IETF Logo Mail Archive

[Secdispatch] OMA SpecWorks - E2E Security

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Wed, 06 March 2019 12:42 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 673B91292F1 for <secdispatch@ietfa.amsl.com>; Wed, 6 Mar 2019 04:42:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pWwr8CS941ku for <secdispatch@ietfa.amsl.com>; Wed, 6 Mar 2019 04:42:06 -0800 (PST)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0609.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe1e::609]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 25AFB1289FA for <secdispatch@ietf.org>; Wed, 6 Mar 2019 04:42:05 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=zcphvF58NSnOiGM5qk4K2+25+sLdqX0Mj8+JC3dLM0E=; b=KrJu/HWTgLNRCQdrIt1FBuRkLkDb+Q9KZJBIgrAfH525WDDGCD8qU632V+5quB0KuUgQeBI1SMxFJFuIHUTOnsTnI5uQGZWl1MZPEypcK/ZyNOtdQcEZAFYWYG3ChsXf9SPLly1hsatMM/EykpM7R+FO5/B1XRxdL08AsoZ8DYQ=
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com (10.173.75.16) by VI1PR0801MB2030.eurprd08.prod.outlook.com (10.173.74.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1665.19; Wed, 6 Mar 2019 12:42:02 +0000
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::dd0a:bfcc:b6ce:8d65]) by VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::dd0a:bfcc:b6ce:8d65%11]) with mapi id 15.20.1686.018; Wed, 6 Mar 2019 12:42:02 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: "secdispatch@ietf.org" <secdispatch@ietf.org>
Thread-Topic: OMA SpecWorks - E2E Security
Thread-Index: AdTUGD+51tuvdPoUQ6SOU72GIxJZdA==
Date: Wed, 06 Mar 2019 12:42:02 +0000
Message-ID: <VI1PR0801MB21126C9CDA740FEAC460F53FFA730@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.114.151]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 274ebb45-5af5-47fb-42ce-08d6a23121b7
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600127)(711020)(4605104)(4618075)(2017052603328)(7153060)(7193020); SRVR:VI1PR0801MB2030;
x-ms-traffictypediagnostic: VI1PR0801MB2030:
x-microsoft-exchange-diagnostics: 1; VI1PR0801MB2030; 20:+tofD0VewfoY0ntm2lpEcXfVYzWi/xynu1QHaa9Vm4zHYQ7CHzx35gJ+YdR3vYRXUzy7S7eWyHJHdna4b4Yl//Gri1jYiEBGgHGU+xVoxdukKhVBfJLcHOcPKn7ujlBsCIT4J4YgplhqP23mVsj0sWiXZ0jg83ZYd/wo/E36aOA=
x-microsoft-antispam-prvs: <VI1PR0801MB20304E5F4F4095A669CB39EAFA730@VI1PR0801MB2030.eurprd08.prod.outlook.com>
x-forefront-prvs: 0968D37274
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(366004)(136003)(396003)(346002)(376002)(39860400002)(53754006)(40434004)(199004)(189003)(86362001)(486006)(66066001)(186003)(3846002)(2906002)(6116002)(790700001)(7696005)(99286004)(15650500001)(256004)(5024004)(6436002)(2420400007)(14444005)(5640700003)(14454004)(7736002)(102836004)(71200400001)(5660300002)(74316002)(26005)(53936002)(316002)(7110500001)(6506007)(105586002)(10710500007)(8936002)(55016002)(6306002)(9686003)(54896002)(71190400001)(97736004)(8676002)(106356001)(2351001)(478600001)(6916009)(25786009)(2501003)(1730700003)(81156014)(81166006)(52536013)(72206003)(33656002)(476003)(68736007); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR0801MB2030; H:VI1PR0801MB2112.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: hm+kdat8dyZqjN3soJ80beWVuipHy1RMnW3GjMQK1kkzmrh2UtgbAh5L759W7fXxMXXaECHhskczf+Pizo/P8/ccAPRhEiJW4k8y+G/rfvb+sQuz61usUHSNyExJ3aWtNKlZIxWvbxt6290J+uf3fhV520WqgayIlWBljaxfWR/cmopBOMhE6n9uHu2WVEvEKxJVu2U6DZ+WoK66RpdTUm2CjAtiWL8v1MFqTQmRpoiDMXX2bQx4vvMRKV9p5J0KT/MVHuBnZuhw0nW8o7jswvwiuDFmfaPYLpmDhYiBxn27pDZJwk7RQlIz6TCZIMYOpQbibQWlKOJ+hhOhtnOfSfJfAYmRE6K0jFIsBwNGpBRSs+5XMnIjmYfBAT6rAdis/HFCvadhNaw9ZHl3YVwY+qBaAHWZY486lL3/kVEt9fg=
Content-Type: multipart/alternative; boundary="_000_VI1PR0801MB21126C9CDA740FEAC460F53FFA730VI1PR0801MB2112_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 274ebb45-5af5-47fb-42ce-08d6a23121b7
X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Mar 2019 12:42:02.0968 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0801MB2030
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/hO5htbgtMpk1fCqTOwhEpHVRt3A>
Subject: [Secdispatch] OMA SpecWorks - E2E Security
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Mar 2019 12:42:10 -0000

Hi all,

I thought it would be useful to clarify the presentation Goeran made yesterday about the e2e security features in LwM2M. I didn't want to use the valuable meeting time for such purpose.

Goeran referred to a whitepaper and showed a picture that illustrated an end-to-end security use case in an NB IoT scenarios using various proxies/gateways.

The mentioned whitepaper has not been approved in OMA SpecWorks and has not been published yet.

More importantly though the LwM2M specifications do not contain any proxy/gateway support. The work was planned but due to lack of interest did not process. Additionally, the LwM2M architecture does not describe how end-to-end communication happens, i.e. the communication is only described between the a LwM2M-enabled IoT device and the device management server. The interaction with an application server is outside the scope of LwM2M.

Members in OMA have offered end-to-end security solutions on top of LwM2M. If you care to hear what we did, drop me an email.

Ciao
Hannes

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email