IETF Logo Mail Archive

Re: [Suit] HR Review: Firmware Update Architecture for IoT Devices (Invite for HRPC session)

Brendan Moran <Brendan.Moran@arm.com> Tue, 17 July 2018 17:13 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 20B15130EC9 for <suit@ietfa.amsl.com>; Tue, 17 Jul 2018 10:13:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rUVq0_n0IBOd for <suit@ietfa.amsl.com>; Tue, 17 Jul 2018 10:12:59 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-vi1eur04on062d.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0e::62d]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2F444130DDE for <suit@ietf.org>; Tue, 17 Jul 2018 10:12:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=d7mmoZXvkUpR6RImeSLH3PEXhx9ubSrNTW1RBESQ57k=; b=lVyzSxHQIyJALDlgsJVRSNrnIZWbGbQ7XSL7dHQgL97eLWuZvF+jNGmcvjYQhaMuwFndWVONdqTVVsRRnpr/lJepm57FaRTlyqywmZ8YoKmDVd+53X/MQYzuP2rrK60OiL8gjt1IUPtcFKFDqqht6pUIOmetmxJYOHjmeVAPwU4=
Received: from AM4PR0802MB2260.eurprd08.prod.outlook.com (10.172.217.150) by AM4PR0802MB2321.eurprd08.prod.outlook.com (10.172.218.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.973.16; Tue, 17 Jul 2018 17:12:55 +0000
Received: from AM4PR0802MB2260.eurprd08.prod.outlook.com ([fe80::3c9f:d4ca:23a0:2aad]) by AM4PR0802MB2260.eurprd08.prod.outlook.com ([fe80::3c9f:d4ca:23a0:2aad%4]) with mapi id 15.20.0952.021; Tue, 17 Jul 2018 17:12:55 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Gurshabad Grover <gurshabad@cis-india.org>
CC: suit <suit@ietf.org>, "hrpc@irtf.org" <hrpc@irtf.org>
Thread-Topic: [Suit] HR Review: Firmware Update Architecture for IoT Devices (Invite for HRPC session)
Thread-Index: AQHUG00BI/KiUia5QUWR7vKM0IJN8qSTrDIA
Date: Tue, 17 Jul 2018 17:12:55 +0000
Message-ID: <D061B8F2-C892-4AC8-8D01-D446B5010476@arm.com>
References: <11993b06-5da6-e397-3457-de6ecec87bb4@cis-india.org> <f6e62f53-1977-d6e2-6810-f400feeab0bf@cis-india.org>
In-Reply-To: <f6e62f53-1977-d6e2-6810-f400feeab0bf@cis-india.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3445.8.2)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Brendan.Moran@arm.com;
x-originating-ip: [81.101.7.188]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM4PR0802MB2321; 6:MDJoj7eCPI0G++7eD6Dm/xDZJ/jvyQnjCs9SbLz64+myaJZ59148ZbslpKjYRqZg5MOLMI4oljs0/vWdM4JEfJPzLZ5S7Kc5fHX0ToAshsPEs6ZfLC3k4LI5+ildkkLKxSmjNFY1HJvIuPf7FajChTT/phhrRHomms2iR5ETOI8Ctj6KAjLzQWi7fy3YjBHm2KnXS3yLuBLo0ncyDPlyQFyQFD9pdmZXM3WM78RUzaeZWuLk2hSCzF7p84qty1jCExcKpbF+OsWWPb4gncQT83EglvBBJXVzXJZw73nP7WgKjcL/k2rOs4e1Y8naKxBS58+vQWpFWA71O90DXheR7ZmhcTzrwvBX5rw8q8426H2oo5TuaK8C8Q2jfIQsgW7veDuYjbGb5jXyR1N4MU/T8VUlGBSkHxiil0y6k1rmNUtyNFEe+Iwrmidzc1l5eGjYViYTbSIdzQ87PkCPhn8RRw==; 5:04z4+YswNfTaoz79kw0HPC3Jml69clhabO9NglKwf0xJvd0DVqAnVhVLN+zejQTSN7Qsrr4ExQDnfoXGrTQPnWftp3RWPe5DrGPgFBhj9FODQu5ccLDQWZdAVPqYar3cs+qtcTRvbnwhLwxC6dMcv7TZnsDUkvciP1I8lI06Wrs=; 7:9L0zYbuYM0gf8P8YHAV4yI7DcX7BT9/6xb3JzTaTFr3/kqXm2CsADmyah2VHXQnLUOO71ScoTU1n/qN2CtTrhx/tjGGsobGcnCw3U0CrYNtqQbV8wj5YKMqXVBBVyCovfVMAt8WyUoETR3/QYxduMvxbKdJVjbeK9krXinXu1Zzs5lAKM2WTNzD5mpkCCUZGb89Evlz8bK7RLmntayPu5tmkSIzg+5Hb7cWTodITp/UjJEt1TJ5PXafzMjr6teAu
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 18b3ad0f-efb7-4dc3-b76b-08d5ec088990
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989117)(5600053)(711020)(4534165)(4627221)(201703031133081)(201702281549075)(8990107)(48565401081)(2017052603328)(7153060)(7193020); SRVR:AM4PR0802MB2321;
x-ms-traffictypediagnostic: AM4PR0802MB2321:
x-microsoft-antispam-prvs: <AM4PR0802MB2321AE436622D56DB6CB7555EA5C0@AM4PR0802MB2321.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(120809045254105)(223705240517415);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(3002001)(93006095)(93001095)(3231311)(944501410)(52105095)(10201501046)(6055026)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(20161123562045)(20161123564045)(20161123560045)(6072148)(201708071742011)(7699016); SRVR:AM4PR0802MB2321; BCL:0; PCL:0; RULEID:; SRVR:AM4PR0802MB2321;
x-forefront-prvs: 073631BD3D
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(346002)(136003)(366004)(376002)(396003)(497574002)(199004)(189003)(40434004)(51444003)(54906003)(15650500001)(81166006)(81156014)(6916009)(6246003)(8676002)(83716003)(68736007)(97736004)(53936002)(305945005)(7736002)(6506007)(82746002)(33656002)(53546011)(26005)(72206003)(186003)(25786009)(102836004)(478600001)(106356001)(105586002)(57306001)(966005)(4326008)(76176011)(6306002)(6512007)(5660300001)(14454004)(256004)(14444005)(5024004)(11346002)(2906002)(36756003)(6116002)(3846002)(316002)(5250100002)(86362001)(99286004)(6486002)(66066001)(345774005)(229853002)(8936002)(486006)(2616005)(50226002)(476003)(2900100001)(446003)(6436002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR0802MB2321; H:AM4PR0802MB2260.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: EISLCnGd/FDFiF4yZG1zFzlnUeLUy3CZusYUxcGitIVYF3Tkr/lnB5uSQGUXIxZXPKkCKpsWFY4uhsFnttkalTMZ2+CfoCzVjUfPMTztrzf6RpehVeIKRSDrhhqY3qinsdAz1PpaRcIKqwCG5NaPFUPDC2JAWaxxAgicXsy7yg7CdWxrErSrqSG85ss0l7O2IsZPEPGkrfSQ4Bm/MiLC7GmHlsRZY+RIU5Zla5knIrygtclEsP4JOkBWlVwcT/7heyML86L93kMpxdACGzbZpyhKjd3cxlSPMlGcP+3OcXURR530hoaIpwyQrO+z6T5j87CagNpSBRAE32ZqARdirFMHXF8v/Vlp/iLIYeVI+XE=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <4E08379C8636FF419AD3D6FC3839B9C2@eurprd08.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 18b3ad0f-efb7-4dc3-b76b-08d5ec088990
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jul 2018 17:12:55.3288 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR0802MB2321
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/7xmEYnPz6Vw4QFDiP8YO9bvAmyI>
Subject: Re: [Suit] HR Review: Firmware Update Architecture for IoT Devices (Invite for HRPC session)
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 17 Jul 2018 17:13:02 -0000

I look forward to the output of this discussion. I wish I had been able to cover these questions earlier in the process. I think that there is significant room for addressing the concerns you’ve raised, not least of which is the possibility raised by severing “sensitive” information from a manifest and encrypting it, while leaving the bulk of the manifest in plaintext.

I do have one concern about ensuring privacy where firmware updates are concerned: even the number of manifests or number of unique manifests delivered to a particular building could leak sensitive information. Even correlating data consumption with releases of firmware updates could leak sensitive information. These problems cannot be solved with encryption alone.

I’m hoping to provide a more detailed review soon.

Best Regards,
Brendan


> On 14 Jul 2018, at 09:30, Gurshabad Grover <gurshabad@cis-india.org> wrote:
>
> Hi,
>
> Thank you for engaging with the recommendations.
>
> As I mentioned earlier, the review is a part of the efforts of the Human
> Rights Protocol Considerations (HRPC) group. We invite you to the HRPC
> session at IETF102, wherein we will have a short discussion of the review.
>
> HRPC Session at IETF102
> Date: July 19 (Thursday)
> Time: 15:50-17:50 EDT (Afternoon session II)
> Room: Duluth
> (https://datatracker.ietf.org/meeting/102/floor-plan?room=duluth#2nd-floor-convention-floor-2)
> Agenda:
> https://datatracker.ietf.org/meeting/102/materials/agenda-102-hrpc-03
>
> Looking forward to hearing your thoughts at the session.
>
> Gurshabad
>
> On Thursday 12 July 2018 03:00 AM, Gurshabad Grover wrote:
>
>> Review: A Firmware Update Architecture for Internet of Things Devices
>> =====================================================================
>>
>> An assessment of human rights considerations in
>> * draft-ietf-suit-architecture-01
>> * draft-moran-suit-manifest-02
>> * draft-ietf-suit-information-model-01 [...]
>
>
> _______________________________________________
> Suit mailing list
> Suit@ietf.org
> https://www.ietf.org/mailman/listinfo/suit

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email