IETF Logo Mail Archive

Re: [COSE] [IANA #1284212] expert review for draft-ietf-cose-cwt-claims-in-headers (cose)

"lgl island-resort.com" <lgl@island-resort.com> Sat, 04 November 2023 19:28 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A9ECDC187725 for <cose@ietfa.amsl.com>; Sat, 4 Nov 2023 12:28:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KTnXN9icH9mW for <cose@ietfa.amsl.com>; Sat, 4 Nov 2023 12:28:16 -0700 (PDT)
Received: from NAM04-MW2-obe.outbound.protection.outlook.com (mail-mw2nam04on2138.outbound.protection.outlook.com [40.107.101.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BD831C1C02CF for <cose@ietf.org>; Sat, 4 Nov 2023 12:28:16 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=oRB+AvTbGcoOY4zNN3d6sdml1ACBtGTlBYce+BgQ6UnMcRB1XZhcTdl5/SOvsU20U0I3YPW2qO2Ttnqfm/pecK5kyn22icTID+zVVOWwsl/FleX1C6285+oMFNur1pE/4K/GfswKw+D2IVS22y+cyBKg1Ey9AyVfuNtDvWzrfaGU5n7wauV3b967iyxkP7gtmJgzl7vdhMyYqLnU5kh/kXof2TkAEgjvAbX1OvFv1urbt83eP6cyeyAKFFzsr1GC7wBzRkdic3ZTz//o+gscrCE7kDCozt3+eXRYgloPZX3efwAKEjoXnPGPnTas1C9E/7X/XKO/NekbFsWD34Bz+A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=phF+Ton2G5SMGYbcMTRlNr1qvupFO1dv46/k8PEmgFg=; b=brxSIRvJgCJq0PumPX+fJ/LERsjimlPSWTliVqzZmsOAWB97xCBzS0nigbfjJ7b/kp0BKGpJPXoTRaKFVzy/5bjXVE6YRXgpj/kWf9bncTJS2nDzWq/lBElTkfsuN3A5WPXAGbF5c/kHX+yE2xpZTJUGhGSX3XCUeBoFu8MW1yTbCUid2AdC3DzM+9NWdcoUXWedpF1En9zfx4l37RtzlGaBvTPETPP0E/QEJRXX2RqRW4YCCxadciRQkcL95Ws+lysrehbyvYj+93bYvk9kJizAtsBx9qc2rvPFbDl/BcgW2uFtnbO/MQ+5G03BhjXx0OekOwtLSWdl4tpEchlPpQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by BY5PR22MB1954.namprd22.prod.outlook.com (2603:10b6:a03:23c::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6954.25; Sat, 4 Nov 2023 19:28:13 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::4109:e983:1eac:60ab]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::4109:e983:1eac:60ab%7]) with mapi id 15.20.6954.021; Sat, 4 Nov 2023 19:28:13 +0000
From: "lgl island-resort.com" <lgl@island-resort.com>
To: Carsten Bormann <cabo@tzi.org>
CC: Michael Jones <michael_b_jones@hotmail.com>, Francesca Palombini <francesca.palombini@ericsson.com>, "drafts-expert-review-comment@iana.org" <drafts-expert-review-comment@iana.org>, "cose@ietf.org" <cose@ietf.org>, "paul.wouters@aiven.io" <paul.wouters@aiven.io>
Thread-Topic: [COSE] [IANA #1284212] expert review for draft-ietf-cose-cwt-claims-in-headers (cose)
Thread-Index: AQHaCPPzGup42bEsc06rzQKaEPblJbBd1/EAgAAB+4CAAADOAIAAAmAAgAAf5ACADJQqgIAABwiA
Date: Sat, 04 Nov 2023 19:28:13 +0000
Message-ID: <A5700329-C5E2-41B8-9AA8-9455855A088F@island-resort.com>
References: <RT-Ticket-1284212@icann.org> <rt-5.0.3-580051-1697567816-1595.1284212-9-0@icann.org> <rt-5.0.3-580636-1697568304-0.1284212-9-0@icann.org> <AS1PR07MB8616EFA12DB4F47075B7AB5198DDA@AS1PR07MB8616.eurprd07.prod.outlook.com> <MW4PR02MB7428022AEA2B4574410EE7EEB7DDA@MW4PR02MB7428.namprd02.prod.outlook.com> <AS1PR07MB8616E407B141D0C56F7EC65398DCA@AS1PR07MB8616.eurprd07.prod.outlook.com> <F465B3E6-B2CA-4580-B006-5DE7D8E9AABD@tzi.org> <MW4PR02MB7428E1B8942D1D64A825B0EEB7DCA@MW4PR02MB7428.namprd02.prod.outlook.com> <D4A1FC53-8D45-455B-8DF0-F3692F96AE4A@tzi.org> <MW4PR02MB7428A11CC4B4061109E5A07DB7DCA@MW4PR02MB7428.namprd02.prod.outlook.com> <56022A38-8D1A-4C65-A535-E3D45F3C3C7E@tzi.org> <MW4PR02MB7428751A6DC9804B8B15B66BB7DCA@MW4PR02MB7428.namprd02.prod.outlook.com> <641BD038-522A-41C2-B2C2-9E3C118DE915@tzi.org> <MW4PR02MB7428C73DA8A708AB8B860923B7DCA@MW4PR02MB7428.namprd02.prod.outlook.com> <4F61896C-4BAD-436E-AC31-3F50E9B93BF7@island-resort.com> <B7F75895-A2CD-4BDB-BDD9-08AE784690A2@tzi.org>
In-Reply-To: <B7F75895-A2CD-4BDB-BDD9-08AE784690A2@tzi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR22MB3092:EE_|BY5PR22MB1954:EE_
x-ms-office365-filtering-correlation-id: dee4afe1-ca5e-4e9a-02cd-08dbdd6c2fcb
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR22MB3092.namprd22.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(366004)(39830400003)(376002)(346002)(136003)(396003)(230922051799003)(451199024)(64100799003)(1800799009)(186009)(26005)(6506007)(53546011)(71200400001)(2616005)(6512007)(83380400001)(5660300002)(41300700001)(8936002)(4326008)(8676002)(2906002)(6486002)(478600001)(316002)(6916009)(91956017)(64756008)(54906003)(66446008)(66476007)(66556008)(76116006)(66946007)(122000001)(33656002)(36756003)(86362001)(38100700002)(38070700009)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <F25457D47229F94B8B47C97A17423AF0@namprd22.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: dee4afe1-ca5e-4e9a-02cd-08dbdd6c2fcb
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Nov 2023 19:28:13.0585 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: yZ9wkzjzl7E2iMcDbP4IFArXkBTeue2ECmG6/bk8yQmE88DREJcLB/iv2dk26z8LRGvJPENWF/wqA7COU3Igxg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR22MB1954
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/mbJYelIL_NW0bxyEYR3B0j3fMwc>
Subject: Re: [COSE] [IANA #1284212] expert review for draft-ietf-cose-cwt-claims-in-headers (cose)
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Nov 2023 19:28:20 -0000

> On Nov 4, 2023, at 8:03 PM, Carsten Bormann <cabo@tzi.org> wrote:
> 
> On Oct 27, 2023, at 20:57, lgl island-resort.com <lgl@island-resort.com> wrote:
>> 
>> It seems like this is in hand, but FYI, in EAT, we want to use ccs to bring the “eat_profile” claim up from the CWT Claims-Set to the top level so that dispatch of the EAT processing can be done before processing COSE. It is possible that COSE is providing encryption making it a lot of work to access the “eat_profile" claim.  The “eat_profile" is kind of a sub-type mechanism in EAT.
> 
> This is an interesting example.
> 
> It seems more obvious to me to just extract that one claim and define a parameter, with well-defined semantics!, for just that.

I mentioned these in another thread/message:

- OEMID claim also to dispatch to OEM-specific attestation processors

- When the EAT is encrypted, any other claim you want in the clear for processing before decryption

- In general dispatch, pre-processing and early error checks before full CWT processing, particularly for encrypted CWTs

Because the claims that are candidate for all this may not be known all at once, it’s nice to have the general facility for any claim, rather than having to define each COSE parameter.

LL

v2.23.0 | Report a Bug | By Email