Re: [T2TRG] RESTful Design & Security
Hannes Tschofenig <hannes.tschofenig@gmx.net> Wed, 08 March 2017 19:15 UTC
Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: t2trg@ietfa.amsl.com
Delivered-To: t2trg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D926D129524 for <t2trg@ietfa.amsl.com>; Wed, 8 Mar 2017 11:15:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.602
X-Spam-Level:
X-Spam-Status: No, score=-2.602 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e4deYdbH9no0 for <t2trg@ietfa.amsl.com>; Wed, 8 Mar 2017 11:15:10 -0800 (PST)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.22]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C51BD129464 for <T2TRG@irtf.org>; Wed, 8 Mar 2017 11:15:09 -0800 (PST)
Received: from [192.168.91.177] ([80.92.114.23]) by mail.gmx.com (mrgmx103 [212.227.17.168]) with ESMTPSA (Nemesis) id 0M9KR0-1cyNHf0nUc-00ChGM; Wed, 08 Mar 2017 20:14:53 +0100
To: Carsten Bormann <cabo@tzi.org>, Göran Selander <goran.selander@ericsson.com>
References: <c15a387f-9dd3-987e-2901-b86fd8f60108@gmx.net> <10144.1488908366@obiwan.sandelman.ca> <952c4a16-174f-2457-1f11-8f733e738f90@gmx.net> <D4E5582E.78797%goran.selander@ericsson.com> <DE24E6F2-4B93-4507-AD43-E490B81B7E66@tzi.org>
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
Openpgp: id=071A97A9ECBADCA8E31E678554D9CEEF4D776BC9
Message-ID: <24c2c77b-27dd-9a58-7ffb-f6d38db2aaa9@gmx.net>
Date: Wed, 08 Mar 2017 20:14:50 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0
MIME-Version: 1.0
In-Reply-To: <DE24E6F2-4B93-4507-AD43-E490B81B7E66@tzi.org>
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="cSh77gnPNNeRsHd5wmXM6RgGbdlDAb9fd"
X-Provags-ID: V03:K0:/vZKbhUKfCTWav8NoM8BFFG3K//umXdcH3CE338+Vqps9ErLWjv amw4xuDS3Qm+kZieqPBUdty3UL67DQCt6ewmbssaHfiVYYpXHaqyLUfAxDObAj9v8rfe0V4 83kqZ7xhrpacoOZFowQ0ntA7cflKyarffvqn5q4EvQn9I1dIcpePXbQtH8KNSW0pEsG2Zum NHUssFGbf1Kp7fb/x7V8g==
X-UI-Out-Filterresults: notjunk:1;V01:K0:i9ohR1Z6Vnw=:+pwjlzcsOotxnG1B/y1PR1 hfFaYhL79nVX5HdkA3794RdrXoOGG6X3IFctVl4Ktz9rsssHtcEeWFozDiKSqVkwynngdMKv3 LzwSCXsKgyTc8wE8/ispIH5DRHXF0JGcxpGRkUwtnVrhjkbFY1+Y604qm70hPTCDqi6LovjK+ BQAqcvLwlNBHEwRFjixnJtn13tuppVS8WfGgQW8KaQVEDKAC2fhGfXYo9T9PmkfvdhwpnjxbR fc6dmaycYfOpDs8qoDDmuCMmE/102AlL9aFHeMuShwkPDuEUbGn45luMCDj1zrukUjjeRDYRp hXNi0TlcXQQq86jqQCpQjKDqp1i+5yPPzzzPai/mUAcb3YNb/oBJFZAvY99Lthtd9VSotF2sV yOZMnXPNcyWPNrZ1+CDM+CdYpQFe9QZySRWEYpIxZS6DnCaTsc1IDFIMMQTtamR/ZJE5+fTz9 SCZhfppY3p47qVKGKfpqcb2wePUvostedM2V+ovWxtfv6QTvLrqKQ4eB1hxvIkHWWZRqkUX+S 7u5Z9hODKfDCvDDZGERt9s7NEp5pEoC/r6j4VABlCprxjf7+Z/ImpybLL8a4LW9tE/d166ykF ldrLaOLhz9ZzUXMm+y99dvBeE52+opmX3nLqEqRMhXWQVq92144PTzfKqeo+6XIORyTIz6aA0 nQiRyblrCApSYMYFZUGjyAjSqfwiE88eTDFYsFTALv56LuZBBqmxvGVjhlzBbBT0iAgxsmiMK jP7XUaZ0zXl0X6VlXUWa6lS72cVQiev0AGYfcOJSXbdSGxFaWW/Mf67d2qY=
Archived-At: <https://mailarchive.ietf.org/arch/msg/t2trg/6HYHsP3Mf6BMcwe8pmDJqXypwqA>
Cc: Michael Richardson <mcr+ietf@sandelman.ca>, "t2trg@irtf.org" <T2TRG@irtf.org>
Subject: Re: [T2TRG] RESTful Design & Security
X-BeenThere: t2trg@irtf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IRTF Thing-to-Thing \(T2T\) Research-Group-in-creation" <t2trg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/t2trg>, <mailto:t2trg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/t2trg/>
List-Post: <mailto:t2trg@irtf.org>
List-Help: <mailto:t2trg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/t2trg>, <mailto:t2trg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Mar 2017 19:15:12 -0000
Hi Carsten, an additional consideration is that confidentiality protection of the payload still reveals a lot of information about what is being accessed via the URI. Ciao Hannes On 03/08/2017 11:08 AM, Carsten Bormann wrote: > On 8 Mar 2017, at 09:30, Göran Selander <goran.selander@ericsson.com> > wrote: >> >> 1. Apply security above the web transfer layer, i.e. to CoAP/HTTP >> payload, e.g. by wrapping the payload in the COSE format. In this >> case the secure COSE object is independent of web transfer >> mechanism so you can switch between e.g. HTTP and CoAP. However, >> the web transfer metadata, including e.g. the RESTful method, >> resource etc. is not protected. This is anyway useful if the >> method/resource etc. is implicit or the application provides the >> context, e.g. CoAP pub/sub. > > Apart from the HTTPS straightjacket I just discussed, this is the > other interesting design issue about RESTful security. > > Should we design all objects being interchanged in such a way that > they can be signed by themselves, which implies that they don’t need > context to interpret them? > > E.g., if I > > GET coap://bathroom.cabo.space/temperature > > a typical result in a REST world might be a CBOR or JSON object > saying > > [{"u":"Cel","v":23.125}] > > But there is no point in signing that object by itself; it does not > mean anything useful. > > A signed object would need to include the fact that this is about my > bathroom, and some freshness information (such as the current time). > If you don’t want to use absolute time for freshness, you would > include a request nonce, which makes this object useless for a > different request, so you might as well bind it to the request in > other ways (e.g., include the URI instead of some generic semantic > information tying this to my bathroom). > > The OSCOAP approach is to simply bind responses to the relevant > information in the request, so all this happens “automatically” (you > wish). > > Grüße, Carsten > > _______________________________________________ T2TRG mailing list > T2TRG@irtf.org https://www.irtf.org/mailman/listinfo/t2trg >
- [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Ari Keränen
- Re: [T2TRG] RESTful Design & Security Michael Richardson
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Kovatsch, Matthias
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Kovatsch, Matthias
- Re: [T2TRG] RESTful Design & Security Simpson, Robby (GE Energy Connections)
- Re: [T2TRG] RESTful Design & Security Kovatsch, Matthias
- Re: [T2TRG] RESTful Design & Security Göran Selander
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Carsten Bormann
- Re: [T2TRG] RESTful Design & Security Carsten Bormann
- Re: [T2TRG] RESTful Design & Security Eliot Lear
- Re: [T2TRG] RESTful Design & Security Carsten Bormann
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Göran Selander
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- [T2TRG] The Many Headed Hydra Nightingale, J. Stephen (Fed)
- Re: [T2TRG] The Many Headed Hydra Carsten Bormann
- Re: [T2TRG] RESTful Design & Security Garcia-Morchon O, Oscar
- Re: [T2TRG] RESTful Design & Security Eliot Lear
- Re: [T2TRG] RESTful Design & Security Hannes Tschofenig
- Re: [T2TRG] RESTful Design & Security Mohit Sethi
- Re: [T2TRG] RESTful Design & Security Garcia-Morchon O, Oscar
- Re: [T2TRG] RESTful Design & Security Hasan Derhamy
- Re: [T2TRG] RESTful Design & Security Eliot Lear