[OAUTH-WG] OSCORE

Göran Selander <goran.selander@ericsson.com> Wed, 07 February 2018 15:37 UTC

Return-Path: <goran.selander@ericsson.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AAB5912D87E for <oauth@ietfa.amsl.com>; Wed, 7 Feb 2018 07:37:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.815
X-Spam-Level:
X-Spam-Status: No, score=-2.815 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, SUBJ_ALL_CAPS=1.506] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XhH8sHokF9wB for <oauth@ietfa.amsl.com>; Wed, 7 Feb 2018 07:37:10 -0800 (PST)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 744FC12DA46 for <OAuth@ietf.org>; Wed, 7 Feb 2018 07:37:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1518017825; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=O4YQdGdChWfQbDrCsGA0hX7FFndNDa5iioNFu7TGiWE=; b=LFOOIzCGXPBEQt20SCotUsfTxEAVpSN0W+62BErFOZAG+XlyhlIuynGGedOTq2QR v5ridXmYb1xlSMEq/Ehw7uDO2++ikIt2Je/gPX2hD8aPEfkVTJTercwYfMJGLxsI PPpqreXmpMuuBKV034BFYzdrA8tQRqfktpgoA7qHVus=;
X-AuditID: c1b4fb30-799639c000004778-5c-5a7b1d20b687
Received: from ESESSHC012.ericsson.se (Unknown_Domain [153.88.183.54]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 45.35.18296.02D1B7A5; Wed, 7 Feb 2018 16:37:05 +0100 (CET)
Received: from ESESSMB107.ericsson.se ([169.254.7.108]) by ESESSHC012.ericsson.se ([153.88.183.54]) with mapi id 14.03.0352.000; Wed, 7 Feb 2018 16:37:04 +0100
From: =?utf-8?B?R8O2cmFuIFNlbGFuZGVy?= <goran.selander@ericsson.com>
To: Hannes Tschofenig <Hannes.Tschofenig@ARM.COM>, "OAuth@ietf.org" <OAuth@ietf.org>
CC: "draft-ietf-core-object-security@ietf.org" <draft-ietf-core-object-security@ietf.org>
Thread-Topic: [OAUTH-WG] OSCORE
Thread-Index: AQHToB1G/bi42x7glEW+yKQQZgyBfqOZAgKA
Date: Wed, 7 Feb 2018 15:37:03 +0000
Message-ID: <D6A0C60E.9EC6E%goran.selander@ericsson.com>
References: <AM4PR0801MB2706E520121559D478FB6D99FAFC0@AM4PR0801MB2706.eurprd08.prod.outlook.com> <35cc46fe-3453-e458-af55-a6acb2905e44@ri.se>
In-Reply-To: <35cc46fe-3453-e458-af55-a6acb2905e44@ri.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.7.3.170325
x-originating-ip: [153.88.183.150]
Content-Type: text/plain; charset="utf-8"
Content-ID: <9A82467727DD824893C4FB4E8C967C67@ericsson.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrCIsWRmVeSWpSXmKPExsUyM2K7ma6ibHWUwcN3zBbT/p1hsbg54xST xcm3r9gcmD3WzFvD6LFkyU+mAKYoLpuU1JzMstQifbsErozFK68yFbwSrpiwdiJ7A+MK4S5G Tg4JAROJ7wfnsHYxcnEICRxmlNi5aTs7hLOYUWLm1KPMIFVsAi4SDxoeMXUxcnCICIRJTGvU BwkzC0RLXJvXwARiCwtISRw4v5wVxBYRkJc4sv4hG4RtJDHhzz0WEJtFQEXiVMtRsBpeAQuJ 11evskDs6meUuHf2ODtIglPAUuLBgd1gexkFxCS+n1rDBLFMXOLWk/lMEFcLSCzZc54ZwhaV ePn4H9hQUQE9ib097WwQcSWJFdsvMYLczCygKbF+F9TN1hKb701ihbAVJaZ0P2SHuEdQ4uTM JywTGMVnIdk2C6F7FpLuWUi6ZyHpXsDIuopRtDi1OCk33chIL7UoM7m4OD9PLy+1ZBMjMO4O bvltsIPx5XPHQ4wCHIxKPLyFfNVRQqyJZcWVuYcYJTiYlUR43dmBQrwpiZVVqUX58UWlOanF hxilOViUxHlPevJGCQmkJ5akZqemFqQWwWSZODilGhg3BGWp665iLrb8717xw6Gr4CtHxdwH uxnrClbFRzJv987RK+Zd7iCvZFh+f4PHjR61H5vO+6yNOf5rXX/BHTvGPvFTp79P5nMNid30 fMbTdQdKch+6ceil9M9edc9DsH3x6Q1nKxlkt3g+LMqzX3H72O4Jn2cvK2rgkuV0VvwfEnhr zsp3S3uVWIozEg21mIuKEwGMr39FtwIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/8mCjga-RDkwzF2ESyZCyJQROyP4>
Subject: [OAUTH-WG] OSCORE
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Feb 2018 15:37:15 -0000

Hi Hannes, and all

Thanks for the announcement.

To be a little bit more precise, the statement is that a CoAP-mappable
HTTP message can be mapped to CoAP (using RFC 8075), protected with OSCORE
(as specified in the referenced draft) and transported with HTTP (as
exemplified in the referenced draft). The main use case is in conjunction
with an HTTP-CoAP translational proxy (RFC 8075), and the mapping would
with this construction result in a CoAP-mappable HTTP request being
protected by an HTTP client and verified by a CoAP server.

This functionality was proposed by OCF for their end-to-end REST use
cases. Happy to hear any comments on the construction as described in the
draft.


Note that Hannes referenced the wrong version of the draft, here is the
latest:
 
https://tools.ietf.org/html/draft-ietf-core-object-security-08


Göran


On 2018-02-07 11:06, Hannes Tschofenig wrote:
> Hi guys,
>
> You may be interested to hear that a group of people working on Internet
> of Things security believe they have found a solution to deal with the
> challenges we had in protecting HTTP requests/responses.
>
> Here is the draft:
> https://tools.ietf.org/html/draft-ietf-core-object-security-07
>
> (The draft is mostly focused on CoAP but it is supposed to be applicable
> also to HTTP.)
>
> Ciao
> Hannes
>
> IMPORTANT NOTICE: The contents of this email and any attachments are
> confidential and may also be privileged. If you are not the intended
> recipient, please notify the sender immediately and do not disclose the
> contents to any other person, use it for any purpose, or store or copy
> the information in any medium. Thank you.
>
>
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>