IETF Logo Mail Archive

Re: [Suit] draft-ietf-suit-architecture-01

Denis <denis.ietf@free.fr> Tue, 03 July 2018 09:58 UTC

Return-Path: <denis.ietf@free.fr>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C3ECA129C6A for <suit@ietfa.amsl.com>; Tue, 3 Jul 2018 02:58:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.598
X-Spam-Level:
X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HpFr1Rbv1Ifb for <suit@ietfa.amsl.com>; Tue, 3 Jul 2018 02:58:50 -0700 (PDT)
Received: from smtp6-g21.free.fr (smtp6-g21.free.fr [IPv6:2a01:e0c:1:1599::15]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6017C1277BB for <suit@ietf.org>; Tue, 3 Jul 2018 02:58:50 -0700 (PDT)
Received: from [192.168.0.13] (unknown [88.182.125.39]) by smtp6-g21.free.fr (Postfix) with ESMTP id A26A1780331 for <suit@ietf.org>; Tue, 3 Jul 2018 11:58:47 +0200 (CEST)
To: suit@ietf.org
References: <VI1PR0801MB2112A08944328EE625D4DE5CFA430@VI1PR0801MB2112.eurprd08.prod.outlook.com>
From: Denis <denis.ietf@free.fr>
Message-ID: <ec04d5da-0b76-f4d7-c548-e69579530856@free.fr>
Date: Tue, 03 Jul 2018 11:58:47 +0200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0
MIME-Version: 1.0
In-Reply-To: <VI1PR0801MB2112A08944328EE625D4DE5CFA430@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Content-Type: multipart/alternative; boundary="------------F54CA56939E60D09DF60BD63"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/AitwfnggRzGCFwcZdqomfW5ZMy4>
Subject: Re: [Suit] draft-ietf-suit-architecture-01
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Jul 2018 09:58:53 -0000

Hannes,

It is well known that software updates are often done to address a 
security issue. The same applies
to firmware updates. The current draft is lacking to address protections 
against the downloading of
an old firmware version. The threat should be mentioned in the security 
considerations section.

The main body of the document should mention mechanisms to prevent the 
replay of an old version
of the firmware.

Denis

> Hi all,
>
> I have just submitted version -01 of the architecture document. I have 
> incorporate feedback from the working group, such as
>
> ·New terminology,
>
> ·Updates on the operating modes
>
> ·New architecture figures,
>
> ·New use cases (by David Brown)
>
> Here is the new version:
>
> https://tools.ietf.org/html/draft-ietf-suit-architecture-01
>
> Here is the diff:
>
> https://tools.ietf.org/rfcdiff?url2=draft-ietf-suit-architecture-01.txt
>
> Feedback is appreciated.
>
> Ciao
>
> Hannes
>
> IMPORTANT NOTICE: The contents of this email and any attachments are 
> confidential and may also be privileged. If you are not the intended 
> recipient, please notify the sender immediately and do not disclose 
> the contents to any other person, use it for any purpose, or store or 
> copy the information in any medium. Thank you.
>
>
> _______________________________________________
> Suit mailing list
> Suit@ietf.org
> https://www.ietf.org/mailman/listinfo/suit

v2.23.0 | Report a Bug | By Email