Re: [Rats] Attestation Timing Definitions

Laurence Lundblade <lgl@island-resort.com> Thu, 12 March 2020 22:41 UTC

From: Laurence Lundblade <lgl@island-resort.com>
Message-Id: <19331E26-5F18-4F37-AD4D-FEEB895B80A7@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_44021690-5C5F-4544-A352-7B9D81EDBA2C"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.11\))
Date: Thu, 12 Mar 2020 15:41:36 -0700
In-Reply-To: <BL0PR11MB312205B217AECC141105F685A1FD0@BL0PR11MB3122.namprd11.prod.outlook.com>
Cc: "Panwei (William)" <william.panwei@huawei.com>, "rats@ietf.org" <rats@ietf.org>
To: "Eric Voit (evoit)" <evoit=40cisco.com@dmarc.ietf.org>
References: <BYAPR11MB31256F11BD86730AF9D21B6CA1FF0@BYAPR11MB3125.namprd11.prod.outlook.com><CD539706-7F11-4FF1-8483-17F51329C014@island-resort.com> <BYAPR11MB312543840E706D6A0DBC8013A1FF0@BYAPR11MB3125.namprd11.prod.outlook.com> <817d60e7ab6b41d5bad81b7702002397@huawei.com> <870488EF-4981-44CA-A6B9-65E176D380FF@island-resort.com> <1aa8a5c4038144f89ccf9d88a514fb6e@huawei.com> <52200DF9-4B74-4408-A209-18B42DB48ACF@island-resort.com> <BL0PR11MB312205B217AECC141105F685A1FD0@BL0PR11MB3122.namprd11.prod.outlook.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/-AsqHK-HoS1qQf-WpVR7-0B90O8>
Subject: Re: [Rats] Attestation Timing Definitions
Precedence: list

Then the net net is that this diagram needs fixing:

   ..----------.                     ..----------.  .---------------.
   | Attester |                     | Verifier |  | Relying Party |
   '----------'                     '----------'  '---------------'
      time(a)                             |               |
      time(b)                             |               |
        |                               time(c)           |
        |<-----nonce 1------------------time(d)           |
      time(e)                             |               |
        |------Evidence---------------->time(f)           |
        |                               time(g){@time(h)} |
        |<-----Attestation Result-------time(i)           |
        |                                 |             time(c’)
        |<-----nonce 2----------------------------------time(d’)
      time(e’)                            |               |
        |------Attestation Result---------------------->time(l)
        |                                 |             time(h)
 

Option 1) fix: change time(e’) to time(n) if what’s being signed at that time is NOT evidence

Option 2) fix: leave it as time(e’) and change the diagram so what is being signed IS evidence. This will involve adding a Verifier and such making it look a lot like the other diagram.


My main objective here is to understand what needs to go into EAT so it can represent Attestation Results well. I also care about the architecture document. The details of trusted path I leave in your hands. :-)

LL




> On Mar 12, 2020, at 11:49 AM, Eric Voit (evoit) <evoit=40cisco.com@dmarc.ietf.org> wrote:
> 
> Hi Laurence,
>  
> From: Laurence Lundblade, March 12, 2020 1:05 PM
> 
> Hi Wei,
>  
> below...
> 
> 
> On Mar 11, 2020, at 7:24 PM, Panwei (William) <william.panwei@huawei.com <mailto:william.panwei@huawei.com>> wrote:
>  
>  
>  
> Regards & Thanks!
> 潘伟 Wei Pan
> 华为技术有限公司 Huawei Technologies Co., Ltd.
>  
> From: Laurence Lundblade [mailto:lgl@island-resort.com <mailto:lgl@island-resort.com>] 
> Sent: Thursday, March 12, 2020 1:33 AM
> To: Panwei (William) <william.panwei@huawei.com <mailto:william.panwei@huawei.com>>
> Cc: Eric Voit (evoit) <evoit=40cisco.com@dmarc.ietf.org <mailto:evoit=40cisco.com@dmarc.ietf.org>>; rats@ietf.org <mailto:rats@ietf.org>
> Subject: Re: [Rats] Attestation Timing Definitions
>  
>  
> 
> 
> 
> On Mar 10, 2020, at 8:20 PM, Panwei (William) <william.panwei@huawei.com <mailto:william.panwei@huawei.com>> wrote:
>  
> I think Ned’s email also has detailedly explained that the entity of Relying Party can also take on the role of Verifier, and in this case the Attester sends Evidence + previous Attestation Result to that entity, within that entity the Verifier role processes the Evidence and the Relying Party role consumes the two Attestation Results.
>  
> So, for a simple nonce-based Passport Model, the Attester just sends Attestation Result produced by the Verifier to the Relying Party, and the passport is simply the Attestation Result. 
>    ..----------.                     ..----------.  .---------------.
>    | Attester |                     | Verifier |  | Relying Party |
...

[Rats] Attestation Timing Definitions Eric Voit (evoit)
Re: [Rats] Attestation Timing Definitions Laurence Lundblade
Re: [Rats] Attestation Timing Definitions Smith, Ned
Re: [Rats] Attestation Timing Definitions Eric Voit (evoit)
Re: [Rats] Attestation Timing Definitions Panwei (William)
Re: [Rats] Attestation Timing Definitions Panwei (William)
Re: [Rats] Attestation Timing Definitions Eric Voit (evoit)
Re: [Rats] Attestation Timing Definitions Eric Voit (evoit)
Re: [Rats] Attestation Timing Definitions Panwei (William)
Re: [Rats] Attestation Timing Definitions Eric Voit (evoit)
Re: [Rats] Attestation Timing Definitions Laurence Lundblade
Re: [Rats] Attestation Timing Definitions Panwei (William)
Re: [Rats] Attestation Timing Definitions Laurence Lundblade
Re: [Rats] Attestation Timing Definitions Eric Voit (evoit)
Re: [Rats] Attestation Timing Definitions Laurence Lundblade
Re: [Rats] Attestation Timing Definitions Smith, Ned
Re: [Rats] Attestation Timing Definitions Smith, Ned
Re: [Rats] Attestation Timing Definitions Eric Voit (evoit)
[Rats] EAT timestamps (was Re: Attestation Timing… Laurence Lundblade