Re: [lamps] New Version Notification for draft-brockhaus-lamps-industrial-cmp-profile-00.txt
"Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com> Thu, 14 March 2019 07:47 UTC
Return-Path: <hendrik.brockhaus@siemens.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B92BE1277C9 for <spasm@ietfa.amsl.com>; Thu, 14 Mar 2019 00:47:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=siemens.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7HvD47An6WSS for <spasm@ietfa.amsl.com>; Thu, 14 Mar 2019 00:47:44 -0700 (PDT)
Received: from EUR02-HE1-obe.outbound.protection.outlook.com (mail-eopbgr10042.outbound.protection.outlook.com [40.107.1.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AEA2F12799B for <spasm@ietf.org>; Thu, 14 Mar 2019 00:47:37 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=siemens.onmicrosoft.com; s=selector1-siemens-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4YI6ZiGznLrTgFhIXbBOlQdlItAQdA6kgBpygkWxViA=; b=Q3mwKS8h+ldkZRazqutEbEuL5UTzEPABXWjyKhD5DhKeAuJYUPrP52UBqSBWY5dc9c86/OD4eqDvRhGAty3s3Py4OySRpraSXn9t2i46hTsSj9ivyo8hREbNVK6RoTN0mH7xLKUZ0KqvhhrFEJvhmUHUeS+hFtktguAMDWv6R4s=
Received: from AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM (20.177.110.224) by AM0PR10MB2164.EURPRD10.PROD.OUTLOOK.COM (20.177.108.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1709.13; Thu, 14 Mar 2019 07:47:35 +0000
Received: from AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM ([fe80::bda2:3903:5a16:c67c]) by AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM ([fe80::bda2:3903:5a16:c67c%4]) with mapi id 15.20.1686.021; Thu, 14 Mar 2019 07:47:35 +0000
From: "Brockhaus, Hendrik" <hendrik.brockhaus@siemens.com>
To: Sean Turner <sean@sn3rd.com>
CC: "spasm@ietf.org" <spasm@ietf.org>
Thread-Topic: [lamps] New Version Notification for draft-brockhaus-lamps-industrial-cmp-profile-00.txt
Thread-Index: AQHU1/1SnKzF6+8J4ECSR1DWFlE6v6YGSwrAgAGSnaCAAnZgAIAAZKoA
Date: Thu, 14 Mar 2019 07:47:34 +0000
Message-ID: <AM0PR10MB24025B6C5E5871B4115E2989FE4B0@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM>
References: <155230360624.16964.16184538358498050453.idtracker@ietfa.amsl.com> <E09739F5AF05A44FAE7BECC7E772E8F20DE1ABE3@DENBGAT9EJ0MSX.ww902.siemens.net> <AM0PR10MB2402BB549181014D16B36AB5FE490@AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM> <512BD0E4-3679-4EC6-BB2C-F02C0E055457@sn3rd.com>
In-Reply-To: <512BD0E4-3679-4EC6-BB2C-F02C0E055457@sn3rd.com>
Accept-Language: en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-document-confidentiality: NotClassified
authentication-results: spf=none (sender IP is ) smtp.mailfrom=hendrik.brockhaus@siemens.com;
x-originating-ip: [80.146.228.75]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b95548f7-23e5-47c6-77ed-08d6a8515296
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600127)(711020)(4605104)(4618075)(2017052603328)(7153060)(7193020); SRVR:AM0PR10MB2164;
x-ms-traffictypediagnostic: AM0PR10MB2164:
x-ms-exchange-purlcount: 6
x-microsoft-antispam-prvs: <AM0PR10MB21643A4AA87BCD4F8BAE25AEFE4B0@AM0PR10MB2164.EURPRD10.PROD.OUTLOOK.COM>
x-forefront-prvs: 09760A0505
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(346002)(39860400002)(136003)(366004)(376002)(189003)(199004)(6436002)(305945005)(7736002)(53936002)(25786009)(74316002)(55016002)(71200400001)(105586002)(97736004)(6306002)(256004)(106356001)(9686003)(76176011)(86362001)(81166006)(81156014)(71190400001)(486006)(52536014)(5660300002)(99286004)(7696005)(8676002)(2906002)(4326008)(6916009)(26005)(3846002)(93886005)(316002)(186003)(68736007)(8936002)(6116002)(476003)(102836004)(446003)(14454004)(11346002)(66066001)(966005)(6506007)(478600001)(15650500001)(66574012)(14444005)(33656002)(53546011); DIR:OUT; SFP:1101; SCL:1; SRVR:AM0PR10MB2164; H:AM0PR10MB2402.EURPRD10.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: siemens.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: unHPkJwA1vgKMMDNIA0tnsySFBg53Wu2Z+AIC/SslhhRB4jjWdWSAcBJTf67LsVtZi0GLnh8KIGqtkCRY6dF5mTnALyfq6Qwo+GSOPZBxlXrNpwkhA5qF7YZcValOX9TJzmuEBgkHxYP7c1mGAtohS++pOwCJceDSp6KFY+4Nq+lNHzcpkCNr50O6+byM9HDBmZ2qR6jzO5HZpWhUzZjN96CH3Tm6UbO5R49XjDiWX10vc1ibSUefuF1clMEk4p/L5hnfy6pUrsx7fAirPnhxvkNLqXC6YlaUuqfgz5YQZ8spgLmrlX7ngdsE4q9Pz8jb4+/Lo7xZLcaKtrht5NJdNIqDnWZn/xkHF2cpNQ3B6G7a3hqjEiB599ik/Eq5KfwKdmcZdkH2YlZFsK58AYDHwUAhnl7/4hILI/d8je4HC0=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: siemens.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b95548f7-23e5-47c6-77ed-08d6a8515296
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Mar 2019 07:47:34.9873 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 38ae3bcd-9579-4fd4-adda-b42e1495d55a
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR10MB2164
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/7M1MQEMZVqqwGlmJvGJ8wMc9ZKQ>
Subject: Re: [lamps] New Version Notification for draft-brockhaus-lamps-industrial-cmp-profile-00.txt
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 Mar 2019 07:47:48 -0000
Sean Thank you for your feedback and questions. This draft focusses on CMP applicability by specifying CMP message exchange more precisely and focused on industrial scenarios to get interoperable implementation. It not only focusses on EE-RA communication but also to communication between LRA-RA-CA in the PKI backend. The area of applicability is supposed to be much wider than IoT. As mentioned CMP is already in use in 3GPP and UNISIG. Theses profiles could also be covered by this draft in the future. Therefore I see the profile laid out in this draft as update to the RFC4210, as it extends the already existing profiles in Appendix D and E to the industrial arena. Next to a more precise and concrete specification of CMP message flows, there are also suggested extensions like the cmpRA key usage and the addition of a request-response root CA key update exchange instead of the announcement approach specified in RFC4210 Appendix E.4. The addition of CoAP for CMP message transfer is one suggestion to extend the available transport mechanisms of CMP messages, but it is not the core of the draft. If this is too much for this document, it could also be carved out in a separate draft. But like RFC6712 (HTTP transfer for CMP), I would regard it as an update to RFC4210. I hope this makes our thoughts and ideas clearer. Any further comments and suggestions are of course more than welcome. Hendrik > -----Ursprüngliche Nachricht----- > Von: Sean Turner <sean@sn3rd.com> > Gesendet: Donnerstag, 14. März 2019 02:05 > An: Brockhaus, Hendrik (CT RDA ITS SEA-DE) > <hendrik.brockhaus@siemens.com> > Cc: spasm@ietf.org > Betreff: Re: [lamps] New Version Notification for draft-brockhaus-lamps- > industrial-cmp-profile-00.txt > > Hendrik, > > Because this is aimed at "IoT scenarios” I guess I am confused as to how this > relates to https://datatracker.ietf.org/doc/draft-ietf-ace-coap-est/, which is > also aimed at constrained environments and completed WGLC in the ACE > WG in January. > > How does this draft update RFC4210? > > spt > > > On Mar 12, 2019, at 07:31, hendrik.brockhaus@siemens.com wrote: > > > > Hallo > > > > Yesterday I submitted the initial draft on the lightweight industrial CMP > profile I announced some weeks ago. At IETF 104 we want to introduce the > draft during the LAMPS WG meeting. > > > > The main purpose of this draft is to ease the use of CMP in industrial and > IoT use cases. Due to the complexity of RFC4210 and RFC4211 the draft > specifies a concrete and more lightweight profile of CMP. Following > standardization of industrial CMP profiles by 3GPP and UNISIG that already > exist, the draft strives for standardization of a more general purpose > industrial CMP profile focussing on automating certificate management in > m2m and IoT environments. > > > > If there are any feedback or comments to the draft in advance to the > meeting, feel free to contact me. > > > > - Hendrik > > > > -----Ursprüngliche Nachricht----- > > Von: internet-drafts@ietf.org <internet-drafts@ietf.org> > > Gesendet: Montag, 11. März 2019 12:27 > > An: Fries, Steffen (CT RDA ITS) <steffen.fries@siemens.com>; Brockhaus, > Hendrik (CT RDA ITS SEA-DE) <hendrik.brockhaus@siemens.com>; von > Oheimb, David (CT RDA ITS SEA-DE) <david.von.oheimb@siemens.com> > > Betreff: New Version Notification for draft-brockhaus-lamps-industrial- > cmp-profile-00.txt > > > > > > A new version of I-D, draft-brockhaus-lamps-industrial-cmp-profile-00.txt > > has been successfully submitted by Hendrik Brockhaus and posted to the > IETF repository. > > > > Name: draft-brockhaus-lamps-industrial-cmp-profile > > Revision: 00 > > Title: Lightweight Industrial CMP Profile > > Document date: 2019-03-11 > > Group: Individual Submission > > Pages: 41 > > URL: https://www.ietf.org/internet-drafts/draft-brockhaus-lamps- > industrial-cmp-profile-00.txt > > Status: https://datatracker.ietf.org/doc/draft-brockhaus-lamps- > industrial-cmp-profile/ > > Htmlized: https://tools.ietf.org/html/draft-brockhaus-lamps-industrial- > cmp-profile-00 > > Htmlized: https://datatracker.ietf.org/doc/html/draft-brockhaus-lamps- > industrial-cmp-profile > > > > > > Abstract: > > The goal of this document is to facilitate interoperability and > > automation by profiling the Certificate Management Protocol (CMP) > > [RFC4210] and the related Certificate Request Message Format (CRMF) > > [RFC4211]. It specifies a subset of CMP and CRMF focusing on typical > > uses cases relevant for managing certificates of devices in > > industrial and IoT scenarios. To limit the overhead of certificate > > management for constrained devices only the most crucial types of > > transactions are specified as mandatory. To foster interoperability > > also in more complex scenarios, other types of transactions are > > specified as recommended or optional. > > > > > > > > > > Please note that it may take a couple of minutes from the time of > submission until the htmlized version and diff are available at tools.ietf.org. > > > > The IETF Secretariat > > > > _______________________________________________ > > Spasm mailing list > > Spasm@ietf.org > > https://www.ietf.org/mailman/listinfo/spasm
- [lamps] WG: New Version Notification for draft-br… hendrik.brockhaus@siemens.com
- Re: [lamps] New Version Notification for draft-br… Sean Turner
- Re: [lamps] New Version Notification for draft-br… Brockhaus, Hendrik