IETF Logo Mail Archive

Re: [Rats] EAT Profiles

Thomas Fossati <Thomas.Fossati@arm.com> Fri, 16 September 2022 15:48 UTC

Return-Path: <Thomas.Fossati@arm.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B58FAC1522C8 for <rats@ietfa.amsl.com>; Fri, 16 Sep 2022 08:48:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.906
X-Spam-Level:
X-Spam-Status: No, score=-1.906 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=OHSdJASw; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=OHSdJASw
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jPlZuQs4AfSV for <rats@ietfa.amsl.com>; Fri, 16 Sep 2022 08:48:22 -0700 (PDT)
Received: from EUR04-HE1-obe.outbound.protection.outlook.com (mail-eopbgr70057.outbound.protection.outlook.com [40.107.7.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E4368C1522C5 for <rats@ietf.org>; Fri, 16 Sep 2022 08:48:21 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=pass; b=Nje30UwCLDM01Hf+wTe/VjaKzMkNSqXrqGhk/1MoNZ5i2t3PreG07pAdMwz27z3fe197y0sUWPDg4L9EMkcRoO0dGgA8crc/HJaX+6wU9asRXY0NHSRSmHjoGKkfqPqkzUuSpDu09jSo+FkQXaTMK9AvlMK3GydxUPIK51Fs6XUkGA/ftU7UASC+KAhzlrddD6ztSZAYMfDV44EvHuRKtaqgsZJAZOCoRWEln4XDPYl2EEUqaiA92JCsIzUiB6YR4B37Td9uaMKwJdF3BfsHHOcFb0Ueh6lGBMrDi0M4O9dQmVQrb9S9qlAIAGNmypxJdNGzEV7nufmdj4g2xdS1ng==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=COf9BXGHMDPZttOynhG4M8aPtObc0s4VxBlXFyKo6+4=; b=Zm4bUpIeZ9R/efEUbIo6v4cUuC/Mj2BJ5k2Lq8PU7pukUpfMZkq+URhTACir0qhA64O7/Npbbgt5FLLkjIgQvC7XsF6fkAh8tHmKA7SZqFklOusPhThbIgjwXZ+3HvF2/O6p65jr1tdmYhhmVobDU75Q3rNZw0dJ9Ux4jrUL4TcVrzqQt6LYPYqHuVUOVL3ry14AKb03juNjjSugr7WTg6Iex7imyd0RZoMDR5WbzSbOwhf594/RpePFa3YELqGk+w/8JW3Yc1NPXmV9mNroW9exKQPvUDqULux0isxN/3owbNhMLFw7RPPpb3dujFjfVFwIklAfwKafzFTN0f9/Ow==
ARC-Authentication-Results: i=2; mx.microsoft.com 1; spf=pass (sender ip is 63.35.35.123) smtp.rcpttodomain=ietf.org smtp.mailfrom=arm.com; dmarc=pass (p=none sp=none pct=100) action=none header.from=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com; arc=pass (0 oda=1 ltdi=1 spf=[1,1,smtp.mailfrom=arm.com] dkim=[1,1,header.d=arm.com] dmarc=[1,1,header.from=arm.com])
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=COf9BXGHMDPZttOynhG4M8aPtObc0s4VxBlXFyKo6+4=; b=OHSdJASwTKCfxA4/Cknqf2ldiCKCrTOdLsPKo/UyUhoXE/M3k+Ddn1rQyjD8+EcSlV+9bGrlCjh5B4q33k5hPVCEESO9/JmQpbIcD79hiMogRLonERsZEeIExZw7Wb0+BGONvVyA7E98eDdrlQAI7k/hzJMxWopvO4eq7TzW84k=
Received: from AM6PR08CA0003.eurprd08.prod.outlook.com (2603:10a6:20b:b2::15) by PAVPR08MB9651.eurprd08.prod.outlook.com (2603:10a6:102:31b::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5612.22; Fri, 16 Sep 2022 15:48:17 +0000
Received: from AM7EUR03FT033.eop-EUR03.prod.protection.outlook.com (2603:10a6:20b:b2:cafe::26) by AM6PR08CA0003.outlook.office365.com (2603:10a6:20b:b2::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.16 via Frontend Transport; Fri, 16 Sep 2022 15:48:17 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com; pr=C
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by AM7EUR03FT033.mail.protection.outlook.com (100.127.140.129) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.12 via Frontend Transport; Fri, 16 Sep 2022 15:48:17 +0000
Received: ("Tessian outbound ee41cdb23966:v124"); Fri, 16 Sep 2022 15:48:17 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 9feaa133611fb247
X-CR-MTA-TID: 64aa7808
Received: from 2d1b4323c7a3.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 615AE5C0-0608-41E8-B49E-F3612F2C077D.1; Fri, 16 Sep 2022 15:48:10 +0000
Received: from EUR04-VI1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 2d1b4323c7a3.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Fri, 16 Sep 2022 15:48:10 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=AE3/rXUS14laSq7lfL51CF59qRZ+7M/vH6WulicMfngddr24j93Ahdi10xsxN+A3ltvbY9eL6xsUVES3kcHi8EalO3/kJySn23QWG3TA//TuV+CqHmdOgSKhT4clV62O5ZvaJjt9sOhmP1VljtcjJ7SHlk6EqBcjwqWr871yL5m6ONay65/iSqlF37Cv30xl7VHcQZ4prKR/y+//A649tuKALbINPwD4TVi2VnBkAkLo4mQf/0sdFKe1K7TvQ1e/2fjXbZ1I1KXrGnbMGe+LclpLv0+QoFYWh7LBGKBPsU09LfTtmitlXW6xatl8FUXXcVFY3LlRqJLcATk6ikQUuQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=COf9BXGHMDPZttOynhG4M8aPtObc0s4VxBlXFyKo6+4=; b=WLXT4wmL8ljJIZNyl7kHj4pgXHc22SRcYggv0gIoSFSFVCebwJwY8Zhhwgua1tis2f6B9WoLjRZpC2HpZVZUWYpB7ogm4iHepEkjKXvZOxMUWmtALDZwBQYjwRip4NWMnlyuX3GeanZBPvJNJFi3huAU1SxbNaHTy0i9nm5gKp6xL07rCy23DWRSAhCGNgwl8W6HyVPR6fb2adZUtmg1YI4zvS/aGEDLraIJhSno62w+Ex2uFbFRsdWotcNbAFKRHennvAdWYi0hczuUlNeNFW/SZ7bValZazfns2hVgcO+WQf1JNuxUPb/NpLh7eHE6reghK+gnDyRKIAIau0R/nQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=COf9BXGHMDPZttOynhG4M8aPtObc0s4VxBlXFyKo6+4=; b=OHSdJASwTKCfxA4/Cknqf2ldiCKCrTOdLsPKo/UyUhoXE/M3k+Ddn1rQyjD8+EcSlV+9bGrlCjh5B4q33k5hPVCEESO9/JmQpbIcD79hiMogRLonERsZEeIExZw7Wb0+BGONvVyA7E98eDdrlQAI7k/hzJMxWopvO4eq7TzW84k=
Received: from DB9PR08MB6524.eurprd08.prod.outlook.com (2603:10a6:10:251::8) by DU0PR08MB8881.eurprd08.prod.outlook.com (2603:10a6:10:47c::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5612.19; Fri, 16 Sep 2022 15:48:00 +0000
Received: from DB9PR08MB6524.eurprd08.prod.outlook.com ([fe80::c562:123f:fdc0:632a]) by DB9PR08MB6524.eurprd08.prod.outlook.com ([fe80::c562:123f:fdc0:632a%9]) with mapi id 15.20.5632.016; Fri, 16 Sep 2022 15:48:00 +0000
From: Thomas Fossati <Thomas.Fossati@arm.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] EAT Profiles
Thread-Index: AQHYyEuCz8t5IhR78keiyI9oGPhQjq3fFT2UgALdhYCAADSHlg==
Date: Fri, 16 Sep 2022 15:47:36 +0000
Message-ID: <DB9PR08MB6524E827E8A047CE030C53729C489@DB9PR08MB6524.eurprd08.prod.outlook.com>
References: <71934.1663019954@dooku> <DB9PR08MB6524C8E33A05AE90F63BAE689C469@DB9PR08MB6524.eurprd08.prod.outlook.com> <240513.1663328667@dooku>
In-Reply-To: <240513.1663328667@dooku>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Authentication-Results-Original: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
x-ms-traffictypediagnostic: DB9PR08MB6524:EE_|DU0PR08MB8881:EE_|AM7EUR03FT033:EE_|PAVPR08MB9651:EE_
X-MS-Office365-Filtering-Correlation-Id: 6e6d9ee8-84da-49db-d238-08da97fadfa5
x-checkrecipientrouted: true
nodisclaimer: true
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9PR08MB6524.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(39860400002)(136003)(346002)(396003)(366004)(376002)(451199015)(86362001)(6506007)(38070700005)(6666004)(9686003)(41300700001)(966005)(7696005)(122000001)(38100700002)(83380400001)(478600001)(186003)(26005)(5660300002)(316002)(2906002)(64756008)(55016003)(110136005)(33656002)(8936002)(66946007)(71200400001)(76116006)(66476007)(66446008)(8676002)(91956017)(66556008)(52536014); DIR:OUT; SFP:1101;
Content-Type: multipart/alternative; boundary="_000_DB9PR08MB6524E827E8A047CE030C53729C489DB9PR08MB6524eurp_"
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DU0PR08MB8881
Original-Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM7EUR03FT033.eop-EUR03.prod.protection.outlook.com
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id-Prvs: debc90a0-799c-4053-33e9-08da97fad52a
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(13230022)(4636009)(396003)(136003)(376002)(346002)(39860400002)(451199015)(46966006)(40470700004)(36840700001)(9686003)(8676002)(83380400001)(336012)(47076005)(186003)(33656002)(40460700003)(356005)(86362001)(2906002)(82740400003)(26005)(478600001)(52536014)(8936002)(41300700001)(5660300002)(55016003)(36860700001)(6666004)(7696005)(70206006)(40480700001)(70586007)(966005)(81166007)(82310400005)(6506007)(110136005)(316002); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 16 Sep 2022 15:48:17.5369 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 6e6d9ee8-84da-49db-d238-08da97fadfa5
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: AM7EUR03FT033.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAVPR08MB9651
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/0fVIuMDWPJ0wuNxv6_Sg0uuWoNg>
Subject: Re: [Rats] EAT Profiles
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Sep 2022 15:48:24 -0000

> Thomas Fossati <Thomas.Fossati@arm.com> wrote:
>     > Thanks.  This sounds like a useful exercise.  Could you please
>     > have a look at the PSA draft from this angle too?  We have tried
>     > hard to make the document a blueprint of a EAT profile
>     > definition that others could follow. It'd be good to have
>     > confirmation that we are on the right track.
>
> Hi, Looking at section 4.5.
> I'm surprised at how little you write compared to TEEP (that's good, I
> think) You are just declaring the profile claim value.
> Again, I really think a URL is wrong in a constrained environment.

One could use OID (~10 bytes on average) or maybe spare a few bytes
using a CRI [1].

(For the record, I am not against a constrained profile id using
something like "uint .size 2" as type.  It does not overlap with an
absolute OID or URI so it's OK to allow it as a choice alongside the
other two.)

[1] https://datatracker.ietf.org/doc/html/draft-ietf-core-href

>     >> First, this really feels wrong to use a string here for a
>     >> constrained object.  My first suggestion is that it be FCFS
>     >> registry.
>
>     > This is a choice TEEP made (and, BTW, PSA too [1]) For a more
>     > compact representation one could use a RFC9090 OID instead,
>     > there is no need for a registry.  In fact, choosing URI / OID as
>     > the underlying type was a conscious choice to avoid IANA
>     > round-tripping.
>
> I think that's a wrong optimization.
> A FCFS Registry is an email to IANA, and take as little as one
> business day if time zones line up for you.
> An OID could be much bigger than a 2-byte CBOR integer.
>
>     >> I really don't like the EAT has not made a clear judgement on
>     >> these things already.  I'd really really like EAT to be far
>     >> more opinionated.
>
>     > I think that's what the "The Constrained Device Standard
>     > Profile" [2] is intended for?  One should use it as baseline,
>     > make a few custom choices, define the claims set, and give it a
>     > new name.
>
> Ah, this seems new to me.
> Why didn't TEEP use it?  It looks identical to me.
> Are each of these SHOULDs, or MUSTs?
> If they are SHOULDs, then what are the exceptional case?

They are all MUSTs in the context of the "Constrained Device Standard
Profile".

We use something quite similar - modulo DEB / BUNDLE usage (which we do
not support altogether), and COSE Mac0 (which we allow as an alternative
to Sign1).  And, obviously, the Claims part which for us is strictly
limited to the PSA claims set.

>     >> > Refined Claim Definition: None.
>     >>
>     >> This is part of what worries me.  There should never be any
>     >> semantics changes between profiles for claims.
>
>     > I don't know what is meant by "Refined Claim Definition".  It
>     > doesn't look like something required by EAT.
>
> Maybe it's old.

Or maybe it’s a typo for "required claims definition"

Cheers, t
--

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email