IETF Logo Mail Archive

Re: [Rats] Profile identifier (was Re: EAT Profiles)

Michael Richardson <mcr+ietf@sandelman.ca> Wed, 21 September 2022 10:30 UTC

Return-Path: <mcr@sandelman.ca>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F139EC14CF02 for <rats@ietfa.amsl.com>; Wed, 21 Sep 2022 03:30:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TsttKHoPQSYW for <rats@ietfa.amsl.com>; Wed, 21 Sep 2022 03:30:08 -0700 (PDT)
Received: from relay.sandelman.ca (relay.cooperix.net [176.58.120.209]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 407F1C14F735 for <rats@ietf.org>; Wed, 21 Sep 2022 03:30:07 -0700 (PDT)
Received: from dooku.sandelman.ca (sulu.imp.fu-berlin.de [160.45.114.22]) by relay.sandelman.ca (Postfix) with ESMTPS id 1BC601F455; Wed, 21 Sep 2022 10:30:06 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id B0A731A013B; Wed, 21 Sep 2022 12:30:05 +0200 (CEST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Russ Housley <housley@vigilsec.com>, "rats@ietf.org" <rats@ietf.org>
In-reply-to: <657B200D-204D-411F-B1C4-5709CD794E7B@vigilsec.com>
References: <71934.1663019954@dooku> <DBBPR08MB5915AC23726BF997EB9E44C4FA489@DBBPR08MB5915.eurprd08.prod.outlook.com> <19805.1663344806@dooku> <AS8PR08MB5911DB2FE9608541698983B0FA4D9@AS8PR08MB5911.eurprd08.prod.outlook.com> <ab4312d3-c35f-5e72-9658-ca88ba3523c2@sit.fraunhofer.de> <CAObGJnNjuTT+QqnSpp1abrX-1hHGzCkVkzrM8GArPs8sDu=W+g@mail.gmail.com> <f9f289ad-5f36-b781-7502-219778148491@sit.fraunhofer.de> <885ABB6E-FD98-45E2-84BE-5A3A3C37D3F8@island-resort.com> <657B200D-204D-411F-B1C4-5709CD794E7B@vigilsec.com>
Comments: In-reply-to Russ Housley <housley@vigilsec.com> message dated "Tue, 20 Sep 2022 17:31:00 -0400."
X-Mailer: MH-E 8.6+git; nmh 1.7.1; GNU Emacs 27.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Wed, 21 Sep 2022 12:30:05 +0200
Message-ID: <46687.1663756205@dooku>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/23Hbi0-tkzYPTDFIvUmw-wOSmh8>
Subject: Re: [Rats] Profile identifier (was Re: EAT Profiles)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Sep 2022 10:30:09 -0000

Russ Housley <housley@vigilsec.com> wrote:
    > The OID can be a PEN, which is a prefix assigned by IANA, and then the
    > party that owns the prefix can manage the rest by themselves.  I like
    > the distributed nature of that approach.

I also think that this should exist as an option.
Back in the days of IKEv1, there were things that we left out of registries
because we were told that secret agengies would be doing implementations, and
they didn't like to be in a list.  This might well apply here as well.
I'm okay with that situation, and I agree that a PEN/OID is a good way to do that.

-- 
Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works
 -= IPv6 IoT consulting =-

v2.23.0 | Report a Bug | By Email