IETF Logo Mail Archive

Re: [lp-wan] SCHC over LoRaWAN - IID algorithm

"Pascal Thubert (pthubert)" <pthubert@cisco.com> Tue, 24 November 2020 14:27 UTC

Return-Path: <pthubert@cisco.com>
X-Original-To: lp-wan@ietfa.amsl.com
Delivered-To: lp-wan@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C325A3A0E6F for <lp-wan@ietfa.amsl.com>; Tue, 24 Nov 2020 06:27:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.709
X-Spam-Level:
X-Spam-Status: No, score=-7.709 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=hmMQyK+b; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=R60G7ZNd
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ODFOJ5TUSQN9 for <lp-wan@ietfa.amsl.com>; Tue, 24 Nov 2020 06:27:53 -0800 (PST)
Received: from alln-iport-7.cisco.com (alln-iport-7.cisco.com [173.37.142.94]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 85BAD3A0E6A for <lp-wan@ietf.org>; Tue, 24 Nov 2020 06:27:53 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=33094; q=dns/txt; s=iport; t=1606228073; x=1607437673; h=from:to:subject:date:message-id:references:in-reply-to: mime-version; bh=lGlcXWsFNSDTTcVX0uFRncZk/agK1Tja9BIdWWsEYWw=; b=hmMQyK+bCWVfAFVk9OGXuz5KNhaQZQeVEYK49gLmHrkhpjyBxNuCVAMB Gk6xboNFKgJ2arSVIQF1MKkoph9V7S8Gf5sPC/ihfPjXHe+EUnHfn4r9U D18BAhrJC9gExZgZNRgXu/zJ9TH8X7uW6DvQPQt9rXxXQY+lDttOWcZju w=;
X-IPAS-Result: A0DvCAAKGL1ffZldJa1iHgEBCxIMgzIvUXtZLy4KhDODSQONW4oVjm+BQoERA1QLAQEBDQEBIwoCBAEBhEoCF4IVAiU4EwIDAQEBAwIDAQEBAQUBAQECAQYEFAEBhjwMhXIBAQEBAgESEQoTAQEHMQQHBAIBCA4DBAEBIQcDAgICHxEUCQgBAQQBEggagwWBflcDDiABDqMeAoE8iGh2gTKDBAEBBYFHQYMbDQuCEAmBOIJzgmZOQoEGhVEbgUE/gRFDgk8+ghs3CwIBAgGBJgESAR0GKwmCYTOCLJBKMoJ1hyKcNi9VCoJuiRSGZoYTBIUxgxqKGYVPjwSGC4hnhGuLBIJwgWSBPIF0iSOEOAIEAgQFAg4BAQWBayFpWBEHcBWDJAlHFwINjh8JAxeDToUUhUR0AjUCBgEJAQEDCXyOOQGBEAEB
IronPort-PHdr: 9a23:oADzBBSP+j08EAZChr7w8w1HfNpsv++ubAcI9poqja5Pea2//pPkeVbS/uhpkESQBNWJ8P9Bl+fds+brXmlTqZqCsXVXdptKWldFjMgNhAUvDYaDDlGzN//laSE2XaEgHF9o9n22Kw5ZTcD5YVCBuXC38TMZGlP0Mg8mbujwE5TZ2sKw0e368pbPYgJO0Ty6Z746LBi/oQjL8McMho43IacqwRyPqXxNKOk=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-AV: E=Sophos;i="5.78,366,1599523200"; d="scan'208,217";a="598863785"
Received: from rcdn-core-2.cisco.com ([173.37.93.153]) by alln-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 24 Nov 2020 14:27:50 +0000
Received: from XCH-ALN-004.cisco.com (xch-aln-004.cisco.com [173.36.7.14]) by rcdn-core-2.cisco.com (8.15.2/8.15.2) with ESMTPS id 0AOERnu0023367 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 24 Nov 2020 14:27:50 GMT
Received: from xhs-aln-002.cisco.com (173.37.135.119) by XCH-ALN-004.cisco.com (173.36.7.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 24 Nov 2020 08:27:49 -0600
Received: from xhs-aln-002.cisco.com (173.37.135.119) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Tue, 24 Nov 2020 08:27:49 -0600
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (173.37.151.57) by xhs-aln-002.cisco.com (173.37.135.119) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Tue, 24 Nov 2020 08:27:49 -0600
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=bgwumUmY6PBwYhz0n0xg0jDAgsxCg0DSAaRz8SFew8gpFpNtk+oxqx+zFq0PGEsOqE1eme1plg59Pn2K6Kjzdv4chOCsQeXaBYB6LXtOeL5cDAuDdNFV0FsTEOQpXQ8HmW4lTL1oHfkK1IAjzg2wTrwKajsSO1TDqji7MaJ7j8A7Z2LrLXgxwxVuj8R2s7VzopepNDtiVaV5G5nl81hQnvchBkieJ7CdxpsCn9EAq02gC+BeAomh15saR+05SapfJx6NMtTjQpISWCmaU4W+m1/JYYzDE4zvxindNgPzTrZ9ethsfKVTtrjYbDoK55wdZicl20fYlTqu2JDEDuNisg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lGlcXWsFNSDTTcVX0uFRncZk/agK1Tja9BIdWWsEYWw=; b=RZZg0a3DwTeqkR2C8QhMh5HIixUipG3rdgwmjD1abyFJ7EdLttVYyeFvW+33EMBnIDIMvJUmBHuVAG/dgEMYpvFFL1ygNDN/mONHtd2Ek8xbQg04vp6d5IlSX3QPXeQX2oeqBVypsD8wF3zC60xIp0lVqkSoXvKjTy00MqYKG4FjJ9rVcv+PExjSXTTpxVhH9g4sL7+bElMPoR/WgMDgb2PloftwURUiaD3IoBPl2Wzw++vuK+0ObnxFRgSH8iqjOeHdPdZ0fFXEoFyt9GGTWr36nV76QCrIIf1I5wTCKDibb43JQtUjikXdm7lNVVm4KvAVrS5BvRpVa00FMa4Bdg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lGlcXWsFNSDTTcVX0uFRncZk/agK1Tja9BIdWWsEYWw=; b=R60G7ZNd61imnfsZc2+pDDwoRLkCmgxIv9OJJSCo7H+QAdTEQLBC12mGljWTuXgDp1KblXDiU33DeNFS+7H3r+X6wbJI0vIvwA1DeJ0EjjCKk77mzNexDUUT5oTbZkr8gItT2Au9CHntX0l+rNIPBqYxGvbZHHKT1UnTDCSd1xA=
Received: from CO1PR11MB4881.namprd11.prod.outlook.com (2603:10b6:303:91::20) by MWHPR11MB1613.namprd11.prod.outlook.com (2603:10b6:301:e::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3589.28; Tue, 24 Nov 2020 14:27:47 +0000
Received: from CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::fc25:3e72:3e83:7df6]) by CO1PR11MB4881.namprd11.prod.outlook.com ([fe80::fc25:3e72:3e83:7df6%4]) with mapi id 15.20.3564.025; Tue, 24 Nov 2020 14:27:47 +0000
From: "Pascal Thubert (pthubert)" <pthubert@cisco.com>
To: Olivier Gimenez <ogimenez@semtech.com>, "lp-wan@ietf.org" <lp-wan@ietf.org>
Thread-Topic: SCHC over LoRaWAN - IID algorithm
Thread-Index: AdbCbQjzz9SvL3/8RLugAyz6ft4oqAAAHb+Q
Date: Tue, 24 Nov 2020 14:27:36 +0000
Deferred-Delivery: Tue, 24 Nov 2020 14:27:30 +0000
Message-ID: <CO1PR11MB48810E05F29AC3E7B0503BC2D8FB0@CO1PR11MB4881.namprd11.prod.outlook.com>
References: <a44b76924f8347bbb4e55c95a1ba7009@semtech.com>
In-Reply-To: <a44b76924f8347bbb4e55c95a1ba7009@semtech.com>
Accept-Language: fr-FR, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: semtech.com; dkim=none (message not signed) header.d=none;semtech.com; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [173.38.220.44]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 15bf17bd-2b48-4a2f-e4ed-08d890851dd0
x-ms-traffictypediagnostic: MWHPR11MB1613:
x-microsoft-antispam-prvs: <MWHPR11MB16138473B5A69A2344320C35D8FB0@MWHPR11MB1613.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: /5wdB1OePoIxKexno1trvEtUL+nNDe4LF+dKkZasf9ZS0YQ5CVUlxm3vIR0XAq8ATpF7+UdAvSl/miGrn0eD9D78XED87ivLeOoie6oxUbdR8zgi1o6LMCmucN3lEmPd5oXHWxuT3U4RBYvXTAAoXbdbMNa9I5WP9VYwyfczIXYc/aNos02+qIfTZf5rh92F7J6MscpAkPuh6ZfgMPufS/sAzz7m3j8L8iuPcSodkc151Zm44G8Yb7+WXtb5PnFFw3jxq8ZnAtoqOF4Lb/LDBp4fz0Yz145IChwhKj6HmC7gxpj29iMBydpd5L2MocHMGjaKZBsOrdYCzxdsCuDMbBlf9NJU2PKr6OkW1BGuuekVdxizLcpvmNozefInRTKUTX0GndnEwU5HvdsNq1A9wQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB4881.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(6029001)(39860400002)(366004)(396003)(376002)(346002)(136003)(186003)(5660300002)(2906002)(33656002)(26005)(55016002)(21615005)(52536014)(9686003)(166002)(8676002)(478600001)(83380400001)(64756008)(66556008)(66476007)(66446008)(71200400001)(8936002)(86362001)(6666004)(110136005)(316002)(66946007)(7696005)(76116006)(53546011)(6506007)(966005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_CO1PR11MB48810E05F29AC3E7B0503BC2D8FB0CO1PR11MB4881namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB4881.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 15bf17bd-2b48-4a2f-e4ed-08d890851dd0
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Nov 2020 14:27:47.5874 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: qfrmL/0WrIVGGwVRt9z1xd1c0PudQ+s8D739pKGGPnl9zwqKPH8TEeeULPDKSCO2OE5H/pLqfUr73HFOJ7Oi2w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR11MB1613
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.14, xch-aln-004.cisco.com
X-Outbound-Node: rcdn-core-2.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/lp-wan/adPfL6N1fHw7j3GFWpo9Eh-eIbQ>
Subject: Re: [lp-wan] SCHC over LoRaWAN - IID algorithm
X-BeenThere: lp-wan@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Low-Power Wide Area Networking \(LP-WAN\), also known as LPWA or Low-Rate WAN \(LR-WAN\)" <lp-wan.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lp-wan>, <mailto:lp-wan-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lp-wan/>
List-Post: <mailto:lp-wan@ietf.org>
List-Help: <mailto:lp-wan-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lp-wan>, <mailto:lp-wan-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Nov 2020 14:27:56 -0000

Hello Olivier




“

Note: Implementation also using another IID source MUST have same IID value on both device and SCHC gateway.
"

I agree with the intention. Now; this formulation could be read as “the GW and the device have the same IID” while you mean that “the GW and the device must obtain the same value as IID of the device”.

Keep safe;

Pascal

From: lp-wan <lp-wan-bounces@ietf.org> On Behalf Of Olivier Gimenez
Sent: mardi 24 novembre 2020 15:21
To: lp-wan@ietf.org
Subject: [lp-wan] SCHC over LoRaWAN - IID algorithm

Hello working group,

I did not got any feedback on the following proposition related to the IID computation algorithm, which is currently mandatory to implement and to use, and we want some implementations to be able to use something else if they need. Any thoughts ?

Thank you
Olivier

From: Olivier Gimenez
Sent: 03 November 2020 19:05
To: 'Erik Kline' <ek.ietf@gmail.com<mailto:ek.ietf@gmail.com>>; The IESG <iesg@ietf.org<mailto:iesg@ietf.org>>; lp-wan@ietf.org<mailto:lp-wan@ietf.org>
Cc: draft-ietf-lpwan-schc-over-lorawan@ietf.org<mailto:draft-ietf-lpwan-schc-over-lorawan@ietf.org>; lpwan-chairs@ietf.org<mailto:lpwan-chairs@ietf.org>; Dominique Barthel <dominique.barthel@orange.com<mailto:dominique.barthel@orange.com>>
Subject: RE: Erik Kline's No Objection on draft-ietf-lpwan-schc-over-lorawan-13: (with COMMENT)


Hi Erik,



Thank you for your review, your comment raised some discussions during today's lpwan interim:

First thoughts: it cannot be changed because we want to use the same IID on the device and the gateway, but if it is respected we might be less restrictive as long as all implementation include at least the algorithm written in the draft. So I propose the following changes:



In order to mitigate the risks described in [RFC8064] and [RFC8065], implementation MUST implement the following algorithm and SHOULD use it.



   1.  key = LoRaWAN AppSKey



[...]



   out of scope of this document and left to the implementation.



Note: Implementation also using another IID source MUST have same IID value on both device and SCHC gateway.



> -----Original Message-----

> From: Erik Kline via Datatracker <noreply@ietf.org<mailto:noreply@ietf.org>>

> Sent: 03 November 2020 06:26

> To: The IESG <iesg@ietf.org<mailto:iesg@ietf.org>>

> Cc: draft-ietf-lpwan-schc-over-lorawan@ietf.org<mailto:draft-ietf-lpwan-schc-over-lorawan@ietf.org>; lpwan-chairs@ietf.org<mailto:lpwan-chairs@ietf.org>; lp-

> wan@ietf.org<mailto:wan@ietf.org>; Dominique Barthel <dominique.barthel@orange.com<mailto:dominique.barthel@orange.com>>;

> dominique.barthel@orange.com<mailto:dominique.barthel@orange.com>

> Subject: Erik Kline's No Objection on draft-ietf-lpwan-schc-over-lorawan-13:

> (with COMMENT)

>

> Warning - External Email

> ________________________________

>

> Erik Kline has entered the following ballot position for

> draft-ietf-lpwan-schc-over-lorawan-13: No Objection

>

> When responding, please keep the subject line intact and reply to all email

> addresses included in the To and CC lines. (Feel free to cut this introductory

> paragraph, however.)

>

>

> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html

> for more information about IESG DISCUSS and COMMENT positions.

>

>

> The document, along with other ballot positions, can be found here:

> https://datatracker.ietf.org/doc/draft-ietf-lpwan-schc-over-lorawan/

>

>

>

> ----------------------------------------------------------------------

> COMMENT:

> ----------------------------------------------------------------------

>

> [[ questions ]]

>

> [ section 5.3 ]

>

> * Is this MUST really necessary?  If an implementation wanted to, say, read

>   8 bytes from a good /dev/urandom source wouldn't that also be okay?  Seems

>   like SHOULD would suffice (with a MUST NOT comment about not just using

>   DevEUI etc).

>

>



To view our privacy policy, including the types of personal information we collect, process and share, and the rights and options you have in this respect, see www.semtech.com/legal<http://www.semtech.com/legal>.

v2.23.0 | Report a Bug | By Email