This document specifies Ephemeral Diffie-Hellman Over COSE (EDHOC), a
very compact and lightweight authenticated Diffie-Hellman key
exchange with ephemeral keys. EDHOC provides mutual authentication,
forward secrecy, and identity protection. EDHOC is intended for
usage in constrained scenarios and a main use case is to establish an
OSCORE security context. By reusing COSE for cryptography, CBOR for
encoding, and CoAP for transport, the additional code size can be
kept very low.
Working Group Summary
Consensus in the WG was strong. As part of the AD Review, the document
saw one more change on encrypting C_R, which was run through the WG
for consensus as well. A previous AD didn't like this protocol much, and
offered cTLS (compact TLS) as alternative but that did not meet the same
requirements and features as EDHOC.
There are at least two implementations that interoperate, both
verifying the draft-ietf-lake-edhoc traces test vectors as well.
At least one large vendor has a number of interested customers
that are looking at deployment.
A registration in the .well-known registry passed Expert Review.
The Document Shepherd for this document is Mališa Vučinić. The
Responsible Area Director is Paul Wouters.