Closed chrysn closed 3 months ago
Some notes from chatting with @marco-tiloca-sics:
If we accept the alternative flow of the AS installing the token in the RS (or the C has easier means of receiving the updated token), there might be the extra option of doing something 3-ish once, PoP'ing the credential (eg. by running some authz-style dance between the machine client, the configuration tool and the AS), and then setting up the AS to issue new tokens automatically to the RS (or offering them on request at some URI; after all, they are encrypted and just updated regularly), this will need further consideration.
Some documents may be relevant:
While the project is being tracked here, I can just as well upload slides: missing-pieces-slides.pdf (last slide represents what was scribbled during the meeting).
During the breakout session, new slides summarize the side meeting findings
Closing as the hackathon is over. @chrysn feel free to re-open or open other related topic issues if needed.
Some of us (@kaspar030, @ROMemories, @emmanuelsearch, @chrysn) will be at the Paris LAKE hackathon co-hosted with T2TRG.
What precisely do we want to do there?
Hackathon project
Side meeting
Investigate gaps in what we want to achieve and what is specified (originally from the lower-most items of the "Usability components" list of the CoAP tracking issue)
In the area of M2M automation: Two devices are configured by some configuring agent (presumably an unconstrained system), and are configured to perform some automation task between each other. For a simple example, a heating controller is configured to GET (observe) a temperature sensor. Ex ante, neither is authorized to interact with the other. Configuration might happen by the configuring agent telling the heating system the URI to get the temperature from through some configuration mechanism, or even through a dynlink -- but that only conveys the URI and is missing
How does the configuration tool tell the the AS that some device as a C is to be given extra privileges? Within the ACE framework / the CWT ecosystem, sketched options include (with 3. looking most promising):
Relevant links