{"draft":"draft-ietf-6tisch-minimal-security-15","doc_id":"RFC9031","title":"Constrained Join Protocol (CoJP) for 6TiSCH","authors":["M. Vu?ini?, Ed.","J. Simon","K. Pister","M. Richardson"],"format":["HTML","TEXT","PDF","XML"],"page_count":"41","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"IPv6 over the TSCH mode of IEEE 802.15.4e","abstract":"This document describes the minimal framework required for a new\r\ndevice, called a \"pledge\", to securely join a 6TiSCH (IPv6 over the\r\nTime-Slotted Channel Hopping mode of IEEE 802.15.4) network. The\r\nframework requires that the pledge and the JRC (Join\r\nRegistrar\/Coordinator, a central entity), share a symmetric key. How\r\nthis key is provisioned is out of scope of this document. Through a\r\nsingle CoAP (Constrained Application Protocol) request-response\r\nexchange secured by OSCORE (Object Security for Constrained RESTful\r\nEnvironments), the pledge requests admission into the network, and\r\nthe JRC configures it with link-layer keying material and other\r\nparameters. The JRC may at any time update the parameters through\r\nanother request-response exchange secured by OSCORE. This\r\nspecification defines the Constrained Join Protocol and its CBOR\r\n(Concise Binary Object Representation) data structures, and it\r\ndescribes how to configure the rest of the 6TiSCH communication stack\r\nfor this join process to occur in a secure manner. Additional\r\nsecurity mechanisms may be added on top of this minimal framework.","pub_date":"May 2021","keywords":["bootstrapping","onboarding","oscore"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC9031","errata_url":null}