Re: [Rats] About (E)UID's

Schönwälder, Jürgen <J.Schoenwaelder@jacobs-university.de> Wed, 12 February 2020 16:52 UTC

Return-Path: <J.Schoenwaelder@jacobs-university.de>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 023E01208DC for <rats@ietfa.amsl.com>; Wed, 12 Feb 2020 08:52:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jacobsuniversity.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FXafIYRhd3Cg for <rats@ietfa.amsl.com>; Wed, 12 Feb 2020 08:52:23 -0800 (PST)
Received: from EUR05-DB8-obe.outbound.protection.outlook.com (mail-db8eur05on2074.outbound.protection.outlook.com [40.107.20.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B322C1208D5 for <rats@ietf.org>; Wed, 12 Feb 2020 08:52:22 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JboF6fxwd5sW6hzWpqj7cjElfWJZvDHr2X6pANG9dRqha2WViey1kdCw/xJ3QpRzG1aWo6u/jhvmIW2bhl6ZXMgJy4HlQu2PG1tNPFgQ6oPAmmwR/QwEqgeQHgqshbhwA9eGL5lfBVpeFqGffLl53hUyT422ra0sdWTy7bwduXc/55EdB8NVb14lhN0I63t87RwO/PfiY+1SK/HSSZvAJ3OnZtUiJpT0bJt1f2pag0vo9t96jvfYjDsSc0IYPOpcB/epZKE6xTUl2+ajwWSUZKMWBio1GRl81jtfAcTR2WC9KW0281u7hx7seO2mwd2kDNvweILAJ9Xve9jTsFucfA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I7VOQALZSfaRCo1/NzfreecYpgG0izs500P3Fzw5XiU=; b=JIu2xsWMJjp2bV3GOEzxbm4xHEWizgKuu3CeeD6ctY3nXQlBxXEUgF4bwdQndlcQ1Gd5Y5JMSRZ86R1olnZfFkHJP7LBDG//khuubILJPtT0VJ2DR5XE9sW6FpQj60eysE+DL2lfuSqYUzXVGXbyqsSaFB85t50Ae2vKygX01sBDDpCqoHBDftD8XBjCqHS6QFXPr9tzlcZ9DxCtfJ7OpS4XOl90Z81/MpOPLrPMZFme1s4wN9s24qoJLHlLnJCvkKi0UwRZw2ivA/twF9f7QLC3ziJjVUaK/0KXUeC/+SvUMBd/RY623Zu0NrR3J/2N6ry+cAzi23NrDJvjqCA0eA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=jacobs-university.de; dmarc=pass action=none header.from=jacobs-university.de; dkim=pass header.d=jacobs-university.de; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jacobsuniversity.onmicrosoft.com; s=selector2-jacobsuniversity-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I7VOQALZSfaRCo1/NzfreecYpgG0izs500P3Fzw5XiU=; b=h9o5izAml6Dgt0Kb1SeIRIeQ3ZTUSnyUlPqGuUQWAcv4Jfx2Ko5BkufTT6qUPadHQcXLZdwxaY8Eiu0LQXyF5f+AR5gm41qHCNR5aJT+HNKoTb4BugLv/aPRIF1ixjpHNB21lJEwZoafkBSIR5zS24Hqx9kTuJ3Wm3oz53h7LqI=
Received: from HE1P190MB0315.EURP190.PROD.OUTLOOK.COM (10.160.48.146) by HE1P190MB0441.EURP190.PROD.OUTLOOK.COM (10.160.73.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2707.21; Wed, 12 Feb 2020 16:52:19 +0000
Received: from HE1P190MB0315.EURP190.PROD.OUTLOOK.COM ([fe80::b532:80d3:c371:e84d]) by HE1P190MB0315.EURP190.PROD.OUTLOOK.COM ([fe80::b532:80d3:c371:e84d%7]) with mapi id 15.20.2707.030; Wed, 12 Feb 2020 16:52:19 +0000
Received: from localhost (212.201.44.247) by ZR0P278CA0025.CHEP278.PROD.OUTLOOK.COM (2603:10a6:910:1c::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2729.23 via Frontend Transport; Wed, 12 Feb 2020 16:52:19 +0000
From: =?iso-8859-1?Q?Sch=F6nw=E4lder=2C_J=FCrgen?= <J.Schoenwaelder@jacobs-university.de>
To: "Salz, Rich" <rsalz@akamai.com>
CC: Simon Frost <Simon.Frost@arm.com>, Laurence Lundblade <lgl@island-resort.com>, "rats@ietf.org" <rats@ietf.org>, "Smith, Ned" <ned.smith@intel.com>
Thread-Topic: [Rats] About (E)UID's
Thread-Index: AQHV3QtUaUOLh4A2CU2Ls4Ypa3w676gP+e6AgABDNQCAAF3YgIABrK8AgAQ09oCAAV4sAIAAGrEA///Ii4CAABFzAA==
Date: Wed, 12 Feb 2020 16:52:19 +0000
Message-ID: <20200212165218.qsrlmqf5qnr24otk@anna.jacobs.jacobs-university.de>
References: <8BDAAE2E-9803-4048-AD5B-59233708E6FB@akamai.com> <1C16DAA0-D03B-417C-894A-30C4015AEED7@island-resort.com> <DBBPR08MB49031E717F69E4CF58CF67A1EF1C0@DBBPR08MB4903.eurprd08.prod.outlook.com> <509C8229-20DC-4888-BE1D-9109733A9E2D@intel.com> <5B9516E6-1441-462E-86D2-B630B32CE1C7@island-resort.com> <DBBPR08MB4903356ED09601AA7A6006FAEF180@DBBPR08MB4903.eurprd08.prod.outlook.com> <07A3E092-068F-4E35-8C39-D290FDB8CFDC@island-resort.com> <DBBPR08MB4903840E6D30A59083F8B119EF1B0@DBBPR08MB4903.eurprd08.prod.outlook.com> <6CD93307-E6F2-40F9-B041-FEBF5AD226CA@akamai.com>
In-Reply-To: <6CD93307-E6F2-40F9-B041-FEBF5AD226CA@akamai.com>
Reply-To: =?iso-8859-1?Q?Sch=F6nw=E4lder=2C_J=FCrgen?= <J.Schoenwaelder@jacobs-university.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-clientproxiedby: ZR0P278CA0025.CHEP278.PROD.OUTLOOK.COM (2603:10a6:910:1c::12) To HE1P190MB0315.EURP190.PROD.OUTLOOK.COM (2603:10a6:7:5f::18)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=J.Schoenwaelder@jacobs-university.de;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [212.201.44.247]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8146864b-6d78-4191-1fd3-08d7afdbec65
x-ms-traffictypediagnostic: HE1P190MB0441:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <HE1P190MB0441ECF9A97188DCD2B61169DE1B0@HE1P190MB0441.EURP190.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 0311124FA9
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(366004)(136003)(376002)(39850400004)(396003)(199004)(189003)(52116002)(6496006)(478600001)(4744005)(6486002)(86362001)(956004)(4326008)(8936002)(71200400001)(6916009)(3450700001)(64756008)(54906003)(66946007)(66446008)(66476007)(316002)(786003)(8676002)(26005)(186003)(2906002)(66556008)(1076003)(16526019)(81156014)(5660300002)(81166006); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1P190MB0441; H:HE1P190MB0315.EURP190.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: jacobs-university.de does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: LAM/Q+n9C55P+iJFgjmROZz7v0O5Tagx+xm9N2zlewL0gaFDH915GWXlSEVpEuVP1s1h55q5jUBfH5SAuQayKMk+j8uyYl7gppIJCz9pAZrr8tNh7UwSiUFBMyt7I+r0DPE2Vm9qxPPGT5g6w6K0Yw==
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <E1719ADAC5F88146B788FDFE425BEBB9@EURP190.PROD.OUTLOOK.COM>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: jacobs-university.de
X-MS-Exchange-CrossTenant-Network-Message-Id: 8146864b-6d78-4191-1fd3-08d7afdbec65
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Feb 2020 16:52:19.7089 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f78e973e-5c0b-4ab8-bbd7-9887c95a8ebd
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: QZkHEAETRxJKuEufpD7zAmqAOv1KuzaXVFx+lX3TxswZ9tFUpUCNh/IMyXLx1V9svmFwBJzNowG+Tk5mWuJ8q/0/6R3QWRcWFC1YP+d2qGs=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1P190MB0441
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/-H3uyTkBcq-L_LIkVYWgQv1wct4>
Subject: Re: [Rats] About (E)UID's
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Feb 2020 16:52:26 -0000

On Wed, Feb 12, 2020 at 03:49:51PM +0000, Salz, Rich wrote:
> I am still concerned about what fails if someone re-uses an EUID, either by accident or maliciously.  If the security of the RATS architecture depends on uniqueness, this seems important.

Looking at experiences made with past attempts to create globally
uniqueness addresses, it seems that assuming the existence of globally
unique identifiers is somewhat idealistic.

I think truth in advertising is important here so that people are
prepared to handle rare situations in non-catastrophic ways when the
uniqueness assumption may be challenged. There is an important
difference between "generally unique" or "likely unique" and
"guaranteed to be always unique".

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>