Mathematical Mesh 3.0 Part XIII: Mesh Ceremonies
draft-hallambaker-mesh-ceremonies-02

Document Type Active Internet-Draft (individual)
Author Phillip Hallam-Baker 
Last updated 2020-07-27
Stream (None)
Intended RFC status (None)
Formats plain text html xml pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state I-D Exists
Telechat date
Responsible AD (None)
Send notices to (None)
Network Working Group                                 P. M. Hallam-Baker
Internet-Draft                                      ThresholdSecrets.com
Intended status: Informational                              27 July 2020
Expires: 28 January 2021

            Mathematical Mesh 3.0 Part XIII: Mesh Ceremonies
                  draft-hallambaker-mesh-ceremonies-02

Abstract

   Ceremonies are security protocols that involve human participants as
   principal actors.  Ceremonies for onboarding devices, establishing
   trust between parties and obtaining multi-factor authenticated
   responses from users are presented and analyzed with particular
   application to the Mathematical Mesh.

   https://mailarchive.ietf.org/arch/browse/mathmesh/
   (http://whatever)Discussion of this draft should take place on the
   MathMesh mailing list (mathmesh@ietf.org), which is archived at .

Status of This Memo

   This Internet-Draft is submitted in full conformance with the
   provisions of BCP 78 and BCP 79.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF).  Note that other groups may also distribute
   working documents as Internet-Drafts.  The list of current Internet-
   Drafts is at https://datatracker.ietf.org/drafts/current/.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet-Drafts as reference
   material or to cite them other than as "work in progress."

   This Internet-Draft will expire on 28 January 2021.

Copyright Notice

   Copyright (c) 2020 IETF Trust and the persons identified as the
   document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal
   Provisions Relating to IETF Documents (https://trustee.ietf.org/
   license-info) in effect on the date of publication of this document.
   Please review these documents carefully, as they describe your rights
   and restrictions with respect to this document.

Hallam-Baker             Expires 28 January 2021                [Page 1]
Internet-Draft               Mesh Ceremonies                   July 2020

Table of Contents

   1.  Introduction  . . . . . . . . . . . . . . . . . . . . . . . .   2
   2.  Definitions . . . . . . . . . . . . . . . . . . . . . . . . .   3
     2.1.  Requirements Language . . . . . . . . . . . . . . . . . .   4
     2.2.  Defined Terms . . . . . . . . . . . . . . . . . . . . . .   4
     2.3.  Related Specifications  . . . . . . . . . . . . . . . . .   4
     2.4.  Implementation Status . . . . . . . . . . . . . . . . . .   4
   3.  Ceremony Contexts . . . . . . . . . . . . . . . . . . . . . .   4
     3.1.  Users . . . . . . . . . . . . . . . . . . . . . . . . . .   4
     3.2.  Devices . . . . . . . . . . . . . . . . . . . . . . . . .   5
     3.3.  Connection Codes  . . . . . . . . . . . . . . . . . . . .   6
     3.4.  Networks  . . . . . . . . . . . . . . . . . . . . . . . .   6
       3.4.1.  Wired Network Configuration . . . . . . . . . . . . .   7
       3.4.2.  WiFi Configuration  . . . . . . . . . . . . . . . . .   7
       3.4.3.  Non-IP Configuration  . . . . . . . . . . . . . . . .   8
   4.  Device Onboarding Ceremonies  . . . . . . . . . . . . . . . .   8
     4.1.  Networked Computing Device  . . . . . . . . . . . . . . .   9
       4.1.1.  Fingerprint Comparison  . . . . . . . . . . . . . . .   9
       4.1.2.  Out of band one-time code . . . . . . . . . . . . . .  10
     4.2.  Network bootstrap . . . . . . . . . . . . . . . . . . . .  11
       4.2.1.  Dynamic Code From Administration Device . . . . . . .  11
       4.2.2.  Code From Target Device . . . . . . . . . . . . . . .  12
     4.3.  Proxy configuration . . . . . . . . . . . . . . . . . . .  13
   5.  Contact Establishment Ceremonies  . . . . . . . . . . . . . .  13
     5.1.  In Person . . . . . . . . . . . . . . . . . . . . . . . .  13
     5.2.  Registration  . . . . . . . . . . . . . . . . . . . . . .  15
     5.3.  Remote  . . . . . . . . . . . . . . . . . . . . . . . . .  15
     5.4.  Trusted Third Party Endorsement . . . . . . . . . . . . .  17
   6.  Authentication Ceremonies . . . . . . . . . . . . . . . . . .  17
     6.1.  Confirmation  . . . . . . . . . . . . . . . . . . . . . .  17
     6.2.  Confirmation with Personal Presence . . . . . . . . . . .  19
   7.  Security Considerations . . . . . . . . . . . . . . . . . . .  20
   8.  IANA Considerations . . . . . . . . . . . . . . . . . . . . .  20
   9.  Acknowledgements  . . . . . . . . . . . . . . . . . . . . . .  20
   10. Normative References  . . . . . . . . . . . . . . . . . . . .  20
   11. Informative References  . . . . . . . . . . . . . . . . . . .  20

1.  Introduction

   The consideration of ceremonies as an aspect of network protocol
   design was introduced by Carl Ellison in 2007 [Ellison].  Since then,
   consideration of ceremony design has provided a bridge between
Show full document text