Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

Giridhar Mandyam <mandyam@qti.qualcomm.com> Thu, 02 June 2022 18:54 UTC

Return-Path: <mandyam@qti.qualcomm.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BC1E0C14F746 for <rats@ietfa.amsl.com>; Thu, 2 Jun 2022 11:54:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.009
X-Spam-Level:
X-Spam-Status: No, score=-2.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=qti.qualcomm.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5baLo8DUst-w for <rats@ietfa.amsl.com>; Thu, 2 Jun 2022 11:54:53 -0700 (PDT)
Received: from esa.hc3962-90.iphmx.com (esa.hc3962-90.iphmx.com [216.71.142.165]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D1F77C14F745 for <rats@ietf.org>; Thu, 2 Jun 2022 11:54:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=qti.qualcomm.com; i=@qti.qualcomm.com; q=dns/txt; s=qccesdkim1; t=1654196092; x=1654800892; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=Djw0+FBNVwSCR/PhjmXz90bAxRrF4XCUkiPG7L9YJqc=; b=oTSnJFL6pP1j2A1EuLgN+SGdm2dp5/ER+C8PONNk6EnChcclbCSxy31G OopFT8LT0Kj7uj/1nIE0mT6r1mw5DY+40ADfoBPij7IWFcluFVlm9/ZH7 +y695zsXTFKR/cj/vdMvCoR/pAzaRtQIKR1gA3QzGXTSyPI/xZO+cGlMI k=;
Received: from mail-dm6nam10lp2106.outbound.protection.outlook.com (HELO NAM10-DM6-obe.outbound.protection.outlook.com) ([104.47.58.106]) by ob1.hc3962-90.iphmx.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 02 Jun 2022 18:54:50 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FSzZlYmpbzK7nax/UR43xgWk6EUGnV/qm2pPoz153sdbrn4zgt4wY9bbuH4AEAcuScA5S59AfrVbvbHdv10m7ajxFFbJDZaOJsiyKBcVXCHYz2pypDbb+eeQMbi8ZKsliyOJ6z6GS+9hT307cAhe7itWlGLmw4umHX+30gNHPOQpulj3/llwJl++bW2ZWTQsRYO0KgiahReVedyNT1IIb7fVVNocpFi8M3pYxeWXTngETwuo6dPTrpmT+je6dDSgAaRDRf42JjCtZ4mlni/e8Hckw5kv5Ai2Cii+aq5m4TDOA/gwpys9BzjQe1LxgWUpYKI1GS46/rs1voc5ni3kWA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Djw0+FBNVwSCR/PhjmXz90bAxRrF4XCUkiPG7L9YJqc=; b=blmmzJeFROQeQhCtTz5qxpZ7XGaHT/QPJdSXjDDPPLumU1FsFfmiXNENn8DhZ1QIwBfW6+jQ37Hao8sv5PwSepjM2A5IJa3W1rJcbs5W3szJ7qhZhelQ/JTr1LnVQzF9nig9U+KHEdnZr0PK1NA57AQxFuUsN9LJnRZRNHNz0rlRhny1SnHnA06Qpbanr4uvRddiE50MxRnCbcIYBYGWoHyAJtWjiHYLjqJch3OCEUhf7XH3Gf7+6VUU2eISa1A6kb0YI1I4vReINIPKSdML20Znyh8zXLTNfXDg8brSNgvaoVSAxJ+k00iK3jRX3TKbQ7PnnIOyjObHB1/NcjAcow==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=qti.qualcomm.com; dmarc=pass action=none header.from=qti.qualcomm.com; dkim=pass header.d=qti.qualcomm.com; arc=none
Received: from SJ0PR02MB8353.namprd02.prod.outlook.com (2603:10b6:a03:3e4::7) by SN6PR02MB4557.namprd02.prod.outlook.com (2603:10b6:805:b4::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5314.13; Thu, 2 Jun 2022 18:54:48 +0000
Received: from SJ0PR02MB8353.namprd02.prod.outlook.com ([fe80::416:c75d:6a2a:9e19]) by SJ0PR02MB8353.namprd02.prod.outlook.com ([fe80::416:c75d:6a2a:9e19%4]) with mapi id 15.20.5314.013; Thu, 2 Jun 2022 18:54:48 +0000
From: Giridhar Mandyam <mandyam@qti.qualcomm.com>
To: Laurence Lundblade <lgl@island-resort.com>
CC: "Smith, Ned" <ned.smith@intel.com>, Thomas Fossati <Thomas.Fossati@arm.com>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
Thread-Index: AQHYdNVRnQv5QhI8fk6S4mzhbTb46a05NHiAgAAvSJCAABRlAIAAJvKAgACW7ACAAGELgIABhEeAgAAAb5CAADgVAIAAC4XwgAAMMQCAAAEvgIAAC5gAgAABYkE=
Date: Thu, 02 Jun 2022 18:54:48 +0000
Message-ID: <SJ0PR02MB835306432AD51285C0BE2ED581DE9@SJ0PR02MB8353.namprd02.prod.outlook.com>
References: <45618431-7329-4F31-941F-A39BBC9D575F@cisco.com> <DB9PR08MB65241E9E259EBBD532480E469CDC9@DB9PR08MB6524.eurprd08.prod.outlook.com> <30BB98D4-8CC0-4EA3-BB89-9F95DC6F2CA8@island-resort.com> <SJ0PR02MB83533D9FAAA5C935EFFE2BED81DC9@SJ0PR02MB8353.namprd02.prod.outlook.com> <D6FBA9E8-EAF5-4D43-831E-4F11EEF56AC1@intel.com> <D4DFCC84-43A9-45F1-86CC-577665206643@island-resort.com> <DB9PR08MB6524A23DF4EF603E60641C449CDF9@DB9PR08MB6524.eurprd08.prod.outlook.com> <SJ0PR02MB8353B3CAE4C2216DE827919D81DF9@SJ0PR02MB8353.namprd02.prod.outlook.com> <DB9PR08MB6524EF37525128BB58E914CB9CDE9@DB9PR08MB6524.eurprd08.prod.outlook.com> <SJ0PR02MB8353C0333529F58051E3B10581DE9@SJ0PR02MB8353.namprd02.prod.outlook.com> <55C9F1B1-2CEA-472B-B382-AC05D895DA91@intel.com> <SJ0PR02MB835304C36B39B3525C796BD881DE9@SJ0PR02MB8353.namprd02.prod.outlook.com> <5E039620-34C2-422D-922B-020AB7C31491@island-resort.com> <SJ0PR02MB8353D0B4948BC1DDE65BAAA981DE9@SJ0PR02MB8353.namprd02.prod.outlook.com> <294605B0-56EA-491D-A8E1-4C6042726BC2@island-resort.com>
In-Reply-To: <294605B0-56EA-491D-A8E1-4C6042726BC2@island-resort.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=qti.qualcomm.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: d82bfbf5-453f-49c5-6266-08da44c95e01
x-ms-traffictypediagnostic: SN6PR02MB4557:EE_
x-microsoft-antispam-prvs: <SN6PR02MB455715AF9217172CBD30C61081DE9@SN6PR02MB4557.namprd02.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: KKPm4NMvgIBSTiEKuISj9IWEo9gyNysz8RWSWH5nxvlSdQ90t1mgjcg1qGJqTG6/vpYtGQVdWA7CmYafNP9NGlMPpuPreBRcuVR/rML/djGrGnrtfSJicIy30p8YWtD+NkxF+U0aIu0IFg+AQy05m+1j1exngLTJkYRyJ+56IhGnIoG68qtYdX2A6tjSM27QCVOzWv8xVawWAiTuYNKs5hKneWlQlwcYm+DGhO3fxM7+IWtbKcASG9QEfJC2oJcT6tZ78cS2KWgTWZ2kBGd1VxxM0T8NX65fKMNOU2jZgH2pEAuZLmE/oIdXdlerEJqdb3U6evqlgG7EQ9hDqrW3femwhJg0XpXI7OXyx3KKFWeUF8AMtUxpfmt8WIz18RX9JSe0lrqS6JADWift7BWojwzfHjZDLnT1DMXAFT5YAUZdqyzd6f52dysbjbyEoicnA1vS3B3Si9858SB1jw0n2T5xjwkAaUwvT7qMP9HItgYHzPTojR5EFg6pnERZjcADVv0E4oLmosfvPDENBMdFWeFNGdY91tqjiZ/Iss6vPinu62NUmz3De3d1H1AKRbGLqZlq/Y0m+al0Bwb2+HggW5a3GRqvVOK8Qdxl5v66VYKTqfvmJA9ioTzcgYizywDwC2MtOsvgbIc3M8A7nDuG6cWz3KVjQSO49O9C1migOo9BTKtmhJ2ciSQfj4N++lDSFHSV+Za9mz52ifidzVahMf9nKL/XaV3Vh5zld2OjVnxohBiuE8gB/diAsveWTlNXAOIZ3W2PCv1DK7KWsplM+HtVwAd2+2pwFTF0ETbeNSLprbjTovFaKjEjg3K9zxnpQup870lD7pNhwhqmNRNg8CCtVmYuA1XKyXev2FDfoUeNCfkhlZ1mDvSUAdFqPcfv
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR02MB8353.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(38100700002)(166002)(52536014)(8936002)(71200400001)(966005)(5660300002)(2906002)(38070700005)(508600001)(122000001)(76116006)(8676002)(53546011)(83380400001)(4326008)(316002)(186003)(54906003)(7696005)(9686003)(6916009)(26005)(6506007)(66476007)(64756008)(66556008)(66446008)(66946007)(86362001)(33656002)(55016003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_SJ0PR02MB835306432AD51285C0BE2ED581DE9SJ0PR02MB8353namp_"
MIME-Version: 1.0
X-OriginatorOrg: qti.qualcomm.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR02MB8353.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d82bfbf5-453f-49c5-6266-08da44c95e01
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jun 2022 18:54:48.2454 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 98e9ba89-e1a1-4e38-9007-8bdabc25de1d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: rQWaxb3MBewgT/uPLSGqKkddMPfonO85zW1iDy1zhNkDUbgGCr4VnVw4ESe8P7oydEK9t4nES8BYPeIXykZNx5zuArJ/9Z+CybB2NG6iNBs=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR02MB4557
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/Y5xLCuMzUEmpu8BLwb14b_V63y0>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jun 2022 18:54:57 -0000

>To be very clear - I am opposed to any modifications to the EAT draft to include a profile registry in order to get done soon.

So am I. Note that I never suggested the above.   See below from my previous email.

>>Note that his registry was created completely separate from the underlying specification (https://www.w3.org/TR/webauthn-2/) – so we don’t need to hold up EAT while the issue of a profile registry is resolved based on this example as precedence

-Girj

________________________________
From: RATS <rats-bounces@ietf.org> on behalf of Laurence Lundblade <lgl@island-resort.com>
Sent: Thursday, June 2, 2022, 11:46 AM
To: Giridhar Mandyam <mandyam@qti.qualcomm.com>
Cc: Smith, Ned <ned.smith@intel.com>; Thomas Fossati <Thomas.Fossati@arm.com>; rats@ietf.org <rats@ietf.org>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

To be very clear - I am opposed to any modifications to the EAT draft to include a profile registry in order to get done soon.

I’m personally neutral on an EAT profile registry in the long run.

I would prefer to postpone the discussion of a profile registry until 1) someone publishes a draft proposal and 2) until after EAT is done so we don’t suck up oxygen here that can be used for getting EAT done.

LL


On Jun 2, 2022, at 11:05 AM, Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>> wrote:

That covers identifiers – not whether a profile as specified is valid or not.  Registry expert review is meant to assess more than just uniqueness of the ID.

-Giri

From: Laurence Lundblade <lgl@island-resort.com<mailto:lgl@island-resort.com>>
Sent: Thursday, June 2, 2022 11:00 AM
To: Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>>
Cc: Smith, Ned <ned.smith@intel.com<mailto:ned.smith@intel.com>>; Thomas Fossati <Thomas.Fossati@arm.com<mailto:Thomas.Fossati@arm.com>>; rats@ietf.org<mailto:rats@ietf.org>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)


WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros.

We picked URI and OID as identifier for profiles so we don’t need a registry for profiles. They are both globally unique (because they have their own registry-like system for uniqueness).

LL



On Jun 2, 2022, at 10:27 AM, Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>> wrote:

I have one experience with creating an IETF registry from scratch:  https://datatracker.ietf.org/doc/rfc8809/.  Note that his registry was created completely separate from the underlying specification (https://www.w3.org/TR/webauthn-2/) – so we don’t need to hold up EAT while the issue of a profile registry is resolved based on this example as precedence.

Regarding the above-referenced specification, before it was even proposed the following took place:


  1.  Well-established rules for what constitutes a valid extension/attestation were laid out in a specification (in this case RFC 8809, but derived from practices laid out in the W3C Webauthn Spec)
  2.  A team of individual expert reviewers were clearly identified
  3.  An AD was identified to shepherd the above draft to completion
  4.  There were a set of defined attestation/extensions to seed the registry (from the W3C spec)


We can follow the same approach, with the following:


  1.  If we feel the profile guidance is insufficient in EAT, it can be revisited in a separate registry doc.  This could govern certain minimum criteria (e.g. CBOR EAT’s should follow header/payload/sig format and are not extensible)
  2.  Expert reviewers at a minimum could be drawn from EAT editors/contributors
  3.  AD:  I assume we can get someone’s attention for this
  4.  Seeding:  Examples include PSA-Token or the FDO EAT profile


-Giri

From: Smith, Ned <ned.smith@intel.com<mailto:ned.smith@intel.com>>
Sent: Thursday, June 2, 2022 9:35 AM
To: Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>>; Thomas Fossati <Thomas.Fossati@arm.com<mailto:Thomas.Fossati@arm.com>>; rats@ietf.org<mailto:rats@ietf.org>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros.
>the profile definition addresses interop
Section 7 suggests that a profile can take on many forms. The EAT draft accommodates this by offering a way to reference the profile document (or whatever it happens to be). I interpret Thomas’s point that “the claims-set is governed by the CWT Claims registry, whilst the EAT type system has no
such mechanism (yet)” to mean there isn’t a profile yet defined that operates like a global registry.

It seems IANA is being used as the global registry for code point names/values currently. IANA CBOR registry could be used for CBOR top level EAT structures, but such equivalent exists for JSON structures.

However, it seems some EAT CBOR structures that could be considered ‘top level’ don’t currently have IANA CBOR registry entries.

Is the way forward for EAT draft to create IANA CBOR tags for top level EAT structures?

Thx,
Ned

From: RATS <rats-bounces@ietf.org<mailto:rats-bounces@ietf.org>> on behalf of Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>>
Date: Thursday, June 2, 2022 at 6:20 AM
To: Thomas Fossati <Thomas.Fossati@arm.com<mailto:Thomas.Fossati@arm.com>>, "rats@ietf.org<mailto:rats@ietf.org>" <rats@ietf.org<mailto:rats@ietf.org>>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

>> I think the underlying data structures make it extensible, independent of the CDDL notation.  However if an implementor chooses to extend EAT without an accompanying standard as a result, then interoperability may not be assured.  Therefore it is in an implementor’s interest to define a standard if they are seeking interop.

>The core difference is the extensibility story for the claims-set is governed by the CWT Claims registry, whilst the EAT type system has no such mechanism (yet).

I don’t agree:  the profile definition addresses interop – see https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat#section-7.  Up to this point, no-one has objected to the way profiles are defined in the specification, nor the lack of a registry.

-Giri

From: Thomas Fossati <Thomas.Fossati@arm.com<mailto:Thomas.Fossati@arm.com>>
Sent: Thursday, June 2, 2022 6:13 AM
To: Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>>; rats@ietf.org<mailto:rats@ietf.org>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros.
> Giridhar Mandyam <mandyam@qti.qualcomm.com<mailto:mandyam@qti.qualcomm.com>> wrote:
> I think the underlying data structures make it extensible, independent
> of the CDDL notation.  However if an implementor chooses to extend EAT
> without an accompanying standard as a result, then interoperability
> may not be assured.  Therefore it is in an implementor’s interest to
> define a standard if they are seeking interop.

The core difference is the extensibility story for the claims-set is
governed by the CWT Claims registry, whilst the EAT type system has no
such mechanism (yet).




IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
_______________________________________________
RATS mailing list
RATS@ietf.org<mailto:RATS@ietf.org>
https://www.ietf.org/mailman/listinfo/rats