Hi Benjamin,
Thank you for your suggestion. Your comment is relevant.
In fact, we wrote some time ago an article regarding our initial design,
and we perform a comparison with other network layer based EAP
lower-layer (https://www.mdpi.com/1424-8220/16/3/358)
We compared focusing EAP
Hi Dan,
Sorry to reply to such an old message...
On Sat, Dec 12, 2020 at 06:36:53PM +0100, Dan Garcia Carrillo wrote:
> Hi Mališa,
>
>
> El 11/12/2020 a las 19:45, Mališa Vučinić escribió:
> >
> > Hi Dan,
> >
> > Thanks for the clarification regarding minimal-security. The points
> > that you
, Michael Richardson
, EMU WG , "c...@ietf.org WG
(c...@ietf.org)" , "ace@ietf.org"
*Cc: *
*Subject: *Re: [core] [Ace] Proposed charter for ACE (EAP over CoAP?)
Hi Mališa,
My intention was not to turn this conversation into a criticism of
your work. “deficiencies” was not
etf.org WG (c...@ietf.org)" , "ace@ietf.org"
Subject: Re: [core] [Ace] Proposed charter for ACE (EAP over CoAP?)
As you comment , draft-ietf-6tisch-minimal-security - offers minimal security
and has several deficiencies that can be solv
ot;ace@ietf.org"
*Subject: *Re: [core] [Ace] Proposed charter for ACE (EAP over CoAP?)
As you comment , draft-ietf-6tisch-minimal-security - offers minimal
security and has several deficiencies that can be solved by using EAP
and AAA infrastructures.
___
"
Subject: Re: [core] [Ace] Proposed charter for ACE (EAP over CoAP?)
As you comment , draft-ietf-6tisch-minimal-security - offers minimal security
and has several deficiencies that can be solved by using EAP and AAA
infrastructures.
___
Hi Michael,
"/1) .../"
For onboarding a new device, where there is no connectivity after
authentication, you propose to use 802.1X, which is an EAP lower layer.
EAP over CoAP is in fact a proposal for a application level EAP lower
layer that overcomes the limitation that 802.1X works on an
Dan Garcia wrote:
> EAP can be used in the context of IoT for authentication.
But, to what end?
1) If it is onboarding a new device, then there is no connectivity until after
authentication.
so you can't use CoAP, you have to use 802.1x, or some equivalent, or
create a system such
On 2020-12-09, at 14:28, Christian Amsüss wrote:
>
> follow CoRE best practices
Indeed; for instance, we “RESTified” documents in ACE before (and they not just
became ideologically correct, but also plain better).
Grüße, Carsten
signature.asc
Description: Message signed with OpenPGP
Dear all,
I support the inclusion of EAP-over-CoAP to the charter.
We've done work on this particular item in the past, and we've identified
the need for it in many places.. but unfortunately the draft didn't have a
proper "home" and things never advanced much. Use-cases we've seen include
Hi Michael,
EAP can be used in the context of IoT for authentication. To transport
EAP from the IoT device we need a light EAP lower-layer. This would be
CoAP. Morover, according to EAP key management framework, keys are
exported to protect the link and the EAP lower-layer itself. So yes,
Could someone point to a use case for "EAP over CoAP" please?
Is the goal to key an OSCORE context, or what?
--
] Never tell me the odds! | ipv6 mesh networks [
] Michael Richardson, Sandelman Software Works|IoT architect [
] m...@sandelman.ca
+1.
(The recently updated ACE charter should cover this work.)
Göran
On 2020-12-03, 20:03, "core" wrote:
Hi,
I think it is important to have EAP on top of CoAP, as Dan said it fit well
with the last charter item.
Laurent
On Thu, Dec 3, 2020 at 2:20 PM Daniel Migault
13 matches
Mail list logo
