[leshan-dev] LwM2M bootstrapping purpose

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[leshan-dev] LwM2M bootstrapping purpose

From: Kiran Pradeep <kiran.happy@xxxxxxxxx>
Date: Tue, 19 Apr 2016 22:35:14 +0530
Delivered-to: leshan-dev@xxxxxxxxxxx
List-archive: <https://dev.eclipse.org/mailman/private/leshan-dev>
List-help: <mailto:leshan-dev-request@eclipse.org?subject=help>
List-subscribe: <https://dev.eclipse.org/mailman/listinfo/leshan-dev>, <mailto:leshan-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://dev.eclipse.org/mailman/options/leshan-dev>, <mailto:leshan-dev-request@eclipse.org?subject=unsubscribe>

I tried reading post(in medium) by Julien Vermillard on bootstrapping.
But I couldn't understand the exact problem it was trying to solve.
Julien in comments mentioned about rotating keys which I couldn't
understand and so posting here. Kindly guide to appropriate forum in
case this list, takes only development related queries only.

I understood the point of invalidating LwM2M server credentials so
that new keys could be issued if LwM2M server keys are stolen. But
what if bootstrap credentials itself are stolen ? Then the rogue
entity, could easily ask the bootstrap server for LwM2M credentials
and do what ever it feels like. The bootstrap keys is going to have to
be fixed for the device lifetime, since they are written in factory
itself. What is the point I am missing ?

Thanks,
Kiran.

Follow-Ups:
- Re: [leshan-dev] LwM2M bootstrapping purpose
  - From: Pierre-Henri Trivier

Prev by Date: [leshan-dev] OMA Open Source Survey
Next by Date: Re: [leshan-dev] LwM2M bootstrapping purpose
Previous by thread: [leshan-dev] OMA Open Source Survey
Next by thread: Re: [leshan-dev] LwM2M bootstrapping purpose
Index(es):
- Date
- Thread

Breadcrumbs