Re: [Secdispatch] EDHOC Summary

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Tue, 16 April 2019 07:26 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4F69B120151 for <secdispatch@ietfa.amsl.com>; Tue, 16 Apr 2019 00:26:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kOdOhkjVkX1C for <secdispatch@ietfa.amsl.com>; Tue, 16 Apr 2019 00:26:05 -0700 (PDT)
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-ve1eur02on0618.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe06::618]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C9A8D120139 for <secdispatch@ietf.org>; Tue, 16 Apr 2019 00:26:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=qah5DwCnq5wBRcnhpcEe2aD9JAawblxHKG3C89Ae5c4=; b=nVTRieAYAtVyTg7Mz11qUlvvf4BjAayilTdTSWrfGumABipqF4XLvT2L0L57ls0GedCAFOiGIQ5nrwg8rEHVRGn0u2clJnR1ZV2Lrru3P85imKe0i91Kas5pKEsuOvUsCtLYrzCMKbtBIaBT89SXwZkxm+rYHZ608CFjO/GXyoY=
Received: from AM6PR08MB3686.eurprd08.prod.outlook.com (20.178.91.22) by AM6PR08MB4834.eurprd08.prod.outlook.com (10.255.98.205) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1792.19; Tue, 16 Apr 2019 07:26:02 +0000
Received: from AM6PR08MB3686.eurprd08.prod.outlook.com ([fe80::7025:fc8a:7d0a:cb91]) by AM6PR08MB3686.eurprd08.prod.outlook.com ([fe80::7025:fc8a:7d0a:cb91%3]) with mapi id 15.20.1792.020; Tue, 16 Apr 2019 07:26:02 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: "Owen Friel (ofriel)" <ofriel@cisco.com>, Göran Selander <goran.selander@ericsson.com>, Richard Barnes <rlb@ipv.sx>, Michael Richardson <mcr+ietf@sandelman.ca>
CC: Carsten Bormann <cabo@tzi.org>, "secdispatch@ietf.org" <secdispatch@ietf.org>, Martin Thomson <mt@lowentropy.net>
Thread-Topic: Re: [Secdispatch] EDHOC Summary
Thread-Index: AdTzyofk3GE/98irTDSVd9BUcvG+cwAWhESw
Date: Tue, 16 Apr 2019 07:26:02 +0000
Message-ID: <AM6PR08MB36866DB97940341DB43D8331FA240@AM6PR08MB3686.eurprd08.prod.outlook.com>
References: <CY4PR11MB1541D6FD27E0FBD478FCF362DB2B0@CY4PR11MB1541.namprd11.prod.outlook.com>
In-Reply-To: <CY4PR11MB1541D6FD27E0FBD478FCF362DB2B0@CY4PR11MB1541.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.121.58]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: ce294cd4-32ce-433c-e858-08d6c23cc78c
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600140)(711020)(4605104)(4618075)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:AM6PR08MB4834;
x-ms-traffictypediagnostic: AM6PR08MB4834:
x-microsoft-antispam-prvs: <AM6PR08MB483420E01245BBB1E45FFCCEFA240@AM6PR08MB4834.eurprd08.prod.outlook.com>
x-forefront-prvs: 000947967F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(396003)(366004)(346002)(39860400002)(136003)(40434004)(199004)(189003)(68736007)(256004)(106356001)(99286004)(8936002)(6116002)(14444005)(54896002)(33656002)(14454004)(790700001)(3846002)(54906003)(74316002)(53936002)(7736002)(102836004)(25786009)(7696005)(66066001)(6506007)(76176011)(9686003)(11346002)(236005)(26005)(55016002)(71190400001)(186003)(6306002)(4326008)(71200400001)(5024004)(6436002)(478600001)(316002)(8676002)(486006)(5660300002)(229853002)(86362001)(110136005)(6246003)(97736004)(81166006)(52536014)(476003)(105586002)(72206003)(2906002)(81156014)(446003); DIR:OUT; SFP:1101; SCL:1; SRVR:AM6PR08MB4834; H:AM6PR08MB3686.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: lvmslMx3x5SQK7u4vxSbG5YMPZaXzRNTPKQUtY3WTEADpGwU14E9ezgOUlgrczabA9K5H1hbHLkKbzzL6BHRPj+B/7n3nJ7KQ9j1yWcqjmaEm6nVDrdQrGEoyMD49E/vYoOz6CBCJKa836nN1bfmMCtHZXfNnaXJ8KEZ+J63/ezzfMnSrRliozLYAgJsGCf2ZzYqwtzJUrKmdk7eQXZSBamQpjx1CtczIcMydhXqLFdheB/2rCO3WhHYsVM0jJtyHY2ntumQq6jOjDSsj9SR5RkQt5yX0orhCl6HSCNiK1q1qyz+MPAEI6PwZ9pBTUP6st8968k9/BqW+RQxrq7YzJLDspVxkyOwUswdGUM8Pyz8cNoX9K2hniaOKqMuKmfLrxn82Z0lJDD1w6e4L5R1QlU/B2f85rIZ5IjNuVtmfLc=
Content-Type: multipart/alternative; boundary="_000_AM6PR08MB36866DB97940341DB43D8331FA240AM6PR08MB3686eurp_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ce294cd4-32ce-433c-e858-08d6c23cc78c
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Apr 2019 07:26:02.0920 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR08MB4834
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/TI_g2YzAXtLTJ774epPf6zY9DMs>
Subject: Re: [Secdispatch] EDHOC Summary
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 16 Apr 2019 07:26:07 -0000

>     Richard Barnes <rlb@ipv.sx<mailto:rlb@ipv.sx>> wrote:
>         > I'd like to push back on this point. It may be that EDHOC has been around for
>         > a while and been well-socialized with the IoT crowd, but it is clearly
>         > deficient in several other types of maturity, e.g., robustness of formal
>         > analyses and state of implementations (AFAICT).

I would like to point out that initially the work on EDHOC was intentionally not positioned as a TLS replacement (or even competitor).
For years I was told that it is supposed to be used in addition to and on top of TLS.

Fast forward a few years the story is very different now.

This type of positioning helps you to avoid dealing with a number of folks in the IETF (in this case with the TLS crowd) but it does not help in the long run.

Ciao
Hannes

PS: FWIW this is not the first time this has happened. ANIMA wasn’t any different when the proponents claimed that IoT was out of scope.
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.