IETF Logo Mail Archive

Re: [Rats] Requesting a Nonce from a Verifier

"Smith, Ned" <ned.smith@intel.com> Mon, 22 April 2024 21:33 UTC

Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9587C14CEFA for <rats@ietfa.amsl.com>; Mon, 22 Apr 2024 14:33:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.142
X-Spam-Level:
X-Spam-Status: No, score=-4.142 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-2.049, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cLuarmH8x5uv for <rats@ietfa.amsl.com>; Mon, 22 Apr 2024 14:32:59 -0700 (PDT)
Received: from mgamail.intel.com (mgamail.intel.com [198.175.65.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E2BC9C151082 for <rats@ietf.org>; Mon, 22 Apr 2024 14:32:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1713821579; x=1745357579; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=3e7c6TNCxBCE0ql2wAEahLkeNJM5+AORZ+vXvnJAZ8U=; b=MBufuCBj+z9Yzy74TMNKOzm3c4xVBxPwv8VZkPu+z538IhojribQ9ins pMTowUhMnP34DAYmdZ5Ozy3Mylj0NX9Pah7CkRQlWkLOxan/EZgROU7hp mowqXJIOkq5dDcwtEgu0T2GyMORU5TKFa+dm0TyomsgZmyGY6Gq32xzOk UCY36VFVWdVusX7dsf6rKlfnSIRi+QX9ThqYfX9s0XRuiPqGjCKhJ2Gej EtFlU5tcGKZPi2HSgbnuHiAhUVZ/OfZwmFhbFDT+285YA9aX8Hs0bl++9 XNmxkbGAYUmBKk7giZzgdxLoGD+86D91Bmmo8d6AcPyHvRlUGDrLhdjLK Q==;
X-CSE-ConnectionGUID: AnF1I3LPRMa3RCIyQMNBiw==
X-CSE-MsgGUID: hSs2LMHbQEa5+otc66hiyw==
X-IronPort-AV: E=McAfee;i="6600,9927,11052"; a="9492453"
X-IronPort-AV: E=Sophos;i="6.07,221,1708416000"; d="scan'208,217";a="9492453"
Received: from orviesa010.jf.intel.com ([10.64.159.150]) by orvoesa109.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 22 Apr 2024 14:32:58 -0700
X-CSE-ConnectionGUID: UpsJPI7fRQKPobX4VGcPYw==
X-CSE-MsgGUID: j0lbguJxTVu1LOtM36aMQA==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="6.07,221,1708416000"; d="scan'208,217";a="24018769"
Received: from fmsmsx603.amr.corp.intel.com ([10.18.126.83]) by orviesa010.jf.intel.com with ESMTP/TLS/AES256-GCM-SHA384; 22 Apr 2024 14:32:58 -0700
Received: from fmsmsx611.amr.corp.intel.com (10.18.126.91) by fmsmsx603.amr.corp.intel.com (10.18.126.83) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35; Mon, 22 Apr 2024 14:32:57 -0700
Received: from fmsedg601.ED.cps.intel.com (10.1.192.135) by fmsmsx611.amr.corp.intel.com (10.18.126.91) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2507.35 via Frontend Transport; Mon, 22 Apr 2024 14:32:57 -0700
Received: from NAM11-BN8-obe.outbound.protection.outlook.com (104.47.58.173) by edgegateway.intel.com (192.55.55.70) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.35; Mon, 22 Apr 2024 14:32:56 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=cjaBwgmTet1Q8NVxrGMCGB8dGpXMLLne/5o9mri8Gqvex7bxvesTj2+0wnCn0nZilwwHVs/oVHwOVlrgpqEwINOQfC/Mu1xYlPW4VklqTIG2mnFJMWJdt3nke8MHCix32y8mXhvDHsqLJpwgRP8RzGyeWKJ9aDjnsIgdmtV1qzuL/8jG4jF4JDNIEKowdnLnkOWlXu2AZgygMHklchYV/fggWhrbC8z3tSurXQpxCqCKJWy7yyXI6Ls79VzhqB+bRjHyi7rWoWekjfaF6bZe2J+pNWFA1Eh1Oj8T+IYwnF9OL7ptkoZG/CCTXyGSYRAwNBvTvH/bukeAK1QAqWPm7A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=3e7c6TNCxBCE0ql2wAEahLkeNJM5+AORZ+vXvnJAZ8U=; b=DArXvALdvsRuaFoi4AriplQQgzU4jYKK+jB76fGh5f/GVJVUV9XRs6C6qUzRKeM+yc5lGOVykC2/kSE1qq685IqXV0h6xFZ50ELKOs95qqGUzo6VdVIa1HgC5h17LwK1qlMc5ipl8VO4bwuixF35Pv8MOZGs9MUFjwJ1ntQHBSKRfnngzhceLCvh5+Jaa4t8w2vT9STHGLOuln+Zj9dBhctdKWdhgfCfOAIr9xtgutJBKQPmSzvFMMwR3RiGDX6ECrb2AqdOxQutFwIMyZF/B/PHbGPOQgRTkMsA9Fmdw/6Ae8n2uBku5KBbpDulz3ZOuA+BE+zNCSfdnC5MbW24Ig==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by SA0PR11MB4720.namprd11.prod.outlook.com (2603:10b6:806:72::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7519.21; Mon, 22 Apr 2024 21:32:54 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::9bf0:5425:d055:42b7]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::9bf0:5425:d055:42b7%4]) with mapi id 15.20.7519.018; Mon, 22 Apr 2024 21:32:54 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: Carl Wallace <carl@redhoundsoftware.com>, Thomas Fossati <tho.ietf@gmail.com>, "hannes.tschofenig=40gmx.net@dmarc.ietf.org" <hannes.tschofenig=40gmx.net@dmarc.ietf.org>
CC: Henk Birkholz <henk.birkholz@ietf.contact>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] Requesting a Nonce from a Verifier
Thread-Index: Adpph2/sCzoh1slqSSKBshTevR+ZrgAArLOAAPUvtwAAnTVbAP//oEQAgAFKSQCAAKvzAIBIslx/
Date: Mon, 22 Apr 2024 21:32:54 +0000
Message-ID: <CO1PR11MB5169BB7D67DE0BD588069186E5122@CO1PR11MB5169.namprd11.prod.outlook.com>
References: <02c501da6987$d2d64490$7882cdb0$@gmx.net> <ecf9ac86-82f2-80b7-160a-bdde42387ef0@ietf.contact> <011b01da6d5e$e30e4e90$a92aebb0$@gmx.net> <a69d9a50-68e6-80c2-e400-f565da746d79@ietf.contact> <5E4A8C93-FC03-4780-9F41-F0CCA559B513@intel.com> <CAObGJnNPc_x691C0s7dEA_ccB0z6mQnN_xo5Ub8JOaD8PBkqgQ@mail.gmail.com> <08510523-D6C2-4F31-B6D5-F3DF1E995A77@redhoundsoftware.com>
In-Reply-To: <08510523-D6C2-4F31-B6D5-F3DF1E995A77@redhoundsoftware.com>
Accept-Language: en-US
Content-Language: en-US
X-Mentions: hannes.tschofenig=40gmx.net@dmarc.ietf.org
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CO1PR11MB5169:EE_|SA0PR11MB4720:EE_
x-ms-office365-filtering-correlation-id: 2ee806bc-5ad4-40df-4f09-08dc6313c525
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0; ARA:13230031|366007|1800799015|376005|38070700009;
x-microsoft-antispam-message-info: X4qYugfMZrhi06Kd3JAI7WB8DZha/yVNmGikMYhoTZpYnzwZTAhqE04MJ2ThXwKDe2Gto2RzG/BNV6tF4xXuSnzxgX91w7DcQAtUnt+ngySJVJWUmW6uCRXkl/eHgGNYWJtgmmqWk6GToxjJezzrm1+dVNR1NW7RzB51OtCFkGvtWqWRdi7poIrmLVHiGsJIySjaI12s+7F+q8uzy3819khJ0VMblRqMHefa15DTmElYIDnSspXt72sJn+/ursFX/rJ73xtntVpbZ4s9oLaQd93bwNPSDJdoftH1T+BQZWDnmxwdu3waUfdYDe3mtb6OG8JyY8kDvmUBJ0Z1XY7FJcgVsjlNqIMQJy7RiL8wHSpRjMPSw7p6hI2/2Mg5jTDBv3CGiINrMIrdscrrxnuel2yHQ774/yTu+8kdMZXJAljOj1eNnCECcPT1QPmozaGycYjReI917+F9vgIg3NHIi0VUxtECX7z3ehWks74Wup5LL8t06hDDIx06kZhLrmv3JJBB93PRQzGBUoA4QrFR5q7bn5JYgKEwMRj+37W3Ca3NqFWLQcYTzb6On17dBZBYb9X6LAQ1rYmNau0X5l/Ays7vLVQQw+l+ZtgWYYJP6QnNv8pZUHBapzFatrQ7ueufeNr5E7nPAF4NieIdTSZxZHRmb53qWUPazoimdZ9+gBEXiBRIWehs+7mY0k42/c2tRmGJybInuJcpeleDNIoyCY1lo3bIBZabiFaunVcMjIhZUB8pR2WoQrxrCyN1Ct2ul76kFTGXRdEClaohJDN4FiRoP6XmH+iUWGTc5g7BMlia/PniYJ9xQxdEUsWE+y/Hj53w21OZgl9QhreLJOGOUoulQhm8IzCLo8y5pPR5q8ftcHXh553nbiIfBgwn8oRT5v16Jcq5D1RQ+Mgoww+5gnbegZ17+hmaEqURoShaIZRz9J5/Vn8Nf4v/wC+YziOdR2MGbQHzMUAZ3tgW5DpuH7WsoR3gRLo2AoITIAyRim6/G395aYuhWFS9nK3Y0tSRO22Pc8gKj04DP7p6NNiPC+h/8C64pivlNUkd9yns1uyk4oDtxL2+VvsSTCiYdq2+11U1EJ3RdpoCgDwAvB648C6GaFlrR03yevAKKkLiX+xsxH5rWzlmLv1nON04NBugw2qQwCND888RUbJgMM1SBaggY0h/MUVquXSOApoCRMFKfLKu2Yn4c0m9KhEJCksd9g3gcCo4DPvfi1P/MH5Cj2gBztLXxVFHGVkJlHmaR0BodhUnkaSansgLfb1rGJnT4skSYvGEybxSPNARyRqImTse0Yk1IN0/rYppW8ROYURa+NKSD2Wsz8hMU4LUDDZK+g48KikjAGKw9FlJP4ugKg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB5169.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(366007)(1800799015)(376005)(38070700009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: xyZpiNfQAcklr5FRj/wFKPsCGpP6jlzJRqvreLlXlTvCknhCtCnMppPwBjn0A94Tt55RsXu4JN1taC4MhlfsZwEsGHwy8HkVxO7HfNxwkoxVtficW69WO5hgft0nE1W+YkZQeLEJ11vKrAsscYaJss+OKBkNe/m2kH0k0IcuxieOFP1GEQgjq4LPbIjctAL1LEoUS9pP9g/CC0iq496BzrbZ7DSP2kDwTC89DzD+Nbg3lWzezORwL0/tMtDjm66KJkkpLfdPVI/PFxPsZwp0TLdY2XS2fwOqcTbzijZULPJ0SknZBvqCaVYzjqaZ4sw/PhvjvdCvb4Lcp2RzhSNKTvalV9oBQ1+Lm6fF6c9Gwb2qVybr/A6bOAWv67iOPh4GYhxQ4Xlgvvk+PWtOX/spbD0x2c6JTNBIqQB+ODD+b2zcihDRhgoOBeGg4JDvZRhwW1FuY+4asM+/nTeiZoK7urkw3Brck+Eunw6HXgammE6YMenCFMi4RLoNH0skLHtjwcey/SRuhbupDwwwpqp1oKGfIe+vWBIrdIz3QLuz6R+AccAO6dDaznfenQ6wIybWD8NEEBfE8eCjskUMswEqQBB/tYEeE3D50z1eXWmhPl1Xx2XU/pe93TFx7H72aLHigV0lXIw8HZSsgfb57aTh9Dtkf8rGY6kVUCAauHkDR5h715BffQ9mQxdgbNXXwZeZZo0Yh82LB73fiJWuwh5kzt0v1sBhqEBxrGrpXJxuc5dyn369gUzeaXRVtpuj3BlQQhBHSW+QAAAAVj8CaakNyxAXuy912ujoms/nvcFjmDSIc4HQbGevO6TaL6lCq9sGK2PaJrFICxTxwjrMJ0cp1xB8oTeRMoPrkhQHoHZiG0GjHWlcNaCI18qf/pmBNidqP9BAsTw+k+ZPFj+PiGb3OLdyxFLaYJak6CYomKOMhwLLRz1F1ibwz/FcY/O0wmEWFoWIQZAeZfbe3Z6mAft5Lfh6sWvC9sOWLwEpoYnZAaw+MIjB5phxt2qEI9ZGVJ1S5w2v7wykZzpunmqYL2qW+ZmmgsF/l/jyBxjvfkfeMpfiRK3QJ42FPojM5m0Mg+d+NNyH9TOho+2FXS3ruYO48M8rpaStcXL3nTm0I3did4+W0z/sQfqz72Moa7ABD11nVo1+tPitaFo0n2peWBGWi8CAKBW3xATvQ2NZcooQ5KMMgh9ez/w7TUFtC5Fcb/+dLWxOvOGvfeqS7zhYjfE3Wifaeve5Fq6W4NgGd3SL9RIo15yGGAwO529SxfReKDMtJCGwdyu2SUH1iXdVCfa4xIebi9D78Dipl3oG97FMcbPc+edJt1L5AChnUht44gXSTT+yrwRW3EJeCvZ0ItE1txBEgTuFEIAmi/WL/EWiZC1zPetxwbitp4VUp+zj6Ap4aTYI597ckwCPly2BMxela2NZrTKSN7G4b0lFVmyxONRGzAQd6rUM4zU3nalBoHplc6a/0+p90cu/EsIwgXWwDe9xL+JTBVVmGlrCnt3nQwqXxXaLCtKpjJfHHJUxB38rym1oIniwoRX9MHj96HBuM/++wfdqSNiP3ZmWSvPnISdqzmhTQK5ZoT2NmNg7xW3RITqMxQ3ayGtCqhgGM1345Q==
Content-Type: multipart/alternative; boundary="_000_CO1PR11MB5169BB7D67DE0BD588069186E5122CO1PR11MB5169namp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 2ee806bc-5ad4-40df-4f09-08dc6313c525
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Apr 2024 21:32:54.2350 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: OWd9RG7vhO4BH0/YncsaOOlY6+6q1R4qsGvAm9ocjn9bNJ9jelcExgHE5mCHitgJaeemM91s5PR2QPgsNwpWBg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SA0PR11MB4720
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/5eVJCLSOtX-4gvWw75i0LKqhiCc>
Subject: Re: [Rats] Requesting a Nonce from a Verifier
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Apr 2024 21:33:02 -0000

@hannes.tschofenig=40gmx.net@dmarc.ietf.org<mailto:hannes.tschofenig=40gmx.net@dmarc.ietf.org> – did you get your questions answered?

  1.  At a minimum, the attester needs to indicate the length of the nonce being requested from the verifier.
  2.  EAT, however, supports also an array of nonces in the nonce claim. Should such a protocol interface allow a request for multiple nonces?
  3.  Furthermore, the Attester may also need to provide information about the Verifier. This is necessary when there are many Verifiers in the system and not everyone of them might be able to successfully verify the Evidence.
  4.  Should the request for a nonce also include information about the attestation technology supported by the attester?

Note that I-D. csr-attestation describes a PKIX deployment where the RA is the RATS relying party and interacts with at least one RATS verifier.

The RATS roles, possibly confusingly, aren’t entities, nevertheless nonces (freshness / recentness) apply to entities in some deployment context. RATS Arch may be insufficient to resolve the freshness recentness architectures.

I think it’s reasonable that the entity requesting Evidence could be integrated with multiple Verifier entities, each expecting some sort of freshness indication. If multiple verifiers supply multiple nonces, then the context for which nonce belongs to which Verifier needs to be preserved.

Question (4) could be a bit tricky since trust in the attester may be understood in terms of Attester composition where one component may depend on another component such as in DICE layering or TPM trust chains. Presumably, Evidence has enough context for Verifiers to decipher Attester composition such that the trust dependencies can be walked to some logically meaningful description of the Attester as a protocol end point. It may be necessary for nonces to have Attesting Environment context too such that freshness of each AE in an Attester composition is knowable.

-Ned

From: Carl Wallace <carl@redhoundsoftware.com>
Date: Thursday, March 7, 2024 at 07:51
To: Thomas Fossati <tho.ietf@gmail.com>, Smith, Ned <ned.smith@intel.com>
Cc: Henk Birkholz <henk.birkholz@ietf.contact>, hannes.tschofenig=40gmx.net@dmarc.ietf.org <hannes.tschofenig=40gmx.net@dmarc.ietf.org>, rats@ietf.org <rats@ietf.org>
Subject: Re: [Rats] Requesting a Nonce from a Verifier
Inline...

On 3/6/24, 11:36 PM, "RATS on behalf of Thomas Fossati" <rats-bounces@ietf.org <mailto:rats-bounces@ietf.org> on behalf of tho.ietf@gmail.com <mailto:tho.ietf@gmail.com>> wrote:


On Wed, Mar 6, 2024 at 5:54 PM Smith, Ned <ned.smith@intel.com <mailto:ned.smith@intel.com>> wrote:
> I'm not sure I understand Hanne's use case. Is the CA doubling as the RATS Verifier?


No, the CA is the RP. The CA trusts one or more verifiers.


>If not, why does one CA need attestation results from multiple Verifiers


I guess it is to support devices that produce composite evidence.

[CW] Or just different types of devices, i.e., iOS devices, TPMs, Android devices, etc.

<snip>

v2.23.0 | Report a Bug | By Email