[KEYPROV] Apple's On-line Provisioning Protocol

Anders Rundgren <anders.rundgren@telia.com> Sat, 06 November 2010 13:43 UTC

Return-Path: <anders.rundgren@telia.com>
X-Original-To: keyprov@core3.amsl.com
Delivered-To: keyprov@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6DC0C3A68DC for <keyprov@core3.amsl.com>; Sat, 6 Nov 2010 06:43:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.444
X-Spam-Level:
X-Spam-Status: No, score=-3.444 tagged_above=-999 required=5 tests=[AWL=0.155, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pG2A+v+uhbtB for <keyprov@core3.amsl.com>; Sat, 6 Nov 2010 06:43:58 -0700 (PDT)
Received: from smtp-out12.han.skanova.net (smtp-out12.han.skanova.net [195.67.226.212]) by core3.amsl.com (Postfix) with ESMTP id 2B6F33A6938 for <keyprov@ietf.org>; Sat, 6 Nov 2010 06:43:58 -0700 (PDT)
Received: from [192.168.0.203] (81.232.45.215) by smtp-out12.han.skanova.net (8.5.124.10) (authenticated as u36408181) id 4C7E0D4901412A09; Sat, 6 Nov 2010 14:44:12 +0100
Message-ID: <4CD55BAB.80108@telia.com>
Date: Sat, 06 Nov 2010 14:44:11 +0100
From: Anders Rundgren <anders.rundgren@telia.com>
User-Agent: Thunderbird 2.0.0.23 (X11/20090817)
MIME-Version: 1.0
To: KEYPROV <keyprov@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Subject: [KEYPROV] Apple's On-line Provisioning Protocol
X-BeenThere: keyprov@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Provisioning of Symmetric Keys \(keyprov\)" <keyprov.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/keyprov>, <mailto:keyprov-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/keyprov>
List-Post: <mailto:keyprov@ietf.org>
List-Help: <mailto:keyprov-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/keyprov>, <mailto:keyprov-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 06 Nov 2010 13:43:59 -0000

http://gigaom.com/2010/10/27/is-apple-about-to-cut-out-the-carriers/

The on-line provisioning revolution is finally coming, thanx to Apple.

Apple will presumable make E2ES a standard feature since this is
already a part of GP.

Is this good news or bad news for KEYPROV?  Hard to tell but personally
I believe the traditional vendors have put too little effort in their 
on-line
provisioning efforts.  Apple's entry in the fray will most certainly change
the agenda since Apple is currently perceived as the technical leader.

People who claim that on-line provisioning doesn't challenge physical
distribution of tokens need to take second look because tokens with
built-in device certificates and E2ES-support can in fact improve security,
particularly in geographically distributed organizations.

Anders