Re: [secdir] Secdir last call review of draft-ietf-anima-bootstrapping-keyinfra-16

Randy Bush <randy@psg.com> Sun, 30 September 2018 18:52 UTC

Return-Path: <randy@psg.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7250F130DED; Sun, 30 Sep 2018 11:52:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.901
X-Spam-Level:
X-Spam-Status: No, score=-6.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H3k9YEkTrhll; Sun, 30 Sep 2018 11:52:57 -0700 (PDT)
Received: from ran.psg.com (ran.psg.com [IPv6:2001:418:8006::18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D5033128D0C; Sun, 30 Sep 2018 11:52:53 -0700 (PDT)
Received: from localhost ([127.0.0.1] helo=ryuu.rg.net) by ran.psg.com with esmtp (Exim 4.90_1) (envelope-from <randy@psg.com>) id 1g6gpn-0007xd-9s; Sun, 30 Sep 2018 18:52:51 +0000
Date: Sun, 30 Sep 2018 11:52:49 -0700
Message-ID: <m2sh1qkebi.wl-randy@psg.com>
From: Randy Bush <randy@psg.com>
To: Christian Huitema <huitema@huitema.net>
Cc: Security Directorate <secdir@ietf.org>, draft-ietf-anima-bootstrapping-keyinfra.all@ietf.org, IETF Rinse Repeat <ietf@ietf.org>, anima@ietf.org
In-Reply-To: <153826253306.18743.9250084704876465818@ietfa.amsl.com>
References: <153826253306.18743.9250084704876465818@ietfa.amsl.com>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) Emacs/25.3 Mule/6.0 (HANACHIRUSATO)
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset=US-ASCII
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/IrrRuNQgWIh6KS7mthT3WRU6Shk>
Subject: Re: [secdir] Secdir last call review of draft-ietf-anima-bootstrapping-keyinfra-16
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 30 Sep 2018 18:52:59 -0000

christian,

a stunning review as usual.  but i have two questions which you kind of
finessed.  they are simple binary, i.e. yes/no, questions that the end
user, to whom the IETF is ultimately responsible, really cares about.

if the manufacturer's servers go down, either permanently or even for
a day, does the device i have purchased still work?  i.e. is it fail
soft? [0]

if the manufacturer's servers go down, either permanently or even for
a day, can i give/sell the device i have purchased to a third, well
fourth i guess, party, at my whim and seamlessly unencumbered?

fwiw, i asked these same questions at the 2005 paris side meeting at
l'ecole whatever hosted by mark.  the blank stares i received alarmed
me.  the ietf is ultimately responsible to the users.

thanks.

randy

--

0 - yes, i understand i may not be able to access it through the
    manufacturer's cloud.  so you want to help look at tcpdumps of
    the manufacturer installed thermostat that does not talk to that
    mfgr on net that i am debugging this weekend?  :(