IETF Logo Mail Archive

[Lake] Re: EDHOC live debugging

Stephen Farrell <stephen.farrell@cs.tcd.ie> Fri, 28 February 2025 19:55 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: lake@mail2.ietf.org
Delivered-To: lake@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id D100940A907 for <lake@mail2.ietf.org>; Fri, 28 Feb 2025 11:55:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o4gnW3Pd65T0 for <lake@mail2.ietf.org>; Fri, 28 Feb 2025 11:55:08 -0800 (PST)
Received: from PA4PR04CU001.outbound.protection.outlook.com (mail-francecentralazon11023121.outbound.protection.outlook.com [40.107.162.121]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 46D1640A824 for <lake@ietf.org>; Fri, 28 Feb 2025 11:54:58 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=dKaV/0yEzpEtLdpYud41ea3JP+Nz0fZ8E8p800Zj/l2MLXuKiMvGJJ8B+V6WxF4dcXWGS2418tM1DJ8SkCDys8e6HW8/cK5ytfzlAFy/pmjc9HwTwvzxJqPO+Sj1H8NtM8k1S9GVHiqFqURcgY+9MuP7LQimlQq05dLkv1ZYBnt9aMqtY8BsALPCn4RmIgShdJBeH3g+w9Ri9BARVrR/wR2tX6WCurCHVWZd89y4tWgGXIWy0KLf0eK5CmG3KcaR0/y2L29tfh84TWuqhicCKkgV+UHVgn///0d/01tRe+wK347wsUoomsLdtK4A8HzLfNb1Pd8u+FuHO3oQCVatog==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=R514LptDe3ETZW5gJ7dV4x0H05bbg6mXrhMukKz0K7c=; b=ABqDsDLpuNAMohN80tRVqiv1vQoXczpkH1iEVnuD32qPIrTv0bw12b3Sq3mbZH+UbQLuXBoWH/ch+guAB0KdNgOS7KyoxXjoTXnzJI2w/Ly62n6spVQeSNuxrwOd2MU9K/59cJLx0WZ/C7SdMjdo9uW/U60oH9gPBoMh/vPY/zQHlzTk+Ur+gm4wAJeSovgcFG/l98kRmQNuzd6pPRpsfrIillW6itGwF36XiUcSc4yI211eKFTGY33uxG5MBNxLdFf6FGKA4uuJuINSRdcNPkQcxVHxtZMpjqdlgtjCJ2kKfCbYxeJL7S83FJkvHnXKUxQLtVn6kKMuIamSRqV+Iw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R514LptDe3ETZW5gJ7dV4x0H05bbg6mXrhMukKz0K7c=; b=lHMCsguLDWxHdkyx7urSH7vPxwHTpOir3FUDbdg4gndzHxHND5LoIPh1IbYdlyg1UFywurQBRtNsNX/AaCZMTE5EMP1s+SJJNHIsOijQeH8zdwDdcoO5AasZQqJGJDnF2VODqzlX/HkGLY7Xq0k1SSNOgp+b+bbSrDzZMYA7IyM51vqfeIYZofmKHupRZXWmqxTWf0Dv4sGX87wUlizwykF0cWmtzJcTtqoCV4KUHQyoExggTLjpyKhia40b30VC5DMLwqzaBKwyUQq57d+BPTn3Sv033y3FDJBR1QxtCAzIT/6+ARHtQrTDGNzPEDC3zQf+2oicjWgk+MOFTYFYwA==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB8PR02MB5946.eurprd02.prod.outlook.com (2603:10a6:10:11c::16) by DB9PR02MB9994.eurprd02.prod.outlook.com (2603:10a6:10:462::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8489.22; Fri, 28 Feb 2025 19:54:55 +0000
Received: from DB8PR02MB5946.eurprd02.prod.outlook.com ([fe80::e0d3:772e:a68d:d54a]) by DB8PR02MB5946.eurprd02.prod.outlook.com ([fe80::e0d3:772e:a68d:d54a%3]) with mapi id 15.20.8489.021; Fri, 28 Feb 2025 19:54:54 +0000
Message-ID: <5ae684ce-b877-4dec-9166-389098affd6e@cs.tcd.ie>
Date: Fri, 28 Feb 2025 19:54:49 +0000
User-Agent: Mozilla Thunderbird
To: Brian Sipos <brian.sipos+ietf@gmail.com>, lake@ietf.org
References: <CAM1+-gii0RvsfwDbPq0KFCCc5SC6p4EivuE0Z+Zp4YEkHFB9OA@mail.gmail.com>
Content-Language: en-US
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Autocrypt: addr=stephen.farrell@cs.tcd.ie; keydata= xjMEY9GzphYJKwYBBAHaRw8BAQdAo6JvjmSbxHdQWPZdvciQYsHhM1NxQBU398Mmimoy4p7N M1N0ZXBoZW4gRmFycmVsbCAoMjU1MTkpIDxzdGVwaGVuLmZhcnJlbGxAY3MudGNkLmllPsKQ BBMWCAA4FiEEMG54R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwMFCwkIBwIGFQoJCAsCBBYC AwECHgECF4AACgkQ5Njp+ZeoM93bogEA25ElRyX0wwg+kGEN1AoL60MoZfvQZ/VtmXY6IC5j +csBAIBpkL5ySuzJK2zLNZn9qQGht8IaUcA7cvDcLvS2uHUEzjgEY9GzphIKKwYBBAGXVQEF AQEHQILCPWOwW36e8D3pY8GmvvtItIT+A5uV80ist+WokVsQAwEIB8J4BBgWCAAgFiEEMG54 R8tZDyZFrDOn5Njp+ZeoM90FAmPRs6YCGwwACgkQ5Njp+ZeoM92bcAEA8R+8cpqRUIS+SoAN iO05xE6O/wEx8/e88BqzAYki3SoBAOQdwiPX+MQrAxkWD8xxOsdMOAtxYKpkD1n8aPJUw6QJ
In-Reply-To: <CAM1+-gii0RvsfwDbPq0KFCCc5SC6p4EivuE0Z+Zp4YEkHFB9OA@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------iyibQwjQP3eq0AgFEXNbyVBY"
X-ClientProxiedBy: DB7PR03CA0081.eurprd03.prod.outlook.com (2603:10a6:10:72::22) To DB8PR02MB5946.eurprd02.prod.outlook.com (2603:10a6:10:11c::16)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: DB8PR02MB5946:EE_|DB9PR02MB9994:EE_
X-MS-Office365-Filtering-Correlation-Id: 97b6c00f-cd4d-4896-f4ce-08dd5831c4de
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;ARA:13230040|376014|10070799003|1800799024|366016;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DB8PR02MB5946.eurprd02.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(10070799003)(1800799024)(366016);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 97b6c00f-cd4d-4896-f4ce-08dd5831c4de
X-MS-Exchange-CrossTenant-AuthSource: DB8PR02MB5946.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 28 Feb 2025 19:54:54.1162 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: mi+vliS5ac1brhcHjD2fLEMud2xm2LCGoAexkYnt519CQd9HlPbwc6vDeImh2qo4
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR02MB9994
Message-ID-Hash: LV4X5MVZYQUJ3UOVLFO3I22OWG3XSOAQ
X-Message-ID-Hash: LV4X5MVZYQUJ3UOVLFO3I22OWG3XSOAQ
X-MailFrom: stephen.farrell@cs.tcd.ie
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Lake] Re: EDHOC live debugging
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/RBMtxo7ZgYhZhtea65ClNugQCGI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Owner: <mailto:lake-owner@ietf.org>
List-Post: <mailto:lake@ietf.org>
List-Subscribe: <mailto:lake-join@ietf.org>
List-Unsubscribe: <mailto:lake-leave@ietf.org>

Hiya,

On 20/02/2025 15:18, Brian Sipos wrote:
> Is there any general interest to enable the same type of live or offline
> traffic inspection and protocol debugging for EDHOC as currently enabled
> with TLS and DTLS using the SSLKEYLOGFILE secret storage technique [1]?

I'd be quite against that.

EDHOC interop seems not to have required it for debugging.

Offline traffic inspection sounds like a way of describing
a form of surveillance and is inherently undesirable. And
with even less supposed justification for the kinds of
devices/traffic likely to use EDHOC compared to typical
enterprise traffic.

I think it'd be far better if the lake wg did none of this.

Cheers,
S.

PS: In case anyone has forgotten already: I'm a former and
not current chair, so the above is just an opinion as good
or as worthless as any.

v2.31.3 | Report a Bug | By Email | System Status