Re: [EAT] [Rats] Rats and EAT
Yaron Sheffer <yaronf.ietf@gmail.com> Sat, 07 July 2018 21:51 UTC
Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: eat@ietfa.amsl.com
Delivered-To: eat@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F3F4130DCF; Sat, 7 Jul 2018 14:51:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id d42QE2v-Q8L7; Sat, 7 Jul 2018 14:51:32 -0700 (PDT)
Received: from mail-wm0-x22f.google.com (mail-wm0-x22f.google.com [IPv6:2a00:1450:400c:c09::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0D94712E039; Sat, 7 Jul 2018 14:51:32 -0700 (PDT)
Received: by mail-wm0-x22f.google.com with SMTP id v3-v6so13682625wmh.0; Sat, 07 Jul 2018 14:51:31 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:subject:to:references:message-id:date:user-agent:mime-version :in-reply-to:content-language; bh=fX3jRKpZG7pRfenlx58/rEihXpYjsVIW2XXcl4pNJvI=; b=cIfvmtGwN7p4gs2y/FE/CN4qCjZCrT/ktWt87HMBBuv/Dl0Q4Td+bnpIoLIEUw15Nt OjskUHaNchQyR4pUxi1JPs6ZNQX5CE9q0FwV+YkABWXSe1FWZIo/wGMPaPLD9Ja7g/4V xHVu3wjYhIpsJ/WZeolheI7CliSakD7ppnb29Owep83YrdQnhhsKnWFNSB0pa0oFTcfK 2IJ6VmSXnw2PDR+IUK8GP2YvyabnH2/vEPSRGL4OVhKVwOjAC3w1ciHWK3+KJLbqyqDs dPztE3SWnesJhrnGgUpii07Cl1ujsOaTw4fFwXI417CitxpGauAtUYsxDYaY6ttxtQXR s70w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:subject:to:references:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=fX3jRKpZG7pRfenlx58/rEihXpYjsVIW2XXcl4pNJvI=; b=Cn2aIMkSj1ftYY+W28/vaqS4v5Sa8Mt86XWcSOk8fRQC/nb6XtcTxxPtHrWuRobIqf glq+yfz61d0+35WQo9J0QbcSwJU/axCKXi0Tjotr7UnlLGcRtPxcy+ANy9s/kYYiCqIe kPEzV1kr9ms/vgCUsshiCFM4hUkdqlj4hb+6FJN9MKrb4b/DzJS7I7FZSViT6/ZMf0Qg B8b2SxkYHNLKLeIjbO3r5IPSfuiktqPjQiGbbroPS0VQJimfIy+h2zGXxfPqtEpL1yAk qTu2tgQfUcoTA9y5cl9FqFTYJ6b5IkXlBMbSWMinVZFFDc7R2wqq60hKjjn8BSlK+qMj 2S2g==
X-Gm-Message-State: APt69E2rS88nhjK3QU8WZppQFB4WsOLT7+S+xlJzxahbiUgdo4yrUxV2 kP35MVQjAZxm22KI0i6KYQFJNGck
X-Google-Smtp-Source: AAOMgpceW8PbqjxOX15brSAra4W6q3gI2hqIcJwyP1b+R8+bfC1Lyi78G/GJ6MeQ4w71d8sWCY8r4A==
X-Received: by 2002:a1c:69c6:: with SMTP id z67-v6mr8700856wmh.159.1531000290282; Sat, 07 Jul 2018 14:51:30 -0700 (PDT)
Received: from [10.0.0.143] (bzq-109-65-69-22.red.bezeqint.net. [109.65.69.22]) by smtp.gmail.com with ESMTPSA id f18-v6sm906108wrt.64.2018.07.07.14.51.28 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 07 Jul 2018 14:51:29 -0700 (PDT)
From: Yaron Sheffer <yaronf.ietf@gmail.com>
To: Laurence Lundblade <lgl@island-resort.com>, rats@ietf.org, eat@ietf.org
References: <0236DCF5-8B9D-4721-B169-8DCBC6B4CFBC@island-resort.com>
Message-ID: <f81f30bd-28c4-f915-18d7-028f0e3cb2da@gmail.com>
Date: Sun, 08 Jul 2018 00:51:27 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.8.0
MIME-Version: 1.0
In-Reply-To: <0236DCF5-8B9D-4721-B169-8DCBC6B4CFBC@island-resort.com>
Content-Type: multipart/alternative; boundary="------------07D2F090E551CFDC305FC85A"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/eat/pm77DFRkEvhauN7zEkwqafovAhE>
Subject: Re: [EAT] [Rats] Rats and EAT
X-BeenThere: eat@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: EAT - Entity Attestation Token <eat.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/eat>, <mailto:eat-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/eat/>
List-Post: <mailto:eat@ietf.org>
List-Help: <mailto:eat-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/eat>, <mailto:eat-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 07 Jul 2018 21:51:35 -0000
I'm a bit surprised that nobody's mentioning the work done by the IETF NEA working group <https://datatracker.ietf.org/wg/nea/about/>. Yes, it's been some time ago, but the people involved were (to the best of my knowledge) involved with the TCG community. NEA was about desktop machines and NAC rather than mobile devices, but hey, by now we should be looking for solutions that encompass both technologies! See this diagram <https://wiki.strongswan.org/projects/1/wiki/trustednetworkconnect> on how the complex NEA/TNC architecture fits together, including the TPM. Thanks, Yaron On 06/07/18 22:20, Laurence Lundblade wrote: > Hey EAT and Rats folks, just became aware of IETF attestation work > running in parallel. Seems like EAT is focused more on an independent > signed, self-secured data structure with a lot of clams. Rats, seems > more TPM and full protocol centric, but I’m still reading. > > Here’s a list of attestation work that Diego and Henk made: > https://datatracker.ietf.org/doc/draft-pastor-i2nsf-nsf-remote-attestation/ > https://datatracker.ietf.org/doc/draft-birkholz-i2nsf-tuda/ > https://datatracker.ietf.org/doc/draft-mandyam-eat/ > https://datatracker.ietf.org/doc/draft-mandyam-tokbind-attest/ > https://datatracker.ietf.org/doc/draft-birkholz-reference-ra-interaction-model/ > https://datatracker.ietf.org/doc/draft-birkholz-yang-basic-remote-attestation/ > https://datatracker.ietf.org/doc/draft-birkholz-attestation-terminology/ > > A couple of other interesting non-TPM “attestation" technologies: > - FIDO > <https://www.w3.org/Submission/2015/SUBM-fido-key-attestation-20151120/> does > attestation of FIDO authenticators > - Android KeyStore > <https://developer.android.com/training/articles/security-key-attestation> uses > the term to mean proving the provenance of a stored key > - IEEE 802.1AR is kind of an attestation too > > FYI, the IETF attestation events I know of so far are: > - I’ll present EAT at HotRFC Sunday around 18:00 > - Secdispatch discussion of EAT (and Rats?) Monday at 15:30 (At least > I hope; no confirmation yet) > - EAT BarBof Monday at 18:00 > - Rats BarBof Thursday after dinner > > I will attend them all :-) > > LL
- Re: [EAT] [Rats] Rats and EAT Russ Housley
- Re: [EAT] [Rats] Rats and EAT Yaron Sheffer
- Re: [EAT] [Rats] Rats and EAT Henk Birkholz
- Re: [EAT] [Rats] Rats and EAT Henk Birkholz
- [EAT] Rats and EAT Laurence Lundblade
- Re: [EAT] [Rats] Rats and EAT Diego Lopez
- Re: [EAT] [Rats] Rats and EAT Yaron Sheffer
- Re: [EAT] [Rats] Rats and EAT Hannes Tschofenig
- Re: [EAT] [Rats] Rats and EAT Diego Lopez
- Re: [EAT] [Rats] Rats and EAT Hannes Tschofenig
- Re: [EAT] [Rats] Rats and EAT Laurence Lundblade
- Re: [EAT] [Rats] Rats and EAT Hannes Tschofenig
- Re: [EAT] [Rats] Rats and EAT Laurence Lundblade
- Re: [EAT] [Rats] Rats and EAT Diego R. Lopez
- Re: [EAT] [Rats] Rats and EAT Michael Richardson
- Re: [EAT] [Rats] Rats and EAT Michael Richardson
- Re: [EAT] [Rats] Rats and EAT Laurence Lundblade
- Re: [EAT] [Rats] Rats and EAT Yaron Sheffer
- Re: [EAT] [Rats] Rats and EAT Henk Birkholz