IETF Logo Mail Archive

[Secdispatch] Agenda time request: DANE for IOT security

Shumon Huque <shuque@gmail.com> Tue, 13 October 2020 00:53 UTC

Return-Path: <shuque@gmail.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B75833A0AB8 for <secdispatch@ietfa.amsl.com>; Mon, 12 Oct 2020 17:53:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZBuJrVRL3exG for <secdispatch@ietfa.amsl.com>; Mon, 12 Oct 2020 17:53:15 -0700 (PDT)
Received: from mail-ed1-x535.google.com (mail-ed1-x535.google.com [IPv6:2a00:1450:4864:20::535]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A6863A0A42 for <secdispatch@ietf.org>; Mon, 12 Oct 2020 17:53:15 -0700 (PDT)
Received: by mail-ed1-x535.google.com with SMTP id i5so19072204edr.5 for <secdispatch@ietf.org>; Mon, 12 Oct 2020 17:53:15 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:from:date:message-id:subject:to; bh=/TAi0AsvUXTwEXmTQEIYZIoiT0GAQH6WsQ9ekutgAH8=; b=Q+gXDEVqffg8DzDm5BjtJqv0BZB4Y1YjNo8H3iYAELtMXZAyTOvZU35Q8D178BpdwU soqgSyYDtglgDf5gNZvXjagZLkBfmsT95Nnk9JXZKr1PALPaTa3PMwxgQXTEToL4aMdj owldqvyLDMT5GrOTXUu6Tjk8zpRpnEi6li8RuYhw7LN552GLB0RiQSw0kWhScV+uRLnO IFbK7XPC8yVA3nHx20pMCWs/iGJ0UmiiZGDICakpFKvTBuviYPVc6FIMzzS9vc2rpmoQ 8mtcnPwvinyo95dO95kbtWL9cK7cP1rUBC3w55ZYI4iIyCCCnsyd2dmw7CoIYhSv1Ohn mHSQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=/TAi0AsvUXTwEXmTQEIYZIoiT0GAQH6WsQ9ekutgAH8=; b=fQti3ZDdEqagc6zEgvRGG6Ia5aCun5eT4p5opSP7C7Q2xRP0xRPkSxg9t/T0RFSw/f aEf5XlBX8f2qql2cQ0FLijIsOm5vGLBN7jHLFG2RgGl0toSS+AvjYbJIJj7BnB66zrym N+BY09cNoV2Y20tc4n6HV+16DSlP6ZPpLKOuoZhOLsZ4mVl0jAiHvzGs/uHBH0r3npra lvt34+wRrAU3IuciCddAypuvSgcChezwcM4H2GRg2UJq6lcpiybBmgmy71ttMkcMge7N DD+0P6GqJnvqCaLKv2Nv0vxcAZmkiai0p0yEDbFNL3w50Y3Yb8W5AWiVPivhWDN9WC4U AUQg==
X-Gm-Message-State: AOAM531uxzUZ6w84/u3UkcrsJhMejYaw4eBFwwm+hslfvke0DZjia6Fr SXJVPdxzYr6ShFJWJMP4zkmr+SuIvA2p6RTXOvBXZSdVmpM=
X-Google-Smtp-Source: ABdhPJwTiylddBSKMQJkHaxPsOpr2ttXEonDSfa9ZXOR/ASssch48EoZ6bpH/XF/Wro7IG2Q3rTZbrZzX+XNKZwwfVA=
X-Received: by 2002:a05:6402:b0e:: with SMTP id bm14mr17997173edb.259.1602550393263; Mon, 12 Oct 2020 17:53:13 -0700 (PDT)
MIME-Version: 1.0
From: Shumon Huque <shuque@gmail.com>
Date: Mon, 12 Oct 2020 20:53:02 -0400
Message-ID: <CAHPuVdUKVaZfpyg_aLf6--CXTo_24SEq3ju+sm7OWW9L75_R+Q@mail.gmail.com>
To: secdispatch@ietf.org
Content-Type: multipart/alternative; boundary="000000000000ecda0705b182d6be"
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/PXAN6rBQSDKtn7jKNPit4_xno58>
Subject: [Secdispatch] Agenda time request: DANE for IOT security
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Oct 2020 00:53:17 -0000

Dear SecDispatch chairs,

We'd like to ask for a presentation slot at SecDispatch during
IETF109 to talk about the use of DNS and DANE for IOT security.
We'd cover the following set of topics:

* DANE for TLS client authentication. Some proposed mechanisms
  are described in the following drafts, which were originally
  written a while back, and have recently been refreshed:
    https://tools.ietf.org/html/draft-huque-dane-client-cert-04
    https://tools.ietf.org/html/draft-huque-tls-dane-clientid-02

* The use of DNS & DANE for certificate discovery.

* Expanding the scope of DANE to cover the general use case of object
  security (DANE currently offers TLSA for TLS channel authentication,
  and SMIMEA for object security in email applications and email like
  identities, so neither quite fit the bill in their current forms).

Shumon Huque
(with some colleagues working in the IOT security space).

v2.1.27 | Report a Bug | By Email