Re: [Secdispatch] EDHOC Summary
Göran Selander <goran.selander@ericsson.com> Thu, 11 April 2019 23:09 UTC
Return-Path: <goran.selander@ericsson.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AFE25120424 for <secdispatch@ietfa.amsl.com>; Thu, 11 Apr 2019 16:09:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.022
X-Spam-Level:
X-Spam-Status: No, score=-1.022 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FROM_EXCESS_BASE64=0.979, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TZlYQPwq-bEM for <secdispatch@ietfa.amsl.com>; Thu, 11 Apr 2019 16:09:00 -0700 (PDT)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40043.outbound.protection.outlook.com [40.107.4.43]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5DF5F1202D4 for <secdispatch@ietf.org>; Thu, 11 Apr 2019 16:09:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=/9cGhgY8/KYl6/W69oSJ2caPgfIBDO5B/T/MVh275o0=; b=BYppyGlDJ4tTYC4A/iunascqjIc1Wc35L2ia6wEX0hV/HeXJ77eGmEXHz2dArkmDWigItNKD72ftz/OedhRfIJWD3rm2q7uhsG/4ejQzuENJ5gbmqvdrnGqliI0LCC2C9NtXEGeKrTc/2LfMuhEM5nkcU49AdUWUJusQPp80ujQ=
Received: from HE1PR07MB4172.eurprd07.prod.outlook.com (20.176.166.25) by HE1PR07MB3372.eurprd07.prod.outlook.com (10.170.247.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1792.11; Thu, 11 Apr 2019 23:08:56 +0000
Received: from HE1PR07MB4172.eurprd07.prod.outlook.com ([fe80::c587:c2ec:e227:84fd]) by HE1PR07MB4172.eurprd07.prod.outlook.com ([fe80::c587:c2ec:e227:84fd%4]) with mapi id 15.20.1813.003; Thu, 11 Apr 2019 23:08:56 +0000
From: Göran Selander <goran.selander@ericsson.com>
To: Richard Barnes <rlb@ipv.sx>, Michael Richardson <mcr+ietf@sandelman.ca>
CC: Carsten Bormann <cabo@tzi.org>, "secdispatch@ietf.org" <secdispatch@ietf.org>, Martin Thomson <mt@lowentropy.net>
Thread-Topic: [Secdispatch] EDHOC Summary
Thread-Index: AdTlTpiwSQddzTDHR8ys25qjhhiyAAJEpqUAAB7BU4AAGzlsAAAJZAKAAEp8a4AAAI7nAAAAMeuAAAwqWIA=
Date: Thu, 11 Apr 2019 23:08:56 +0000
Message-ID: <DC16C49A-15BB-454B-A825-608BE3855284@ericsson.com>
References: <359EC4B99E040048A7131E0F4E113AFC01B3311A9F@marchand> <012a4798-fc70-4b5d-b0da-373221c95d38@www.fastmail.com> <721B6044-8DA1-4173-BE73-87D37136DFEE@ericsson.com> <8e8873a9-2352-40af-8e60-370012393ccc@www.fastmail.com> <F7934212-2785-4D8C-992B-2C0572C2A889@tzi.org> <CAL02cgSr38a+PZu4Ttnr-RuMaTD3kE6ACWJDJjV3+Bgn2NNqAA@mail.gmail.com> <3822.1555010100@localhost> <CAL02cgTdKOEQEbPb+=GJKyMBJQqgPfhuvn-3Bs58DdGYLOALTQ@mail.gmail.com>
In-Reply-To: <CAL02cgTdKOEQEbPb+=GJKyMBJQqgPfhuvn-3Bs58DdGYLOALTQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.17.1.190326
authentication-results: spf=none (sender IP is ) smtp.mailfrom=goran.selander@ericsson.com;
x-originating-ip: [213.89.213.86]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: da632a58-5274-461d-9664-08d6bed2acad
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600139)(711020)(4605104)(2017052603328)(7193020); SRVR:HE1PR07MB3372;
x-ms-traffictypediagnostic: HE1PR07MB3372:
x-microsoft-antispam-prvs: <HE1PR07MB3372184AEEBF76F462C368CEF42F0@HE1PR07MB3372.eurprd07.prod.outlook.com>
x-forefront-prvs: 00046D390F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(346002)(39860400002)(376002)(366004)(396003)(189003)(199004)(486006)(106356001)(36756003)(478600001)(6486002)(85202003)(5660300002)(66066001)(305945005)(229853002)(81156014)(93886005)(14444005)(81166006)(71200400001)(6116002)(83716004)(7736002)(33656002)(3846002)(58126008)(97736004)(54906003)(316002)(110136005)(4326008)(186003)(76176011)(6506007)(53546011)(102836004)(256004)(71190400001)(99286004)(25786009)(6436002)(8936002)(53936002)(68736007)(26005)(66574012)(82746002)(8676002)(6512007)(85182001)(105586002)(2616005)(6246003)(86362001)(476003)(11346002)(14454004)(446003)(2906002); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR07MB3372; H:HE1PR07MB4172.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: XYkjNgRYLd2RuRmIsK1J4ubDZ5sNqWl4mkwkjhfN2jhY6bteIYFU0HEPOzL45vGynj1kQP6Xcs78HiNOVqPL0cJco6vTdbGt/PmZPkkqjdyXA+SFeLdfreGnz1Tdv7NIy+9S/pYisEsmM7/rNUk5/yAl9Dc2BDCRJPFlCYsamsfVtOlu3oDkAHug31dugZsK4ljkzHXffZ1fvoQfPOX2cplw8A0a+jCJgXYKjaYjbeaotbP9rWiEiMsbHPEdg63EF66ZiMSWejpZnxFnq+xr7I0NvVuuvn7SxlGxE+T38NBAGiaC0FOLyONan7MIV0LJe9bdYkmScd2Otqc4d68Hf19UZdFDLzWKKWJkj79PL/azR2ejqoWH66WHMLbj+WtIhzwbLxP+ND5SZhLXIeRAQ2IdafuGpMCYcCdhOg8xofk=
Content-Type: text/plain; charset="utf-8"
Content-ID: <B0BDA836B7F5884BB4E06D567EA75D9A@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: da632a58-5274-461d-9664-08d6bed2acad
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Apr 2019 23:08:56.7119 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3372
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/NFTZ28fvRbGtxMPbffKxz3uGGsA>
Subject: Re: [Secdispatch] EDHOC Summary
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2019 23:09:03 -0000
Hi Richard, On 2019-04-11, 21:21, "Richard Barnes" <rlb@ipv.sx> wrote: On Thu, Apr 11, 2019 at 3:15 PM Michael Richardson <mcr+ietf@sandelman.ca <mailto:mcr%2Bietf@sandelman.ca>> wrote: Richard Barnes <rlb@ipv.sx> wrote: > I'd like to push back on this point. It may be that EDHOC has been around for > a while and been well-socialized with the IoT crowd, but it is clearly > deficient in several other types of maturity, e.g., robustness of formal > analyses and state of implementations (AFAICT). I want to be sure that I understand you. Is it your opinion tha the IETF can not form a WG until after a protocol has had formal analysis? How many analysis? How many years? Which publications? I didn't mean anything w.r.t. the formation of a WG. Carsten's implication seemed to be that an EDHOC WG could deliver more quickly than, e.g., one using TLS as a starting point. That's the point I was pushing back on -- I hope we agree that delivering a final security protocol should be gated on robust analysis and multiple implementations. [GS] As I mentioned in my recent reply, given the changes you make to TLS to make message sizes on par with EDHOC, it is a new protocol so the statement about relying on the analysis of TLS is questionable. Comparing implementations there are clearly more of TLS, but, again, this is a new protocol. Göran --Richard -- Michael Richardson <mcr+IETF@sandelman.ca <mailto:mcr%2BIETF@sandelman.ca>>, Sandelman Software Works -= IPv6 IoT consulting =-
- [Secdispatch] EDHOC Summary Roman Danyliw
- Re: [Secdispatch] EDHOC Summary Jim Schaad
- Re: [Secdispatch] EDHOC Summary Michael Richardson
- Re: [Secdispatch] EDHOC Summary Alexey Melnikov
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Jim Schaad
- Re: [Secdispatch] EDHOC Summary Salz, Rich
- Re: [Secdispatch] EDHOC Summary John Mattsson
- Re: [Secdispatch] EDHOC Summary Kathleen Moriarty
- Re: [Secdispatch] EDHOC Summary Michael Richardson
- Re: [Secdispatch] EDHOC Summary Antonio Skarmeta
- Re: [Secdispatch] EDHOC Summary sandoche Balakrichenan
- Re: [Secdispatch] EDHOC Summary Benjamin Kaduk
- Re: [Secdispatch] EDHOC Summary DAN GARCIA CARRILLO
- Re: [Secdispatch] EDHOC Summary Stephen Farrell
- Re: [Secdispatch] EDHOC Summary Kathleen Moriarty
- Re: [Secdispatch] EDHOC Summary Carsten Bormann
- Re: [Secdispatch] EDHOC Summary Jesús Sánchez-Gómez
- Re: [Secdispatch] [core] EDHOC Summary Jari Arkko
- Re: [Secdispatch] [core] EDHOC Summary Pascal Thubert (pthubert)
- Re: [Secdispatch] [core] EDHOC Summary Laurent Toutain
- Re: [Secdispatch] [lp-wan] [core] EDHOC Summary ana minaburo
- Re: [Secdispatch] [lp-wan] [core] EDHOC Summary Renzo Navas
- Re: [Secdispatch] EDHOC Summary Roman Danyliw
- [Secdispatch] EDHOC Summary Blomqvist, Peter
- Re: [Secdispatch] EDHOC Summary Shahid Raza
- Re: [Secdispatch] EDHOC Summary Martin Thomson
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary John Mattsson
- Re: [Secdispatch] EDHOC Summary Christopher Wood
- Re: [Secdispatch] EDHOC Summary Martin Thomson
- Re: [Secdispatch] EDHOC Summary John Mattsson
- Re: [Secdispatch] EDHOC Summary Carsten Bormann
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Eric Rescorla
- Re: [Secdispatch] EDHOC Summary Richard Barnes
- Re: [Secdispatch] EDHOC Summary Eric Rescorla
- Re: [Secdispatch] EDHOC Summary Richard Barnes
- Re: [Secdispatch] EDHOC Summary Michael Richardson
- Re: [Secdispatch] EDHOC Summary Richard Barnes
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Tero Kivinen
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Tero Kivinen
- Re: [Secdispatch] EDHOC Summary Carsten Bormann
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Jim Schaad
- Re: [Secdispatch] EDHOC Summary Owen Friel (ofriel)
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Göran Selander
- Re: [Secdispatch] EDHOC Summary Hannes Tschofenig
- Re: [Secdispatch] EDHOC Summary Benjamin Kaduk
- Re: [Secdispatch] EDHOC Summary Benjamin Kaduk
- Re: [Secdispatch] EDHOC Summary Benjamin Kaduk