[I2nsf] Attestation side meeting
"Diego R. Lopez" <diego.r.lopez@telefonica.com> Wed, 18 July 2018 21:43 UTC
Return-Path: <diego.r.lopez@telefonica.com>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 04D1C1311C3 for <i2nsf@ietfa.amsl.com>; Wed, 18 Jul 2018 14:43:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=telefonicacorp.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Da7g93Lz5qva for <i2nsf@ietfa.amsl.com>; Wed, 18 Jul 2018 14:43:20 -0700 (PDT)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-ve1eur01on0711.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe1f::711]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 29C84131250 for <i2nsf@ietf.org>; Wed, 18 Jul 2018 14:43:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telefonicacorp.onmicrosoft.com; s=selector1-telefonica-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1RNfZUJr/ek8iNtEe9t0Ll5QLKycm1V4hIh/IYuUdXg=; b=rmrmrRmReMUIVTFvhgsm8OJOGM2srEZD/aZU5jdON1Q1OFeM6f/xfqrtm+ndZsUFED5o7uNb6BrGrJMfRLa6KfJ1OMezwTt1NKvd1NR5D6hiQjTb7wcPfB0YSsOA51rjdKsYWqJN6vXFXFEA+9xrr0cJcsXheHhYyBB9eBAd1dE=
Received: from DB3PR0602MB3788.eurprd06.prod.outlook.com (52.134.70.148) by DB3PR0602MB3723.eurprd06.prod.outlook.com (52.134.73.25) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.952.18; Wed, 18 Jul 2018 21:43:17 +0000
Received: from DB3PR0602MB3788.eurprd06.prod.outlook.com ([fe80::d8e6:efcd:7512:d84c]) by DB3PR0602MB3788.eurprd06.prod.outlook.com ([fe80::d8e6:efcd:7512:d84c%2]) with mapi id 15.20.0952.021; Wed, 18 Jul 2018 21:43:17 +0000
From: "Diego R. Lopez" <diego.r.lopez@telefonica.com>
To: "i2nsf@ietf.org" <i2nsf@ietf.org>
Thread-Topic: Attestation side meeting
Thread-Index: AQHUHuBWqpTHP8a9Ak2s8WxzzJuXCQ==
Date: Wed, 18 Jul 2018 21:43:17 +0000
Message-ID: <587C03C2-12AE-4FED-B1E4-3AEFE800BAEA@telefonica.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.f.0.180709
authentication-results: spf=none (sender IP is ) smtp.mailfrom=diego.r.lopez@telefonica.com;
x-originating-ip: [2001:67c:1232:144:a9c2:73b4:b629:6647]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DB3PR0602MB3723; 7:rX8S6uzAuIIT041bO6Qxy3OIylC/rRqDoIjeuJS7GJSxuzg/52P4j0vDksxI+plPg1jbcfCpIDYRIHBQzLCp0jekk303hJCtqS+4bHbGl7THJqVCsokvQfYriekC7QQc0Cdrry5aLASdLtDT4esOKXMQl+P12lvL+YlECp/jNGZr8UZLlOAFdQEbwJs2h4L2nZlpHd8g7aRS43aAbbNaNOjYzkfuCRcvSZu3gN6TJ2Jlg4p00DdjhhoS2QpYuj9r
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: e9d9b72d-2863-48e5-c440-08d5ecf77936
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:(40392960112811); BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989117)(5600053)(711020)(4534165)(4627221)(201703031133081)(201702281549075)(8990107)(48565401081)(2017052603328)(7153060)(7193020); SRVR:DB3PR0602MB3723;
x-ms-traffictypediagnostic: DB3PR0602MB3723:
x-microsoft-antispam-prvs: <DB3PR0602MB3723ACC8D34E0673DB6125D6DF530@DB3PR0602MB3723.eurprd06.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(40392960112811)(120809045254105)(166708455590820)(35073007944872)(223705240517415)(128460861657000)(21748063052155)(81160342030619)(17755550239193);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(3231311)(944501410)(52105095)(93006095)(93001095)(10201501046)(3002001)(6055026)(149027)(150027)(6041310)(20161123564045)(20161123560045)(20161123558120)(20161123562045)(201703131423095)(201702281529075)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011)(7699016); SRVR:DB3PR0602MB3723; BCL:0; PCL:0; RULEID:; SRVR:DB3PR0602MB3723;
x-forefront-prvs: 0737B96801
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(39860400002)(136003)(346002)(366004)(376002)(40134004)(189003)(199004)(25724002)(252514010)(316002)(106356001)(6512007)(5630700001)(3480700004)(82746002)(6306002)(54896002)(486006)(476003)(236005)(7116003)(14454004)(2616005)(58126008)(8676002)(8936002)(99286004)(33656002)(5640700003)(2501003)(5660300001)(105586002)(97736004)(6916009)(606006)(25786009)(83716003)(5250100002)(81156014)(68736007)(81166006)(36756003)(786003)(53936002)(45080400002)(6436002)(46003)(86362001)(2900100001)(6486002)(6506007)(790700001)(14444005)(2906002)(256004)(186003)(102836004)(478600001)(6116002)(2351001)(966005)(7736002); DIR:OUT; SFP:1102; SCL:1; SRVR:DB3PR0602MB3723; H:DB3PR0602MB3788.eurprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: telefonica.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 8/H16cv4GCJilrMHFaVMu4GUt5Jdrc/vAsFPYDnNnX3v1dWhZUn/9qVKj67Og9NdMbgvehHDaiQrw9GVFP1krtfXBc/8cRfpXJFX4DH741LV8E9yMWjSunztABFQZb4gO8c0bv2cfTjiLWwLIaWnRb9m0B+weqB34EbGfFCFglh0Z/cqE0a2emSQeURhHk4nvazKZVGywomF2yz0/Xzbkb1VHV9CVJWMMp8jrpFWAa+WCyAGf4/EOJZzNwrWMxbgwaOZfI5o+GguiD2JVZJ5D2rvMBHFddS+fyWymLOOV2WPeyz5xaS//S8ieG59vmIhAmFULu6/JSiFL7MoSCe6pcMJafJTcpHiFVz5HhWSprY=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_587C03C212AE4FEDB1E43AEFE800BAEAtelefonicacom_"
MIME-Version: 1.0
X-OriginatorOrg: telefonica.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e9d9b72d-2863-48e5-c440-08d5ecf77936
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jul 2018 21:43:17.5940 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 9744600e-3e04-492e-baa1-25ec245c6f10
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB3PR0602MB3723
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/MacNMz5BkSJ2OgDwdsCySCLmxCM>
Subject: [I2nsf] Attestation side meeting
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jul 2018 21:43:31 -0000
Hi, As I mentioned during our meeting today, a few of us interested in remote attestation mechanisms and protocols will have a side meeting on Thursday after the IETF sessions. Here you go the space-time coordinates and some initial reflections to lure you into it: At *7:15pm EDT (CT)*, On *Thursday, July 19th*, In room *Square Dorchester*, which is here: https://datatracker.ietf.org/meeting/102/floor-plan#2nd-floor-convention-floor-2 Although it is a Bar BoF (great), it is now on-site (not so great), but we will have a projector with HDMI (curious little detail, but interop guys will know...), to enable remote call-in (thx Ned for supporting that). We are planning to find (or create) an appropriate place for remote attestation related work in the IETF with a Bar BoF as a first step. Some context: In essence, remote attestation procedures are a tool-set that is intended to increase the confidence that an entity other entities interact with is a trusted system. Remote attestation typically is tied to a type of trust anchor or shielded secret, which is - in a sense - a tad bit exotic in the scope of protocols developed in the IETF as those exist and operate "inside the box". In contrast, most IETF solutions operate "between boxes". While remote attestation procedures require both parts in order to provide a value, appropriate network protocols to convey corresponding information between boxes are still very much work in progress. The Plan: To create appropriate protocols and architectures, unfortunately, is not a trivial task. In order to find out how this "non-trivial" thing can be talked about and how to do that constructively in the IETF, we would like to invite you to a Bar BoF. The minimum goal is to talk about what remote attestation means (semantic), what parts of it would belong in the IETF (scope), how to align existing work and how to provide a basis for future work (solution). Even better, if we would be able to agree in some of these areas and flock together. Some references of the work in this space that is scattered all over the IETF: https://datatracker.ietf.org/doc/draft-pastor-i2nsf-nsf-remote-attestation/ https://datatracker.ietf.org/doc/draft-birkholz-i2nsf-tuda/ https://datatracker.ietf.org/doc/draft-mandyam-eat/ https://datatracker.ietf.org/doc/draft-mandyam-tokbind-attest/ https://datatracker.ietf.org/doc/draft-birkholz-reference-ra-interaction-model/ https://datatracker.ietf.org/doc/draft-birkholz-yang-basic-remote-attestation/ https://datatracker.ietf.org/doc/draft-birkholz-attestation-terminology/ There also is the rats@ietf.org<mailto:rats@ietf.org> list (as you can see in the email header) and a place at github (https://github.com/ietf-rats). All that said, we would welcome you to drop by and are looking forward to a lively discussion. Be goode, -- "Esta vez no fallaremos, Doctor Infierno" Dr Diego R. Lopez Telefonica I+D https://www.linkedin.com/in/dr2lopez/ e-mail: diego.r.lopez@telefonica.com<mailto:diego.r.lopez@telefonica.com> Tel: +34 913 129 041 Mobile: +34 682 051 091 ---------------------------------- ________________________________ Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción. The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it. Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição
- [I2nsf] Attestation side meeting Diego R. Lopez