Download presentation
Presentation is loading. Please wait.
1
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 1 Project: IEEE P802.15 Working Group for Wireless Personal Area Networks (WPANs) Submission Title: KMP Transport Joint 802.1 Date Submitted: July 19, 2012 Source: Robert Moskowitz, Verizon Address 1000 Bent Creek Blvd, MechanicsBurg, PA, USA Voice:+1 (248) 968-9809, e-mail: rgm@labs.htt-consult.com Re: Key Managementn over 4e Multipurpose Frames Abstract:Key Management Support for 15.4 and 15.7 Purpose:Facilitate discussion with 802.1 security taskgroup Notice:This document has been prepared to assist the IEEE P802.15. It is offered as a basis for discussion and is not binding on the contributing individual(s) or organization(s). The material in this document is subject to change in form and content after further study. The contributor(s) reserve(s) the right to add, amend or withdraw material contained herein. Release:The contributor acknowledges and accepts that this contribution becomes the property of IEEE and may be made publicly available by P802.15.
2
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 2 Key Management Support for 15.4 and 15.7 Robert Moskowitz San Diego, CA July 19, 2012
3
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 3 Abstract To provide for a Key Management Protocol Transport for 802.15.4 and.7 KMP agnostic Support: HIP, IKEv2, 802.1X, PANA,... Provide recommended functionality for KMPs Use Information Elements where possible
4
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 4 A Little Background 802.15.4 does not support different classes of data payloads – All is left to the 'upper layer' – For example cannot support Zigbee 1.0 and 2.0 within the same PAN 802.15.4 MPDU is 127 pre 4g – And even 4g devices MAY use a small MPDU These MAC constraints REQUIRE a unique approach for KMP support
5
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 5 Some other Constraints 802.15.4 devices MAY be very small – CPU, Memory, Power – Light switches, stress sensors, thermometers, smoke detectors 802.15.4-2011 has no LLC – Removed from -2006 with 802.2 sundown 802.15.7 is basically a cookie-cutter of 15.4 with visible light PHYs
6
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 6 KMP Transport Provide an alternative path from general datagrams for KMP transport between devices – Use Information Element for traffic selector (4e capable devices) Provide fragmentation of large KMP payloads over smaller 802.15 MPDUs – Simple chaining of fragments with Forced ACK
7
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 7 KMP Transport Simple state machine – Machine supports Sending and receiving KMP payloads in datagrams Fragmentation management – Forced in order deliver
8
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 8 15.4 Specifics 15.4 MAC and IE formats
9
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 9 15.4 Specifics Use 15.4e Information Elements – Use data payload IEs (not header IEs) Larger payload length – Header IEs limited to 127 bytes – Need IE type assignment MLME Nested limited to 255 bytes Only 5 values available
10
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 10 KMP Information Element Frame format – MAC specific content ID = 0xa Length – Control Field – 1 byte – KMP fragment
11
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 11 KMP Information Element Octets: 1Octets: 1-2046 Bits: 17 Chaining flag 0 = last/only one 1 = yes, chaining First packet: Multipurpose ID Other packets: Chain count Multipurpose ID: 98-126 98 = KMP Chaining count: 2-96 2 = 2 nd fragment 3 = 3 rd fragment … 96 = 96 th fragment (last possible) KMP Fragment
12
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 12 KMP Transport IE for KMP – 802.15.4 uses data payload IE with max size of 2047 – 802.15.7 uses COMMAND frame IE with max payload of 255 per IE
13
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 13 KMP Transport Fragmentation support – Outbound KMP payload divided to fit MPDU Fragment sent with Forced ACK Resend if no ACK returned – ACK may have been lost – MAX retries = ? Next fragment on ACK receipt
14
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 14 KMP Transport Fragmentation support – Inbound Assemble payload from frame received and send ACK if indicated – Could be a duplicate fragment » ACK lost Deliver payload to KMP on completion
15
doc.: IEEE15-12-0373-01-0009-KMP-Transport-Joint-802.1 Submission July 2012 Robert Moskowitz, Verizon Slide 15 Open Discussion
Similar presentations
