Re: [Acme] [EXTERNAL] Re: acme-device-attest expired

Prachi Jain <prachi.jain1288@gmail.com> Thu, 22 February 2024 21:53 UTC

Return-Path: <prachi.jain1288@gmail.com>
X-Original-To: acme@ietfa.amsl.com
Delivered-To: acme@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6C9F0C1D3D43; Thu, 22 Feb 2024 13:53:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.753
X-Spam-Level:
X-Spam-Status: No, score=-6.753 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M4KdMpVGM2ge; Thu, 22 Feb 2024 13:52:59 -0800 (PST)
Received: from mail-lj1-x22a.google.com (mail-lj1-x22a.google.com [IPv6:2a00:1450:4864:20::22a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4AF4FC18DB99; Thu, 22 Feb 2024 13:52:54 -0800 (PST)
Received: by mail-lj1-x22a.google.com with SMTP id 38308e7fff4ca-2d2531294faso3831871fa.2; Thu, 22 Feb 2024 13:52:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1708638772; x=1709243572; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=1pyznAmOgMgqA0j44EGFxLTtPWQUP9ffxH8aOgTYdvE=; b=UhPzLeLINcjxio5X41DhztYZ/UmBpO23bJIJThlXgQe0o+2dMG+F4U7p7fExDnRaGK rIOMCUzjA/UUo1Do8ZQOU8wBK/dv931rslxIoMdokqTyCdjlB8qoDeyOr+qKqf1KTemn boj/dPhlGJEwL8S7cY5fQZwpbI0IkaUtq0Zmj4+aXuqlPLl3lWjIEllO0LfgvlP1kAmd AkTQo5mqny0eVrmci2NO+NW5JivCqXVKYBw9vYWI/uuTATS3agwD9qpjxnHV9gJuI97u DADyLs2rHRQ4sk+wB50bxiWLFYkyaTQG+aMj7sdQmh1URfFlDqDXmwdDnxDI+bA6OrE/ uOUw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1708638772; x=1709243572; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=1pyznAmOgMgqA0j44EGFxLTtPWQUP9ffxH8aOgTYdvE=; b=wRRgwhCnRSFcdKP8izhOnNOqXcR+zYLhMmiqjr2BZAX3Ny7ckFQL/4/BDwfgr7Rdss RpGmSsiPIwb87i3FbGsX5jVOXcqmugn4HPKFlMcqxwDq3W5GxycutEHAfASR5MF4LXbW hSpm+1/KzYaZEd73oUk98DO/OtOp76JWSIs+y7Jfpc5/JIrzaYVDCSafzY+rHY13OowJ BdAGd7MJWQSMsgTelJjoSI6y+eyV5MZzmLQUoGI/Hjrm1E528xnbLovXu2X1LPN3uEyn UMQds0JORFa+JdQ4kKO1ojkvOjxF7Cd3NQjIy5KrTLy7s4aNEDgYAddZmgC3KRbg8Spg SKVg==
X-Forwarded-Encrypted: i=1; AJvYcCX/o9IjDEfekg5SWQXP9GRgM81BqR8X1dv41P4xlz50hlEIXGt40wS8PJmZTUC7AgoeYb5FCy0clcWRWUm5CSqXLqsX1mCBE/2Qs231gYJyMZMAtJxcxBXwJNIAQ1WxyW2C7Q7XbPbp9w==
X-Gm-Message-State: AOJu0YziK81wn8YIf9PbnxJjEHJEzH4Ggs7aFczW4wr3MMppeh/dlNYs O4vY4d+VtT5a0Au+KT1+W8eCvv2ww38d9SSvIoMi1C/Q2FSNyWRVELwUna+oP6ht1N336+yoV6O Mr/NBxinRjwM0+mnJoqqGcVKm+q8=
X-Google-Smtp-Source: AGHT+IESDgGUjTCv574vOfY4CzHESXXX5tfPcOYlqJeuF2lS2v0DiIqPnJIhgB50eEgBm/nrnlbA7NtKF3reA0H1PME=
X-Received: by 2002:a2e:9111:0:b0:2d2:390d:db39 with SMTP id m17-20020a2e9111000000b002d2390ddb39mr143222ljg.52.1708638770943; Thu, 22 Feb 2024 13:52:50 -0800 (PST)
MIME-Version: 1.0
References: <CAObGJnMnuZu6St4zZT27jgq6OnR6aSdCUy9RS_m-C0Fv1ta-nQ@mail.gmail.com> <CAA1-vB3tom_rEqSc+P7oQfNeYvKwPdp8mzVNKZrj+QSTW6tiAQ@mail.gmail.com> <CAGgd1Oe0U=WQPsgYQ76X4-bTkesPAd4ezPzLPEJf=gYO-qmLNQ@mail.gmail.com> <CAA1-vB184w6DVaxrD1dZCcaTJc9W_1D6Jv-cBGp1sVcZvDckiQ@mail.gmail.com> <CH0PR11MB5739186FCEF7D97A61D47EDD9F562@CH0PR11MB5739.namprd11.prod.outlook.com> <CAOEiZmHyrZZD3jqQtdNiYyxkLeCYjELRf4Mb5dhk2_m5Cnh2Tw@mail.gmail.com>
In-Reply-To: <CAOEiZmHyrZZD3jqQtdNiYyxkLeCYjELRf4Mb5dhk2_m5Cnh2Tw@mail.gmail.com>
From: Prachi Jain <prachi.jain1288@gmail.com>
Date: Thu, 22 Feb 2024 15:52:39 -0600
Message-ID: <CAA1-vB0FAjjZ8qZCSw=+jnex4p_kM=LPYaWR1XMBGQZ_U-BAiQ@mail.gmail.com>
To: Mike Malone <mike@smallstep.com>
Cc: Mike Ounsworth <Mike.Ounsworth=40entrust.com@dmarc.ietf.org>, Deb Cooley <debcooley1@gmail.com>, Thomas Fossati <tho.ietf@gmail.com>, "acme@ietf.org" <acme@ietf.org>, "draft-acme-device-attest.authors@ietf.org" <draft-acme-device-attest.authors@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000fddcd20611ff76a3"
Archived-At: <https://mailarchive.ietf.org/arch/msg/acme/9Y1QZnlpxzZ8FvPXaH7GGlm4K4c>
Subject: Re: [Acme] [EXTERNAL] Re: acme-device-attest expired
X-BeenThere: acme@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Automated Certificate Management Environment <acme.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/acme>, <mailto:acme-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/acme/>
List-Post: <mailto:acme@ietf.org>
List-Help: <mailto:acme-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/acme>, <mailto:acme-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Feb 2024 21:53:03 -0000

I plan to do a POC using this draft and potentially implement it based on
the results. Thus very motivated to get this past the finish line.

@Mike Ounsworth, I haven't read *draft-ietf-lamps-csr-**attestation* yet so
I am going to give it a read and come back with my thoughts.

On Thu, Feb 22, 2024 at 3:00 PM Mike Malone <mike@smallstep.com> wrote:

> It's worth noting that Apple has already implemented this draft on macOS,
> iOS, iPadOS, and tvOS[1]. We've implemented the server side at Smallstep
> and can confirm that there is adoption. That shouldn't stop the evolution
> of this draft, of course, but could help inform it. Adoption is promising
> and it would be unfortunate to see this die at draft.
>
> We don't have any experienced IETF authors here -- not sure what that
> entails -- but we are very interested in the outcome here and would be
> happy to help however we can. To start, I've shared this with a few
> contacts that I know will also be interested.
>
> Mike
>
> [1] https://support.apple.com/lt-lt/guide/deployment/dep28afbde6a/web
>
> On Thu, Feb 22, 2024 at 12:21 PM Mike Ounsworth <Mike.Ounsworth=
> 40entrust.com@dmarc.ietf.org> wrote:
>
>> At the risk of adding another draft to my plate, I am the lead author on
>> draft-ietf-lamps-csr-attestation, so I suppose it is reasonable for me to
>> volunteer to work on this one also.
>>
>>
>>
>> I wonder if the design of acme-device-attest should change in light of
>> the existence of draft-ietf-lamps-csr-attestation? But I admit to not
>> having read acme-device-attest in a while :/
>>
>>
>>
>> ---
>>
>> *Mike* Ounsworth
>>
>>
>>
>> *From:* Acme <acme-bounces@ietf.org> *On Behalf Of *Prachi Jain
>> *Sent:* Thursday, February 22, 2024 6:03 AM
>> *To:* Deb Cooley <debcooley1@gmail.com>
>> *Cc:* Thomas Fossati <tho.ietf@gmail.com>; acme@ietf.org;
>> draft-acme-device-attest.authors@ietf.org
>> *Subject:* [EXTERNAL] Re: [Acme] acme-device-attest expired
>>
>>
>>
>> Thank you for the update, Deb. I am more than willing to work as an
>> author on this draft and help out :) On Thu, Feb 22, 2024 at 5: 28 AM Deb
>> Cooley <debcooley1@ gmail. com> wrote: I know Brandon has been busy, but
>> I don't know his plans
>>
>> Thank you for the update, Deb.
>>
>>
>>
>> I am more than willing to work as an author on this draft and help out :)
>>
>>
>>
>> On Thu, Feb 22, 2024 at 5:28 AM Deb Cooley <debcooley1@gmail.com> wrote:
>>
>> I know Brandon has been busy, but I don't know his plans for this draft.
>> Maybe his use case has changed?  I've cc'd him on this message.
>>
>>
>>
>> Note:  acme is a 'working group', to get a draft through the process
>> people have to be willing to work on the draft (vice merely following).
>> Also drafts can certainly have multiple authors, perhaps an offer of
>> helping as an author might work.
>>
>>
>>
>> Deb
>>
>>
>>
>> On Tue, Feb 20, 2024 at 11:01 AM Prachi Jain <prachi.jain1288@gmail.com>
>> wrote:
>>
>> Hello,
>>
>> I have been closely following this document as well and would like to
>> know the status of the same.
>>
>> Thanks,
>> Prachi
>>
>>
>>
>> On Sun, Feb 18, 2024 at 1:57 AM Thomas Fossati <tho.ietf@gmail.com>
>> wrote:
>>
>> Hi, all,
>>
>> The acme-device-attest draft is expired.
>>
>> Just checking: what are the plans?
>>
>> cheers, thanks!
>>
>> _______________________________________________
>> Acme mailing list
>> Acme@ietf.org
>> https://www.ietf.org/mailman/listinfo/acme
>> <https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/acme__;!!FJ-Y8qCqXTj2!ZpiFHiNqjoIYpSwf-NWcpF4npfhv0fs0h1DfNQ82nrL17Uiy4d4RIWH4gGVLXQyjT68S1PkaY3m248MMkAE2Gdu_c1MH60I$>
>>
>> _______________________________________________
>> Acme mailing list
>> Acme@ietf.org
>> https://www.ietf.org/mailman/listinfo/acme
>> <https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/acme__;!!FJ-Y8qCqXTj2!ZpiFHiNqjoIYpSwf-NWcpF4npfhv0fs0h1DfNQ82nrL17Uiy4d4RIWH4gGVLXQyjT68S1PkaY3m248MMkAE2Gdu_c1MH60I$>
>>
>> _______________________________________________
>> Acme mailing list
>> Acme@ietf.org
>> https://www.ietf.org/mailman/listinfo/acme
>>
>