Re: [Privacy-pass] Regarding the role of attester
Wang Haiguang <wang.haiguang.shieldlab@huawei.com> Thu, 18 May 2023 03:23 UTC
Return-Path: <wang.haiguang.shieldlab@huawei.com>
X-Original-To: privacy-pass@ietfa.amsl.com
Delivered-To: privacy-pass@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8681C15C501 for <privacy-pass@ietfa.amsl.com>; Wed, 17 May 2023 20:23:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.196
X-Spam-Level:
X-Spam-Status: No, score=-4.196 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ytXrtpcKCR6A for <privacy-pass@ietfa.amsl.com>; Wed, 17 May 2023 20:23:09 -0700 (PDT)
Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D8849C15AE03 for <privacy-pass@ietf.org>; Wed, 17 May 2023 20:23:08 -0700 (PDT)
Received: from lhrpeml100002.china.huawei.com (unknown [172.18.147.206]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4QMFYk1Kr1z6H7tk for <privacy-pass@ietf.org>; Thu, 18 May 2023 11:18:50 +0800 (CST)
Received: from sinpeml500002.china.huawei.com (7.188.194.131) by lhrpeml100002.china.huawei.com (7.191.160.241) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.23; Thu, 18 May 2023 04:23:05 +0100
Received: from sinpeml500002.china.huawei.com (7.188.194.131) by sinpeml500002.china.huawei.com (7.188.194.131) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.23; Thu, 18 May 2023 11:23:03 +0800
Received: from sinpeml500002.china.huawei.com ([7.188.194.131]) by sinpeml500002.china.huawei.com ([7.188.194.131]) with mapi id 15.01.2507.023; Thu, 18 May 2023 11:23:03 +0800
From: Wang Haiguang <wang.haiguang.shieldlab@huawei.com>
To: Tommy Pauly <tpauly=40apple.com@dmarc.ietf.org>, Christopher Wood <caw@heapingbits.net>
CC: "privacy-pass@ietf.org" <privacy-pass@ietf.org>
Thread-Topic: [Privacy-pass] Regarding the role of attester
Thread-Index: AQHZhwGn6e49MvswKEKU3EIV56+t069bHhWAgAAFzYCABDtfoQ==
Date: Thu, 18 May 2023 03:23:03 +0000
Message-ID: <caebafb7386545319087e6ae58fbe790@huawei.com>
References: <f9627a100be64813bfd6f5d93fb6a63b@huawei.com> <A91A6466-B655-436C-A96E-10D20A6A0F66@heapingbits.net>, <37D31378-F2E8-4A45-8998-5E92C9557B32@apple.com>
In-Reply-To: <37D31378-F2E8-4A45-8998-5E92C9557B32@apple.com>
Accept-Language: en-SG, zh-CN, en-US
Content-Language: en-SG
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [7.188.195.13]
Content-Type: multipart/alternative; boundary="_000_caebafb7386545319087e6ae58fbe790huaweicom_"
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/privacy-pass/cWOvm79kzqn--sjAY8_cdWB9zTs>
Subject: Re: [Privacy-pass] Regarding the role of attester
X-BeenThere: privacy-pass@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Pass Protocol <privacy-pass.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/privacy-pass/>
List-Post: <mailto:privacy-pass@ietf.org>
List-Help: <mailto:privacy-pass-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/privacy-pass>, <mailto:privacy-pass-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 May 2023 03:23:12 -0000
Christopher and Tommy Thanks very much for the clarification. Now I have a better understanding of the client and attester. I am new to this group and it is up to the decision of the expert here. Best regards. Haiguang ________________________________ From: Tommy Pauly <tpauly=40apple.com@dmarc.ietf.org> Sent: Tuesday, 16 May 2023 2:35:21 AM To: Christopher Wood Cc: Wang Haiguang; privacy-pass@ietf.org Subject: Re: [Privacy-pass] Regarding the role of attester I agree with Chris that it’d be preferable to keep the terminology here consistent, given that Privacy Pass has been using this for a while now, and it’s been adopted outside of the IETF WG. We did discuss this as we added references to RATS, and that led to the section that Chris pointed out where we provide the translation between RATS and Privacy Pass terminology. Within RATS, the “attester” is the client, because the entire architecture is about attestation. In Privacy Pass, the client has several roles, and providing attestation evidence is only one part — calling the privacy pass client the “attester” throughout the documents would be highly confusing. I’d support any further updates for clarity to the document to make sure this is obvious to readers, but I don’t think we should change the terminology for Privacy Pass. Thanks, Tommy > On May 15, 2023, at 11:14 AM, Christopher Wood <caw@heapingbits.net> wrote: > > In Section 3.4.1., we clarify this discrepancy: > > [RFC9334] describes an architecture for attestation procedures. Using that architecture as a conceptual basis, Clients are RATS attesters that produce attestation evidence, and Attesters are RATS verifiers that appraise the validity of attestation evidence > > We could update the definition in Section 2 to also make this clear, if desired. Reworking the entire architecture document and mental models of people using Privacy Pass today — especially for a document that’s through WGLC — seems like a big lift for alignment with the output of a different working group. I would be fine clarifying the existing terminology. > > Best, > Chris > >> On May 15, 2023, at 3:48 AM, Wang Haiguang <wang.haiguang.shieldlab=40huawei.com@dmarc.ietf.org> wrote: >> >> Hi, all >> >> I am reading the draft named the privacy pass architecture. >> >> I found there is a definition for attester as follows: >> Page 3, Attester: an entity that attests to properties of clients for the purpose of token issuance. >> >> However, in the RFC 9334, it has following statement: >> Page 8, the Attester role is assigned to entities that create Evidence that is conveyed to a Verifier. >> >> It seems the two documents have different indication on the role of attester. >> >> In RFC 9334, the attester collects the evidence and sent to verifier for attestation. In the document for the architecture of privacy pass, the attester is more like a verifier. I am not sure my understanding if correct or not. >> >> Can we align the definition of attester of RFC 9334 and the one in the privacy pass architecture to the same meaning? >> >> Best regards >> >> Haiguang Wang >> >> Senior Researcher >> Huawei International Pte. Ltd >> >> >> >> -- >> Privacy-pass mailing list >> Privacy-pass@ietf.org >> https://www.ietf.org/mailman/listinfo/privacy-pass > > -- > Privacy-pass mailing list > Privacy-pass@ietf.org > https://www.ietf.org/mailman/listinfo/privacy-pass
- [Privacy-pass] Regarding the role of attester Wang Haiguang
- Re: [Privacy-pass] Regarding the role of attester Christopher Wood
- Re: [Privacy-pass] Regarding the role of attester Tommy Pauly
- Re: [Privacy-pass] Regarding the role of attester Wang Haiguang