Channel binding when EDHOC is not used

EricssonResearch / EST-OSCORE

Protecting EST payloads with OSCORE

Other

1 stars 2 forks source link

Channel binding when EDHOC is not used #10

Closed malishav closed 1 year ago

malishav commented 1 year ago

Marco Tiloca wrote:

Section 1 says: "pre-shared OSCORE keying material would also be an option." In such a case, is channel binding simply not achievable? Or is it somehow possible as long as the OSCORE keying material was established through some sort of interactive protocol (e.g., like the OSCORE profile of ACE, see RFC 9203)?

malishav commented 1 year ago

As discussed in the meeting, the proposed action here is to explicitly specify that EDHOC-Exporter-based channel binding is applicable only to cases where EDHOC is executed prior to enrollment and to state that the channel binding is not supported when pre-shared OSCORE context is used.