IETF Logo Mail Archive

Re: [T2TRG] T2TRG work meeting on security in one hour

Göran Selander <goran.selander@ericsson.com> Wed, 24 May 2023 22:05 UTC

Return-Path: <goran.selander@ericsson.com>
X-Original-To: t2trg@ietfa.amsl.com
Delivered-To: t2trg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1225EC15256B for <t2trg@ietfa.amsl.com>; Wed, 24 May 2023 15:05:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3TYZ1XZcJsXK for <t2trg@ietfa.amsl.com>; Wed, 24 May 2023 15:04:58 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-vi1eur04on0624.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe0e::624]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 49B6EC1524BC for <t2trg@irtf.org>; Wed, 24 May 2023 15:04:14 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LsVemrnDJWkf3mKJusVKEt0nSvvHT0F77nAkD579g5WLP7m8if6xILpa5yKFBL2nOgtKnJrUT3M2G6mOaSTjd0cOqcPYxJEwvhZZdSN1i1HSLgkqL3lqjvXRyXnNoqbpwPgqgyaUsjDXeiRsC62TX0nOoPIxW53ABs8IsQ6ln+iEmy6Lve0o9scfaERjVe/BJ3BajPZoGxfG9Wx4XBJxLIU+E72ujTTY265LyjOf2NL2/Y121JPnvwBWdoQMVlf+v9dTeaZ/qv/mjrrXjA/FPlIXBL2B8A+u/pfb+2+z73LomlnkSbg8TuBU04F5fGg4/lE37qMzImDi2WTPzAFpcQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=z+e66K566GHUGa2CaMutWKuY6cakdX5dVLa6gnbHz+g=; b=eU3l8dqfDhXL2M98S5heXHs9+oCHw/ejFyzfNXNaPkOfDBKtemqQUyg4yBYV5K5mhRomdgyLmrNz6HjqNZdrlw7VRH0nJUb6Tfczesb9SQgiAa7mC74gXgZc/3hN1E29XP+Bc2YYNARwpoDAEfD5uZkAvbi+2ZrIYGOJrrfvhHzon/OTUIqQ4tpDpmIpwingnAS9KHLI2FBrm1h49huXb7jAYcgQbzQgslOCobe8avXZpNzoDpnXiN+v1YRpSyvYC+DSLThmPMA5tmvPfJZ78rwIRHYNH18/5W3msdsdOfdjXiXN2bLWZGhYmxdm8fDNai4Db+A5/0B4fVij1CruNA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=z+e66K566GHUGa2CaMutWKuY6cakdX5dVLa6gnbHz+g=; b=gWVLqAlkPeuOhWC0yzsnXp88jGeYqF0bwAcD5zEcGndULnR83aaPUlh7aUIIcIqXo/2c6hoDADtDekbwHDQM5uC6k0Cpydn3BbbaUnaTpHil7iqg5oQ6A7TJNURAo80DS/DXUS7mXWsJUocJwRhNv0+lJ60OPU71UUHKA2YyUwo=
Received: from PAXPR07MB8844.eurprd07.prod.outlook.com (2603:10a6:102:24a::19) by DB9PR07MB9992.eurprd07.prod.outlook.com (2603:10a6:10:4c7::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6411.29; Wed, 24 May 2023 22:04:08 +0000
Received: from PAXPR07MB8844.eurprd07.prod.outlook.com ([fe80::8988:c72f:b40c:734b]) by PAXPR07MB8844.eurprd07.prod.outlook.com ([fe80::8988:c72f:b40c:734b%3]) with mapi id 15.20.6411.028; Wed, 24 May 2023 22:04:08 +0000
From: Göran Selander <goran.selander@ericsson.com>
To: Carsten Bormann <cabo@tzi.org>, "t2trg@irtf.org" <t2trg@irtf.org>
Thread-Topic: [T2TRG] T2TRG work meeting on security in one hour
Thread-Index: AQHZjjdDRoicN7EQS0W+QOPwW4QHyq9p9xuD
Date: Wed, 24 May 2023 22:04:08 +0000
Message-ID: <PAXPR07MB88449FB70F8A0E0A93BD010CF4419@PAXPR07MB8844.eurprd07.prod.outlook.com>
References: <CDF1B2F7-41F1-4B0C-B421-74342D318690@tzi.org>
In-Reply-To: <CDF1B2F7-41F1-4B0C-B421-74342D318690@tzi.org>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PAXPR07MB8844:EE_|DB9PR07MB9992:EE_
x-ms-office365-filtering-correlation-id: f5f97bec-437b-435b-a55d-08db5ca2cc33
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: vYXuyk9oJJuDIRNYYMk+BTEdKMlgE714ApeV3Cj3gUMhtcyYcmKL3ucBSdncLgSyW51sG9cf4plzJvm7sO1ofAlSAMtxHOCMYRSrd5rn/lpLH6t9bo4wGs28ANBVsW32h56va6rQZmxH0R3iga8iIqjb9efl6yTXyuCpr+fHhjVo1RYC76MD9x/JTGqJ6geqYtxhVwl1Gs7G8vWZhFj42iqGdb2rkjrjt4AOQ0DtZc0WhLIQ/tuK8dmqHohcj9505ZnbpRVtrHKo18P6jykDkHqJyz7C6+vioZNsfidHfeixvj+JCFd9lfG54cBExexse9kFYjjXFRdk+8TsdZTERB+oOarWod5fnqd9+EoK7a5YmED3dmhoIpnYBHECv3Usnh7A6srhL2B0D7e3/+wtlWuhvYnbXQXSdiSYFHYq7E6/YCHEQOF1J/zyT7Srfm4px7aIMYsYowGBXyGsE7IaA4c7Uu5MB+YxZ47bPUNzNtZVt7bH7n/c7cGKbOo7fM40+F1Iv4LCK401vx3hC+8FJn9YNbUZEP8wz9u4mtJVaa1IZ7WcDjWMtSEH738sG/yVbYqE6nJ/gvHeAbUCHh7gxFZUPhOKk6FsJTHpmm7QzJU=
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PAXPR07MB8844.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(396003)(346002)(136003)(366004)(39860400002)(376002)(451199021)(38100700002)(7696005)(966005)(478600001)(110136005)(41300700001)(91956017)(316002)(86362001)(76116006)(71200400001)(64756008)(166002)(66946007)(66476007)(66556008)(66446008)(52536014)(5660300002)(38070700005)(8676002)(8936002)(2906002)(26005)(82960400001)(6506007)(122000001)(33656002)(15650500001)(186003)(9686003)(53546011)(55016003)(83380400001)(66574015); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_PAXPR07MB88449FB70F8A0E0A93BD010CF4419PAXPR07MB8844eurp_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PAXPR07MB8844.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f5f97bec-437b-435b-a55d-08db5ca2cc33
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 May 2023 22:04:08.3361 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: MrqlRZO/4+6d+2Od6oZfSHBMz4iZGBMnmXhpAiZorIBGBZZxs3GwnVyV+JCx4SSYmKXdY+pJF7oiJkQ5R4aljiCHII8Ge+3a6wYPYCeCiM0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR07MB9992
Archived-At: <https://mailarchive.ietf.org/arch/msg/t2trg/mt_w3GKxGWsCNicLImqD1VfQiNk>
Subject: Re: [T2TRG] T2TRG work meeting on security in one hour
X-BeenThere: t2trg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: IRTF Thing-to-Thing Research Group <t2trg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/t2trg>, <mailto:t2trg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/t2trg/>
List-Post: <mailto:t2trg@irtf.org>
List-Help: <mailto:t2trg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/t2trg>, <mailto:t2trg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Wed, 24 May 2023 22:05:03 -0000

Hi Carsten,

Some more loose thoughts about the secure discovery topic you raised in T2TRG today, er … yesterday.

Part of the reasoning seems similar to that of which party in an authenticated key exchange should reveal its identity first. And one party has to go first, compare SIGMA-I vs. SIGMA-R [1]. It seems to me that a similar setting can be mapped to this domain, so secure discovery can be supported by a set of AKE-like protocols. Which variant to use depends on what is most sensitive, the identity/intent of the party that wants to discover or the resource being discovered. Perhaps one and the same protocol can be used in different directions, so only the initiating party of the security protocol differs between deployments.

My 2 cents.

Göran

[1] https://www.iacr.org/cryptodb/archive/2003/CRYPTO/1495/1495.pdf

From: T2TRG <t2trg-bounces@irtf.org> on behalf of Carsten Bormann <cabo@tzi.org>
Date: Wednesday, 24 May 2023 at 13:59
To: t2trg@irtf.org <t2trg@irtf.org>
Subject: [T2TRG] T2TRG work meeting on security in one hour
Reminder: in one hour, we will have a work meeting (“virtual interim”) of the RG on a number of security subjects.

All links at:
https://datatracker.ietf.org/meeting/interim-2023-t2trg-01/session/t2trg

(“Remote instructions” is the meetecho link.)

Grüße, Carsten

_______________________________________________
T2TRG mailing list
T2TRG@irtf.org
https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-d295a0ee117fb47f&q=1&e=d578e149-eec3-4c9e-bc63-e790b7d7ca83&u=https%3A%2F%2Fwww.irtf.org%2Fmailman%2Flistinfo%2Ft2trg

v2.23.0 | Report a Bug | By Email