66574015)(52536014)(5660300002)(86362001)(4326008)(33656002)(8676002)(8936002)(26005)(38070700009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: czFvO73p2AWQfGTVBD3+yivkAlUM37V2kXr3T6CzoOjXQvH+TGXoTnHpfhw5sm/xDJcdUG7cex1Hq6mEwbvcKRc4ZHzdEDBfFE+EZa51GnYtZotmNG+4j5Bbm8xF4pYxqWyhnnLr1ndxFdg3FxKmppjsQDaxyahthCnKL55YB7K4W/MxQF7NW8xwqeuUoPfNl51dM0HlqLghNO2pdDE9/gEN+hD3ZYh6ORWHK7USRkEcThXUyX0KAPZc9qSiaDZ4zpA6L8lCwSLUUS+0rUb53VneTJAgVbSXZSupjg2dmZYxUs9/Zel15t6zGqUpQ9nuM7XJAkHJ1Nk2aqvvyOLOFqHV/xsDvFl01AqB+mR1OlsUdAeiDn+4LGMWeVg1nu+RSvTfGE8+x1JfrjTF4xUHw9SqOwzoh12ktXBulgq9ccomH6j6Y9612hSsYX8jeT5Q6w8r1IlyYPg1N3n7whKkPUvAwrJE9Zpzn4ynHTZ5mDHMaPgMgjSzHS3ySRJXwrooU+l1KU1LQ596JB1GKLYpWtSFvcvORCsKwjzLuyj14MpyeogAmaNzoLDsWq3qLa+fETJS5eehfdXhyof2MEffyc1OAEg8KE5JLh1fkWafzidDXK3v4bkOWMmf/gwPxhw9aKqSe8c/IVI7EIePHimFHRiWSrk6Cw7l60JeSyYG2ymxl2DlooHnBhuqSQDG85USARb5lzQIVbPoY/PpuSxw+En5p4hc6REROiPCI2kWC1SHKPQ594Wm3hc10HpztlAg0BXwFFoLUWccMFDkykHFidh+/+RyfcEEhIfrkd6tNmk9/GBW4l7ZRkLoHA8V8L8FKC2Sc9b23l6kVi8evOx5y/oLQoYdXotSqK1N640S05Bc5WmLVGmDIS3+tEV/zozmPGydCtyFK50ClSsdVMyAuj+lg7mZEfBPVjm8D4OQMpOQ+fv35FgJoa0kEdeiY9kJRrKnhxqH8uG2DxsFju/ojpC2mVp28QlO128HtS8lPmlHfB3Glt6hWq2fbFAL1WLJwyDR11cDS6+idj5Ga7RxRcJaSzqOz8E7fNtM5hP+BgnKygksFVEbKMmnoRbioAVe+e7+T9ZqEpG7SJYP/il1WtXu6a60zDymTuRYmApS85JrRmbs3hcVVEuBcziFTsuyccOH1hwZpVtVajfRLYtHbE+0CYWGXuJKA2hZsKl6yxQx6eEZgo+6lIyugs3dGizYJlMHWG3+nBLH/+zrl5NUfEQyxcDRLf1s8FagziATjxbEKtP3qT9EJqeOY+frEFwyyDMeq0MGtem9KHQD7Xye5Zz+2ayE+kmXhTnN0GnIkReRkIROREW3NK+BufPZfo6wU4ZXExrMs93DG0ff4wBXf8TMR2hPF+1Mye/LBre5+qkmLb+L0vTVTWE4H0d/zqMs9JT2fLP70mCMnL9Ly+KiuBbKEzaoV13x36nXwgH2PPOCcPtxsrvLTja/DpyYO6UuOwxyq2uFaU1KlvdpOVE/gEhZtcjPAsGXQwBFay3FElBmx7DBN+XQJfWSZCibg8qLcN8qCuniPWZpQGjiEgBCAsg3xTmXn6FwMq7iESdqyCn477/0vwZy0NurQ7iUOSjo5j2P44nyCw2LImMMIDjJag==
Content-Type: multipart/alternative; boundary="_000_AS8PR10MB742722010DB618619485BFA1EEDFAAS8PR10MB7427EURP_"
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 5a374eaf-f744-4e60-fe5a-08dbd49e8893
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Oct 2023 14:35:56.4183 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: WARKserbNYCYLgLa+E/s/xMdrC2gT5M5zZZ5AiqqUdSTTLWPP+s4uM2pBbsiByjvOU7skrrLfAD1LGXqX342oVJ23m3HcvywCj6bOgum6Z8=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB4PR10MB6213
Archived-At: <https://mailarchive.ietf.org/arch/msg/iotops/-vF-7LtlA8aGvKMr8RcN817tb2I>
Subject: [Iotops] IoT device certificate guidance
X-BeenThere: iotops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IOT Operations <iotops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iotops>, <mailto:iotops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iotops/>
List-Post: <mailto:iotops@ietf.org>
List-Help: <mailto:iotops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iotops>, <mailto:iotops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Oct 2023 14:36:03 -0000

Hi Henk, Hi Alexey,

with the recent submission of the "TLS/DTLS 1.3 Profiles for the Internet of Things" draft (see https://datatracker.ietf.org/doc/draft-ietf-uta-tls13-iot-profile/) we have provided additional text about IoT device certificate guidance. While the home of the document is the UTA group, we would like to get feedback from IoTOPS group.

Could we have 15mins for a presentation?

Ciao
Hannes

v2.23.0 | Report a Bug | By Email