Re: [Secdispatch] EDHOC Summary

John Mattsson <john.mattsson@ericsson.com> Tue, 09 April 2019 15:42 UTC

Return-Path: <john.mattsson@ericsson.com>
X-Original-To: secdispatch@ietfa.amsl.com
Delivered-To: secdispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7BC37120880 for <secdispatch@ietfa.amsl.com>; Tue, 9 Apr 2019 08:42:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8etFBei8xB_f for <secdispatch@ietfa.amsl.com>; Tue, 9 Apr 2019 08:42:44 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60087.outbound.protection.outlook.com [40.107.6.87]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4C59A120881 for <secdispatch@ietf.org>; Tue, 9 Apr 2019 08:42:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IqieYZs48k8/4wb/6793tdqJxhR9kydL8LnrgQkx2qI=; b=GbU3CUJmOZxpGY9fzV7YkZuKtBnt0d442Ajl6idEAUFq8MsSL7R6WajfJ8tUApFyJyDmbbJyoTu+j6TO3wLOEg3u31lYq6If+BmYZ0wd/vnmLhbiri7bTqrsMIH1ZscsehJ7hIvgBe3HBuUBkVfAKPBJzkRDXBUFj+hryUV/hOg=
Received: from HE1PR07MB4169.eurprd07.prod.outlook.com (20.176.166.22) by HE1PR07MB3466.eurprd07.prod.outlook.com (10.170.247.149) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1792.11; Tue, 9 Apr 2019 15:42:42 +0000
Received: from HE1PR07MB4169.eurprd07.prod.outlook.com ([fe80::d49e:f22a:1e0b:f888]) by HE1PR07MB4169.eurprd07.prod.outlook.com ([fe80::d49e:f22a:1e0b:f888%5]) with mapi id 15.20.1792.007; Tue, 9 Apr 2019 15:42:42 +0000
From: John Mattsson <john.mattsson@ericsson.com>
To: "secdispatch@ietf.org" <secdispatch@ietf.org>
Thread-Topic: [Secdispatch] EDHOC Summary
Thread-Index: AQHU7urdLGwkiPXZEUCOsU6IRVcrNQ==
Date: Tue, 09 Apr 2019 15:42:41 +0000
Message-ID: <D060E074-A4EE-42F3-AF72-E0918F149F1E@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.17.1.190326
authentication-results: spf=none (sender IP is ) smtp.mailfrom=john.mattsson@ericsson.com;
x-originating-ip: [82.214.46.143]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 5fce6644-d07d-461c-995d-08d6bd0200cb
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600139)(711020)(4605104)(2017052603328)(7193020); SRVR:HE1PR07MB3466;
x-ms-traffictypediagnostic: HE1PR07MB3466:
x-microsoft-antispam-prvs: <HE1PR07MB3466D56C66571FC48995F14D892D0@HE1PR07MB3466.eurprd07.prod.outlook.com>
x-forefront-prvs: 000227DA0C
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(396003)(39860400002)(366004)(346002)(136003)(199004)(189003)(81156014)(486006)(1730700003)(6916009)(8936002)(25786009)(81166006)(53936002)(2906002)(44832011)(8676002)(33656002)(5660300002)(478600001)(5640700003)(6512007)(229853002)(6486002)(36756003)(316002)(66066001)(14454004)(86362001)(6506007)(102836004)(305945005)(2501003)(186003)(3846002)(4744005)(6116002)(6436002)(83716004)(97736004)(476003)(256004)(6246003)(14444005)(2616005)(105586002)(26005)(2351001)(58126008)(68736007)(82746002)(71190400001)(71200400001)(7736002)(106356001)(99286004); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR07MB3466; H:HE1PR07MB4169.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 24hi8FL36iLWC2jYsWt6TV34fQ+GVg8AJmRYlR6OxAUeXICSc+10w5bZRSKQkuVAUBx0Zwi8u9Rma1Pnj0cfVa+wuWPzNGYDh2TY8zpagQZh0N3wUP7YQ0r2gdUo9l5JUh2vGaRkX0fqtVnD/slbhwQWNiu8CgDPMbDd4D1izDkIgBbCfL5Ih4ktT5IMh3Pwdciln5ltO2lDPd8QP4qdjzWUeEBiT/Xknc4KgGnZOtfQSSaV4zG7Z0t4TEXB372roGxR2WKwFiQBSa8hVFg0de6+f9F6Hz0lUHYyIjtDvDJZg6kvgSwusJ0fJMLqdpZD+TVntl2XPNTVpM1LhtRWL/97Do+uW/5TBr3fgzFUU+atoPSv2tDsKMet0mbvz2Yirp4rPWQUixJ/OLKdWIRE0yrKBsbD+aSUzJSW0NHAUqw=
Content-Type: text/plain; charset="utf-8"
Content-ID: <3AAF41C4DFCC0948810043E5EDA4E8AD@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 5fce6644-d07d-461c-995d-08d6bd0200cb
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Apr 2019 15:42:41.8499 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3466
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdispatch/uolsx1v-Pu02dNnTQNHL0nkhAkw>
Subject: Re: [Secdispatch] EDHOC Summary
X-BeenThere: secdispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Dispatch <secdispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdispatch/>
List-Post: <mailto:secdispatch@ietf.org>
List-Help: <mailto:secdispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdispatch>, <mailto:secdispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 09 Apr 2019 15:42:47 -0000

Cool, I once worked at a nuclear power plant for a short period. ALARA is an excellent term that definitely makes sense in many Constrained-Node Networks, I think you should consider adding it to RFC7228bis.

The term ALARP (As Low As Reasonably Possible) is a similar very commonly used law and engineering term for all type of risk management, not only nuclear.

But for LPWAN over LoRaWan and 6TiSCH, the current requirement regarding message sizes are very concrete.

John

Carsten Bormann <cabo@tzi.org> wrote:

Or 18.5 mbit/s (yes, millibits).

Millibit networks is one of the scenarios where ALARA(*) as a design objective does make sense — there is no hard design limit, but actual security will need to compete with less security, and ALARA helps actual security stay competitive.

Grüße, Carsten

(*) ALARA: “As low as reasonably achievable", a term stolen from nuclear engineering.