From nobody Fri May 26 02:14:58 2017 Return-Path: X-Original-To: emu@ietfa.amsl.com Delivered-To: emu@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0324A129A99 for ; Fri, 26 May 2017 02:14:56 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.219 X-Spam-Level: X-Spam-Status: No, score=-4.219 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id B8cPcw7bZUa1 for ; Fri, 26 May 2017 02:14:54 -0700 (PDT) Received: from sessmg23.ericsson.net (sessmg23.ericsson.net [193.180.251.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F23D612706D for ; Fri, 26 May 2017 02:14:53 -0700 (PDT) X-AuditID: c1b4fb2d-1c9ff70000000d37-d0-5927f20acc30 Received: from ESESSHC022.ericsson.se (Unknown_Domain [153.88.183.84]) by sessmg23.ericsson.net (Symantec Mail Security) with SMTP id 31.27.03383.A02F7295; Fri, 26 May 2017 11:14:51 +0200 (CEST) Received: from nomadiclab.fi.eu.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.86) with Microsoft SMTP Server id 14.3.339.0; Fri, 26 May 2017 11:14:49 +0200 Received: from nomadiclab.fi.eu.ericsson.se (localhost [127.0.0.1]) by nomadiclab.fi.eu.ericsson.se (Postfix) with ESMTP id 53B0350545; Fri, 26 May 2017 12:18:23 +0300 (EEST) Received: from [127.0.0.1] (localhost [127.0.0.1]) by nomadiclab.fi.eu.ericsson.se (Postfix) with ESMTP id CAE3C4E97E; Fri, 26 May 2017 12:18:22 +0300 (EEST) References: <149574196661.8685.1380185644377441225.idtracker@ietfa.amsl.com> To: CC: "tuomas.aura@aalto.fi" , Mohit Sethi From: Mohit Sethi X-Forwarded-Message-Id: <149574196661.8685.1380185644377441225.idtracker@ietfa.amsl.com> Message-ID: <8cec0756-22fe-6486-06df-f3f1fb8b8e63@ericsson.com> Date: Fri, 26 May 2017 12:14:49 +0300 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.1.1 MIME-Version: 1.0 In-Reply-To: <149574196661.8685.1380185644377441225.idtracker@ietfa.amsl.com> Content-Type: multipart/alternative; boundary="------------267C6823C55ACDCC4A0BC640" Content-Language: en-US X-Virus-Scanned: ClamAV using ClamSMTP X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprEIsWRmVeSWpSXmKPExsUyM2J7iC73J/VIgy8vLCyOrV/LYvFm4kZ2 ByaP468Xs3osWfKTKYApissmJTUnsyy1SN8ugSujufUGS8Ept4oft8IaGJebdzFyckgImEg8 PX6ApYuRi0NI4AijxNevO1ghnB2MEsevHWQDqRIS2MQoMWWrNURiIaPE+cZ3jCAJYQFXiSMv r7FAFPlILJ4/H8wWERCSuLb+JVgNs0CsxO+GV+wgNpuAnkTnuePMXYwcQKsjJDb8TAAJ8wrY S6x7c48VxGYRUJVoOjwJzBYFKtl1/QArRI2gxMmZT8DGcwr4SnT9ns0KMoZZIExi0UkliE3i EreezGeCeExN4uq5TcwQl6lLbO04wDiBUWQWkkmzELpnIemGsC0kZs4/zwhhy0s0b53NDGFr SLTOmcuOLL6AkX0Vo2hxanFxbrqRsV5qUWZycXF+nl5easkmRmBMHdzyW3cH4+rXjocYBTgY lXh4J95RjxRiTSwrrsw9xCjBwawkwrvmJVCINyWxsiq1KD++qDQntfgQozQHi5I4r8O+CxFC AumJJanZqakFqUUwWSYOTqkGxr7ICdOZpbdd2nMttWiJu13apAI+sdkpvPcuVlnW6VxRW/im +/6Buo0VC+pE28qnNQks/89uye61+8iaP5ObZ9w56hayXCUpu1Bggd+h9jSdk1//sGi0ei4v K/DbsMNu+t0/OZPf9svMkv7xcX+H4KQdatOqc/64xc34K1kU/7D70/Znu9j4EpRYijMSDbWY i4oTAVrBMDWlAgAA Archived-At: Subject: [Emu] Fwd: New Version Notification for draft-aura-eap-noob-02.txt X-BeenThere: emu@ietf.org X-Mailman-Version: 2.1.22 Precedence: list List-Id: "EAP Methods Update \(EMU\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 May 2017 09:14:56 -0000 --------------267C6823C55ACDCC4A0BC640 Content-Type: text/plain; charset="utf-8"; format=flowed Content-Transfer-Encoding: 8bit Hi folks We have submitted a new version of our draft titled “Nimble out-of-band authentication for EAP (EAP-NOOB)”. The draft defines an EAP method where the authentication is based on a user-assisted out-of-band (OOB) channel between the server and peer. It is intended as a generic bootstrapping solution for Internet-of-Things devices which have no pre-configured authentication credentials and which are not yet registered on the authentication server. Consider devices you just bought or borrowed. For one application example, we are currently using this protocol for bootstrapping security for ubiquitous displays: the user can configure wireless network access, link the device to a cloud service, and register ownership of the device for a specific cloud user – all in one simple step of scanning a QR code with a smart phone. EAP-NOOB relies on server assigned random identifiers instead of hard-coded ones which makes it privacy friendly. The draft has underdone a major revision based on implementation experience. For example, the new version has improved cryptoagility, and refined the error handling and timeouts. The updated draft is available here: https://tools.ietf.org/html/draft-aura-eap-noob-02 A complete list of updates can be found from the version history in the appendix of the draft. The open source implementation can be tracked here: https://github.com/tuomaura/eap-noob We look forward to your feedback and comments here or on the SAAG mailing list. --Mohit -------- Forwarded Message -------- Subject: New Version Notification for draft-aura-eap-noob-02.txt Date: Thu, 25 May 2017 12:52:46 -0700 From: internet-drafts@ietf.org To: Tuomas Aura , Mohit Sethi A new version of I-D, draft-aura-eap-noob-02.txt has been successfully submitted by Mohit Sethi and posted to the IETF repository. Name: draft-aura-eap-noob Revision: 02 Title: Nimble out-of-band authentication for EAP (EAP-NOOB) Document date: 2017-05-24 Group: Individual Submission Pages: 47 URL: https://www.ietf.org/internet-drafts/draft-aura-eap-noob-02.txt Status: https://datatracker.ietf.org/doc/draft-aura-eap-noob/ Htmlized: https://tools.ietf.org/html/draft-aura-eap-noob-02 Htmlized: https://datatracker.ietf.org/doc/html/draft-aura-eap-noob-02 Diff: https://www.ietf.org/rfcdiff?url2=draft-aura-eap-noob-02 Abstract: Extensible Authentication Protocol (EAP) provides support for multiple authentication methods. This document defines the EAP-NOOB authentication method for nimble out-of-band (OOB) authentication and key derivation. This EAP method is intended for bootstrapping all kinds of Internet-of-Things (IoT) devices that have a minimal user interface and no pre-configured authentication credentials. The method makes use of a user-assisted one-directional OOB channel between the peer device and authentication server. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat --------------267C6823C55ACDCC4A0BC640 Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: 8bit

Hi folks

We have submitted a new version of our draft titled “Nimble out-of-band authentication for EAP (EAP-NOOB)”.

The draft defines an EAP method where the authentication is based on a user-assisted out-of-band (OOB) channel between the server and peer. It is intended as a generic bootstrapping solution for Internet-of-Things devices which have no pre-configured authentication credentials and which are not yet registered on the authentication server. Consider devices you just bought or borrowed.

For one application example, we are currently using this protocol for bootstrapping security for ubiquitous displays: the user can configure wireless network access, link the device to a cloud service, and register ownership of the device for a specific cloud user – all in one simple step of scanning a QR code with a smart phone. EAP-NOOB relies on server assigned random identifiers instead of hard-coded ones which makes it privacy friendly.

The draft has underdone a major revision based on implementation experience. For example, the new version has improved cryptoagility, and refined the error handling and timeouts. The updated draft is available here:
https://tools.ietf.org/html/draft-aura-eap-noob-02

A complete list of updates can be found from the version history in the appendix of the draft.

The open source implementation can be tracked here:
https://github.com/tuomaura/eap-noob

We look forward to your feedback and comments here or on the SAAG mailing list.

--Mohit



-------- Forwarded Message --------
Subject: New Version Notification for draft-aura-eap-noob-02.txt
Date: Thu, 25 May 2017 12:52:46 -0700
From: internet-drafts@ietf.org
To: Tuomas Aura <tuomas.aura@aalto.fi>, Mohit Sethi <mohit@piuha.net>


A new version of I-D, draft-aura-eap-noob-02.txt
has been successfully submitted by Mohit Sethi and posted to the
IETF repository.

Name:		draft-aura-eap-noob
Revision:	02
Title:		Nimble out-of-band authentication for EAP (EAP-NOOB)
Document date:	2017-05-24
Group:		Individual Submission
Pages:		47
URL:            https://www.ietf.org/internet-drafts/draft-aura-eap-noob-02.txt
Status:         https://datatracker.ietf.org/doc/draft-aura-eap-noob/
Htmlized:       https://tools.ietf.org/html/draft-aura-eap-noob-02
Htmlized:       https://datatracker.ietf.org/doc/html/draft-aura-eap-noob-02
Diff:           https://www.ietf.org/rfcdiff?url2=draft-aura-eap-noob-02

Abstract:
   Extensible Authentication Protocol (EAP) provides support for
   multiple authentication methods.  This document defines the EAP-NOOB
   authentication method for nimble out-of-band (OOB) authentication and
   key derivation.  This EAP method is intended for bootstrapping all
   kinds of Internet-of-Things (IoT) devices that have a minimal user
   interface and no pre-configured authentication credentials.  The
   method makes use of a user-assisted one-directional OOB channel
   between the peer device and authentication server.

                                                                                  


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat

--------------267C6823C55ACDCC4A0BC640--