IETF Logo Mail Archive

Re: [Madinas] identities for legitimate devices

mohamed.boucadair@orange.com Wed, 04 November 2020 18:03 UTC

Return-Path: <mohamed.boucadair@orange.com>
X-Original-To: madinas@ietfa.amsl.com
Delivered-To: madinas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 529233A13F6 for <madinas@ietfa.amsl.com>; Wed, 4 Nov 2020 10:03:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0c8iVFrqGQnw for <madinas@ietfa.amsl.com>; Wed, 4 Nov 2020 10:03:32 -0800 (PST)
Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.70.36]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34EE23A0E50 for <madinas@ietf.org>; Wed, 4 Nov 2020 10:03:32 -0800 (PST)
Received: from opfednr07.francetelecom.fr (unknown [xx.xx.xx.71]) by opfednr25.francetelecom.fr (ESMTP service) with ESMTP id 4CRDzQ4PcfzCrQG; Wed, 4 Nov 2020 19:03:30 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1604513010; bh=reO7hunsrEWkYC3pDB4BZVN51gptmoTrR1mjwb4Ixug=; h=From:To:Subject:Date:Message-ID:Content-Type: Content-Transfer-Encoding:MIME-Version; b=cjGTe+u4o3R6Y376NO9dP7eivnxdv7yYS/kdiWyDY25ka+JiFI5W7dRjk1lW6tMME 0FNp4ONhs+YwA4fzZwGIjgELjcKcjNpMX8fyqnpdn+iOZEnHS4MlBwvvnbiIvXe9Cv BQdycOGG1T5vQHS82XOPARr3mP8M22rHMd9fFsRW7CxlM+T5TL7lmzFEmC2CEp3BE1 n5WKAYvhOZ5SUa5BjCzRfRG3Cc4M/G9u1bP+X5cRoREyMQmpROzMjTbRRVMdY3syJJ JqKVXUF5ftGXhfHHQADJHFXnRWtSI9l9+e6T1fBNf4r6a3TTXNGVDOEiSm+gDx7B2d eFQyupmgsGswA==
Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.73]) by opfednr07.francetelecom.fr (ESMTP service) with ESMTP id 4CRDzQ3j6YzFpXX; Wed, 4 Nov 2020 19:03:30 +0100 (CET)
From: mohamed.boucadair@orange.com
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Michael Richardson <mcr+ietf@sandelman.ca>, Qin Wu <bill.wu@huawei.com>, "madinas@ietf.org" <madinas@ietf.org>
Thread-Topic: [Madinas] identities for legitimate devices
Thread-Index: Adayo6AP3iI+gwClTfSLsAtXwuqqWwAHzMaAAAEC+4AAAzFG8A==
Date: Wed, 04 Nov 2020 18:03:29 +0000
Message-ID: <11378_1604513010_5FA2ECF2_11378_19_1_787AE7BB302AE849A7480A190F8B93303157005F@OPEXCAUBMA2.corporate.adroot.infra.ftgroup>
References: <B8F9A780D330094D99AF023C5877DABAADB22346@dggeml511-mbs.china.huawei.com> <14818.1604508889@localhost> <7b63421e-a0f7-2dd4-0d0d-3f7c1f8fa3b9@cs.tcd.ie>
In-Reply-To: <7b63421e-a0f7-2dd4-0d0d-3f7c1f8fa3b9@cs.tcd.ie>
Accept-Language: fr-FR, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.114.13.245]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/madinas/7JOagUa61BxyH7lq9rvOF27l5jI>
Subject: Re: [Madinas] identities for legitimate devices
X-BeenThere: madinas@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: MAC Address Device Identification for Network and Application Services <madinas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/madinas>, <mailto:madinas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/madinas/>
List-Post: <mailto:madinas@ietf.org>
List-Help: <mailto:madinas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/madinas>, <mailto:madinas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Nov 2020 18:03:41 -0000

Hi Stephen, 

> such n/w's often do not need to identify a
> specific device, they only need to authorise access to the network.

I'm afraid that more is needed for the home network. Think about all the CPEs that display the map of connected devices (and that a user can manage), assign a static IP address for specific machines, program time slots when connectivity access is allowed for some devices, or future deployments where a specific DoH URI Template can be returned to one child PCs, etc. 

Cheers,
Med

> -----Message d'origine-----
> De : Madinas [mailto:madinas-bounces@ietf.org] De la part de Stephen
> Farrell
> Envoyé : mercredi 4 novembre 2020 18:24
> À : Michael Richardson <mcr+ietf@sandelman.ca>; Qin Wu
> <bill.wu@huawei.com>; madinas@ietf.org
> Objet : Re: [Madinas] identities for legitimate devices
> 
> 
> Hiya,
> 
> On 04/11/2020 16:54, Michael Richardson wrote:
> > But, the key (pun intended), in my opinion, is to change the
> device
> > identity from being a MAC address to being a key.
> 
> While agreeing with the goal (for home networks and similar) I'd
> word it differently - such n/w's often do not need to identify a
> specific device, they only need to authorise access to the network.
> A common PSK can be fine for that.
> 
> S.

_________________________________________________________________________________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.

v2.23.0 | Report a Bug | By Email