- changed status to wontfix
Expand Stateless-Proxy security considerations
Issue #28
wontfix
Tag: WGLC
Göran Selander wrote (https://mailarchive.ietf.org/arch/msg/6tisch/fWK4i3bs3r4VmFCkSoGzgtlWSuo):
Section 10
Use the term "Class U" in the description of OSCORE processing of the Stateless-Proxy CoAP Option. Since it is class U it is recommended to describe implications of an adversary eavesdropping or manipulating the value of the option, e.g. in the security considerations.
I see your point about the implications and will extend the section, but for now, I would rather keep the text on Stateless-Proxy self-contained.
Comments (2)
-
reporter
-
reporter
- edited description
- Log in to comment
Stateless-Proxy is now being developed in IETF CORE as part of https://datatracker.ietf.org/doc/draft-hartke-core-stateless/
Therefore, this issue is no longer relevant for minimal-security draft.