Enabling Network Access for IoT devices from the Cloud
draft-st-t2trg-nw-access-01

Document Type Active Internet-Draft (individual)
Last updated 2018-10-18
Stream (None)
Intended RFC status (None)
Formats plain text xml pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state I-D Exists
Telechat date
Responsible AD (None)
Send notices to (None)
Network Working Group                                           M. Sethi
Internet-Draft                                                  Ericsson
Intended status: Informational                          October 18, 2018
Expires: April 21, 2019

         Enabling Network Access for IoT devices from the Cloud
                      draft-st-t2trg-nw-access-01

Abstract

   This document describes a method for enabling and configuring network
   access for IoT devices that are first authenticated at a server.
   This server may be run by the manufacturer of the IoT device as an
   online cloud service.  This specification is intended for off-the-
   shelf IoT devices that have just been purchased by the user.  Many of
   these devices have only limited user interfaces that can be used for
   configuring network access credentials.  The device configuration is
   also made more challenging by the fact that these devices may exist
   in large numbers.

Status of This Memo

   This Internet-Draft is submitted in full conformance with the
   provisions of BCP 78 and BCP 79.

   Internet-Drafts are working documents of the Internet Engineering
   Task Force (IETF).  Note that other groups may also distribute
   working documents as Internet-Drafts.  The list of current Internet-
   Drafts is at https://datatracker.ietf.org/drafts/current/.

   Internet-Drafts are draft documents valid for a maximum of six months
   and may be updated, replaced, or obsoleted by other documents at any
   time.  It is inappropriate to use Internet-Drafts as reference
   material or to cite them other than as "work in progress."

   This Internet-Draft will expire on April 21, 2019.

Copyright Notice

   Copyright (c) 2018 IETF Trust and the persons identified as the
   document authors.  All rights reserved.

   This document is subject to BCP 78 and the IETF Trust's Legal
   Provisions Relating to IETF Documents
   (https://trustee.ietf.org/license-info) in effect on the date of
   publication of this document.  Please review these documents
   carefully, as they describe your rights and restrictions with respect

Sethi                    Expires April 21, 2019                 [Page 1]
Internet-Draft                NW-IoT-Cloud                  October 2018

   to this document.  Code Components extracted from this document must
   include Simplified BSD License text as described in Section 4.e of
   the Trust Legal Provisions and are provided without warranty as
   described in the Simplified BSD License.

Table of Contents

   1.  Introduction  . . . . . . . . . . . . . . . . . . . . . . . .   2
   2.  Terminology . . . . . . . . . . . . . . . . . . . . . . . . .   3
   3.  Deployment Architecture . . . . . . . . . . . . . . . . . . .   4
   4.  Manufacturer Dependancy and End-of-life . . . . . . . . . . .   7
   5.  Alternative Manufacture Independent Deployment Models . . . .   7
   6.  Security Considerations . . . . . . . . . . . . . . . . . . .   8
   7.  IANA Considerations . . . . . . . . . . . . . . . . . . . . .   9
   8.  References  . . . . . . . . . . . . . . . . . . . . . . . . .   9
     8.1.  Normative references  . . . . . . . . . . . . . . . . . .   9
     8.2.  Informative references  . . . . . . . . . . . . . . . . .  10
   Author's Address  . . . . . . . . . . . . . . . . . . . . . . . .  11

1.  Introduction

   There is an increase in the deployment of Internet of Things (IoT)
   appliances such as wireless baby monitors, printers, speakers and
   smart TVs.  To enable rapid adoption while reducing the cost of
   deployment, these appliances typically use the existing Wi-Fi
   infrastructure (Access Point) for Internet connectivity.  However,
   configuring the network-access credentials for these off-the-shelf
   appliances is cumbersome.  Typically this process requires the user
   to pair the appliance with his/her smartphone over bluetooth and then
   configure the Wi-Fi SSID and passphrase.

   This process is not only cumbersome, but requires the appliance to be
   shipped with an additional network interface (only for
   configuration).  It also moves the problem of securely configuring
   the network-access credentials to the problem of secure bluetooth
   pairing.  Besides, relying on a single passphrase for the entire
   network may not be sustainable in the long run.  While changing the
   passphrase to revoke/remove a device from the network is easy today
   when most devices have a keyboard and only a few (2-5) devices are
   connected to the network (Access Point), this would be much harder
   when the devices are many (10-100) and have limited input
   capabilities.

   Once configured and connected to the Internet, the user still has to
   register the IoT device with the manufacturer.  This maybe to receive
   services or software updates.  For example, the user may connect his/
   her Wi-Fi weighing scale to keep track his/her weight online and
   receive software updates for new features.
Show full document text