[Rats] Re: Clarifications in draft-ietf-rats-eat

Laurence Lundblade <lgl@island-resort.com> Mon, 21 April 2025 01:49 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: rats@mail2.ietf.org
Delivered-To: rats@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 1235E1EB3CAB for <rats@mail2.ietf.org>; Sun, 20 Apr 2025 18:49:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -0.198
X-Spam-Level:
X-Spam-Status: No, score=-0.198 tagged_above=-999 required=5 tests=[BAYES_20=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=island-resort.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id L4SHtFgysD1J for <rats@mail2.ietf.org>; Sun, 20 Apr 2025 18:49:30 -0700 (PDT)
Received: from sender3-pp-f112.zoho.com (sender3-pp-f112.zoho.com [136.143.184.112]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id F31BC1EB3CA4 for <rats@ietf.org>; Sun, 20 Apr 2025 18:49:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1745200162; cv=none; d=zohomail.com; s=zohoarc; b=ezq5sWtLprqpeanr2aW+EWbNHAzZJiPnjWtitVVWLs/P6I5psfFtkTMsDFt0bTwMO323eMBQuOCLc1UjTdWGTuQQV+f9Z5WIToEHqkgFLCRzlMHaGaQtN9fZFlcTijuvlpV+k03FthI9PCGJsHyca+4csTi5c4ISLRtwbdBVnRI=
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=zohomail.com; s=zohoarc; t=1745200162; h=Content-Type:Cc:Cc:Date:Date:From:From:In-Reply-To:MIME-Version:Message-ID:References:Subject:Subject:To:To:Message-Id:Reply-To; bh=Cubw1ITRv5vLmikB0fC5Ty1c/mDxurA7+cUc1Nhc0TA=; b=kGkrWF/uZXZKzEVRj1uwTHdZORDHISm+aUdLuSfa/EUbO4ib0XTIApTZd7o5VzDyVM/EGSBNsIPHLMmAOOpb50pBOaJYbo3DldrVzq8+TvwjJjWFL3yq10p74W7HJZXwHFWQ+99L3F+StMVwQzQzwSe9FLBwN90e4dt7WYcIxtc=
ARC-Authentication-Results: i=1; mx.zohomail.com; dkim=pass header.i=island-resort.com; spf=pass smtp.mailfrom=lgl@island-resort.com; dmarc=pass header.from=<lgl@island-resort.com>
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; t=1745200162; s=island; d=island-resort.com; i=lgl@island-resort.com; h=From:From:Message-Id:Message-Id:Content-Type:Mime-Version:Subject:Subject:Date:Date:In-Reply-To:Cc:Cc:To:To:References:Reply-To; bh=Cubw1ITRv5vLmikB0fC5Ty1c/mDxurA7+cUc1Nhc0TA=; b=I6XY6HJpCWNhVr/Q6aR67YFJPdEZysAM0YGDZI9lP6RmIdXT5LoBKzRJaia6JKyR r7PyqMSkUQfkGgOnMu2n8NeYX5RKgDAb77yPACSmdnmBFx0hZ8C6fsbr8/f909iwah3 66agzR79rpSlmWBmrXTXI3lRXndVkWnWZfiC3Q1w=
Received: by mx.zohomail.com with SMTPS id 1745200159537161.67435508118012; Sun, 20 Apr 2025 18:49:19 -0700 (PDT)
From: Laurence Lundblade <lgl@island-resort.com>
Message-Id: <96365E15-6A4C-43F9-84AF-B958AA0AB5AC@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_65CA8845-A9D8-4EAA-B301-D95AD9258060"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3774.300.61.1.2\))
Date: Sun, 20 Apr 2025 21:49:07 -0400
In-Reply-To: <d1c2b9b1-a172-420a-a43c-84658d3c8224@tu-dresden.de>
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
References: <4abff904-74ef-473f-8b80-6ba563018744@tu-dresden.de> <D6C150AF-DB13-439C-862E-93CEBF573F34@island-resort.com> <LV8PR02MB100170F5C089781552960B6D0F2B62@LV8PR02MB10017.namprd02.prod.outlook.com> <bd70a904-8675-43d6-8113-13ef9107450d@tu-dresden.de> <BN2P110MB11079B13F236A1EC6D6087BEDCB6A@BN2P110MB1107.NAMP110.PROD.OUTLOOK.COM> <CO1PR11MB5169194808C7046C106F8E01E5B32@CO1PR11MB5169.namprd11.prod.outlook.com> <f75c13f5-f7fe-4065-9c80-1052f8a2f38a@tu-dresden.de> <CO1PR11MB5169DC365AE65ABCD28287EDE5B22@CO1PR11MB5169.namprd11.prod.outlook.com> <92a98a3a-02d0-4ccf-a022-2994cb8bbe7d@tu-dresden.de> <498052C3-13E9-42ED-A9AE-36EA29D93D0F@island-resort.com> <d1c2b9b1-a172-420a-a43c-84658d3c8224@tu-dresden.de>
X-Mailer: Apple Mail (2.3774.300.61.1.2)
X-ZohoMailClient: External
Message-ID-Hash: F4ZMBDPEKNK5VIJWZD4X7NZZF6HCKPBQ
X-Message-ID-Hash: F4ZMBDPEKNK5VIJWZD4X7NZZF6HCKPBQ
X-MailFrom: lgl@island-resort.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Smith, Ned" <ned.smith@intel.com>, Roman Danyliw <rdd@cert.org>, Jeremy O'Donoghue <jodonogh@qti.qualcomm.com>, "rats@ietf.org" <rats@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: Clarifications in draft-ietf-rats-eat
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/4a3nQ-4RXz_2k-wnD53DgHih4FE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>

Hi Usama,

Yeah, I’m very focused on getting EAT out the door because little things can add many months of delay… and happy to have a discussion independent of that.

I often do not know what someone means when they use the bare term “authentication” — who’s authenticating who based on what secret for what purpose? In the paragraph in question it says “server authentication” to reference common TLS use and “user authentication” to reference password authentication and such.

Just looked at draft-ietf-rats-reference-interaction-models, which I hadn’t looked at before. Yes, that authentication is absolutely required, but it’s not the same as TLS server auth. Personally, I would change draft-ietf-rats-reference-interaction-models to not use the term authentication that way. I would call the "Authentication Secret” an “Attestation Key” to avoid the ambiguous term that “authentication” is.

Maybe we need a rule that terms like “root” and “authentication”, “key” and “trust” be qualified with at minimum one adjective. The term in  draft-ietf-rats-reference-interaction-models becomes "attester-verify authentication”. Anyone on this list caught using the bare terms has to take notes at the next interim meeting. Just a thought :-)

I did acknowledge your sentence quoted next was correct.

For attestation, the keys are typically injected by the hardware manufacturers. The keys may also be derived from a seed injected by hardware manufacturers at the manufacturing time.
This key derivation may involve additional factors, such as the current state of platform TCB, as well as a random value selected by the platform owner [1, Section 3.5].

Hope that helps...

LL

 

> On Apr 18, 2025, at 3:07 AM, Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> wrote:
> 
> Hi Laurence,
> 
> TL;DR: I think I mentioned it a few times not but just to clarify yet again: I would like to discuss but not delay the RFC. So please read the following with a peace of mind that I just want to understand your perspective, and its implications on attested TLS.
> 
> ---
> 
> Unfortunately, what you have presented so far are non-technical reasons, i.e., nobody will stop using SGX because of this, or base their provisioning architecture on this, or that WGLC has concluded. 
> 
> On the other hand, I wanted to have a technical discussion on this, i.e., to understand your real reasoning on the differences in your mind. For example, reference interaction models draft [1] claims that "authentication" is an essential requirement for remote attestation and you are claiming that the two are completely different. How do the two things fit together? It seems quite reasonable to me to have this discussion without delaying the RFC.
> 
> You write "To give an example of one aspect of the difference" and you leave me curious if there is any other difference at all? If yes, what is that?
> 
> Also please see inline below:
> 
> On 18.04.25 02:48, Laurence Lundblade wrote:
>> 
>> 
>>  The purpose of this paragraph is to provide a very high-level brief characterization of attestation. 
> I find the paragraph inviting more trouble than being helpful. This purpose could have been easily achieved without comparison with "authentication".
>> I worked pretty hard to wordsmith it and keep it brief without going down the slippery slope of a full discussion of attestation. The idea was to say enough to get the readers attention that goals are not the same and to direct them to RFC 9334 for the details. It occurs very early in the document. I have a strong opinion that the level of detail you asking for doesn’t belong in this paragraph or this early in the document.
> I am not asking to put in all that detail in the paragraph. I just wanted to present you one concrete counterexample with a concrete reference to SGX where your text is wrong.
>> I am opposed to change here. I doubt any further discussion will change my mind. I expect publication in a week or so.
> I don't understand why you always bind the discussion with the change in draft. The two need not be necessarily bound together. The discussion is not to change your mind, it is to read your mind. 
>> I am trying to be respectful by giving you the message directly rather than the document just getting published without the change you want.
> Appreciate that. I'll create errata as soon as it is published and discuss it at interim meeting. 
> 
> 
> [1] https://www.ietf.org/archive/id/draft-ietf-rats-reference-interaction-models-13.html#section-4
>