Re: [saag] [6lowpan] SOLACE things at SAAG
Carsten Bormann <cabo@tzi.org> Mon, 29 October 2012 21:16 UTC
Return-Path: <cabo@tzi.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D83AD21F86E7; Mon, 29 Oct 2012 14:16:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -107.337
X-Spam-Level:
X-Spam-Status: No, score=-107.337 tagged_above=-999 required=5 tests=[AWL=-1.087, BAYES_00=-2.599, HELO_EQ_DE=0.35, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p-OZ9WrV6y4B; Mon, 29 Oct 2012 14:16:32 -0700 (PDT)
Received: from informatik.uni-bremen.de (mailhost.informatik.uni-bremen.de [IPv6:2001:638:708:30c9::12]) by ietfa.amsl.com (Postfix) with ESMTP id ED9D721F86E1; Mon, 29 Oct 2012 14:16:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at informatik.uni-bremen.de
Received: from smtp-fb3.informatik.uni-bremen.de (smtp-fb3.informatik.uni-bremen.de [134.102.224.120]) by informatik.uni-bremen.de (8.14.3/8.14.3) with ESMTP id q9TLFdsf029404; Mon, 29 Oct 2012 22:15:39 +0100 (CET)
Received: from [192.168.217.105] (p54891A96.dip.t-dialin.net [84.137.26.150]) (using TLSv1 with cipher AES128-SHA (128/128 bits)) (No client certificate requested) by smtp-fb3.informatik.uni-bremen.de (Postfix) with ESMTPSA id 5B04D194; Mon, 29 Oct 2012 22:15:38 +0100 (CET)
Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\))
Content-Type: text/plain; charset="iso-8859-1"
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <508EEB07.8080807@cs.tcd.ie>
Date: Mon, 29 Oct 2012 22:15:37 +0100
Content-Transfer-Encoding: quoted-printable
Message-Id: <8AF21C42-1B84-4CD1-9904-AF4CA1AB16B5@tzi.org>
References: <015901cdb0d3$d38cf1f0$7aa6d5d0$@a-star.edu.sg> <CAC8QAccHFddngBnWynnVbSc=hhwbCmXbh9QRo=jcqPxfGYeiHg@mail.gmail.com> <1116.1351177270@sandelman.ca> <02a101cdb5f5$51109a70$f331cf50$@a-star.edu.sg> <A6012D01-F7B0-406F-8585-FFEF4A0E92D9@tzi.org> <508EBD6B.1070606@cs.tcd.ie> <10703.1351542774@obiwan.sandelman.ca> <508EEB07.8080807@cs.tcd.ie>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
X-Mailer: Apple Mail (2.1499)
X-Mailman-Approved-At: Wed, 07 Nov 2012 11:55:37 -0800
Cc: Cullen Jennings <fluffy@cisco.com>, roll@ietf.org, "'Keoh, Sye Loong'" <sye.loong.keoh@philips.com>, saag@ietf.org, 6lowpan@ietf.org
Subject: Re: [saag] [6lowpan] SOLACE things at SAAG
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/saag>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Oct 2012 21:16:33 -0000
On Oct 29, 2012, at 21:45, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote: > If he and Cullen want to arm-wrestle > that's fine:-) Well, Cullen's I-D (please have a look at draft-jennings-core-transitive-trust-enrollment-01.txt,.pdf) is a very good example for the kind of input document that we are looking for. But it is just one way of doing things. There are so many others. To a large extent, the differences are not just based on technological choices, but on what people are actually trying to do with the smart objects, i.e., what purpose in life they have. After half a decade of kicking around half-baked solutions in this space in various IETF working groups, I think it is a good idea to spend more time understanding the design space. How, and where, to spend this time in the most productive way is what I would like to discuss with interested people before we do the SAAG slot: -> solace@ietf.org Grüße, Carsten PS. Here is section 3.3 of the CoRE roadmap I-D, which lists a couple more related drafts: Several individual drafts analyze the issues around the security of constrained devices in constrained networks. | draft-garcia-core-security | | 2012-03-26 | | draft-sarikaya-core-sbootstrapping | -05 | 2012-07-10 | | draft-jennings-core-transitive-trust-enrollment | -01 | 2012-10-13 | [I-D.garcia-core-security] in particular describes the "Thing Lifecycle" and discusses resulting architectural considerations. [I-D.jennings-core-transitive-trust-enrollment] demonstrates a specific approach to securing the Thing Lifecycle based on defined roles of security players, including a Manufacturer, an Introducer, and a Transfer Agent. Further work around Thing Lifecycles is also expected to occur in the SOLACE initiative (Smart Object Lifecycle Architecture for Constrained Environments), with its early mailing list at solace@ietf.org -- developed after the model of the COMAN initiative (Management for Constrained Management Networks and Devices, coman@ietf.org, [I-D.ersue-constrained-mgmt]).
- Re: [saag] SOLACE things at SAAG Stephen Farrell
- Re: [saag] [6lowpan] SOLACE things at SAAG Carsten Bormann
- Re: [saag] [6lowpan] SOLACE things at SAAG Cullen Jennings (fluffy)