[Lake] Updated Security Levels and Design Goals of EDHOC document

John Mattsson <john.mattsson@ericsson.com> Tue, 07 September 2021 08:20 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EDDC93A13EC for <lake@ietfa.amsl.com>; Tue, 7 Sep 2021 01:20:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.552
X-Spam-Level:
X-Spam-Status: No, score=-2.552 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FdapRfg29A69 for <lake@ietfa.amsl.com>; Tue, 7 Sep 2021 01:20:08 -0700 (PDT)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2053.outbound.protection.outlook.com [40.107.20.53]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D67E53A13E1 for <lake@ietf.org>; Tue, 7 Sep 2021 01:20:05 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=R9MvoMDirpXB8RXBoGOHkT2lUnBt/Uy4HQBOV1iJkMcmMcIIMS2k6QFdF4jTGnLLGvYvzeKoVd6eG2dr9b37s9VycyHY5vdLXIuKrRTow5iqjNtFhInWDaQnYXc/a6ytmaqnGFCDP5+s4vvGr/XRMSciURhJRsMnOn/N5fX3xAr+zL5i3J6VL0vziltOdia3/jHTNI1c5dRQKbjFpZ2c4HT0j1qOnWTSFC7VjRzJ+nETj0LFRrZ/vonoOFmHP42hBigJ72kmlHZjBKQJJDRIQHF66vShPENfpgSFbl57rUWT4Fhtu+PL3+tBUSSaZBr0OIGmG6IEprbFAuZhYINeEA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=uUzvLbv954jWINh681Zj99+4FVeYjqanaPBilk5WtcY=; b=I4BPhwVh2X3YuhfH5t3BOQZCT1uWdy142N0oWAVJux/pmZzCqBuAbyB03FtR04Om+fW9+evAg6Ws6CWSOtRO1breHTAuHv2PpIxZi70EDPwH9bNN06zBupBABVvc5147GecSfUdsZme0P7+GfHGOKmbsDMBvdAik1TQmEL0ltVxLtAPSG0c+YgE3SKT/kU9r3fLe94+bCMUU5cFtrxL8O3wcnCaJaQlAfEQgMN/Tmtuf+h70pt3ODRsH47BscxQqy+AaZhxcZ2obzubklH4kGS8IdYgacOevl/xcJq4xPFXP4zndQ6yQsMj+wBgTcEBMTBQp3atnuiU9ObnRSCQiBQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=uUzvLbv954jWINh681Zj99+4FVeYjqanaPBilk5WtcY=; b=Tt0oqQ0GEypyziiP4gi748/C+k23kps287srbAWQ5d7WvTDsvDFBRbqUS3AwPDjJ8OE5ZT0w/GpAJeBGzEu/4J313NJRwDSwtymkF1d29UY7/rbjSEtOVTSPbrJI6bn6yOG2c2t9dAT3YIhbZFZqCnEL8vv1vw1ezIBQlvF0a8o=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by HE1PR0701MB2139.eurprd07.prod.outlook.com (2603:10a6:3:28::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4500.7; Tue, 7 Sep 2021 08:20:01 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::d012:63e4:344b:a81b]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::d012:63e4:344b:a81b%8]) with mapi id 15.20.4500.014; Tue, 7 Sep 2021 08:20:01 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "lake@ietf.org" <lake@ietf.org>
Thread-Topic: Updated Security Levels and Design Goals of EDHOC document
Thread-Index: AQHXo8AYYEKqSxEnH0e0JMClcTHbhA==
Date: Tue, 7 Sep 2021 08:20:01 +0000
Message-ID: <HE1PR0701MB305032D0B687CEB4AC8FCC6889D39@HE1PR0701MB3050.eurprd07.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: bff58c26-283d-4dd3-6841-08d971d849b8
x-ms-traffictypediagnostic: HE1PR0701MB2139:
x-microsoft-antispam-prvs: <HE1PR0701MB21399F44410A5B926A0E6EA589D39@HE1PR0701MB2139.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:7691;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(366004)(39860400002)(346002)(136003)(396003)(52536014)(316002)(122000001)(76116006)(83380400001)(7696005)(5660300002)(166002)(186003)(38070700005)(66446008)(64756008)(4744005)(66556008)(66946007)(38100700002)(2906002)(44832011)(66476007)(55016002)(15650500001)(8676002)(9686003)(86362001)(71200400001)(8936002)(33656002)(966005)(478600001)(26005)(6506007)(6916009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?6VaTTy0JBXg6pWOdmZBlLhxWPFVskIuCdC6ok+c/zz7GI+YESC4qel4n+r5o?= =?us-ascii?Q?GRxa/cZN8iJRVremMoaUyjyXelkiJ+jE3BPtMLTcTlx//ebrYxxkJ5jBdW+M?= =?us-ascii?Q?GJz0/mXvYqJ2QBAlSy7fA2AsONPw69Cf7ziARqBFc7aR0DVYdEhqfhkwKXd+?= =?us-ascii?Q?fAC3TlHzTPUqZhSmYO1xy3KeRUOSFVADnJM5gxDCRb9bpIV57TrRaFzbFtfE?= =?us-ascii?Q?P15zEIZ5FPzLHH5R+HJu8wvpBkpWCMPXEBYMatOpn4+YPSMDf2D385CdPYVO?= =?us-ascii?Q?b+VP9nCn0sCQEtjZuA3UFCUZDH/qEUFxtzY1BQL9oyb8ThYQbWSAmrx/dkLN?= =?us-ascii?Q?rILNxAsqbOuQXJrKNVVkgJ9Dh4ZRblo8ua1tWfm3ep/0HR68EdJ1yvw6PDgz?= =?us-ascii?Q?VHjYSQYXcrJh8MmrUxCnlKpsm5KEc5QViBCV+IANClkuZZoGhwjcJ5mx5wcA?= =?us-ascii?Q?NHyxZgSEmeCQbE62Futw2ZcZuyR6Q7ZdsV6CASvt+yMw3dppeVsNIThYFxH+?= =?us-ascii?Q?Eler+mjhsjGQhz5Nf9Le1od2h9snzvJagQluAQLb+itTUMB1XM8QwhpG5RHH?= =?us-ascii?Q?ZTak6WSFl1Tj9adi/m2o8N9E5n/sINSvZzQOYwqWlBSnfq/iAAjg+M0+DuqG?= =?us-ascii?Q?nCJwdQBmXvCWufrQqUTiENGArx3Iyt7l96trdk1VY8ykXOa/foksiE5V2CmU?= =?us-ascii?Q?MZ6vnVw9ajo6x1xoyzatkth2WpvfbwwlZgl70hxWGdBV1BI9j/E/FzEhmvHc?= =?us-ascii?Q?eYvjhnabuPv7bMnsy7l5eFcXvyFl3EAhUPE3WR3cKQdQtiofgZor8A8IJhkl?= =?us-ascii?Q?bz5mc0zKiWGzGAWiowM+IG6Gi78VirfjYnacKZpXA2fSCgp7bbq73qridANp?= =?us-ascii?Q?ZMN7oSojuz202x7LtsqxM9HJlOoHQRLVhMFMIM6BGxtHZL2OVQU2l067Ecn8?= =?us-ascii?Q?wnYf7M399EjFxt5vbe6l96HVKZx+GTHraL26WJEG1BVeyw3n+PTE3ZeOLMFm?= =?us-ascii?Q?TaFwjaE0vg+l9QWw2/yA4YxmSuEsqNao3bM/1PJjK/tRibGIqLbWH4KEAeGb?= =?us-ascii?Q?mIZTYk0QE3+nrN4oZ1euqxUR0L5UFmW9nv726EnG1W5f+7/OHrvWbb4vHoRx?= =?us-ascii?Q?g5toVUbCs3H0vLHklxgsLkiFO2QmRG5hmPcRitwj/wD7VG3rZUrm4FHghwz6?= =?us-ascii?Q?twVOyMHawpN5/lKPC4c21n3j3kzFmzQOLjMQdzB9WSdGJCOu6KSingqGgDDI?= =?us-ascii?Q?ur9mfzvY71qpeFgprwYoMtbEOdD8sbl7WOrnHuNFSreRiQuOIjEJ/BWbCYsw?= =?us-ascii?Q?kmNK/7clEOrXN24EMyAFYVUKHHarR0foFxo53hperQ3QTQ=3D=3D?=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_HE1PR0701MB305032D0B687CEB4AC8FCC6889D39HE1PR0701MB3050_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bff58c26-283d-4dd3-6841-08d971d849b8
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Sep 2021 08:20:01.1903 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: j31PfSY0cUr357Wr60ALDqiloWf0JxrldYBazQjahAT5ROEmDZR67uJPU8/XMzQv0glNjwV/eUjA2NQdhswtuo3Lo8D4bgoFk6kBRwG7xJ0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2139
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/24YXdD6mMOF25TadiI5NPwc5AYQ>
Subject: [Lake] Updated Security Levels and Design Goals of EDHOC document
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Sep 2021 08:20:13 -0000

Hi,

I made some small updates to the Security Levels and Design Goals of EDHOC document


  *   Updated MAC length section to align with -10
  *   Added newly registered COSE algs
  *   Added that some algs are not recommended according to COSE
  *   Expanded and corrected some things in the authentication key section

The new version can be found here:

https://github.com/lake-wg/edhoc/blob/master/Security%20Level/Security%20Levels%20and%20Design%20Goals%20of%20EDHOC%20v2.txt

Cheers,
John