IETF Logo Mail Archive

Re: [Rats] Propose a new event-log-type in CHARRA

Ira McDonald <blueroofmusic@gmail.com> Fri, 28 August 2020 14:08 UTC

Return-Path: <blueroofmusic@gmail.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15B223A0B56; Fri, 28 Aug 2020 07:08:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OINOqi-iP-yi; Fri, 28 Aug 2020 07:08:00 -0700 (PDT)
Received: from mail-ua1-x92f.google.com (mail-ua1-x92f.google.com [IPv6:2607:f8b0:4864:20::92f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B4B43A0B6C; Fri, 28 Aug 2020 07:08:00 -0700 (PDT)
Received: by mail-ua1-x92f.google.com with SMTP id s29so406616uae.1; Fri, 28 Aug 2020 07:08:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=8mzVJNBumB3ZlmivNkN4tMEO/Js3GGVPZj5XeIMT0gU=; b=kTcn8CChJbVTE07LH6JFmEo3qppHgONCNuKLZ3tp4ByiDavAD+n4N0zkB8YpKqrlHp zV30p5ovbvNS/VKGhY0lQVjsIWI0xJ6oZ6GjXHK0oSGIXJpW/mTVPgMoBUg8t6++rz6Z TxS1IhgIaQJBtdWsUryfKoBc5fqqpMkOCmeSHGmMj5NB4NVZetsmBYRLBJa8revcGqA1 HbH8ZdqYzwFzNatDQv0coIZyTvtT6tmGpijUBVZT59aE9FNiagHqcVYxr/5H8NmX2+A3 QQrN3D5QXPRnlJCJzB5YeE3Ebs+OC+FAZ0bctij890rdY7sEYC5s+NjavKkhPy88a679 iM4w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=8mzVJNBumB3ZlmivNkN4tMEO/Js3GGVPZj5XeIMT0gU=; b=kFSHPtd+slO4Miq1SPxTMObVfuWrdnIzQ4YCFUpEDzPITsJ0XDvusc13PIL4OPd1yK sg6nkt7msETzpktBZp4FH0wUT86Q/akJ+8BTMPhkU5hHKSMlGdrnIkdyqHDhO1JHKRKJ 6XLXAghO7OQt9QO7t02nixg34gxgH6wP5sz+nuVH3Y0oWFONWmjgZnkDGaqKZcgC5MQD VVMYfRGVD2RSSfoUf5zxkY2J3ZeaUxA+SnKf6HfRnPng5NJwzdIzwCvxS3qeXtyvQki3 iesAagMCp+IybeNdzfJOqqQTKK2H568ihY/CH++VXy62Pgi7A6qm61XsWEOomJcxaZP1 7GGA==
X-Gm-Message-State: AOAM530BdXhRukKwnMubPfqaEPGp2MPADHffYM4sGIPGU9MimxAkbcL3 Rzf5JL3KM362TdIWX71YPeP5n+70AsUpXkm6Ff8=
X-Google-Smtp-Source: ABdhPJz7+fNnTzgADld+q95DrC3Y98fKU4+D4uXdDr9j8xfkcoJAae8YvnsVCFlJkug4r4YIlcCcd5gipaDdJBR/s3Y=
X-Received: by 2002:a9f:324a:: with SMTP id y10mr254174uad.88.1598623679078; Fri, 28 Aug 2020 07:07:59 -0700 (PDT)
MIME-Version: 1.0
References: <f92d4256061948a3aa89952b912c81e3@huawei.com>
In-Reply-To: <f92d4256061948a3aa89952b912c81e3@huawei.com>
From: Ira McDonald <blueroofmusic@gmail.com>
Date: Fri, 28 Aug 2020 10:07:43 -0400
Message-ID: <CAN40gSubRW5=Sn7niFn5wuZPQOEqZPLicC0_py9SOuMAj1_VZw@mail.gmail.com>
To: "Panwei (William)" <william.panwei@huawei.com>, Ira McDonald <blueroofmusic@gmail.com>
Cc: "draft-ietf-rats-yang-tpm-charra@ietf.org" <draft-ietf-rats-yang-tpm-charra@ietf.org>, "rats@ietf.org" <rats@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000085671c05adf0949d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/AsqINnjoG9Bu88j7V2bIlAtBLc0>
Subject: Re: [Rats] Propose a new event-log-type in CHARRA
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 28 Aug 2020 14:08:03 -0000

Hi,

+1

I've worried about this fragility in RIMs (Reference Integrity Metrics) all
along.

You might be able to fix the boot order of drivers (well maybe not), but you
certainly almost always can't fix the load order of applications and
libraries.

Cheers,
- Ira


*Ira McDonald (Musician / Software Architect)Co-Chair - TCG Trusted
Mobility Solutions WG*

*Co-Chair - TCG Metadata Access Protocol SG*








*Chair - Linux Foundation Open Printing WGSecretary - IEEE-ISTO Printer
Working GroupCo-Chair - IEEE-ISTO PWG Internet Printing Protocol WGIETF
Designated Expert - IPP & Printer MIBBlue Roof Music / High North
Inchttp://sites.google.com/site/blueroofmusic
<http://sites.google.com/site/blueroofmusic>http://sites.google.com/site/highnorthinc
<http://sites.google.com/site/highnorthinc>mailto: blueroofmusic@gmail.com
<blueroofmusic@gmail.com>(permanent) PO Box 221  Grand Marais, MI 49839
906-494-2434*


On Fri, Aug 28, 2020 at 9:53 AM Panwei (William) <william.panwei@huawei.com>
wrote:

> Hi authors, all,
>
>
>
> We’ve proposed a new attested-event-log-type in the Github (PR#5
> <https://github.com/ietf-rats-wg/basic-yang-module/pull/5>) a while ago,
> but unfortunately there is little discussion about it. This is also
> mentioned at IETF 108 meeting. I think it might be better to bring this
> topic to the mailing list and give more description about it.
>
> The blue part below is the format of the new type of log that we propose.
> It literally looks somewhat similar to the IMA log format, because it uses
> part of the IMA’s concepts in the devices boot measurement.
>
> When the device boots, it needs to load/execute a lot of files, but the
> order in which these files are loaded/executed is not deterministic or hard
> to keep fixed, so it’s difficult to give an accurate reference value.
>
> The method to overcome this difficulty is below:
>
> 1. The Attester measures each file before execution, extends the hash
> value of the file into PCR, and records the measurement information of the
> file in the log.
>
> 2. When doing the remote attestation, the Attester sends the final values
> of the PCRs and the detailed logs to the Verifier.
>
> 3. The Verifier has a list of reference values for all files. It compares
> the hash value of each file recorded in the log with the corresponding
> reference value. If all files’ hash values match with their reference
> values, then the Verifier extends the hash values one by one according to
> the order recorded in the log, gets the final value, and compares the final
> value with the PCR value sent by the Attester.
>
> Based on this method, we propose the new type of log. Any thoughts?
>
>
>
> +--ro output
>
>    +--ro system-event-logs
>
>       +--ro node-data* []
>
>          +--ro tpm-name?     string
>
>          +--ro up-time?      uint32
>
>          +--ro log-result
>
>             +--ro (attested-event-log-type)
>
>                +--:(bios)
>
>                |  +--ro bios-event-logs
>
>                |     +--ro bios-event-entry* [event-number]
>
>                |        +--ro event-number    uint32
>
>                |        +--ro event-type?     uint32
>
>                |        +--ro pcr-index?      pcr
>
>                |        +--ro digest-list* []
>
>                |        |  +--ro hash-algo?   identityref
>
>                |        |  +--ro digest*      binary
>
>                |        +--ro event-size?     uint32
>
>                |        +--ro event-data*     uint8
>
>                +--:(netequip-boot)
>
>                |  +--ro boot-event-logs
>
>                |     +--ro boot-event-entry* [event-number]
>
>                |        +--ro event-number               uint64
>
>                |        +--ro filename-hint?             string
>
>                |        +--ro filedata-hash?             binary
>
>                |        +--ro filedata-hash-algorithm?   string
>
>                |        +--ro file-version?              string
>
>                |        +--ro file-type?                 string
>
>                |        +--ro pcr-index?                 pcr
>
>                +--:(ima)
>
>                   +--ro ima-event-logs
>
>                      +--ro ima-event-entry* [event-number]
>
>                         +--ro event-number               uint64
>
>                         +--ro ima-template?              string
>
>                         +--ro filename-hint?             string
>
>                         +--ro filedata-hash?             binary
>
>                         +--ro filedata-hash-algorithm?   string
>
>                         +--ro template-hash-algorithm?   string
>
>                         +--ro template-hash?             binary
>
>                         +--ro pcr-index?                 pcr
>
>                         +--ro signature?                 binary
>
>
>
> Regards & Thanks!
>
> Wei Pan
> _______________________________________________
> RATS mailing list
> RATS@ietf.org
> https://www.ietf.org/mailman/listinfo/rats
>

v2.23.0 | Report a Bug | By Email