Re: [Uta] TLS Implementation Status for IoT
Eliot Lear <lear@cisco.com> Mon, 21 September 2020 09:52 UTC
Return-Path: <lear@cisco.com>
X-Original-To: uta@ietfa.amsl.com
Delivered-To: uta@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 79C513A0B86 for <uta@ietfa.amsl.com>; Mon, 21 Sep 2020 02:52:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.601
X-Spam-Level:
X-Spam-Status: No, score=-9.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id isVoPCTcHX-T for <uta@ietfa.amsl.com>; Mon, 21 Sep 2020 02:52:05 -0700 (PDT)
Received: from aer-iport-2.cisco.com (aer-iport-2.cisco.com [173.38.203.52]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A3FD73A0B85 for <uta@ietf.org>; Mon, 21 Sep 2020 02:52:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1799; q=dns/txt; s=iport; t=1600681924; x=1601891524; h=mime-version:subject:from:in-reply-to:date:cc: content-transfer-encoding:message-id:references:to; bh=6Q8fdfgqXBU+FCOplKNlRIz1P4ItOtXDiLn48GaUphA=; b=gW4a2mLOacHTCudbCI+Nlim9yyjRkhsNXCV6FcP5AHbNpLsRGhJmg88F 6P7dpRe0FrPzI57j0Ol3zAp2TVe4eA5FUrLVwY0pyE3pELd8BYGS7Nr/z teGjgmMgglR1DfQxZKRLfuHcJKDmBURPNV05PSjI1QQwCnH0f1BXSY8EB Q=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DLCABdd2hf/xbLJq1fHAEBAQEBAQcBARIBAQQEAQFAgU8CgXmBH1UBIBIsjTyIPJojE4FpCwEBAQ0BARgLDAQBAYRLAoIsJToEDQIDAQELAQEFAQEBAgEGBG2FXAyFcgEBAQECAQEBODQCCQULCxgVGScwBhODJgGCXCAPsn90gTSFU4UJBoE4AYwNgTmCACZrJxyCHy4+glwBAYEYEgESASE/gwuCLQSPcac9gnGDEZFJhXIDHoMMOIlBhQ+Oba8bg1wCBAYFAhWBbQEgZ3AzGggbFTsqAYI+PhIZDY9EAQKHXYVEPwMwNwIGCgEBAwmOXwEB
X-IronPort-AV: E=Sophos;i="5.77,286,1596499200"; d="scan'208";a="29787955"
Received: from aer-iport-nat.cisco.com (HELO aer-core-3.cisco.com) ([173.38.203.22]) by aer-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 21 Sep 2020 09:52:00 +0000
Received: from [10.61.213.221] ([10.61.213.221]) by aer-core-3.cisco.com (8.15.2/8.15.2) with ESMTPS id 08L9px30007711 (version=TLSv1.2 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO); Mon, 21 Sep 2020 09:52:00 GMT
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\))
From: Eliot Lear <lear@cisco.com>
In-Reply-To: <AM0PR08MB371616E1C2BD0F92DFCD9AD5FA3A0@AM0PR08MB3716.eurprd08.prod.outlook.com>
Date: Mon, 21 Sep 2020 11:51:59 +0200
Cc: "uta@ietf.org" <uta@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <19111DF4-30A2-4E7D-93AE-2B690BF17374@cisco.com>
References: <AM0PR08MB371616E1C2BD0F92DFCD9AD5FA3A0@AM0PR08MB3716.eurprd08.prod.outlook.com>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
X-Mailer: Apple Mail (2.3608.120.23.2.1)
X-Outbound-SMTP-Client: 10.61.213.221, [10.61.213.221]
X-Outbound-Node: aer-core-3.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/uta/q44XLuuWqbs7XXeryoAYtmZvr4o>
Subject: Re: [Uta] TLS Implementation Status for IoT
X-BeenThere: uta@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: UTA working group mailing list <uta.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/uta>, <mailto:uta-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/uta/>
List-Post: <mailto:uta@ietf.org>
List-Help: <mailto:uta-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/uta>, <mailto:uta-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Sep 2020 09:52:06 -0000
Really nice work, Hannes. Thank you. Eliot > On 21 Sep 2020, at 11:20, Hannes Tschofenig <Hannes.Tschofenig@arm.com> wrote: > > Hi all, > > working on draft-ietf-uta-tls13-iot-profile, Thomas and I have been looking at the implementation status of TLS/DTLS extensions on embedded devices. Here is what we found out looking at various popular stacks. There are lots of features in prototype status and we have not taken those into account. > > "red" means not implemented, "green" refers to an implemented feature, and "white" is an indication that we didn't have a chance to figure out whether the feature is supported or not because it was not described in the documentation. > > In a nutshell, it is fair to say that certificate and PSKs are well supported. Raw public key support is also available with a number of implementations. > What is a bit disappointing is that many extensions targeting IoT optimizations are not implemented. It is hard to say why. Maybe companies don't feel a need to use these optimizations, maybe the optimizations aren't good enough, or companies are unaware of these RFCs. > > Please let us know if we got something wrong or if we forgot your implementation. > > Ciao > Hannes > IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. > <Implementation_Status.png>_______________________________________________ > Uta mailing list > Uta@ietf.org > https://www.ietf.org/mailman/listinfo/uta
- [Uta] TLS Implementation Status for IoT Hannes Tschofenig
- Re: [Uta] TLS Implementation Status for IoT Eliot Lear
- Re: [Uta] TLS Implementation Status for IoT Achim Kraus
- Re: [Uta] TLS Implementation Status for IoT Hubert Kario