Re: [Lake] Call for adoption for draft-selander-lake-edhoc - respond by June 22

Göran Selander <goran.selander@ericsson.com> Tue, 07 July 2020 14:27 UTC

Return-Path: <goran.selander@ericsson.com>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA8FA3A0D48 for <lake@ietfa.amsl.com>; Tue, 7 Jul 2020 07:27:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.102
X-Spam-Level:
X-Spam-Status: No, score=-2.102 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fuW2cESCdgku for <lake@ietfa.amsl.com>; Tue, 7 Jul 2020 07:27:51 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60049.outbound.protection.outlook.com [40.107.6.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 829B43A0D25 for <lake@ietf.org>; Tue, 7 Jul 2020 07:27:51 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=j6zH8VR8+JjnbW08mMA+3bHapv3Zierk0dYR615acucOh4AKpYONUBVVqORXGn8WYltAnDMVClJhbAjCq4IM+UHeFMToymFBqOykQIXE8m3HWRkIp7e8f9O907Iu+TaYSRmU/LcSKb1XK2jjJeMPa92I5Z5mor+3TsvDRQmZeUcwAw1KQdZSgzFBHGtoyQSpKDUx2+erOgoX6CqfT5FF6i+uVkPVfkDOpAo80jYUSyM2HK2rdKKs1lTkBXoVV+d12k9yqxJCDfVcsA8jWVOxLHPoeBFxZcWP0X/D8SCs6OjMmU0uRuJGCuWF4XmMptfIUV89QT8swdRxkkcRL+wQvA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PsTkPtK+ysMwTT4ZmcL2wAJQmhMLetCo9hu8n9A8clA=; b=n24ailnkOO2YMCDGH6c1xBwLVQqYtnSG3qbz0gRD5DAGxgspngwCT8epFpqe/bk4PvTzyTHYcC3DTx8TN8jEmqlQX4MMG+29S3kt+Mj5BtV0IbOhDBJRUxlphZWz5BpuuBeXzXB/d4g1jjdNiCIzUmgTf9mZWJhI02C9m5D5hlwMRiUABcZ710tyUHdFMairQvqhX8HkmbQN0rFXNkSI3iRnX7UfD5KsL6wPgcLg5EDTHZKgc92hwxv7poTnIb2KD4sCUIB148IBUziLJqg2WvJ4c/gDbPBVwNwfkjs/qTwLHvmjY/EvnmX33fUOREb2vePP+clX1OpBIj3/38an3Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=PsTkPtK+ysMwTT4ZmcL2wAJQmhMLetCo9hu8n9A8clA=; b=gp7w8eXYstMcpdoZUcJnaWbJyQZlJShxAZ+il8sjrbEup2LV0MwI/6VEEWoDUT7JDNKBj8Y2B2Spk80xxfiNlxFVvCJbJKxYzORtrjaYSSW/tpbGh325f5PguxMRS0w9oe2Ei9Uh7CuWnl+PCShgVRlwsFgzo1QmjuLFlEvkIs4=
Received: from AM0PR0702MB3665.eurprd07.prod.outlook.com (2603:10a6:208:1e::21) by AM4PR07MB3092.eurprd07.prod.outlook.com (2603:10a6:205:7::25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3174.9; Tue, 7 Jul 2020 14:27:47 +0000
Received: from AM0PR0702MB3665.eurprd07.prod.outlook.com ([fe80::75ea:232a:4132:452e]) by AM0PR0702MB3665.eurprd07.prod.outlook.com ([fe80::75ea:232a:4132:452e%4]) with mapi id 15.20.3174.020; Tue, 7 Jul 2020 14:27:47 +0000
From: =?utf-8?B?R8O2cmFuIFNlbGFuZGVy?= <goran.selander@ericsson.com>
To: Martin Disch <martindisch@gmail.com>, "lake@ietf.org" <lake@ietf.org>
Thread-Topic: [Lake] Call for adoption for draft-selander-lake-edhoc - respond by June 22
Thread-Index: AQHWPZxniZaxBah8QU2iXxvMrkafv6jXBzkAgCN77oA=
Date: Tue, 7 Jul 2020 14:27:47 +0000
Message-ID: <01D57B53-A150-430A-9BED-44AB8C722B62@ericsson.com>
References: <89EA6A63-AB99-4649-9F08-D6FBDE1DEF2F@inria.fr> <CADgBbC11JFaAMWkSuPQ+9_K8BzJcw+C4i0P_nUx6ZQpL+JnG5g@mail.gmail.com>
In-Reply-To: <CADgBbC11JFaAMWkSuPQ+9_K8BzJcw+C4i0P_nUx6ZQpL+JnG5g@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.38.20061401
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [83.251.145.232]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 0fa2bc92-35f6-452b-e3ed-08d82281ec08
x-ms-traffictypediagnostic: AM4PR07MB3092:
x-microsoft-antispam-prvs: <AM4PR07MB30923ACB5B562A5899209EAEF4660@AM4PR07MB3092.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Nl4v5HjZ1LtSH442Duk2CkNKZPqkRF0YdkF2DA/LmeY/0/lIReeHKv3Y4WOfgvV3BG1AJMyvgAGPjJTolRjwhUIsYJDP7qtnRsEyv5Ma7xEZGae8TMoD42WeyqVVGVoLiF9CB4dhRbR/BsZJax3tMadeXGLgoBkiaJ/hlo3kn2ZQCUZ18g1R4KZck6iRQuMgVoHv67LqBVAFjC1nm57OzNd75SGpQYyjvkTSHV2K9qDGM8mc7iodALsHcyhHWd62b345OhDq/GwmiHff7F8OhWgqgtwK29DoTZJ2V/KpyzqAZb5+3RFEAXl+TZUmuQBzsvfPtV7mlYm8989F3n2phwEo8B1UVNc3kO3/qKgyAwRA8f23YeUO+NP3GK7bcUoYz4J+WsFxn0/HKcd0+Txebw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR0702MB3665.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(346002)(136003)(39860400002)(366004)(396003)(376002)(66946007)(53546011)(8676002)(6506007)(83380400001)(86362001)(71200400001)(66574015)(85182001)(6512007)(36756003)(33656002)(478600001)(316002)(26005)(2616005)(110136005)(85202003)(186003)(76116006)(66446008)(8936002)(66556008)(66476007)(64756008)(2906002)(6486002)(966005)(5660300002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <3BF53454DDA5DE4BB92C58D0298A1003@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR0702MB3665.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0fa2bc92-35f6-452b-e3ed-08d82281ec08
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Jul 2020 14:27:47.4708 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: lXBerPRUOFj9DkLMfGUGk2TxajD23b1XnxavJpq3Eq4y49BqQd8wTv6QWn8cegS+IbaZi6N30L/TV1JzVHegli07mKVUW8WN8ZH1LumUCZw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR07MB3092
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/Va2Cd_3u8tXgds7gpr_oNaSq6gI>
Subject: Re: [Lake] Call for adoption for draft-selander-lake-edhoc - respond by June 22
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jul 2020 14:27:54 -0000

Hi Martin, all,

> It would be very nice to have an entirely self-contained document to work with.

We got a similar comment previously, and tried to make the spec more easy to digest without previous experience with CBOR and COSE. Appendix A is one such attempt, this was already draft-selander-ace-cose-ecdhe-14 as you noted. We later made some updates to the appendix on test vectors (appendix C in draft-selander-ace-cose-ecdhe-14, appendix B in the latest version) so it should now be possible to follow each step in building the messages. But you do need to understand how to build a COSE_Encrypt, for which we only provide references as we didn't want to repeat text from RFC 8152. In principle we could go one step further and expand on the COSE constructs, e.g. in appendix A.2. Was this what you were thinking about?

Does anyone else have an opinion about this?

I opened an issue:
https://github.com/lake-wg/edhoc/issues/1

Göran



On 2020-06-13, 22:35, "Martin Disch" <martindisch@gmail.com> wrote:

    On Mon, Jun 8, 2020 at 3:54 PM Mališa Vučinić <malisa.vucinic@inria.fr> wrote:
    > Please reply to this thread whether you support the adoption, and indicate if you are ready to review if this draft becomes a working group document.

    As part of a thesis I built a proof-of-concept implementation of EDHOC
    in the Rust programming language available at
    https://protect2.fireeye.com/v1/url?k=a7ca1c16-f96afc82-a7ca5c8d-86d2114eab2f-c763711efdc1ed79&q=1&e=326758fa-f31f-4bf0-b1f0-8a347f7427b8&u=https%3A%2F%2Fgithub.com%2Fmartindisch%2Foscoresch%2Foscore. The naming of the repository is
    due to the subject being both EDHOC and OSCORE on embedded devices,
    but the following refers only to the EDHOC implementation.

    It's based on draft-selander-ace-cose-ecdhe-14 and as such, sadly,
    outdated. Since it was just one part of the overall work, I only
    managed to implement the subset I needed, which is RPK and the
    signature-signature based scheme (corresponding to what
    draft-selander-lake-edhoc calls method 0). I also took some other
    shortcuts, such as not supporting auxiliary data. Fortunately, test
    vectors were about to be introduced just around the time I was working
    on it, so I've been able to successfully verify my implementation
    against them when John shared them with me for some preliminary
    testing. Since I didn't have any prior experience implementing this
    kind of software, I would definitely consider it more of an
    experiment, but it's out there and it works, in case it can be useful
    to anybody.

    I'm convinced that EDHOC will be valuable particularly in the context
    of OSCORE, possibly even beyond that. As for the draft itself, I would
    like to mention one aspect that I think could be improved from the
    perspective of an implementer. Part of the promise of EDHOC is that
    it's simple and lightweight due to reusing COSE. That is certainly the
    case, but breaks down somewhat when working on a system where no fully
    featured library for it is available. This was the case for me and I
    personally found it difficult to quickly figure out which aspects of
    COSE I needed to implement. The draft does a good job of pointing to
    the right places in RFC 8152, but I still ended up trying to
    understand another ~100 page document just to implement the few
    constructs I actually needed. I know the authors are aware of this and
    there has been some effort to inline more information directly in the
    specification, which I greatly appreciate. It would be very nice to
    have an entirely self-contained document to work with. But I have to
    again point out my lack of experience in that area, it's entirely
    possible that this draft is in fact much better than others in this
    regard and I just don't know it yet.

    With that I would like to support the adoption and am looking forward
    to seeing how it develops.

    Kind regards,

    Martin

    -- 
    Lake mailing list
    Lake@ietf.org
    https://www.ietf.org/mailman/listinfo/lake