Re: [Lake] [Anima] northbound/southbound U interface (Re: New Version Notification for draft-richardson-anima-registrar-considerations-07.txt)

Michael Richardson <mcr+ietf@sandelman.ca> Wed, 17 May 2023 23:03 UTC

Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D9E40C1522DA; Wed, 17 May 2023 16:03:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sandelman.ca
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id N_2qKfXXkQ80; Wed, 17 May 2023 16:03:48 -0700 (PDT)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB866C151B3D; Wed, 17 May 2023 16:03:47 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id 3D43E3898F; Wed, 17 May 2023 19:22:59 -0400 (EDT)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavisd-new, port 10024) with LMTP id H7u-QDEZwzm3; Wed, 17 May 2023 19:22:57 -0400 (EDT)
Received: from sandelman.ca (unknown [IPv6:2607:f0b0:f:2:40a:34ff:fe10:f571]) by tuna.sandelman.ca (Postfix) with ESMTP id 2C2573898E; Wed, 17 May 2023 19:22:57 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sandelman.ca; s=mail; t=1684365777; bh=XC8aHu4mo6OT6h26NimvwX+F1vlUxIlPJEI0+AC2mE4=; h=From:To:Subject:In-Reply-To:References:Date:From; b=sLrUNHMteA77M84xWcTGqNKJ2oqVOPDIrtXCp+40O4gYg0WMnN0LJ1chRZ9LOgGSI y/aPFA94IRKeuWRjN0UptplMnPyJ2/DTYZ0/sJ1Nn8fPRlkm0AZ3jkkOxkMT2emkj8 uOR88/YLfXovSi3gy7xF9HDZNpVwzkfdqxyQe37MvLP9qHA9YB7LWfNZp01f0qUKXl EzKd/hVn+n1AOMNuRzI7XywFwIZ33IY945PXQF4A07HDFQk9czMK9kN1W1wENwZuhL nVIdr814CBXg1dm3qO8iCCNWC+Qi7QFE8xYuZypxrcfyNoSBYPBDzH529w3jNMoGF4 uvj7GnzqVmhiA==
Received: from localhost (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 34E60667; Wed, 17 May 2023 19:03:43 -0400 (EDT)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>, anima@ietf.org, Goran Selander <goran.selander@ericsson.com>, =?UTF-8?B?TWFsacWhYSBWdcSNaW5pxIc=?= <Malisa.Vucinic@inria.fr>, lake@ietf.org, draft-selander-lake-authz@ietf.org
In-Reply-To: <1de64abd-cb68-d7ab-e05a-1c03f4a5bc78@gmail.com>
References: <168383035344.62624.7146283053246938320@ietfa.amsl.com> <26789.1684093004@localhost> <1de64abd-cb68-d7ab-e05a-1c03f4a5bc78@gmail.com>
X-Mailer: MH-E 8.6+git; nmh 1.7+dev; GNU Emacs 27.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Wed, 17 May 2023 19:03:43 -0400
Message-ID: <30448.1684364623@localhost>
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/Qns3XmIHM5wfssmVIsg-SA77sd8>
Subject: Re: [Lake] [Anima] northbound/southbound U interface (Re: New Version Notification for draft-richardson-anima-registrar-considerations-07.txt)
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 May 2023 23:03:52 -0000

Brian E Carpenter <brian.e.carpenter@gmail.com> wrote:
    >> The private keys from the Southbound interfaces SHOULD NOT be made
    >> available on the Northbound interfaces.

    > This new sentence reads slightly strangely, since private keys must
    > never be available anywhere! Sow what exactly SHOULD NOT be available
    > to the North?

Yes, I see that someone might think the southbound interface is going to
serve up the private keys, and I can rewrite that somehow.  I'll go look at
TLS documents or something to understand how they express this better.

The private key must be available to do signatures for mechanisms running on
the system containing the southbound interface.  It could be embedded in a
secure element, as long as it can satisfy the needs of the southbound AKE
(whether that's (D)TLS or EDHOC).


--
Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
           Sandelman Software Works Inc, Ottawa and Worldwide