Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensors-02
Zhen Cao <zhencao.ietf@gmail.com> Thu, 09 March 2017 10:02 UTC
Return-Path: <zhencao.ietf@gmail.com>
X-Original-To: lwip@ietfa.amsl.com
Delivered-To: lwip@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C766F1293E4 for <lwip@ietfa.amsl.com>; Thu, 9 Mar 2017 02:02:20 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.998
X-Spam-Level:
X-Spam-Status: No, score=-0.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z2Lqh6H04hvt for <lwip@ietfa.amsl.com>; Thu, 9 Mar 2017 02:02:19 -0800 (PST)
Received: from mail-ua0-x229.google.com (mail-ua0-x229.google.com [IPv6:2607:f8b0:400c:c08::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 388591294E3 for <lwip@ietf.org>; Thu, 9 Mar 2017 02:02:19 -0800 (PST)
Received: by mail-ua0-x229.google.com with SMTP id q7so59769250uaf.2 for <lwip@ietf.org>; Thu, 09 Mar 2017 02:02:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=OjQYul5g6bxMk5LE1RzOBQtgnKuIaJ9HLiAOIBK/79M=; b=bcRvWXwG6aKcIWsOf+guT0uYIcurYisQGjXm0OFJUgk6eKHLGkWGM6rHM3Qvs+M9gR 2flpneAWV4tmPICy6h8F7sx513ii9UCQSWuzDdCr5yhDuWnfAskGcDlrRvwn1ZgGuff3 H9CEDQmPLgHuZ9SQdYm9TND5ePh8dmhoyrnFfLDnMayr7F5mw39etsBBk9qW9KFHwZj/ s91mg61tXfykDxNgptAB7IdFIT8Ykha9flEl1C0OGevBZUXPBHStf4csIgnf3xDkbUKz fSKYxjs1aXZj3fz5nymx3T5roaMrP2yh9XtKRb9mheJIJVo0GZ4GFasY6HzhANfprJx7 s2aw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=OjQYul5g6bxMk5LE1RzOBQtgnKuIaJ9HLiAOIBK/79M=; b=mjsOA5U95rzRE+1geUg0CkLz3sjGMyIfvKf5RgYEyj/2KNFH13c1RAxXkmip6JxFhw HFtHmw1DWxgtTGY/Vr7P7TyOeyWYxOQxExgNwIIfBGGaVjH4ur32/auELwJHHrEm2kTE fH0QZsAw5QXXfWfkR2Z/j9RPZWb/kVIfYeEtuz1ChSeqqTjhDNDOthix3IT88Gb/zg4U A4u/654CyASpntG0z4ySuS9xes/NW2QTBootx8LBozCMXg52NSUVftEF+kn/d/K2Ufug +zwH6x9/BK5KN6Sp+Q/oja9y+x4vgZidQvwRSJ2qTQN2L9ogrx7gUVV00IrzcJQO6wIQ qaKg==
X-Gm-Message-State: AMke39nBxrvSPm8u/8vdVsHMzfqKvC+mFamx1KgM9NmCMWlW6q+gHTgZcFek+SiZVhZqGXAzYeVyaGjtbPj5zA==
X-Received: by 10.159.40.34 with SMTP id c31mr6709311uac.146.1489053738233; Thu, 09 Mar 2017 02:02:18 -0800 (PST)
MIME-Version: 1.0
Received: by 10.176.85.154 with HTTP; Thu, 9 Mar 2017 02:02:17 -0800 (PST)
In-Reply-To: <b7961d7c-b8ea-10d0-4018-184786d93dca@gmx.net>
References: <CAFxP68yE9=FWVPGk+qPxJQOA-EcHRydeenmubkdNjWBc_7m=9A@mail.gmail.com> <13016_1488648631_58BAF9B6_13016_315_1_CAO0Djp0ritf6Qs97x=_J_MoHacTyoDFhifeaJ0KwEfRSvzK+FA@mail.gmail.com> <2697af18598c4ad6a8f5d4d4bdd093c9@aalto.fi> <b7961d7c-b8ea-10d0-4018-184786d93dca@gmx.net>
From: Zhen Cao <zhencao.ietf@gmail.com>
Date: Thu, 09 Mar 2017 18:02:17 +0800
Message-ID: <CAFxP68wdi9fL_X7c0mkGL_jKFjfTOfGZ4FyZdq-8_wb-KLN3ow@mail.gmail.com>
To: Hannes Tschofenig <hannes.tschofenig@gmx.net>
Content-Type: multipart/alternative; boundary="94eb2c0466c41e789e054a4957a2"
Archived-At: <https://mailarchive.ietf.org/arch/msg/lwip/bPvBEe578B2G8wNrqz53DhsPJVU>
Cc: "lwip@ietf.org" <lwip@ietf.org>
Subject: Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensors-02
X-BeenThere: lwip@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Lightweight IP stack <lwip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/lwip>, <mailto:lwip-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/lwip/>
List-Post: <mailto:lwip@ietf.org>
List-Help: <mailto:lwip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/lwip>, <mailto:lwip-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Mar 2017 10:02:20 -0000
Hi Hannes, Thanks for the frank points, which are helpful to make documents more impactful. Please see my discussion in-line. On Mon, Mar 6, 2017 at 9:36 PM, Hannes Tschofenig <hannes.tschofenig@gmx.net > wrote: > Hi all, > > as I mentioned in the past I consider this document problematic. > > The selected hardware gives the impression that IoT devices need very > low requirements. This gives inexperienced readers the wrong impression. > I do not think this leads to any incorrect impressions. It clearly states the platform that this work has been carried out, and by informed selection of crypto libraries, security functions can be enabled on such IoT devices. It's much better than the other opposite impression that security is costly and could be avoid as far as we can. > At no point in the document it explains why a typical software stack > required for an IoT device would fit on hardware that has 2 kB of SRAM, > and 32 kB of flash memory. What did you put on that device? (CoAP, DTLS, > Resource Directory, SENML -- protocol talk about in Section 9) I suspect > that there is no firmware update mechanism in place, which is a > typically demanded feature for IoT devices in order to address bugs. > > Other IETF publications recommend key sizes of at least 112 bits > (symmetric). Here is the relevant table from RFC 4492: > Is this 112 bits of symmetric encryption mandatory for even tiny devices? If this is only a recommended value, we can encourage the contributors to generate some reference benchmarks for longer asymmetric key values. > > Symmetric | ECC | DH/DSA/RSA > ------------+---------+------------- > 80 | 163 | 1024 > 112 | 233 | 2048 > 128 | 283 | 3072 > 192 | 409 | 7680 > 256 | 571 | 15360 > > The document, however, describes RSA key sizes of 64, 128, 512 and 2014 > bits! It makes no sense to illustrate performance, and memory > requirements of key sizes that shouldn't be used in today's IoT hardware. > > The document says that it describes smart object implementation > experience but clearly this is far away from real world product > experience. The need for a random number generator is essentially > missing and a reference to a software library does not help either. > > I believe you have started with some hardware and then created the > software & performance measurements. The recommended approach is, > however, to first think about security and the requirements and > subsequently think about what hardware supports the security > requirements and therefore mitigates the threats. > The recommended approach is definitely right for any product design. But considering the various requirements with different security needs, it is pretty hard to cover all of them in one draft. How about to also include some discussion of the limitations of doing this in other scenarios that may break security. > > The document references several work in progress specifications. Also > the pointers to specifications like HIP or IPsec for use with IoT > devices is misleading since they are not reflecting industry practice. > They are at best university research projects. Thanks for checking this. I think Mohit can try to figure out and change these inappropriate citations . Will wait for @Mohit's response anyway. Best regards, Zhen > Ciao > Hannes > > > On 03/06/2017 10:35 AM, Mudugodu Seetarama Raghavendra wrote: > > +1 > > > > > > Regards, > > > > Raghavendra > > > > > > > > ------------------------------------------------------------------------ > > *From:* Lwip <lwip-bounces@ietf.org> on behalf of Rahul Jadhav > > <rahul.ietf@gmail.com> > > *Sent:* Saturday, March 4, 2017 7:30 PM > > *To:* lwip@ietf.org > > *Subject:* Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensors-02 > > > > The draft provides useful information to implementors about different > > challenges related to security aspects especially towards using low-end > > hardware. The deployment model described with the experiences will prove > > helpful to implementors. Will be helpful to take this work forward. > > > > Regards, > > Rahul > > > > On 22 February 2017 at 08:45, Zhen Cao <zhencao.ietf@gmail.com > > <mailto:zhencao.ietf@gmail.com>> wrote: > > > > Hello everyone, > > > > This email starts the WGLC for draft-ietf-lwig-crypto-sensors-02 > > (https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-02 > > <https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-02>) > > > > Could you help review the document and send your comments to the > > mailing list. Thank you in advance. > > > > The WGLC will end in two weeks from now. > > > > BR, > > Zhen > > > > _______________________________________________ > > Lwip mailing list > > Lwip@ietf.org <mailto:Lwip@ietf.org> > > https://www.ietf.org/mailman/listinfo/lwip > > <https://www.ietf.org/mailman/listinfo/lwip> > > > > > > > > > > _______________________________________________ > > Lwip mailing list > > Lwip@ietf.org > > https://www.ietf.org/mailman/listinfo/lwip > > > > > _______________________________________________ > Lwip mailing list > Lwip@ietf.org > https://www.ietf.org/mailman/listinfo/lwip > >
- [Lwip] WGLC for draft-ietf-lwig-crypto-sensors-02 Zhen Cao
- Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensor… Rahul Jadhav
- Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensor… Mudugodu Seetarama Raghavendra
- Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensor… Hannes Tschofenig
- Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensor… Zhen Cao
- Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensor… Hannes Tschofenig
- Re: [Lwip] WGLC for draft-ietf-lwig-crypto-sensor… Mohit Sethi