Re: [Lake] COSE IANA registrations in EDHOC (Was: New Version Notification for draft-ietf-lake-edhoc-09.txt)
John Mattsson <john.mattsson@ericsson.com> Sat, 04 September 2021 08:36 UTC
Return-Path: <john.mattsson@ericsson.com>
X-Original-To: lake@ietfa.amsl.com
Delivered-To: lake@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA6273A1280; Sat, 4 Sep 2021 01:36:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.552
X-Spam-Level:
X-Spam-Status: No, score=-2.552 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kEU0_CnZTKrG; Sat, 4 Sep 2021 01:36:46 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-eopbgr130057.outbound.protection.outlook.com [40.107.13.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8B9A43A1283; Sat, 4 Sep 2021 01:36:45 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=bD8Mh5UqNe/UArssq723CmsDk2OlVeorWBzCO06c33xzbZwdDZm45kkSWqZxGaAbjnIAel0XkNewppkTuv/s4/rxBNVRjrJDbgde/4+0rwYa4AzluzFZMHDdHHBcFAduDL5lT1TIedT9xFEE2c3qjjLpd06ykM84DMfwuFSIYIFxk9udVBn21GlUuu3JcXbtZKD9tJWPKXal/XE6Sx3tMiO0O2LlDTLDRzsASBxsy5nGRQti9b5o0MTBcy4W5ICTPpk6071+///YTJmvsg6O3ifAd8F1bdQeiuTyVV7dpE8HGEBJf9IByy7pnRqwPAFzgiOCI/n5kEeq6Xw4HmfWeA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=TxJT5CHcSwS/ailU2A/SOY3gCUEz8GwZECdtn5em07I=; b=jKwKxXJ7QXqayBqYmr+/0BqtpNKXgtkdGkrRtNpyqHXeLd8zb3Wq3LE0IaQDYnsuXdBNpPmheOb0eASTOu3EoGeLGrOSVKy4a2B9kr0YTTxdRo3v3hqK5Tp8xffyg4uBS7Ct3LYD0vkm5LHu1Avkfq564PoVkU+ygeBrZg1L7THJQv3Fdrgorqv63ZYMCRexGK8L63s9uNOKqxmA5nwAy3bfr5QVO+qXGwLbo8w9khSAsqdvx0y8Zt5d0a6H6CKqHlgy3iNJyS319Dts8+K2uNL5zR/k9v49GicrxByo65PrthGxsBO56MYbCqaAs3jtcx/u7ZL0lMgm5Yt8+LRPgw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=TxJT5CHcSwS/ailU2A/SOY3gCUEz8GwZECdtn5em07I=; b=E4UzzUl5yCtvqzninzNQGcsgT8nmYgXhQUgrNvhzrrtFvyUo3y0D4g4/m9gNvi1V6cTA6sZH0aoiCXYXGhldT13CgIV1DjpwTuAIdqVjcBpjpWgc+CDbMLxDSdO9onIFs0a7DSYKIeJ8K80JmUn/LcUvpxQKBWPEbML5Ou3a24A=
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com (2603:10a6:3:4b::8) by HE1PR0701MB2394.eurprd07.prod.outlook.com (2603:10a6:3:70::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4500.8; Sat, 4 Sep 2021 08:36:37 +0000
Received: from HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::d012:63e4:344b:a81b]) by HE1PR0701MB3050.eurprd07.prod.outlook.com ([fe80::d012:63e4:344b:a81b%8]) with mapi id 15.20.4500.009; Sat, 4 Sep 2021 08:36:37 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: Carsten Bormann <cabo@tzi.org>, Göran Selander <goran.selander=40ericsson.com@dmarc.ietf.org>
CC: "lake@ietf.org" <lake@ietf.org>, Michael Richardson <mcr@sandelman.ca>, "cose@ietf.org" <cose@ietf.org>
Thread-Topic: [Lake] COSE IANA registrations in EDHOC (Was: New Version Notification for draft-ietf-lake-edhoc-09.txt)
Thread-Index: AQHXmLqTr445sxUxHESVhdcgjIzOkquCS/wAgBFM920=
Date: Sat, 04 Sep 2021 08:36:37 +0000
Message-ID: <HE1PR0701MB30503CB0E442D9E3C62929D689D09@HE1PR0701MB3050.eurprd07.prod.outlook.com>
References: <F24FD33B-B94D-4C84-AE07-C9161668C16E@ericsson.com> <C5080F76-EE94-47A7-AEF7-864C7644BE8F@tzi.org>
In-Reply-To: <C5080F76-EE94-47A7-AEF7-864C7644BE8F@tzi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: tzi.org; dkim=none (message not signed) header.d=none;tzi.org; dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 3321935b-90c8-4c89-99eb-08d96f7f1c3c
x-ms-traffictypediagnostic: HE1PR0701MB2394:
x-microsoft-antispam-prvs: <HE1PR0701MB2394BC07F7F17538377FC9D489D09@HE1PR0701MB2394.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR0701MB3050.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(83380400001)(66574015)(966005)(15650500001)(71200400001)(9686003)(508600001)(2906002)(55016002)(86362001)(8936002)(186003)(166002)(316002)(8676002)(5660300002)(52536014)(33656002)(44832011)(110136005)(54906003)(66946007)(53546011)(76116006)(26005)(66556008)(64756008)(7696005)(6506007)(66446008)(4326008)(38100700002)(38070700005)(122000001)(66476007); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_HE1PR0701MB30503CB0E442D9E3C62929D689D09HE1PR0701MB3050_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR0701MB3050.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3321935b-90c8-4c89-99eb-08d96f7f1c3c
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Sep 2021 08:36:37.2130 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: VMyXDcTwCBL+D2vgo/jQZylSn09gSTzxlYCAULJahhP3vgy2OLTAB3PMRV8KsxhxXv5mHJBMXLJ+vDVNvkWWv7iqb+ELt0P+5Vd7T/ZCo0s=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2394
Archived-At: <https://mailarchive.ietf.org/arch/msg/lake/Vkr-h-_AAb_rS1MaSD1V7ziHL2s>
Subject: Re: [Lake] COSE IANA registrations in EDHOC (Was: New Version Notification for draft-ietf-lake-edhoc-09.txt)
X-BeenThere: lake@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Lightweight Authenticated Key Exchange <lake.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lake>, <mailto:lake-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lake/>
List-Post: <mailto:lake@ietf.org>
List-Help: <mailto:lake-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lake>, <mailto:lake-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Sep 2021 08:36:51 -0000
The ID_CRED_x fields are just COSE header maps. The only thing EDHOC adds is how to format CRED_x. I think a separate COSE draft defining ‘cwt’ and ‘ucss’ header parameters should at least be considered. There are supposed to be useful also in other uses of COSE outside of EHDOC which might have different security consideration. At a minimum COSE should be involved to make sure that ‘cwt’ and ‘ucss’ are useful and secure also in non-EDHOC uses of COSE. If there are not a lot of additional things that need to be said regarding non-EHOC use of ‘cwt’ and ‘ucss’, I agree that keeping them in the EHDOC draft is the easier and fastest option. John From: Lake <lake-bounces@ietf.org> on behalf of Carsten Bormann <cabo@tzi.org> Date: Tuesday, 24 August 2021 at 10:05 To: Göran Selander <goran.selander=40ericsson.com@dmarc.ietf.org> Cc: lake@ietf.org <lake@ietf.org>, Michael Richardson <mcr@sandelman.ca>, cose@ietf.org <cose@ietf.org> Subject: Re: [Lake] COSE IANA registrations in EDHOC (Was: New Version Notification for draft-ietf-lake-edhoc-09.txt) I see. So, you are saying, this will be a “using EDHOC in COSE” specification, still normative, but referenced from EDHOC as informative as EDHOC works without COSE. Yes, it is always hard to position a “using X in Y” draft between the X and Y working groups — after all, the two ends of this draft need to fit X and Y, respectively. If the EDHOC specification truly doesn’t need the contents of this specification, then I can see moving them into a COSE document. But I think it is as expedient to keep them together in one document. The only strong reason to split the document would be to avoid a long wait while COSE is deciding on some controversial content of the extracted spec. Do we foresee such a delay? Grüße, Carsten > On 2021-08-24, at 09:35, Göran Selander <goran.selander=40ericsson.com@dmarc.ietf.org> wrote: > > Combining the responses from Carsten and Michael, and including COSE. > >> On 2021-08-23, 19:17, "Michael Richardson" <mcr@sandelman.ca> wrote: >> >> Göran Selander wrote: >>> * The key identifier ‘kid’ is extended to also support CBOR ints, >>> making ‘kid2’ introduced in -08 redundant. This change was based on >>> feedback from the COSE WG [1]. One potential next step is to move all >>> COSE-related IANA registrations from this draft to a separate COSE >>> draft and make an informative reference. >> >>> [1] https://mailarchive.ietf.org/arch/msg/cose/qGngdte4s3SEZEKM-xBEoXYUgKc/ >> >> I understanding splitting the document so that it is easier to update, >> but I think that the reference should be normative. >> >> I think we want to publish the documents together. > > > > On 2021-08-23, 21:42, "Carsten Bormann" <cabo@tzi.org> wrote: >> >>> One potential next step is to move all COSE-related IANA registrations from this draft >> to a separate COSE draft and make an informative reference. >> >> Why? >> > > > The registrations in question are in section 8.5 - 8.7 of draft-ietf-lake-edhoc-09: The extension of 'kid' to int (both as a reference and in the referenced object) and the registration of 'cwt' to signify that the value is a CWT or UCCS. > > A few reasons have been mentioned for moving this from EDHOC to a COSE draft, I don't know what is most relevant, if anything: > > * In case of 'kid', these registrations would make EDHOC an update of draft-ietf-cose-rfc8152bis-struct (RFC-to-be 9052). I don't know if LAKE or COSE wants that. > > * These registrations are independent of the base EDHOC protocol, but enables the use of CWT and UCCS as credentials, and more compact identification of credentials. Therefore they could instead be referenced from EDHOC. I don't see why the reference needs to be normative. > > * These registrations belong to the COSE domain and may gain better awareness and reviews if put into a COSE draft. > > > Göran > > > > > > > > > -- > Lake mailing list > Lake@ietf.org > https://www.ietf.org/mailman/listinfo/lake -- Lake mailing list Lake@ietf.org https://www.ietf.org/mailman/listinfo/lake
- [Lake] COSE IANA registrations in EDHOC (Was: New… Göran Selander
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Carsten Bormann
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Göran Selander
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Marco Tiloca
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Benjamin Kaduk
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Francesca Palombini
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… John Mattsson
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… John Mattsson
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Göran Selander
- Re: [Lake] COSE IANA registrations in EDHOC (Was:… Göran Selander