IETF Logo Mail Archive

Re: [Iot-directorate] Iotdir last call review of draft-ietf-rats-eat-13

Thomas Fossati <tho.ietf@gmail.com> Sun, 05 June 2022 14:21 UTC

Return-Path: <tho.ietf@gmail.com>
X-Original-To: iot-directorate@ietfa.amsl.com
Delivered-To: iot-directorate@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E2B8DC14F744; Sun, 5 Jun 2022 07:21:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.105
X-Spam-Level:
X-Spam-Status: No, score=-7.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Zwp3p29xQk59; Sun, 5 Jun 2022 07:21:24 -0700 (PDT)
Received: from mail-ed1-x536.google.com (mail-ed1-x536.google.com [IPv6:2a00:1450:4864:20::536]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9697AC14F72F; Sun, 5 Jun 2022 07:21:24 -0700 (PDT)
Received: by mail-ed1-x536.google.com with SMTP id x5so10580617edi.2; Sun, 05 Jun 2022 07:21:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=4gd75ZVJDjHDSR6FdcKqtmjVovBnrLbB2I89SoSQF4A=; b=RPEbfWGIlKSifBcOe0UefL33pISgpYr/YI5cMmfc6vQyLtI5eIJbgk8jBJEt4AdmG/ 1Bk95PpWVLxBE4c5ezeXktDo0uAAYu9HamaPjDRMMmTzU27OGobR2bGygnfb/+ol2IWV TT0wHnoudVa2Wx+43JusI6HY+FIrgQqfviSgScqwHbukT/ocNKM1dHDIQwh5GVAlplJr q043lJLV7uEyKezcEVaqpwdj1svsAXpnlzsPLhCDaKrnOrGsYuCEzhrP0yune8pqGD8k 27pFb0uWMiFfIhFOixnLyYILoICIi25jVhZdYqbbjwewo+BBDBCHgc62yHR0MplClQAw TLLA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=4gd75ZVJDjHDSR6FdcKqtmjVovBnrLbB2I89SoSQF4A=; b=2cbB/+cCgqVMUU9O7AGdUuLybA2Fnu2bth85qlZVCsxFT4/hpr/94SU37YwUx/ZEop I/ZQi4MnMaZfyHdykj3nddFiJlUU+fTsgzmSl2vzs0FznBO+Numq3pE3GiyG8LlsLzF1 iFqldE/rGNj/3/leU9erIvnNykVX3SfqCVs5+nNTwCD8NliVDeEkwiyT838FgmEQhTpp ykZ37Otz3o+l609IqNCY/5RUYJ8ysHjSJigQMQ5n2s1YiLLK0c4QcCIiNrCVsW2vXDau XGk9R5RzmWt4NnSMoLEwKwMbE+XO+4W5Vd5cJcmd4ZAlgjWM0a40AC53vneaomIHWyLP eU5w==
X-Gm-Message-State: AOAM532W2FC7d1W4O1oZDBYQk8PJVU51mChOkQ4o/X0GZnkOHo06BBjQ 9cR1fs/PMwjFy/qtfuXXXxYppfffqKR1jspeOnqbXIm5or4=
X-Google-Smtp-Source: ABdhPJyepMM/z0iiLR3bHFsQoUStJqJ5Q49X/0zz68MPEnzyr/fd7uXgmE95tJsoEWEYCy8Oz+1huOaUFMMwRao/SjQ=
X-Received: by 2002:a05:6402:1941:b0:413:2b80:b245 with SMTP id f1-20020a056402194100b004132b80b245mr21436564edz.252.1654438882730; Sun, 05 Jun 2022 07:21:22 -0700 (PDT)
MIME-Version: 1.0
References: <165443386776.35361.12898474920348394274@ietfa.amsl.com>
In-Reply-To: <165443386776.35361.12898474920348394274@ietfa.amsl.com>
From: Thomas Fossati <tho.ietf@gmail.com>
Date: Sun, 05 Jun 2022 15:21:11 +0100
Message-ID: <CAObGJnNp3haHUUcTi0XcGxDJq1Dy+t=i1bkAn8miYRA29M8ydQ@mail.gmail.com>
To: Eliot Lear <lear@cisco.com>
Cc: IETF IoT Directorate <iot-directorate@ietf.org>, draft-ietf-rats-eat.all@ietf.org, last-call@ietf.org, rats <rats@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/iot-directorate/Vdyysq-VJxzmaGjddAPIfQN5zC0>
Subject: Re: [Iot-directorate] Iotdir last call review of draft-ietf-rats-eat-13
X-BeenThere: iot-directorate@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Mailing list for the IoT Directorate Members <iot-directorate.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/iot-directorate>, <mailto:iot-directorate-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/iot-directorate/>
List-Post: <mailto:iot-directorate@ietf.org>
List-Help: <mailto:iot-directorate-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/iot-directorate>, <mailto:iot-directorate-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 05 Jun 2022 14:21:27 -0000

Hi Eliot, thanks very much for the review.

One quick comment on this point:

On Sun, Jun 5, 2022 at 1:57 PM Eliot Lear via Datatracker
<noreply@ietf.org> wrote:
> The most major problem with the document is this:
>
> 7.  Profiles
>
>    This EAT specification does not gaurantee that implementations of it
>    will interoperate.  The variability in this specification is
>    necessary to accommodate the widely varying use cases.  An EAT
>    profile narrows the specification for a specific use case.  An ideal
>    EAT profile will guarantee interoperability.
>
> This is quite counter-cultural to the IETF.  You start with the
> smallest set of functionality and then expand outward to cover
> different use cases that make use of different extensions.  I'm
> not saying that profiles would not be necessary, but that some
> additional thought be given to extension mechanisms.

Maybe what is not immediately clear is that EAT is not a complete
protocol but a framework.

The EAT framework provides:
* A type system -- the base claims-set & a few aggregation types;
* Security envelopes based on COSE, JOSE;
* CBOR and JSON serialisations;
* A number of pre-defined semantics (the defined "claims") that one
can readily reuse.

So, a mechanism to identify specific kinds of EAT-based PDUs needs to
be there from the onset, otherwise one wouldn't know how to
instantiate the framework for their use case.  And that's precisely
the role of the profiles.

For an example of a profiled EAT that builds on the EAT framework to
create (demonstrably) interoperable attestation evidence see the PSA
token [1].

[1] https://www.ietf.org/archive/id/draft-tschofenig-rats-psa-token-09.html

> This statement in particular is quite disturbing.
>
>    In some cases CDDL may be created that replaces CDDL in this or other
>    document to express some profile requirements.
>
> Not only is this counter-cultural, but it would require an Updates:
> header on any such profile, and would further just be plain out
> confusing.

I don't think the "Updates" would be required: the CDDL defines a type
constraint that is applicable to the specific profile, it doesn't
modify the base type.

See for example the way PSA restricts the nonce claim [2].

https://www.ietf.org/archive/id/draft-tschofenig-rats-psa-token-09.html#section-3.1.1

> In short, the profile mechanism is harmful to the very concept of
> interoperability.

On the contrary, without profiles it would be probably impossible to
interoperate.

Cheers, thanks,
-- 
Thomas

v2.23.0 | Report a Bug | By Email