Re: [solace] Notes from the SOLACE ad-hoc at IETF85

"Keoh, Sye Loong" <sye.loong.keoh@philips.com> Mon, 05 November 2012 13:53 UTC

Return-Path: <sye.loong.keoh@philips.com>
X-Original-To: solace@ietfa.amsl.com
Delivered-To: solace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A05E421F84F0 for <solace@ietfa.amsl.com>; Mon, 5 Nov 2012 05:53:58 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7aQE+1PA5-da for <solace@ietfa.amsl.com>; Mon, 5 Nov 2012 05:53:58 -0800 (PST)
Received: from tx2outboundpool.messaging.microsoft.com (tx2ehsobe004.messaging.microsoft.com [65.55.88.14]) by ietfa.amsl.com (Postfix) with ESMTP id 6A43721F84B8 for <solace@ietf.org>; Mon, 5 Nov 2012 05:53:57 -0800 (PST)
Received: from mail7-tx2-R.bigfish.com (10.9.14.236) by TX2EHSOBE013.bigfish.com (10.9.40.33) with Microsoft SMTP Server id 14.1.225.23; Mon, 5 Nov 2012 13:53:56 +0000
Received: from mail7-tx2 (localhost [127.0.0.1]) by mail7-tx2-R.bigfish.com (Postfix) with ESMTP id 6D333320162; Mon, 5 Nov 2012 13:53:56 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:157.55.7.222; KIP:(null); UIP:(null); IPV:NLI; H:mail.philips.com; RD:none; EFVD:NLI
X-SpamScore: -38
X-BigFish: VPS-38(zz217bI15d6O9251Jc89bh936eI168aJ542Mzz1de0h1202h1d1ah1d2ahzz1033IL17326ah8275dhz2dh2a8h668h839hd25hf0ah1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh1155h)
Received: from mail7-tx2 (localhost.localdomain [127.0.0.1]) by mail7-tx2 (MessageSwitch) id 1352123635356535_32080; Mon, 5 Nov 2012 13:53:55 +0000 (UTC)
Received: from TX2EHSMHS033.bigfish.com (unknown [10.9.14.242]) by mail7-tx2.bigfish.com (Postfix) with ESMTP id 4A1291A0054; Mon, 5 Nov 2012 13:53:55 +0000 (UTC)
Received: from mail.philips.com (157.55.7.222) by TX2EHSMHS033.bigfish.com (10.9.99.133) with Microsoft SMTP Server (TLS) id 14.1.225.23; Mon, 5 Nov 2012 13:53:53 +0000
Received: from 011-DB3MMR1-015.MGDPHG.emi.philips.com (10.128.28.99) by 011-DB3MMR1-008.MGDPHG.emi.philips.com (10.128.28.47) with Microsoft SMTP Server (TLS) id 14.2.318.3; Mon, 5 Nov 2012 13:53:24 +0000
Received: from 011-DB3MPN1-032.MGDPHG.emi.philips.com ([169.254.2.110]) by 011-DB3MMR1-015.MGDPHG.emi.philips.com ([10.128.28.99]) with mapi id 14.02.0318.003; Mon, 5 Nov 2012 13:53:23 +0000
From: "Keoh, Sye Loong" <sye.loong.keoh@philips.com>
To: Carsten Bormann <cabo@tzi.org>, "solace@ietf.org" <solace@ietf.org>
Thread-Topic: [solace] Notes from the SOLACE ad-hoc at IETF85
Thread-Index: AQHNutaqghyWIMRs0kuA5Io23fGbUpfbRBuA
Date: Mon, 5 Nov 2012 13:53:22 +0000
Message-ID: <EAE29B174013F643B5245BA11953A1BE22303F03@011-DB3MPN1-032.MGDPHG.emi.philips.com>
References: <105963F3-4106-43D4-8F63-5478B617BE36@tzi.org>
In-Reply-To: <105963F3-4106-43D4-8F63-5478B617BE36@tzi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [130.129.17.131]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: philips.com
Subject: Re: [solace] Notes from the SOLACE ad-hoc at IETF85
X-BeenThere: solace@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "\"Smart Object Lifecycle Architecture for Constrained Environments\" discussion list" <solace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/solace>, <mailto:solace-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/solace>
List-Post: <mailto:solace@ietf.org>
List-Help: <mailto:solace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/solace>, <mailto:solace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Nov 2012 13:53:58 -0000

Dear all,

Sorry that I couldn't make it to the informal SOLACE meeting yesterday.

Carsten, I would also like to volunteer myself to work on a potential charter for a new group.

Regarding the potential scenarios where we can derive requirements, I think Building Automation System and BaCNET can be interesting for us too.

Looking forward to discussing further with you all this week.

Cheers
Sye Loong

-----Original Message-----
From: solace-bounces@ietf.org [mailto:solace-bounces@ietf.org] On Behalf Of Carsten Bormann
Sent: zondag 4 november 2012 22:52
To: solace@ietf.org
Subject: [solace] Notes from the SOLACE ad-hoc at IETF85

Sunday 2012-11-04 15:10-16:10 Salon E

Attendance:
Behcet Sarikaya
Carsten Bormann
Jürgen Schönwälder
Kerry Lynn
Mehmet Ersue
Paul Chilton
Ulrich Herberg
Yoshihiro Ohba

This was an informal meeting that was intended to move forward our common understanding of what the SOLACE activity is going to be.

Carsten went quickly through the slides from the Vancouver IETF (http://www.ietf.org/proceedings/84/slides/slides-84-roll-11.pdf).
He stressed that the near term focus of SOLACE is soliciting contributions that provide a fleshed out view of the lifecycle, the players/roles and the security objectives of a specific scenario, together with the security protocols that can be used between specific roles to achieve these objectives.

We then mainly discussed two topics:


1) What is the best home for SOLACE?

One approach is to find a home in IRTF.
Several participants agreed:
-- this spans a couple of areas
-- IRTF can work in a relatively "sheltered" way
-- there may less of a need to go through an excruciating chartering
   process before we really understand the specific shape of the
   result that we can achieve

Other participants pointed out:
-- an IETF activity may be more focused on directly usable results
-- there are specific gaps such as the OLSRv2 security model that need
   input soon
-- there might even be a new M2M area in the IETF

Clearly, there wasn't consensus yet, but some more people leaned towards the IRTF approach.  This requires further discussion.
Ulrich, Yoshihiro, and Carsten volunteered for working on a potential charter for a new group.


2) What are the specific questions we want to ask for the contributions?

Questions that we would like to see covered in the contributions (in no particular order):

-- What are the specific roles in this scenario?
   Groups of nodes may differ in their trust relationships, in their
   role in running the lifecycle, in their security domain, in their
   constrainedness, ...  (e.g., in SEP2 a "meter" appears to be a very
   special role, having a trusted relationship to the backend, ...)
-- what is the topology between these roles?  (This may include both a
   security-focused point of view and a view based on physical,
   link-layer or network layer topology)
-- What is the trust model?
   Specifically, what is the chain of trust needed for the system to
   operate, how do the different roles relate to the trust model; are
   there classes of trust based on some specific property (such as
   "inside"/"outside" something)?
-- Is there anything done to secure group communications (multicast/broadcast)?
-- What are the elements of your lifecycle?  Do you handle events like
   an entire building changing hands?
-- How does your security really work, which security protocols are
   being used?
-- What gaps are there?  Where do we need additional specifications?
-- Constrainedness?  What are the resource requirements on the
   specific roles?  What groups of nodes are there?

We should try to obtain contributions at least from the following groups/for the following scenarios:
-- SEP2 (may need to be fleshed out wrt key management)
-- A simple home scenario that can be realized with PSKs
-- Cullen's Mothership scenario
-- ETSI M2M, maybe related to the EAP/PANA I-D and ETSI GBA
-- MANET scenarios such as that addressed by OLSRv2
-- AMI networking

Besides the I-Ds already identified, Kerry also has co-authored an interesting NIST paper that he will provide a reference to.


At the SAAG meeting Thu 1510-1710, we have a short presentation slot.
We should try to narrow down the set of choices so we can present something coherent to SAAG.  The intention is providing a heads-up of the activity, and make it clear that this activity is not trying to threaten any specific security area work but tries to benefit as much as possible from existing results.

Please send corrections and additions to these notes to the list.

Grüße, Carsten

_______________________________________________
solace mailing list
solace@ietf.org
https://www.ietf.org/mailman/listinfo/solace

________________________________
The information contained in this message may be confidential and legally protected under applicable law. The message is intended solely for the addressee(s). If you are not the intended recipient, you are hereby notified that any use, forwarding, dissemination, or reproduction of this message is strictly prohibited and may be unlawful. If you are not the intended recipient, please contact the sender by return e-mail and destroy all copies of the original message.