Re: [Iotops] New Version Notification for draft-ietf-iotops-security-protocol-comparison-01.txt
John Mattsson <john.mattsson@ericsson.com> Fri, 07 April 2023 14:20 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: iotops@ietfa.amsl.com
Delivered-To: iotops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A71ECC151B14 for <iotops@ietfa.amsl.com>; Fri, 7 Apr 2023 07:20:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QnTluJa1NubP for <iotops@ietfa.amsl.com>; Fri, 7 Apr 2023 07:20:33 -0700 (PDT)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2061a.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e1b::61a]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 991A4C151B1F for <iotops@ietf.org>; Fri, 7 Apr 2023 07:20:33 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=A/RBMEM4Yvkori0/jNhr9I9WfhBx36lxn43WV6IIKh6pZqWVo6IWi+Ok0U61BAnga8IOvISGk/O3kIbJk2YDi2bZpu2jWlEKTLAKswDnzE8kifW6XENakx4UZeywk2IwvBikRQnEhbH12k95d5MXjhlw4zZs+89wXE/rjHMKmnWJTQOO0G3KP0bDuGf9DwpproVkl9iee8lG/scHVjzZiqhvZvB2ZyqqNjdGZ2PyLrbDJ4Y4SXxaBw7za/k0kfec3p2+uEgQhmjjIbc/iEMDvPPvEyJ4qkzjMoHEjDV9u5FGyxn9dY2B+G2ekgAz7uFjUjvfPhAky2UaMSaRfGc2Ew==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=SxCLHLvVl+BTTKW8f0r4JIGTkIT2mK2U5mz69P9g4/c=; b=QvXtg7DYC11d6em1np8ViQ+A4/0kliyNY6kjpb+ag/EnrKFckmWKFIzTP1fOwWKd/bySuWXoJ41a2YRQe7he564SnI9gVmIfK1zcsx7c6N//FRcqsvdX/7esoUt5VRufH/DUnUGw3kraEtBZL+8bjRZN4QyfeKlOeqWpZTRcGFuteqr1vkCMVlnJ+RsD8XNhSG/GsvUYg98hWx4MOjeKWYKEhY0DkpxPktjcy1HjpghMNaBx5AXR1nNExYoXYoDrafNjAcvNX2o3E+85yaK5RFkHZ4u4WmYAe1UWpR0AnC9TuoX07lLZ8fitPZNYN81buoy1pcqngoi6+2ex35hu0Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SxCLHLvVl+BTTKW8f0r4JIGTkIT2mK2U5mz69P9g4/c=; b=PMMjNcZHWggDFY2n0dUhC383MKbv4Vpl8cgZLxBCtPo9QZ6IF49j6+zhu7W29i5nH+CAA1XF4rdg6bsrrTWcGDKB8ogzyY2Fd4jW1C6elb9Mi83mbbdFfzK4W8XBwNLDm85T3KnFwIsNp1GYc48c/+lp3t0sQHPxwR/CjKi1mSs=
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com (2603:10a6:150:114::10) by PR3PR07MB8243.eurprd07.prod.outlook.com (2603:10a6:102:17a::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6277.34; Fri, 7 Apr 2023 14:20:28 +0000
Received: from GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::47af:87d7:c8ce:1957]) by GVXPR07MB9678.eurprd07.prod.outlook.com ([fe80::47af:87d7:c8ce:1957%5]) with mapi id 15.20.6277.031; Fri, 7 Apr 2023 14:20:27 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "iotops@ietf.org" <iotops@ietf.org>
Thread-Topic: New Version Notification for draft-ietf-iotops-security-protocol-comparison-01.txt
Thread-Index: AQHZaVncZFoyHNq9SkmZYTsp2X3tGq8f5NRf
Date: Fri, 07 Apr 2023 14:20:25 +0000
Message-ID: <GVXPR07MB967820E4142381B1A9C9118689969@GVXPR07MB9678.eurprd07.prod.outlook.com>
References: <168087624831.48808.16281068092736862170@ietfa.amsl.com>
In-Reply-To: <168087624831.48808.16281068092736862170@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: GVXPR07MB9678:EE_|PR3PR07MB8243:EE_
x-ms-office365-filtering-correlation-id: 7676fef3-4d7f-4e77-5e45-08db37733b48
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVXPR07MB9678.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(346002)(396003)(366004)(376002)(136003)(39860400002)(451199021)(44832011)(2906002)(21615005)(66476007)(66946007)(66446008)(66556008)(64756008)(6916009)(8676002)(15650500001)(52536014)(41300700001)(8936002)(76116006)(5660300002)(83380400001)(478600001)(316002)(71200400001)(966005)(7696005)(6506007)(66574015)(26005)(9686003)(53546011)(186003)(55016003)(33656002)(166002)(82960400001)(122000001)(38100700002)(38070700005)(86362001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: Afi/a8U8huelaDAUoRwzUIVwKc1VVo4AFZCB/ufWOvzUWYWa+pC/Y9yILdw6fDNWUx/UxKjYy3voZ2i3wz9AO+Ki5x+WC3KAte70DkPkh3gy8JhUc9GqoV7ZxhNGj6WH1rjSQt0gga8t8KBTOj8vfBnSfuc1UDrnW7VTjdXwasC5MLmUF799cMvDshSD+ezBTOoG4m+AIEzN1OTYYmYFXXYos/5KQ6NHllPw3407wi0b8TtIWlQxq1UBr2qb5YP3HAM7FRKTdEQaviuC9e9kTNJx4O4QODzV5ywkU4crIzO4rwrUzuz52w+HWP0GpdmxeaQ46QXQyrtHaEHG1ImNDDkV2eUf3NPUiW5z2nU4nr8TZJ7R+bwfLz1tH98IQyaQKxwi8ABcH84U0rhjbFKKwdQKUBpWg7a8AdjQMZxevfn8LbwSzJUiXQtrhlK6ZWeF+dXpTnFawc5cOqtlnIkByDQb5heVxNjFYTOzZ1wwIj+WZD9qL5Es8iQHh+J0tzkaV9NoRqnvSabHz6Es6LHrK5wTUtzZvud53tmYI81T1qAY2dX/p+ElChrjzfHfiJPD5S2oC8/h+jn8bNtcPRd7nKGEL97fc58ej8QvzbAmsIIQ94JULKFLbqSVp3QFmS3t35m+/s+HOSBakuvGPDzjQJ6aUc+mrvw+HjOtqksVA8zBZnp1KOQqJvYQ08JxP0h+RYSIqyh6jNA0DzHd+qDGow6jtPXJ9RTzDE0K4SMe0/pycc/P6wN4o09bDJg4XuLUmpWzY6h/y8Vho7vS2LydVE6cKuq9EuGUlfHnjuMhIQm2pI5gDuVbovjunzV11U3riP7EDh6nsBnbZK7dOfsiYIvUu+ZZeH7a+dSbLMvfilp+7EkSkVdBX2uztimSOBP4nR6nXGjGe2Zs+gqIRf3aJLG1bfuQ3CqT+9uUvZL9YVw1I0fe8+j4hZ93uHrKMsMPAE5wOkxFJox5oQd6gF6/0oPo5Erq0Wc4gBhnhTjKwx4+76mkli3/3iWlTGcU/PGSKEH+m+NYlHEkFogu36Hi1ufEphWCVW0kwDhu7/m2tCIj8JQFhou25f0tn9azL/Ack7SpoHsuuJdFxNRRF2pI+Q/Jte/OMIt0TUSYpisEU5haGlSnDkNIhNiMkZimr2+Ckwe4aeYARS2rsjxPtHxts7QSshI8EO5McLIPXAMpjJEaLo5NsujhPA1mhjQYvF+r8v68u7mAOJfszl+7enDFd3zJixxaw7VPKzf9evkwyzSw7LNt1WVk7t1/rCE4utnk/hKUwBki2xS8IaNzA1gusiDzpyJBQ8gSyAf3c7ujPMxqbC0JOPFcBpK0bdUdm2+BPQJ2Q3OpfIXEcdWUhyf8tyGYgogLpIGPl2LCwPgklQTbHs9OvLbL0HxQeJvQKS+0FuK2VUwPVodeEazHltrKpYS69NFIH9c/NXc//AsPqqHFXMHP8A6l7nNYV90u3/YGndeTzJ7nzr1mYwk9OB6wsOZ9PhF14+NgzsfdCWDAgon/lXmN/WGYud75ztBnfCOnZ+LUdwFugsRZg74LYLgM9pV+Tw1OW4p08o2bTcclKJvJx4ykBb8xVu8L8NSaPtp+HDqNqMW9LmNKKntRiylmF6bvkwWFklNHPN1XOoOZnMY=
Content-Type: multipart/alternative; boundary="_000_GVXPR07MB967820E4142381B1A9C9118689969GVXPR07MB9678eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: GVXPR07MB9678.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 7676fef3-4d7f-4e77-5e45-08db37733b48
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Apr 2023 14:20:25.8384 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: HnWivWAvwO+dBwd14G9V5PU3bZitDn2sJhqxIoln1H8H/eFDFZSQ+XFjeT9ZbxBooJk3MMV37JR+XylRqVc0SF2RBu3AG7I0MOjs7JC3rog=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PR3PR07MB8243
Archived-At: <https://mailarchive.ietf.org/arch/msg/iotops/zktII2Bl3HglAp1OqBspaBnEHXM>
Subject: Re: [Iotops] New Version Notification for draft-ietf-iotops-security-protocol-comparison-01.txt
X-BeenThere: iotops@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IOT Operations <iotops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iotops>, <mailto:iotops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iotops/>
List-Post: <mailto:iotops@ietf.org>
List-Help: <mailto:iotops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iotops>, <mailto:iotops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 07 Apr 2023 14:20:37 -0000
Hi, We uploaded -01 addressing all comments received since version -07 of the LWIG document. Changes - Added a link to the GitHub repository. We could transfer this if IOTOPS get its own repository. - Added more information on underlying layers. Collected this information in a separate section. Made it clear that lower layers are not considered in the document. Added a short text on SCHC with some links. - Changed the heading name from "conclusion" to "summary" - Added some more related documents that might be interesting for the reader. kampanakis-tls-scas-latest, RFC8824, tiloca-lpwan-8824-update, ietf-lake-reqs, "Effective interoperability and security support for constrained IoT networks" - Corrected the overhead of Group OSCORE pairwise responses - Updated numbers based on cTLS-08. - Added that DoS protection with DTLS HelloRetryRequest or the CoAP Echo Option is not considered. - Added text that EDHOC and cTLS is dependant on the key/cert identifiers and how longer identifiers would impact the numbers. - Added an editors not stating that cTLS is not yet stable. Changed to cTLS-08 in the tables. - Change to "Static DH X.509s" instead of "X.509s, Static DH" to make it easier to understand that Static DH is used for authentication, not key exchange. - Added more clarification on cTLS numbers. My view is that the document contains the information it should and that we should publish after some more review and when cTLS is a bit more stable. Cheers, John From: internet-drafts@ietf.org <internet-drafts@ietf.org> Date: Friday, 7 April 2023 at 16:04 To: Mališa Vučinić <malisa.vucinic@inria.fr>, John Mattsson <john.mattsson@ericsson.com>, Francesca Palombini <francesca.palombini@ericsson.com>, John Mattsson <john.mattsson@ericsson.com>, Malisa Vucinic <malisa.vucinic@inria.fr> Subject: New Version Notification for draft-ietf-iotops-security-protocol-comparison-01.txt A new version of I-D, draft-ietf-iotops-security-protocol-comparison-01.txt has been successfully submitted by John Preuß Mattsson and posted to the IETF repository. Name: draft-ietf-iotops-security-protocol-comparison Revision: 01 Title: Comparison of CoAP Security Protocols Document date: 2023-04-07 Group: iotops Pages: 48 URL: https://www.ietf.org/archive/id/draft-ietf-iotops-security-protocol-comparison-01.txt Status: https://datatracker.ietf.org/doc/draft-ietf-iotops-security-protocol-comparison/ Html: https://www.ietf.org/archive/id/draft-ietf-iotops-security-protocol-comparison-01.html Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-iotops-security-protocol-comparison Diff: https://author-tools.ietf.org/iddiff?url2=draft-ietf-iotops-security-protocol-comparison-01 Abstract: This document analyzes and compares the sizes of key exchange flights and the per-packet message size overheads when using different security protocols to secure CoAP. The described overheads are independent of the underlying transport. Small message sizes are very important for reducing energy consumption, latency, and time to completion in constrained radio network such as Low-Power Wide Area Networks (LPWANs). The analyzed security protocols are DTLS 1.2, DTLS 1.3, TLS 1.2, TLS 1.3, cTLS, EDHOC, OSCORE, and Group OSCORE. The DTLS and TLS record layers are analyzed with and without 6LoWPAN- GHC compression. DTLS is analyzed with and without Connection ID. The IETF Secretariat
- Re: [Iotops] New Version Notification for draft-i… John Mattsson