IETF Logo Mail Archive

[Rats] Attestation Results for Secure Interactions v01

"Eric Voit (evoit)" <evoit@cisco.com> Tue, 15 June 2021 14:51 UTC

Return-Path: <evoit@cisco.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 06DE63A32E0 for <rats@ietfa.amsl.com>; Tue, 15 Jun 2021 07:51:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -11.896
X-Spam-Level:
X-Spam-Status: No, score=-11.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=Wwxc+Tis; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=cisco.onmicrosoft.com header.b=cqUHp5QS
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xzsuUndoSCFo for <rats@ietfa.amsl.com>; Tue, 15 Jun 2021 07:51:48 -0700 (PDT)
Received: from rcdn-iport-6.cisco.com (rcdn-iport-6.cisco.com [173.37.86.77]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B57D13A32E1 for <rats@ietf.org>; Tue, 15 Jun 2021 07:51:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14609; q=dns/txt; s=iport; t=1623768708; x=1624978308; h=from:to:cc:subject:date:message-id:mime-version; bh=gAooRWOjjFnB/e8iD7I9LkHCbeHlvGucCphccxUY5Sk=; b=Wwxc+Tis1tai86UmXbWfIX5sW6esQe2fSU0GYYFeEn1dwLkArr01i1+b B3ZjZxtGK8xN1vH/YL7K67jnANVEYXiJcTfUh5wXmnKnN6hKhyIJ2ERqv wkJd+ZJQr0cXyGBok1evMX3zJcKPNgxOCaac1GAPmbPSr0Vz+3RfS7cqZ E=;
X-Files: smime.p7s : 3975
IronPort-PHdr: A9a23:0Q3m3xYBZRQBdrqPuY5KFgn/LTA1hN3EVzX9orImhq5ANKO58MeqME/e4KBri1nEFcXe5ulfguXb+6bnRSQb4JmHvXxDFf4EVxIMhcgM2QB1BsmDBB76IeLkKSsgE5cKWFps5XruN09TFY73bEHTpXvn6zkUF13/OAN5K/6zFJTVipG81vu5/NvYZAAb7Ac=
IronPort-HdrOrdr: A9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0D7CwCovchg/4MNJK1agQmBV4EjMFEHdywuNzELiAUDhTmIf4gWjQWFAIEugSUDVAQHAQEBCgMBATkGAgQBAYFcgnQCgmgCJTYHDgIEAQEBEgEBBQEBAQIBBgRxE4VoAQyGSBYbEwEBNwERAVAwJgEEDg0GFIJQgX5XAx8QAQ6cXwGBOgKKH3iBNIEBggcBAQYEBIE4Ag5BgyMYgioHAwaBOoFTgSiEDIJohCIcgUlEgViCMYNPAQECAYFfK4Mggi6DH2dRAoFBCxJIkTaNSIs+kX8KgxyBJ4N2gn6BdZQBEoNeogiVVIIYigCYHAIEAgQFAg4BAQaBWwEzgVlwFYMkUBcCDpIPhRSFSnM4AgYKAQEDCXyHVAGBEAEB
X-IronPort-AV: E=Sophos;i="5.83,275,1616457600"; d="p7s'?scan'208,217";a="904377209"
Received: from alln-core-1.cisco.com ([173.36.13.131]) by rcdn-iport-6.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 15 Jun 2021 14:51:46 +0000
Received: from mail.cisco.com (xbe-aln-001.cisco.com [173.36.7.16]) by alln-core-1.cisco.com (8.15.2/8.15.2) with ESMTPS id 15FEpl3v007760 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Tue, 15 Jun 2021 14:51:47 GMT
Received: from xfe-rcd-004.cisco.com (173.37.227.252) by xbe-aln-001.cisco.com (173.36.7.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Tue, 15 Jun 2021 09:51:46 -0500
Received: from xfe-rcd-004.cisco.com (173.37.227.252) by xfe-rcd-004.cisco.com (173.37.227.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Tue, 15 Jun 2021 09:51:46 -0500
Received: from NAM12-MW2-obe.outbound.protection.outlook.com (72.163.14.9) by xfe-rcd-004.cisco.com (173.37.227.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Tue, 15 Jun 2021 09:51:46 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=BsPXTIgY8EAOP5ptlVw4ibFh9pNm8bAftfdsFuLFJbIA3Nzmr15+lBdFdC1zCQlaVWwj6MOmSapAZdLUgOvCHIdSWfXDa+QYGbEVuMEGo7dHMLsYUT0Pysa0GAPq5wt4QGaFQUotqEbXeF7imz3kqiYGwnGeAxh+qHs1MFmoGqNL3bRPDMiGiqnFsKBA1cugV97gI7dzco43VSiZrsiOUQO3o/rZaq0orOfKxQd4fXiQ10kEtEB6xEBtZKy/0Fu1VV7syCO9UEzhyFwjAYKLU9nTx7FNOUY98nYVl6xk8i1NiYb0OrWY50yFIhAbGQ4ze7JyZVOYNWEajd/lyI/YYg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=iYb72zActALNX2KCreQvTrVZR/Tht3y0Xj4gZVbNfyk=; b=TRWwlQfQfxWx4BbT+lxpuruePKS6axsxQhXqRLIVyO/VKTWtUEGAM4qr+aXuyUoTNo4l9nUaUd3dFlSKF6qAq6xIMFmnutjZA9jkLnOhbob5jEXUz3NS2sFSrl67LrXth64ronWcekJPJgeMJHc+PW14AmJOJbC+8n5zzCdrGmTzjF94mcWCgdwSXZHgvxWymaghaxfH8FVp+rCGnM0dIb6Qv88ohRr5IbniWZHlJM5F2uM+4mKLaYe180H3meyeCbBnfr/ZhSBmuPWut3Szy575mcs8AycnfxH7H2RQJVD9FSzKZs/zplCBiJ7CW74v/vagUdR12QwpAYolNebpsA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=iYb72zActALNX2KCreQvTrVZR/Tht3y0Xj4gZVbNfyk=; b=cqUHp5QS/afdSqu/bC9ZM0u6qwQotgtSuuhwhNLpwpTsMu9YN1HBj73HTJwsLyyYtTJDK2Uz0Mzrr5ulxd3PCpH+1t5zYYM6agHGd4uxP1fenBfc2V5mFVBBR27TatdugoczZ5OlJP2PkwXyPE2m2vg0xmX7fSvWvP89Sf4rsWU=
Received: from BL0PR11MB3122.namprd11.prod.outlook.com (2603:10b6:208:75::32) by MN2PR11MB4304.namprd11.prod.outlook.com (2603:10b6:208:17b::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4219.24; Tue, 15 Jun 2021 14:51:44 +0000
Received: from BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::a56e:106:4419:6b23]) by BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::a56e:106:4419:6b23%6]) with mapi id 15.20.4219.025; Tue, 15 Jun 2021 14:51:44 +0000
From: "Eric Voit (evoit)" <evoit@cisco.com>
To: "rats@ietf.org" <rats@ietf.org>
CC: "Scarlata, Vincent R" <vincent.r.scarlata@intel.com>, Thomas Hardjono <hardjono@mit.edu>, Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, Thomas Fossati <Thomas.Fossati@arm.com>
Thread-Topic: Attestation Results for Secure Interactions v01
Thread-Index: Addh9fX88sQIe8x8R16o0n2j2+thzg==
Date: Tue, 15 Jun 2021 14:51:43 +0000
Message-ID: <BL0PR11MB312234C31C3BDCEF17AC28F0A1309@BL0PR11MB3122.namprd11.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [108.18.141.61]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1b052755-041d-40f0-928f-08d9300d17d4
x-ms-traffictypediagnostic: MN2PR11MB4304:
x-microsoft-antispam-prvs: <MN2PR11MB430476B29CE99E5347BBC843A1309@MN2PR11MB4304.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR11MB3122.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(396003)(346002)(39860400002)(366004)(376002)(136003)(166002)(38100700002)(55016002)(66446008)(83380400001)(66616009)(9686003)(66476007)(122000001)(33656002)(66556008)(64756008)(99936003)(76116006)(66946007)(26005)(2906002)(966005)(7696005)(9326002)(186003)(478600001)(86362001)(6506007)(5660300002)(8676002)(71200400001)(316002)(4744005)(54906003)(6916009)(52536014)(8936002)(4326008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_0131_01D761D4.6EF3EE40"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL0PR11MB3122.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1b052755-041d-40f0-928f-08d9300d17d4
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Jun 2021 14:51:44.0102 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: hXWgO+FS4ySKW4gxRQDc6DIKpG2vsbZpnJ6CImuUruwkFDlpwlHefgWz552tosX+
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4304
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.36.7.16, xbe-aln-001.cisco.com
X-Outbound-Node: alln-core-1.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/394e2vZgGbtn0zC72vbOB4LY85k>
Subject: [Rats] Attestation Results for Secure Interactions v01
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jun 2021 14:51:55 -0000

Hi All,

 

We have made a v01 update to the Attestation Results draft.  

https://datatracker.ietf.org/doc/html/draft-voit-rats-attestation-results-01

Changes include:

 

* Changed 'connectivity' to 'secure interactions' as this use of the
passport model can attest to more than just transport connectivity.

 

* Categorized specific types of Attester identities (e.g., software build,
developer of code, instance of Attesting Environment).

 

* Categorized different types of Confidential Compute technologies (i.e.,
process-based encryption vs. VM-based encryption).

 

A PPT which provides an intro to this material is on GitHub at:

https://github.com/ietf-rats/draft-voit-rats-attestation-results/blob/main/P
resentations/CCC-Attestation-SIG-v8June2021.pptx

 

We are hoping to ask for WG adoption at IETF 111.  It would be great to hear
any questions you have.

 

Thanks!

Eric, Henk, Thomas, Thomas, Vinnie

v2.23.0 | Report a Bug | By Email