[Lwip] Fwd: I-D Action: draft-ietf-lwig-crypto-sensors-06.txt

Mohit Sethi <mohit.m.sethi@ericsson.com> Mon, 26 February 2018 19:42 UTC

Return-Path: <mohit.m.sethi@ericsson.com>
X-Original-To: lwip@ietfa.amsl.com
Delivered-To: lwip@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F78412711B for <lwip@ietfa.amsl.com>; Mon, 26 Feb 2018 11:42:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.32
X-Spam-Level:
X-Spam-Status: No, score=-4.32 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4bvkY4AdTO0w for <lwip@ietfa.amsl.com>; Mon, 26 Feb 2018 11:42:09 -0800 (PST)
Received: from sesbmg23.ericsson.net (sesbmg23.ericsson.net [193.180.251.37]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 065DC12D7F7 for <lwip@ietf.org>; Mon, 26 Feb 2018 11:42:08 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1519674127; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=3IALXgUY81BA2zXSkA2SBj4O0ZjJN2TwNa3fIxXPCec=; b=UbAFmt0uunAdO/Z6NbVahMhtV4FIiFzygtQx3kgnaCkQWGxP/LV9uofcccW+4tpw ViJjt20oyYENcJu95zJzM/cpxIBFvgFic0clz2/lozZg5vL623AAYwDFoK64Et3Q Jhfuyy+Mv/z1T9pcNKuOLHp7JWaTv2rDg+smKbshP90=;
X-AuditID: c1b4fb25-083ff70000002d5f-6e-5a94630f71ee
Received: from ESESSHC012.ericsson.se (Unknown_Domain [153.88.183.54]) by sesbmg23.ericsson.net (Symantec Mail Security) with SMTP id 74.1F.11615.F03649A5; Mon, 26 Feb 2018 20:42:07 +0100 (CET)
Received: from nomadiclab.fi.eu.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.56) with Microsoft SMTP Server id 14.3.352.0; Mon, 26 Feb 2018 20:42:06 +0100
Received: from nomadiclab.fi.eu.ericsson.se (localhost [127.0.0.1]) by nomadiclab.fi.eu.ericsson.se (Postfix) with ESMTP id 2452948178F; Mon, 26 Feb 2018 21:42:06 +0200 (EET)
Received: from [127.0.0.1] (localhost [IPv6:::1]) by nomadiclab.fi.eu.ericsson.se (Postfix) with ESMTP id CF5D44813A5; Mon, 26 Feb 2018 21:42:05 +0200 (EET)
References: <151967388722.21803.2650061959603617056@ietfa.amsl.com>
To: "lwip@ietf.org" <lwip@ietf.org>, Zhen Cao <zhencao.ietf@gmail.com>, Suresh Krishnan <Suresh@kaloom.com>
From: Mohit Sethi <mohit.m.sethi@ericsson.com>
X-Forwarded-Message-Id: <151967388722.21803.2650061959603617056@ietfa.amsl.com>
Message-ID: <b673d380-7bec-a333-a9c7-f52fc082e2f1@ericsson.com>
Date: Mon, 26 Feb 2018 21:42:05 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0
MIME-Version: 1.0
In-Reply-To: <151967388722.21803.2650061959603617056@ietfa.amsl.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms070204030708090905040601"
X-AV-Checked: ClamAV using ClamSMTP
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrAIsWRmVeSWpSXmKPExsUyM2K7mS5/8pQog50vBSzm7RO22NZ1isVi +t4/jA7MHjtn3WX3WLLkJ5PH+Ssz2AOYo7hsUlJzMstSi/TtErgyHq3dyl7QvZCxYuX/O4wN jNPaGbsYOTgkBEwkNpxM72Lk4hASOMwoMePqMlYIZwejxOk5G9ggnE2MEmc3nmaCcBYwShy5 soUdpF1YwE1i1bSELkZOoLizxPfprxhBbBGBXInOpW+YQWw2AT2JznPHwWwJAX+JC1vWgdm8 AvYS63esZgGxWQRUJS7ffgxmiwpESHSunM8CUSMocXLmEzCbU8BFou3bGbD5zALdjBKPL/tA zFSWWNCyiBHiBnWJrR0HGCcwCs1C0j4LSQuEHSZx80UrVFxc4taT+UwQtq3Enbm7mSFsbYll C19D2boSi7atYMcUt5aY8esgG4StKDGl+yFUjanE66MfGSFsY4ll6/6yLWDkWcUoWpxanJSb bmSsl1qUmVxcnJ+nl5dasokRGLcHt/xW3cF4+Y3jIUYBDkYlHl4ZrylRQqyJZcWVuYcYVYDm PNqw+gKjFEtefl6qkgjvysWTo4R4UxIrq1KL8uOLSnNSiw8xSnOwKInzzhFujxISSE8sSc1O TS1ILYLJMnFwSjUwFm9UD494tfT/G5vncaaL21ISLD51sN61XpVxx81JQ9Mh5tq5xTvks8zL hW4cX2Hz78zTLXduz5lWdmJnZI768qA5h2oNY2dqvZwqIbrmgE9ll92cN12r98yVPd6xSLa0 zyv+xONlBe+m/Tp8+jKv9qRWWbdNfr93JGZO7PT1ObZH5Ly59fNLT5RYijMSDbWYi4oTAfv0 dNjjAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/lwip/Dcld7wHXulSwykY7SQOr4BWKTXA>
Subject: [Lwip] Fwd: I-D Action: draft-ietf-lwig-crypto-sensors-06.txt
X-BeenThere: lwip@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Lightweight IP stack <lwip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lwip>, <mailto:lwip-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lwip/>
List-Post: <mailto:lwip@ietf.org>
List-Help: <mailto:lwip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lwip>, <mailto:lwip-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Feb 2018 19:42:12 -0000

Dear all,

Thanks to all the feedback from the directorates as well as the IESG. We 
have now updated the draft based on the feedback received. There were no 
major changes and a list of all the issues fixed can be found below. 
This feedback has greatly helped us to improve the final version of the 
document. Hopefully, it has also made the job of the RFC editor easy.

--Mohit, Jari, Ari and Heidi

- Update acknowledgments section with all the reviewers.
- Added a bullet in section 9 (Summary) stating that developers should 
provide mechanisms for devices to generate new identities. (Christian 
Huitema)
- Expanded first use of ECDSA. (Dan Romascanu)
- Uniformly use "resource-constrained" instead of small devices. (Dan 
Romascanu)
- Add a sentence on how a real implementation would find the resource 
directory. (Dan Romascanu)
- "physically different" replaced with "physically distinct" in section 
7. (Spencer Dawkins)
- Fixed typo in Section 6 "results for for all the 128". (Emmanuel Baccelli)
- Rephrased the bullet on cryptographic-quality randomness on Arduino 
(Emmanuel Baccelli)
- Explicit mention of what is n and m in section 4.1. (Emmanuel Baccelli)
- Separate OS from cryptographic libraries and cite survey on OS for 
resource-constrained devices. (Emmanuel Baccelli)
- Fixed typo in Section 7 "enough power to be stay on". (Kathleen 
Moriarty and Emmanuel Baccelli)
- Fix missing article before "CoAP base specification". (Ben Campbell)
- Rephrased "Once both peers..." in section 4.1. (Ben Campbell)
- Added missing article before Igrp. (Ben Campbell)
- Fixed repeating either in section 4.2. (Ben Campbell)
- Added article "It is written in nesC programming language..." before 
"nesC". (Ben Campbell)
- Rephrased "The workshop recommended that additional work should be 
undertaken in" in section 2. (Warren Kumari)
- Rephrased ".. to be fed in (not both an identity and certificate or 
shared secrets that must be kept confidential)". (Warren Kumari)
- Split long sentence to remove ambiguity "For example, leap-of-faith or 
trust-on-first-use based pairing methods assume that the attacker....". 
(Warren Kumari)
- Split long sentence to remove ambiguity "We decided to use the Arduino 
Mega which has the same 8-bit architecture like the Arduino Uno...". 
(Warren Kumari)
- Join sentences "For instance, a sensor that wakes up every now and 
then can likely spend a fraction ...". (Warren Kumari)
- Added reference to nesC. (Eric Rescorla)
- Removed reference to outdated symmetric crypto algorithms. (Eric Rescorla)
- Change "For example, leap-of-faith or trust-on-first-use based pairing 
methods assume that the" to "For example, *many* leap-of-faith or 
trust-on-first-use based pairing methods assume that the". (Eric Rescorla)
- Remove "intuitive" from "intuitive API for developer". (Eric Rescorla)
- Remove extra 0 in measurements for ed25519. (Eric Rescorla)
- Add that relic now also support x25519 and ed25519. (Eric Rescorla)
- Add citation to SEC 2 recommended domain parameters for comparable RSA 
key lengths. (Eric Rescorla)
- Remove hyphen in wrap-around. (Eric Rescorla)
- Use the secp and sect notation uniformly. (Eric Rescorla)
- Authors have decided against adding commas in the measurements 
reported. We had commas in the earlier versions but the working group 
decided that it can cause confusion even though it provides better 
readability.





-------- Forwarded Message --------
Subject: 	[Lwip] I-D Action: draft-ietf-lwig-crypto-sensors-06.txt
Date: 	Mon, 26 Feb 2018 11:38:07 -0800
From: 	internet-drafts@ietf.org
To: 	i-d-announce@ietf.org
CC: 	lwip@ietf.org



A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Light-Weight Implementation Guidance WG of the IETF.

         Title           : Practical Considerations and Implementation Experiences in Securing Smart Object Networks
         Authors         : Mohit Sethi
                           Jari Arkko
                           Ari Keranen
                           Heidi-Maria Back
	Filename        : draft-ietf-lwig-crypto-sensors-06.txt
	Pages           : 34
	Date            : 2018-02-26

Abstract:
    This memo describes challenges associated with securing resource-
    constrained smart object devices.  The memo describes a possible
    deployment model where resource-constrained devices sign message
    objects, discusses the availability of cryptographic libraries for
    resource-constrained devices and presents some preliminary
    experiences with those libraries for message signing on resource-
    constrained devices.  Lastly, the memo discusses trade-offs involving
    different types of security approaches.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-lwig-crypto-sensors/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-06
https://datatracker.ietf.org/doc/html/draft-ietf-lwig-crypto-sensors-06

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-lwig-crypto-sensors-06


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
Lwip mailing list
Lwip@ietf.org
https://www.ietf.org/mailman/listinfo/lwip