Re: [6tisch-security] (minutes of Tue Dec 2, 2014, 9am EST call) Re: (now with agenda) Re: invite for 6tisch security call Tue December 2, 2014, 9am EST = 6am PST = 3pm Paris = 11pm Japan
Thomas Watteyne <watteyne@eecs.berkeley.edu> Fri, 19 December 2014 12:48 UTC
Return-Path: <twatteyne@gmail.com>
X-Original-To: 6tisch-security@ietfa.amsl.com
Delivered-To: 6tisch-security@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 538BF1A8AD1 for <6tisch-security@ietfa.amsl.com>; Fri, 19 Dec 2014 04:48:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.622
X-Spam-Level:
X-Spam-Status: No, score=0.622 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FM_FORGED_GMAIL=0.622, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GU3SoStb8QfX for <6tisch-security@ietfa.amsl.com>; Fri, 19 Dec 2014 04:48:25 -0800 (PST)
Received: from mail-wi0-x233.google.com (mail-wi0-x233.google.com [IPv6:2a00:1450:400c:c05::233]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE3E11A8755 for <6tisch-security@ietf.org>; Fri, 19 Dec 2014 04:48:24 -0800 (PST)
Received: by mail-wi0-f179.google.com with SMTP id ex7so1647843wid.12 for <6tisch-security@ietf.org>; Fri, 19 Dec 2014 04:48:23 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc:content-type; bh=SrBWp0wmR3x2yDQwfWDdYc1HUcjt1qmcipRhXR9+jrk=; b=JMfezWwwIPiBACqi84ooNdkdUHopd6kuenE+zUHfTEsoa4RCegnvE9NYloNeEwsF/m KpxCfnTU+N91htj9tljqD70IS4474s+l5i4eatKz0HQu5WTQOUZXFVsHpg0OkoncYCNt qJPQAVM8agkcHc4Jzyt0Q9Vmib4TzkNyS4NuGb15Y32YlflZDeZtPTuXsLJEwu6x0vzy nm7pL/PnZiqsaOO2+Xeke89pKbSUo6BE4AK5YwNJdUj1arEPK29XzzUEQKSgTj+abIV6 A6IMiYfHLZtmUG5+4hL0+rPFeLrau4SNTlG589c4UwDQvXPqCP4oMMM6PvHnsTkZPHvM y35g==
X-Received: by 10.194.93.5 with SMTP id cq5mr14013711wjb.84.1418993303604; Fri, 19 Dec 2014 04:48:23 -0800 (PST)
MIME-Version: 1.0
Sender: twatteyne@gmail.com
Received: by 10.194.68.199 with HTTP; Fri, 19 Dec 2014 04:48:03 -0800 (PST)
In-Reply-To: <54862F96.5040508@gmail.com>
References: <CADJ9OA8=w0hToDq=Qgk4NxieEy_hstsPZKiUWoF7iGhUp2JPNw@mail.gmail.com> <CAFb8J8q+r4MkTYogFH5EHo6CZe-+5Wkc_SAfpSiqOqJLMNUiQg@mail.gmail.com> <CADJ9OA9Cp2+6wKgP=RtVMJxxOetEhsNmb0qWE5Wx5H3EixiOxA@mail.gmail.com> <316.1416522601@sandelman.ca> <16128.1417135503@sandelman.ca> <CAFb8J8rWPPY+WG3L2boZOy5BoemkvQvXwj8KesG7d_TjKLnvag@mail.gmail.com> <1758.1417189169@sandelman.ca> <54789C85.1080505@gmail.com> <547C9D91.4010400@gmail.com> <54862F96.5040508@gmail.com>
From: Thomas Watteyne <watteyne@eecs.berkeley.edu>
Date: Fri, 19 Dec 2014 13:48:03 +0100
X-Google-Sender-Auth: Ed3priRogeaqoUukDEUiJAwSlZo
Message-ID: <CADJ9OA8ujcFZENHw2d+Yor36cemyw2x-4UnAW6qeRUSQu0tsqg@mail.gmail.com>
To: Rene Struik <rstruik.ext@gmail.com>
Content-Type: multipart/alternative; boundary="047d7bb04da6ccd651050a911ffe"
Archived-At: http://mailarchive.ietf.org/arch/msg/6tisch-security/oSxeJ4ME7shq316G81BN7bmUz5w
Cc: "6tisch-security@ietf.org" <6tisch-security@ietf.org>
Subject: Re: [6tisch-security] (minutes of Tue Dec 2, 2014, 9am EST call) Re: (now with agenda) Re: invite for 6tisch security call Tue December 2, 2014, 9am EST = 6am PST = 3pm Paris = 11pm Japan
X-BeenThere: 6tisch-security@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Extended Design Team for 6TiSCH security architecture <6tisch-security.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/6tisch-security/>
List-Post: <mailto:6tisch-security@ietf.org>
List-Help: <mailto:6tisch-security-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/6tisch-security>, <mailto:6tisch-security-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 19 Dec 2014 12:48:28 -0000
Rene, FYI, I have archived those minutes at https://bitbucket.org/6tisch/meetings/wiki/141202a_webex_security. All, Note that all minutes, attendance, recordings and meeting material is archived at https://bitbucket.org/6tisch/meetings/. Please speak up if you see something is missing. Thomas On Tue, Dec 9, 2014 at 12:09 AM, Rene Struik <rstruik.ext@gmail.com> wrote: > > Dear colleagues: > > Please find below the minutes of the 6TiSCH Security conf call as of > December 2, 2014, 9am EST. > > Minutes 6TiSCH Security conf call, Tue December 2, 2014, 9-10am EST > {note taker: Rene Struik} > {recording: > https://drive.google.com/file/d/0B2a6Ilxu1XfCUmU4RWFfb1FJSHc/view?usp=sharing > } > {slides discussed (and referenced in minutes): > https://drive.google.com/file/d/0B2a6Ilxu1XfCZnZzdlQ5V1hkNEk/view?usp=sharing > } > > 1. Attendance: > Michael Richardson, Yoshi Ohba, Subir Das, Piro Giuseppe, Rene Struik > > 2. Agenda > The suggested agend was approved. > > 3. Join process - desirable vs. realizable properties > RS went over the desirable properties of the join process (Slide 6). MR > raised point that privacy of the device identity of the joining node might > not be required. . SD suggested that it is fine to include privacy in list > of "desiderata"; evaluation metrics might consider these in "grey tones" > vs. as "black and white" requirement. RS suggested that merit of privacy > might depend on deployment scenario, but is on the radar in lots of IETF > groups (in terms of traceability/tracking); if privacy can be easily > offered as additional feature, this would be a plus. After asking, there > was no further discussion on properties listed. > > 4. Join process - MAC behavior. > RS went over some MAC security aspects of the 802.15.4-2011 and > 802.15.4e-2012 specifications (Slides 19-22). The main premise here was > that a recipient device that expects secured traffic, will reject all > incoming unsecured traffic, unless this originates from a device with > so-called "exempt status". This "exempt status" construct allows receipt of > incoming unsecured data frames from a joining node that does not have > network-specific keying material yet. How to switch on/off this "exempt > status" parameter was also discussed (see Slide 20). Furthermore, there was > some discussion on how this compares to the use of so-called "default keys" > (aka "fake" keys) (see also Slide 22). > > PG mentioned that 802.15.4 does not allow the use of the default key. SD > suggested that an important point in not using default keys is that all > incoming processing with keys will be treated transparently, irrespective > of exceptions. RS explained that even if default keys were to be used, this > would mess up local security state (e.g., frame counters), which is not the > case if one would send unsecured traffic and use the "exempt status" > construct instead. PD summarized that using unsecured frames, rather than > "fake" security with "default keys", should be adopted, which was consensus > on the call. > > PG came back to the "exempt flag" topic and suggested that details hereof > are in the "device descriptor lookup table". RS suggested that we all have > a closer look at specification details, so that switching this feature > on/off could be easily codified for 6TiSCH use. > > 5. Join process - non-MAC behavior. > Given remaining time on the call would not allow full discussion of > non-MAC aspects (Slides 23-25) and given that MR had to drop off the call, > it was decided to revisit those topics at the next conf call. > > 6. AOB Conf call scheduling. > SD suggested he was confused about having two call times in email traffic > (one at 9am EST and one at 11am EST) and suggested that other groups, such > as, e.g., IEEE, often use cyclic schedule, so as to accommodate > participants from around the world and who may be at widely different time > zones. RS volunteered to look into this topic and obtain feedback on such a > schedule. > > Best regards, Rene > > On 12/1/2014 11:55 AM, Rene Struik wrote: > > Proposed agenda: > > 0) Agenda bashing > > 1) Join protocol details > > a) desired properties > b) realizable properties > > 2) Next steps: > a) consensus on 1#a and 1#b > b) form tiger team to work out details > - project phases > - communication of sub-results > c) what to squeeze into architecture draft, etc. > > I will prepare material to facilitate discussion on 1) and 2), to be > discussed during the call. > > Best regards, Rene > > > On 11/28/2014 11:02 AM, Rene Struik wrote: > > Dear colleagues: > > > I have set up a conf call for Tuesday December 2, 2014 at a time that > tries and accommodate people in different time zones to the largest extent > possible, without trying to discriminate against various parts of the world. > > > Please see dial-in information below. > > > Agenda to follow Monday around noon. > > > Looking forward to a collaborative meeting, in good spirit. > > > Best regards, Rene > > == > > > 1. Please join my meeting. > > https://global.gotomeeting.com/join/594299061 > > > > 2. Use your microphone and speakers (VoIP) - a headset is recommended. Or, > call in using your telephone. > > > > Dial +1 (647) 497-9351 > > Access Code: 594-299-061 > > Audio PIN: Shown after joining the meeting > > > > Meeting Password: collaborate > > Meeting ID: 594-299-061 > > > > GoToMeeting® > > Online Meetings Made Easy® > > > > Not at your computer? Click the link to join this meeting from your > iPhone®, iPad®, Android® or Windows Phone® device via the GoToMeeting app. > > > > [excerpt email as of Thu November 27, 2014, 9.42pm EST] > I suggest 9am EST = 6am PST = 3pm Paris = 11pm Japan. This should allow > people to have their private time in the 12am-6am time window. {Other > groups do a much better job at this...} > > > On 11/28/2014 10:39 AM, Michael Richardson wrote: > > Subir Das <subirdas21@gmail.com> <subirdas21@gmail.com> wrote: > > Thanks for arranging the calls. It would be good to accommodate Asian time > > zone for broader participation. I would suggest choosing a time that is > > I'm happy to do this at another time; the original choice of 11am Eastern was > to accomodate Pacific Time Zone People who couldn't meet before 8am. > > >From long experience, our choices essentially are at 15:00 UTC or 03:00 UTC. > 07:00 Pacific/10:00 Eastern / 17:00 Helsinki/22:00 Beijing > or > 19:00 Pacific/22:00 Eastern / 05:00 Helsinki/10:00 Beijing > > I am also happy to alternate. > Shall I put up a doodle poll? > > > > > _______________________________________________ > 6tisch-security mailing list6tisch-security@ietf.orghttps://www.ietf.org/mailman/listinfo/6tisch-security > > > > -- > email: rstruik.ext@gmail.com | Skype: rstruik > cell: +1 (647) 867-5658 | US: +1 (415) 690-7363 > > > > -- > email: rstruik.ext@gmail.com | Skype: rstruik > cell: +1 (647) 867-5658 | US: +1 (415) 690-7363 > > > > -- > email: rstruik.ext@gmail.com | Skype: rstruik > cell: +1 (647) 867-5658 | US: +1 (415) 690-7363 > > > _______________________________________________ > 6tisch-security mailing list > 6tisch-security@ietf.org > https://www.ietf.org/mailman/listinfo/6tisch-security > >
- [6tisch-security] minutes of the 2014-11-04 6TiSC… Michael Richardson
- Re: [6tisch-security] minutes of the 2014-11-04 6… Thomas Watteyne
- [6tisch-security] agenda for upcoming 6tisch secu… Michael Richardson
- Re: [6tisch-security] agenda for upcoming 6tisch … yoshihiro.ohba
- [6tisch-security] (different time to accommodate … Rene Struik
- Re: [6tisch-security] agenda for upcoming 6tisch … Subir Das
- Re: [6tisch-security] agenda for upcoming 6tisch … Michael Richardson
- Re: [6tisch-security] agenda for upcoming 6tisch … yoshihiro.ohba
- Re: [6tisch-security] agenda for upcoming 6tisch … Michael Richardson
- Re: [6tisch-security] (different time to accommod… Michael Richardson
- [6tisch-security] invite for 6tisch security call… Rene Struik
- Re: [6tisch-security] invite for 6tisch security … Thomas Watteyne
- [6tisch-security] (now with agenda) Re: invite fo… Rene Struik
- Re: [6tisch-security] (now with agenda) Re: invit… Michael Richardson
- Re: [6tisch-security] (now with agenda) Re: invit… Rene Struik
- Re: [6tisch-security] (now with agenda) Re: invit… Michael Richardson
- Re: [6tisch-security] (now with agenda) Re: invit… Michael Richardson
- [6tisch-security] (slides for participants) Re: (… Rene Struik
- [6tisch-security] invite for 6tisch security call… Michael Richardson
- Re: [6tisch-security] invite for 6tisch security … Rene Struik
- Re: [6tisch-security] agenda for upcoming 6tisch … Subir Das
- Re: [6tisch-security] agenda for upcoming 6tisch … Nancy Cam-Winget (ncamwing)
- [6tisch-security] (minutes of Tue Dec 2, 2014, 9a… Rene Struik
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… yoshihiro.ohba
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Rene Struik
- [6tisch-security] (w/ slight correction) Fwd: (mi… Rene Struik
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Rene Struik
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… yoshihiro.ohba
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Jonathan Simon
- Re: [6tisch-security] (w/ slight correction) Fwd:… Pascal Thubert (pthubert)
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Rene Struik
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Pat Kinney
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Rene Struik
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Pat Kinney
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Tero Kivinen
- [6tisch-security] Fwd: (w/ slight correction) Fwd… Jonathan Simon
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Pascal Thubert (pthubert)
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Jonathan Simon
- Re: [6tisch-security] (w/ slight correction) Fwd:… Michael Richardson
- Re: [6tisch-security] Fwd: (w/ slight correction)… Michael Richardson
- Re: [6tisch-security] (w/ slight correction) Fwd:… Michael Richardson
- Re: [6tisch-security] (w/ slight correction) Fwd:… Jonathan Simon
- Re: [6tisch-security] (w/ slight correction) Fwd:… Michael Richardson
- Re: [6tisch-security] (w/ slight correction) Fwd:… Pascal Thubert (pthubert)
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (w/ slight correction) Fwd:… Michael Richardson
- Re: [6tisch-security] (w/ slight correction) Fwd:… Kris Pister
- Re: [6tisch-security] (w/ slight correction) Fwd:… Tero Kivinen
- Re: [6tisch-security] (minutes of Tue Dec 2, 2014… Thomas Watteyne