Re: [Mud] how to increase trust in MUD URL
"M. Ranganathan" <mranga@gmail.com> Wed, 22 January 2020 18:32 UTC
Return-Path: <mranga@gmail.com>
X-Original-To: mud@ietfa.amsl.com
Delivered-To: mud@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9497A120804 for <mud@ietfa.amsl.com>; Wed, 22 Jan 2020 10:32:19 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XHZMmqZU7Pzf for <mud@ietfa.amsl.com>; Wed, 22 Jan 2020 10:32:16 -0800 (PST)
Received: from mail-io1-xd41.google.com (mail-io1-xd41.google.com [IPv6:2607:f8b0:4864:20::d41]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6A857120802 for <mud@ietf.org>; Wed, 22 Jan 2020 10:32:16 -0800 (PST)
Received: by mail-io1-xd41.google.com with SMTP id z193so303085iof.1 for <mud@ietf.org>; Wed, 22 Jan 2020 10:32:16 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=jUC7Y2gPsAPBf8ynJD7jkRZN+eaF2xdcofkaGlFh1D8=; b=S+ZUXUZ3YGjrQC+rSwExYHfmdmJNTr6wxIZLXEo3pDVM9LtFs22Es7nCB7VoGH/Zh2 g90hfLtfXsjj6OG239TLv+SKw5wHvG4SUHF9lzWHcvyE9OSR0dANCiWQ1wv7bw6jESwi K3BSK4M6WMVexwZ1QsEq69wA9Z+bG06Q3Q1RAu2E+NGhfhcJlKPZ6Mkasjjg7ywPnlJh cRYALhKvIaqpKFp8tvDp5VEIjFOJ+l6fE5hBu5bdLQeTzFM2L3dF9Ldpop0GLt6bR5iH TByzLWplacAKn9yldEAyi2DDWAYNYjVy2bsioRgfrfKDtInMO/wkZAU9ZLcKAVbL4z1t iQUQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=jUC7Y2gPsAPBf8ynJD7jkRZN+eaF2xdcofkaGlFh1D8=; b=NfR2aAviy6WyLrKNQoIC+EI8W8Y9udPVf/obJMoa6B7lXjkbHx1xK7nXTFFYhYQdtd F3J2WhyuFStCUGMJleXtnXcvlCM7PyFXaTijHrMpBHNsEXz3JyFhlSljUIr9U5QQLVkS DANnI8G/++krugpXQdOPv0ckIfNY6lGTkSYNFy/Oj6Hwq1oOd5Zr+9rXhNpT5eFG5GRL YCY+akVoSP3uzluuB0m7bAqD1bJpIJBKbKt4iswpswYwhORUx1sDmxiDzyexipMbm/z9 zCwTZEAD8//GAve/+H5DcQojlOL9NaaTi0wragJW96xY6NxV0PDXhDAABRYLgzuyQJtJ unsQ==
X-Gm-Message-State: APjAAAWeFDHdlwiEOWJFsdLlOQkgpljiGbMfsWEmNTPOIbsGeFbKmSTc UffGCWB2pdeMEcLD9YhuBunyvqY0G+plav1M7/k=
X-Google-Smtp-Source: APXvYqxUs88kIYOUgCAL8QF0lyC0tb1TTArlUJ1vIy1esDozRKtKLhmBagCHa2S87ku8LdbWonGSXlyXCD4Jz5CYu3s=
X-Received: by 2002:a5d:8cce:: with SMTP id k14mr8391436iot.294.1579717935585; Wed, 22 Jan 2020 10:32:15 -0800 (PST)
MIME-Version: 1.0
References: <157918044299.26236.8163535356477976451.idtracker@ietfa.amsl.com> <CAFpG3gehp98VB2RpL6LenRJsV=RRQ=1jCTX7mcrmd27pzkYqfg@mail.gmail.com> <CAFpG3gek8qrHjN5LNQUrRrS9+zFuVQQ4y+XorRrr5xySs2fP1g@mail.gmail.com> <20570.1579314460@localhost> <30267.1579654985@localhost> <9b50e4ca-d516-3f3b-5992-1695f8147d18@sit.fraunhofer.de> <30626.1579713687@localhost>
In-Reply-To: <30626.1579713687@localhost>
From: "M. Ranganathan" <mranga@gmail.com>
Date: Wed, 22 Jan 2020 13:31:39 -0500
Message-ID: <CAHiu4JOXOAt2U5soxrHB2D8EMxwkQ-tKv62F2vxAVPdvqAgfzg@mail.gmail.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, mud@ietf.org
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/mud/4wLTM1Drw1PgPQor6t9pnnFYkqM>
Subject: Re: [Mud] how to increase trust in MUD URL
X-BeenThere: mud@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Discussion of Manufacturer Ussage Descriptions <mud.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mud>, <mailto:mud-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mud/>
List-Post: <mailto:mud@ietf.org>
List-Help: <mailto:mud-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mud>, <mailto:mud-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Jan 2020 18:32:20 -0000
On Wed, Jan 22, 2020 at 12:21 PM Michael Richardson <mcr+ietf@sandelman.ca> wrote: > > > Henk Birkholz <henk.birkholz@sit.fraunhofer.de> wrote: > > On 22.01.20 02:03, Michael Richardson wrote: > >> But, updating the URL in IDevID is difficult to do. Quite reasonably it might > >> be impossible without a device recall. The IDevID version is much easier to > >> invest trust into. And it clearly links back to the manufacturer. > > > This is one of the biggest issues that came to my mind ad-hoc. Is changing > > the URI really an option? I would assume this type of encapsulation is > > trustworthy, I think. > > Changing the URI in an IDevID is not, in my opinion, feasible. > While I can imagine ways for an IDevID to be renewed online, I would prefer > that it be buried so deep into the TPM that it can't be changed in the field. I see some words to the contrary in https://tools.ietf.org/html/draft-richardson-opsawg-mud-acceptable-urls-00 i.e. I see the following: "The DHCP and LLDP mechanisms are not signed, but are asserted by the device. " Why can't the MUD URL emitted by the device using DHCP be signed with the device private key? If the IDevID for the device can be sent to the MUD Controller using a trusted agent then the Device can just send a signed MUD URL in the DHCP request (or LLDP),. With this mechanism, it may not be necessary to imbed the MUD URL in the device certificate and the device can freely change the MUD URL with firmware updates. Onboarding mechanisms (e.g. DPP) can be used to authenticate the device against the certificate. With this setup, it is not necessary to include the MUD URL as part of the device certificate. Am I missing something obvious. > > -- > Mud mailing list > Mud@ietf.org > https://www.ietf.org/mailman/listinfo/mud -- M. Ranganathan
- [Mud] how to increase trust in MUD URL Michael Richardson
- Re: [Mud] how to increase trust in MUD URL Henk Birkholz
- Re: [Mud] how to increase trust in MUD URL Michael Richardson
- Re: [Mud] how to increase trust in MUD URL M. Ranganathan
- Re: [Mud] how to increase trust in MUD URL Henk Birkholz
- Re: [Mud] how to increase trust in MUD URL Eliot Lear
- Re: [Mud] how to increase trust in MUD URL Michael Richardson
- Re: [Mud] how to increase trust in MUD URL Michael Richardson
- Re: [Mud] how to increase trust in MUD URL Ted Lemon
- Re: [Mud] how to increase trust in MUD URL Michael Richardson
- Re: [Mud] how to increase trust in MUD URL Eliot Lear
- Re: [Mud] how to increase trust in MUD URL Michael Richardson