Re: [Privsec-discuss] [Stackevo] Consolidation

Eliot Lear <lear@cisco.com> Mon, 02 October 2017 10:59 UTC

Return-Path: <lear@cisco.com>
X-Original-To: privsec-discuss@ietfa.amsl.com
Delivered-To: privsec-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8FF2C132199; Mon, 2 Oct 2017 03:59:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.5
X-Spam-Level:
X-Spam-Status: No, score=-14.5 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A3PkPXmCGHiV; Mon, 2 Oct 2017 03:59:50 -0700 (PDT)
Received: from aer-iport-3.cisco.com (aer-iport-3.cisco.com [173.38.203.53]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 612D3134593; Mon, 2 Oct 2017 03:59:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8693; q=dns/txt; s=iport; t=1506941989; x=1508151589; h=subject:to:cc:references:from:message-id:date: mime-version:in-reply-to; bh=wmAT+4j8a2bAkV+oNgSVFm1XkTkMBSSHbBv06Wa1u4Y=; b=DntIq8EgcftCLUaFKhIu230/45fMNHIKLIsvM/8mvgQkCx8Vesy0AEKw 1nVg9u/QmjPtViRoSIa+r2O0VvVhdXsG8swv9L++byo1q/2gpI2ccIni6 By+Uwf52Lqw/d2V/pg8nt049/IQwR7OLQ6mKcUYvGB/qSv6o38ipO4nUH c=;
X-Files: signature.asc : 481
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0DuAQA2G9JZ/xbLJq1cGQEBAQEBAQEBA?= =?us-ascii?q?QEBBwEBAQEBhS+EIIsTkEIikG6HUAcDhTsChQIUAQIBAQEBAQEBayiFGAEBAQE?= =?us-ascii?q?CASNWEAsYKgICVwYBDAgBAYokCKRggicniw8BAQEBAQEBAQEBAQEBAQEBAQEBA?= =?us-ascii?q?QEOD4MthWgLgnKIF4JhAQSKHpcUhDyCIY4Ii12HLJVUgTk2IYEOMiEIHRWHaD6?= =?us-ascii?q?JcQEBAQ?=
X-IronPort-AV: E=Sophos;i="5.42,469,1500940800"; d="asc'?scan'208,217";a="656151722"
Received: from aer-iport-nat.cisco.com (HELO aer-core-3.cisco.com) ([173.38.203.22]) by aer-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 02 Oct 2017 10:59:43 +0000
Received: from [10.61.238.204] ([10.61.238.204]) by aer-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id v92Axhpc002385; Mon, 2 Oct 2017 10:59:43 GMT
To: Jari Arkko <jari.arkko@piuha.net>, IANA Strategy <iana-strategy@iab.org>, Stackevo <stackevo@iab.org>, tech-plenary@iab.org, privsec-discuss@iab.org
Cc: IAB <iab@iab.org>
References: <3F737F0E-9834-4469-9DB6-5EE392E96C2C@piuha.net> <C520880D-668F-4D46-BF46-0796D60877F1@piuha.net>
From: Eliot Lear <lear@cisco.com>
Message-ID: <2f8d2c50-02f4-5732-6035-0c7daff442c0@cisco.com>
Date: Mon, 2 Oct 2017 12:59:42 +0200
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0) Gecko/20100101 Thunderbird/52.3.0
MIME-Version: 1.0
In-Reply-To: <C520880D-668F-4D46-BF46-0796D60877F1@piuha.net>
Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="s0248ArQtsB0BP6pQcEihlwlAuFe6fwEd"
Archived-At: <https://mailarchive.ietf.org/arch/msg/privsec-discuss/wG7YXgfKMaQ1M9RXWAbkTqbgUMM>
Subject: Re: [Privsec-discuss] [Stackevo] Consolidation
X-BeenThere: privsec-discuss@iab.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Privacy and Security Discussion List <privsec-discuss.iab.org>
List-Unsubscribe: <https://www.iab.org/mailman/options/privsec-discuss>, <mailto:privsec-discuss-request@iab.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privsec-discuss/>
List-Post: <mailto:privsec-discuss@iab.org>
List-Help: <mailto:privsec-discuss-request@iab.org?subject=help>
List-Subscribe: <https://www.iab.org/mailman/listinfo/privsec-discuss>, <mailto:privsec-discuss-request@iab.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Oct 2017 10:59:52 -0000

Hi Jari,

On 9/29/17 12:00 PM, Jari Arkko wrote:
>
> So, do the folks in the different programs have advice to the IAB in
> this topic? In particular:
>
> 1. Do you see architectural issues within your own field that relates
> to consolidation trends, and how those affect the Internet?

In the context of where I'm working (IoT security), every chip
manufacturer has their own platform/SOC, for instance, and add to that a
few operating systems and a few extra frameworks on top of them, and,
well, I'd say there's a consolidation somewhere in the future.  We are
seeing some market consolidation, but it hasn't caused a technology
consolidation (yet).

>
> 2. What potential new architectural structures might provide support
> to either fighting the consolidation trend, or accelerating it?

The notion of trusted introduction is well established in PKI.  However,
what it means in the context of IoT is challenging.  For instance: RFCs
7252 and 7925 make an implicit (?) assumption of access to the DNS when
domain names are used.  That resolution mechanism may not be appropriate
in all circumstances.  Perhaps ENAME will consider this aspect a bit.

>
> 3. Are there research programs that you believe would be useful in
> this space, but are currently not being pursued? Which ones?

Nope.  T2TRG is a hopping party!

Eliot