Re: [lamps] Support for working on the lightweight CMP profile
Tomas Gustavsson <tomas.gustavsson@primekey.com> Mon, 27 May 2019 18:23 UTC
Return-Path: <tomas.gustavsson@primekey.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD104120077 for <spasm@ietfa.amsl.com>; Mon, 27 May 2019 11:23:59 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=primekey.com header.b=Ew/tguad; dkim=pass (1024-bit key) header.d=primekey.com header.b=Ew/tguad
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a0NazBLHEIh4 for <spasm@ietfa.amsl.com>; Mon, 27 May 2019 11:23:57 -0700 (PDT)
Received: from mail.primekey.com (mail.primekey.com [84.55.121.163]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BF342120041 for <spasm@ietf.org>; Mon, 27 May 2019 11:23:56 -0700 (PDT)
Received: from mail.primekey.com (localhost [127.0.0.1]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by mail.primekey.com (Postfix) with ESMTPS id 329A66AA008D for <spasm@ietf.org>; Mon, 27 May 2019 20:15:15 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=primekey.com; s=mail; t=1558980915; bh=1ihZyLIcubimcDm+HocXW/FoSlwYWyzKTo9bBhL01Pc=; h=Subject:To:References:From:Date:In-Reply-To:From; b=Ew/tguadQUfDvokhtRNIkrjPaZHlaJfnKxEE7GGYuTr8lbj8DriPV4mrV4J1Vicug tCeu18QS6yv8VzvPT+Z447KOzAusKqKDjVW94ylKOziUIgXyhDatVRzHYhU6d7y/vW vWwaU1InG8Voaf71HtLkqhXV4fz7r2kBLk070+Mo=
Received: from [192.168.1.215] (unknown [85.24.187.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mail.primekey.com (Postfix) with ESMTPSA id 077FF6AA0088 for <spasm@ietf.org>; Mon, 27 May 2019 20:15:14 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=primekey.com; s=mail; t=1558980915; bh=1ihZyLIcubimcDm+HocXW/FoSlwYWyzKTo9bBhL01Pc=; h=Subject:To:References:From:Date:In-Reply-To:From; b=Ew/tguadQUfDvokhtRNIkrjPaZHlaJfnKxEE7GGYuTr8lbj8DriPV4mrV4J1Vicug tCeu18QS6yv8VzvPT+Z447KOzAusKqKDjVW94ylKOziUIgXyhDatVRzHYhU6d7y/vW vWwaU1InG8Voaf71HtLkqhXV4fz7r2kBLk070+Mo=
To: spasm@ietf.org
References: <AM0PR10MB24028210BCE560C64195A74EFE320@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM> <AM0PR10MB2402B5BB06E4FB59A8ECB16BFE060@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM> <AM0PR10MB2402C7C1AAA09EABF047F0CEFE1D0@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM> <29FAEBF1-2D67-469F-BE78-AF58F78D055E@vigilsec.com>
From: Tomas Gustavsson <tomas.gustavsson@primekey.com>
Openpgp: preference=signencrypt
Autocrypt: addr=tomas.gustavsson@primekey.com; prefer-encrypt=mutual; keydata= mQENBEyuwwYBCAD31Jsxn1lf7rnFc7y3Ol+TE7pU7ohO78kMdoVrZdAMnU9W0P33GedbU+kF 8/RFq7HlXV8a91RkgtdcMAK8tSdtBKDGZCOJZm5qOZ/EHikY8k/7s1wgSQSF4hYSG/IABCCA W139joDFl4L3buWyk2lsYX1HDBpuXGDL5HFyu165T0ZVlt23T04xmAwpIHUViKUWw1QYnlRz s66Desn2WeP+X8/QlqF1zOTUXbgrThB1X/Oh2+wzP08HVoTQCzlrEMeb9x2k+oa8PtVdnflh nZKBtyyBkZxRoHG3tNKcaf7JLoadSXcSKSKvfApcsxpP2JpkQgIhLi3JWik/Z+RR2WD1ABEB AAG0MFRvbWFzIEd1c3RhdnNzb24gPHRvbWFzLmd1c3RhdnNzb25AcHJpbWVrZXkuY29tPokB NwQTAQgAIQUCWX8yTAIbIwULCQgHAgYVCAkKCwIEFgIDAQIeAQIXgAAKCRBibcSbAEP+QGAU CAC82dn8XCQ8Ei7gxQAdRSc2imaP/388i/ObDMYhNhg5j4gXs3tkfxuCvhwkzskUFgOtmaEy uz/gIiVjQIsjQrHh5tl9M0q2tqbDHJpWfE6/SkXPUmTqQ0VGyq1MmZ3/zg2jSoll74qBSfdH V7sWugRXeCBxfaPeYo8DdPCGi27yrdL8zb3xkJ3BxPcDGNdkLm+Yza+qAOrssCD7MSLN+6Sd ML5Xcmw6pgRPlQ0aCsM7scrwgBNb7KrwxaqBxqwcuqF0NMgNjeiEHi2Oj3HOZdYU4Blk2GFq 9zHuCzTWumgNOlfksZ9K3ZMJBn6KLPot5bVXIKdnHwWRzoKMDxkSZjM5uQENBEyuwwYBCADZ 98eCFQ64zKo1OKkUgEJHO1JdsiqRO1znu6KyaTcd2vXfOCGkFFVBL+vjzzyyYV7Sg1/AaG4r l9TKJCwvx8mUmTJkKQspTfOj6AY33bmfMB/8LBYj2BjtxXyMucPjNTJqbL2r1HeGPV2nwyof MAyo2qcYuiLs20Ob7U8vooOV3GDDKEkXtJYZzTEU6qabGsepGIvMu770OZwvm4akQiCGe5sQ 4+/UH1pMZQNi+/fGbONFx+TUVMM8EkXD6dQ5WoL+xPabPjqiUmR7EBvg0uocr70Ag93tWk1d 4RgFcicjwMFcPg4TZ8Y/3Y7Nmbyo14+4SMNfNPFLgQMawL+cLLkdABEBAAGJAR8EGAECAAkC GwwFAlYXhXUACgkQYm3EmwBD/kA2igf/QNpPe7sLt3KdRD3x4cStxGjLCWyj7x1YLVnV4Nnu TvaNhC+KHx3uG39y1x3PJQwslpeSQ6JipOUmxeQjjGJGQZLV41L1PCJVhCL98Dinr6dJkYB7 cAVhfmW8PI51jiANExLZu8U5gnthj5CGv4428ODQgSoRI0demG3HmVCNrKdap+orhT8zRkq8 DuHTO01U7PKsfvQ2k8AqSAC/JjMOs1mpFe032IApXxlZkE+33Q3dE5BiJmICYg8hsRXvpKTm ZMCdNZJUQLq+XNpg6RtAPQIPMmCepXrE9M/KuH+jFS2G5+Hx5VBSM644E1G2i+HOPCVdHjof iaNi3V/ItEG3jw==
Message-ID: <74d90b58-b4f0-9688-1d9f-9f034c9cb24b@primekey.com>
Date: Mon, 27 May 2019 20:15:18 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.6.1
MIME-Version: 1.0
In-Reply-To: <29FAEBF1-2D67-469F-BE78-AF58F78D055E@vigilsec.com>
Content-Type: text/plain; charset="windows-1252"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/Vk_T652oL9AtooVng5tS7CNzdBQ>
Subject: Re: [lamps] Support for working on the lightweight CMP profile
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 27 May 2019 18:24:00 -0000
Hi Russ, Is this question directed to the people who expressed support for the profile? If so: > 1) If this work is added to the charter, will you contribute to the > document? As in writing the actual text of the draft, possibly, but not planned. > 2) If this work is added to the charter, will you review to the document? Yes. I have reviewed the suggested draft already and given feedback. And will continue to do so. > 3) If this document is published as an RFC, will you implement it? Yes. Our software acts as CMP server in many industrial use-cases and we implement several CMP use cases (among them the 3GPP CMP profile). Therefore we will most likely support the new profile as well. Regards, Tomas On 2019-05-27 18:48, Russ Housley wrote: > Hendrik: > > I see people speaking on both sides. So, I am asking a few questions to > see if there is enough support... > > 1) If this work is added to the charter, will you contribute to the > document? > > 2) If this work is added to the charter, will you review to the document? > > 3) If this document is published as an RFC, will you implement it? > > Russ > > >> On May 27, 2019, at 9:03 AM, Brockhaus, Hendrik >> <hendrik.brockhaus@siemens.com <mailto:hendrik.brockhaus@siemens.com>> >> wrote: >> >> Hi Russ >> >> Did you have the time to look into my mail below? >> I would like to push this topic further forward. >> >> Hendrik >> >> *Von:* Brockhaus, Hendrik (CT RDA ITS SEA-DE) >> *Gesendet:* Montag, 20. Mai 2019 15:43 >> *An:* Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com>> >> *Cc:* Fries, Steffen (CT RDA ITS) <steffen.fries@siemens.com >> <mailto:steffen.fries@siemens.com>>; spasm@ietf.org >> <mailto:spasm@ietf.org> >> *Betreff:* AW: Proposed Re-Chartering Text for CMP updates and >> lightweight profile (RE: Follow-up on lightweight CMP profile) >> >> Hi Russ >> >> We discussed my proposal on the mailing list. I feel there is quite >> some support. >> Tomas, Max and Martin supported the activity. There were some >> questions and concerns from Panos, that I hopefully could clarify. >> >> What is the next step? >> >> Hendrik >> >> *Von:* Spasm <spasm-bounces@ietf.org >> <mailto:spasm-bounces@ietf.org>> *Im Auftrag von *[ext] Brockhaus, Hendrik >> *Gesendet:* Mittwoch, 8. Mai 2019 11:10 >> *An:* spasm@ietf.org <mailto:spasm@ietf.org>; Russ Housley >> <housley@vigilsec.com <mailto:housley@vigilsec.com>> >> *Cc:* Jim Schaad <ietf@augustcellars.com >> <mailto:ietf@augustcellars.com>>; Fries, Steffen (CT RDA ITS) >> <steffen.fries@siemens.com <mailto:steffen.fries@siemens.com>> >> *Betreff:* [lamps] Proposed Re-Chartering Text for CMP updates and >> lightweight profile (RE: Follow-up on lightweight CMP profile) >> >> Hi Russ, all, >> >> as discussed at IETF104 and on this list we would like to spend >> further work on updating and profiling CMP focusing on industrial use >> cases. >> To get input, feedback and support from LAMPS we propose the following >> charter text. >> >> As certificate management gets increasingly important in industrial >> environments, it needs to be tailored to the specific needs. CMP as >> existing protocol offers a vast range of options. As it is already >> being applied in industrial environments it needs to be enhanced to >> more efficiently support of industrial use cases, crypto agility and >> specific communication relations on the one hand and profiled to the >> necessary functionality on the other hand to ease application and to >> better facilitate interoperable implementation. >> >> >> Hendrik >> >> *Von:* Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com>> >> *Gesendet:* Mittwoch, 8. Mai 2019 02:18 >> *An:* Brockhaus, Hendrik (CT RDA ITS SEA-DE) >> <hendrik.brockhaus@siemens.com <mailto:hendrik.brockhaus@siemens.com>> >> *Cc:* spasm@ietf.org <mailto:spasm@ietf.org>; Jim Schaad >> <ietf@augustcellars.com <mailto:ietf@augustcellars.com>>; Fries, >> Steffen (CT RDA ITS) <steffen.fries@siemens.com >> <mailto:steffen.fries@siemens..com>> >> *Betreff:* Re: [lamps] Follow-up on lightweight CMP profile >> >> Hendrik: >> >> The current re-charter is about two weeks away. You would need to >> propose text for the charter on this list, and see if there are people >> that will review and implement. >> >> Russ >> >> >> >> >> On May 3, 2019, at 4:52 AM, Brockhaus, Hendrik >> <hendrik.brockhaus@siemens.com >> <mailto:hendrik.brockhaus@siemens.com>> wrote: >> >> >> Hi all >> >> >> >> Referring to the Email thread 'Seeking guidance on proceeding with >> question from IETF-104 presentation on lightweight CMP profile' >> and to the outcome of the WG meeting, we want to summarize the >> current state of the discussion. >> >> The discussion we had with Jim motivate a split of the current >> draft into a CMP Updates and a CMP Profile document. The update of >> CMP is needed because we identified at least two point where a >> change to CMP is needed: >> >> - Change the type of encryptedCert from EncryptedValue to >> EncryptedKey for ECC and post-quantum algorithm support >> >> - Extend the RootCAUpdate announcement message to e >> request/response message to enable requesting the update from the >> client side >> >> The remaining points from the initial email were seen as profiling >> topic and would therefore be handled in the CMP Profile document... >> >> >> >> @Russ, how do you see the status of the current re-chartering >> process? Would you support to add both, or at least the CMP >> Updates, activities under the revised charter? >> >> >> >> - Hendrik >> >> _______________________________________________ >> Spasm mailing list >> Spasm@ietf.org <mailto:Spasm@ietf.org> >> https://www.ietf.org/mailman/listinfo/spasm >> <https://eur01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fspasm&data=02%7C01%7Chendrik.brockhaus%40siemens.com%7C743e39b041d4476e826a08d6d3950ad8%7C38ae3bcd95794fd4addab42e1495d55a%7C1%7C0%7C636929034414755277&sdata=PxGWfXa6%2FzuG2Pi844eXybqzfxwjQf0FAsc2YtDEYiM%3D&reserved=0> >> >> >> _______________________________________________ >> Spasm mailing list >> Spasm@ietf.org <mailto:Spasm@ietf.org> >> https://www.ietf.org/mailman/listinfo/spasm > > > _______________________________________________ > Spasm mailing list > Spasm@ietf.org > https://www.ietf.org/mailman/listinfo/spasm >
- [lamps] Proposed Re-Chartering Text for CMP updat… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Panos Kampanakis (pkampana)
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Peylo, Martin (Nokia - FI/Espoo)
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Dr. Pala
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Panos Kampanakis (pkampana)
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Panos Kampanakis (pkampana)
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Panos Kampanakis (pkampana)
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Fries, Steffen
- Re: [lamps] Proposed Re-Chartering Text for CMP u… Brockhaus, Hendrik
- [lamps] Support for working on the lightweight CM… Russ Housley
- Re: [lamps] Support for working on the lightweigh… Tomas Gustavsson
- Re: [lamps] Support for working on the lightweigh… Peylo, Martin (Nokia - FI/Espoo)
- Re: [lamps] Support for working on the lightweigh… Brockhaus, Hendrik
- Re: [lamps] Support for working on the lightweigh… Panos Kampanakis (pkampana)
- Re: [lamps] Support for working on the lightweigh… Michael Richardson
- Re: [lamps] Support for working on the lightweigh… Fries, Steffen
- Re: [lamps] Support for working on the lightweigh… Tomas Gustavsson
- Re: [lamps] Support for working on the lightweigh… Peylo, Martin (Nokia - FI/Espoo)
- Re: [lamps] Support for working on the lightweigh… Michael Richardson
- Re: [lamps] Support for working on the lightweigh… Michael Richardson
- Re: [lamps] Support for working on the lightweigh… Tomas Gustavsson
- [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson
- Re: [lamps] Support for working on the lightweigh… Brockhaus, Hendrik
- Re: [lamps] Interest to standardize PKI REST APIs? Brockhaus, Hendrik
- Re: [lamps] Interest to standardize PKI REST APIs? Michael Richardson
- Re: [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson
- Re: [lamps] Interest to standardize PKI REST APIs? Salz, Rich
- Re: [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson
- Re: [lamps] Interest to standardize PKI REST APIs? Salz, Rich
- Re: [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson
- Re: [lamps] Interest to standardize PKI REST APIs? Salz, Rich
- Re: [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson
- Re: [lamps] Interest to standardize PKI REST APIs? Brockhaus, Hendrik
- Re: [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson
- Re: [lamps] Interest to standardize PKI REST APIs? Brockhaus, Hendrik
- Re: [lamps] Interest to standardize PKI REST APIs? Salz, Rich
- Re: [lamps] Interest to standardize PKI REST APIs? Dr. Pala
- Re: [lamps] Interest to standardize PKI REST APIs? Tomas Gustavsson