Re: [Rats] Function of an endorsement relative to evidence
"Eric Voit (evoit)" <evoit@cisco.com> Wed, 08 June 2022 12:59 UTC
Return-Path: <evoit@cisco.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DC587C14F74C for <rats@ietfa.amsl.com>; Wed, 8 Jun 2022 05:59:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.373
X-Spam-Level:
X-Spam-Status: No, score=-15.373 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=mC7Jsn6u; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=cisco.onmicrosoft.com header.b=ogQX3agW
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zYGe_lD3gNip for <rats@ietfa.amsl.com>; Wed, 8 Jun 2022 05:59:53 -0700 (PDT)
Received: from rcdn-iport-3.cisco.com (rcdn-iport-3.cisco.com [173.37.86.74]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 04399C14CF05 for <rats@ietf.org>; Wed, 8 Jun 2022 05:59:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=12678; q=dns/txt; s=iport; t=1654693192; x=1655902792; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=ez3KKhKt3g/AE7OaEDpCGPJxUQJhoeXdFCDzqF63ynk=; b=mC7Jsn6uKOsHYHeShgWJ5btNzACSGN+LxVgA4JF9mFB+6DgjDodH7J9c C7x3NwSt4TvROR2UGkQ1D5szwZkraWUGQdbyoTtpQEhvwNjW5kfab0cPA u8GqquhvYYG7JsmN0LLB5IYaW3TWuGoNgU2HLhyUd5xqLxCLlKSSqfz9g A=;
X-Files: smime.p7s : 3995
IronPort-PHdr: A9a23:7bex1hJ2uiYk8p8TvNmcuWEyDhhOgF28FgIW659yjbVIf+zj+pn5J0XQ6L1ri0OBRoTU7f9Iyo+0+6DtUGAN+9CN5XYFdpEfWxoMk85DmQsmDYaMAlH6K/i/aSs8EYxCWVZp8mv9P1JSHZP1ZkbZpTu56jtBcig=
IronPort-Data: A9a23:LnJU/q3+fLWKeKufYPbD5Zpwkn2cJEfYwER7XKvMYbSIpGtil2lenTNbADbYJb/RMSHyZpovP9PnsQ9E7KZh/KYgFVsx+Dd1EGkiRaHtDt2TdRavb3/Md8SbRk86v5pCZoPKfZBrFXLX9hn2bujtpikh2ajUSrHxAr7JN3EgHAZqRH161k9tx7Nmj4Bk0bBVb+/jVYTa+JyOZTeY5tJUDo41w/nYpBozsKus42JD5FI1NfkW4FKEzXIfBplBKfruJST0a4QFReTSq8QvY12aEsI1x/qmYz+cuu6TnnYiH/iDZGBitlIMA/L42kUb+HRrukoGHKN0hXl/2m3hc+9ZkL2hhbToIesYFvWkdNY1CnG0IAkmVUFyw4IrFFDk2SClI+IqRFO3qxlmJBle0YT1YY+bC0kWnRATAGhlghxuG4uLLLyHpulE3qzPLeHiOIcZ/3pn1zycVK9gSpHYSKKM7thdtNsyrpkRRrCFOYxAMnw2N0+ojx5nYj/7DLozguCpmlH0ciZTrxSeoq9fD237lVQoi+C8bYSKIrRmQu0QxC50vFnu5W3lGTkbOcCRjz2f/RqEhuLJnmXxWZgRFLq85NZxgUHVyHYaFRsWUlW2u7+1hyaWX91bA00P/iMooe0o+VesVMW7VBq9yENoFDZ0t8F4Guk+7kSGzbDZpl/AQGMFVTVGLtchsacLqfUR/gfht7vU6fZH6dV5kU6gy4o=
IronPort-HdrOrdr: A9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: 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
X-IronPort-AV: E=Sophos;i="5.91,230,1647302400"; d="p7s'?scan'208,217";a="1013095670"
Received: from alln-core-11.cisco.com ([173.36.13.133]) by rcdn-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 08 Jun 2022 12:59:50 +0000
Received: from mail.cisco.com (xfe-rtp-002.cisco.com [64.101.210.232]) by alln-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 258CxnUl027885 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Wed, 8 Jun 2022 12:59:50 GMT
Received: from xfe-rcd-005.cisco.com (173.37.227.253) by xfe-rtp-002.cisco.com (64.101.210.232) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14; Wed, 8 Jun 2022 08:59:48 -0400
Received: from NAM11-CO1-obe.outbound.protection.outlook.com (72.163.14.9) by xfe-rcd-005.cisco.com (173.37.227.253) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14 via Frontend Transport; Wed, 8 Jun 2022 07:59:48 -0500
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=UvNcCBS0mGTHbG275A+aOgD2OOs8kqqtDCzfwhycxnMuEEDF5IIDiAArPw8wzWFTwbSCCV8qbfJNntRbCqe4xoIko0Jz6Rr62hkJ7cB1Yh9V3TV63YrKe8r7AN6uKD8RK4pstOKwspaVHYcUsBbRPNIrtn9yPOdFtQUAchd9yU1V4QmRH4VBllidI3VO5+CT83f6VfRs463MtooC7TfpVnV9DClb3XtX5nzkJQbXmHuA1g4sK1prnThnKQv9foEifMR1XpH46WIV5YRCa4F7eEVDa5Xd6mxR5R7OUF8+0mn4P3B65/t2/vBvcGssbK9FvMpfYz+cKiyYIRf3F6jT9A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=clG81R3XtzELKz0in92dwZVWLddQoz4anfTO9y8l4Jo=; b=DQiL1ab9t2o6uGINn6uTS9fKUZOwkqr4uaASjvTwUiWCWm5FhnVS8KziKyQr+EypIuItsTcougvg5nSeT6CJX2hZqyViMSuXHRwwklYH+E/XrfKkkH8K/dIIKBL5hPx5mA1Bd3WEvQ6EO7+jqL83NSaNl6OEgDp/nCfYyKTN9LW/t3vwbQp/pgFmhZ1p7TnvqP4xF4Dcy2spaZlTct/FeVYHdwvO+VE9eG2bjunUhwoqmPhG8LMYjAGe2NY8ZZyjUlPXK6fjUfqYjMDe0spNQiNmX2lS+CuWHyTKg0vVlF5h01TAq/rIDmpMyCTTThHdoXR2vjOCh740bbWCsk336w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=clG81R3XtzELKz0in92dwZVWLddQoz4anfTO9y8l4Jo=; b=ogQX3agWrk1AOUeSDvQU2H30zmOpGpDn3zpH93M8LgegSVra1NYBHAyD+mLteeBxPp3A1f0tZ7zdrfoRLeq1/3GZ+TpGhO7VOviwzajPUAwIkBK2FJZTnBi839pFTXVr+z0rSbEFD+gNor+bT5lbetnvZqRA8dSJ/7pz765c3oA=
Received: from BL0PR11MB3122.namprd11.prod.outlook.com (2603:10b6:208:75::32) by DM5PR11MB1594.namprd11.prod.outlook.com (2603:10b6:4:5::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5314.13; Wed, 8 Jun 2022 12:59:46 +0000
Received: from BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::e88e:3da0:f7a7:86f0]) by BL0PR11MB3122.namprd11.prod.outlook.com ([fe80::e88e:3da0:f7a7:86f0%3]) with mapi id 15.20.5332.012; Wed, 8 Jun 2022 12:59:46 +0000
From: "Eric Voit (evoit)" <evoit@cisco.com>
To: Laurence Lundblade <lgl@island-resort.com>, Henk Birkholz <henk.birkholz@sit.fraunhofer.de>
CC: rats <rats@ietf.org>
Thread-Topic: [Rats] Function of an endorsement relative to evidence
Thread-Index: AQHYed34kmuP0GCjTkyhaoY5550Orq1Fdtkw
Date: Wed, 08 Jun 2022 12:59:46 +0000
Message-ID: <BL0PR11MB3122F2DB02AAD9FCD0966E11A1A49@BL0PR11MB3122.namprd11.prod.outlook.com>
References: <6F919543-37BA-484B-AA7E-BAC3497EB125@island-resort.com> <ee639c74-b365-e127-b4ec-d6f9df0014e6@sit.fraunhofer.de> <3907E124-5080-442C-801C-C14F227687E6@island-resort.com>
In-Reply-To: <3907E124-5080-442C-801C-C14F227687E6@island-resort.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 03f47685-eb6f-426f-bbe1-08da494ec39d
x-ms-traffictypediagnostic: DM5PR11MB1594:EE_
x-microsoft-antispam-prvs: <DM5PR11MB159404CE527B840E3BAAD04DA1A49@DM5PR11MB1594.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR11MB3122.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(86362001)(166002)(2906002)(38100700002)(71200400001)(83380400001)(99936003)(52536014)(4326008)(64756008)(5660300002)(7696005)(55016003)(38070700005)(316002)(122000001)(33656002)(8676002)(66446008)(6506007)(186003)(508600001)(8936002)(66556008)(110136005)(66476007)(66946007)(76116006)(26005)(9686003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 5q1A/FjQ8Eu6X7WGvKUVBeOgPVCTXwV8V38fopcRQzlAzQ1z2bVYBLzXVNQTftzqfh1Hx/MkNBMwzJgntBrHrScskcmlb8HDcjM/Jv/tjj8h3fwJSEb/TaOPFTnoES5VqozLhiTuLpjA3QLtd64xhSYYr+F85QWsC/gqqUXccawBDVF6Nhkl4CRq8b4gThtCgvvEa7yA326QBVCL5Xyij8NVsXKj+lvl1HlmokODhbItpfxYOcUc40BzyJK10fTAVkyo4vHXomG7yLQMM8E2aTNJ1vQlWXfj9GkHXKa2mNvKP0b1kV8XGXQ5Rj1ywoRQeLK6AJbkrAdtFmoWC92uC8Gg/nb94Qfpf/iW7iG3cAyXdmwRy/j5cW2tfedFYaRqU3Nc1SIFCGLqWj7sK5LGpxrcg122QkurKthVuIo9gXwuO+SBbfIoiUwDg2M7WA4t3gdCVTDM/Lszh+vCHioWHtth1VCgLRWzng56Jrjosuw78hlLEdRbWiIKxhvVNST1VXo5CCkRFu2GUWaexn2tCna7DbIPsp4eV5KUcl0EVrA9IUoFX1o1hnJiq1/Y9djx9FVCwsstBvAK0mU5gfwCFijAGvYQ/a8uhbDgZKBC8h3/GSoZ7H7qYyL5EDkvfTGnUbX9sXiBBE1519AIGEGXRc7SCZUwrQ03DK8wqcv34P7Vx0PBowsnDattS6+dMkrKXc9qkr/q8tjvPCrzL6X3VlDEx9ChNtjpJucBz2D0grDoC8MjR1CdB5dqwizUxYfxiGCaVI/DuJnzK4OoY/6jiwwzRudfWsT67a35Vc5gL+rRaYK8VPXS/PGNO1kb03ABhLdH+K/d2bytzqTnI4tBwFgr3kRXilFuwj3pM7H/D6c6YE8pPrN1Mf1Jkr1nhk7B5qeW79FcoBScY3OJIFkMn6gJyPffmBFifrZTaVKFWlo7xjRNKHztBwqqr8qXncdfzHVVo+Dyb3Pp/JNuLu4k1Ps73pOQYwF9FktQMKL1dYSkjepSpL23Oia2SGEtO6yfrOQUcyaMqsfqQPJHzOMmxlci5PxK7dwz/8LOLB4WrNwcknw2wFh92Km0bqtyhvMtAOVdmLNNitlFOC00ShlCf7N+ZdMbmVnnNCOn37O+mO7UH8WwhVZU/8A6ECBKOWxqMoM2hDLmO4IxC9GVjTxtn/FsrCS/20WLTsEvfKCJvAju+hZOqunpAxtcV4kK6t5pd2lWJ9FnGs0J7MqskJY0kFLSjSeMVXQpVepaF3eNTQHsbd+oB/tgfVN/Mo6Cpc/PLLdmjYQoIqVhF87+OD8avS6lJtbEvU3SOCMzs3KFDbYKQd5T2oljJ+S2spmoRjxrKFHyowfcMjiPvx0v0IShi9LImpnlcyTpDCHumuF18kcdlg4r/6SLvRyalFfBA9cu+G13xKtp6+sVdAvhT4cKtFhCyzRRZvW8h7gr2dT6TWCsDd/VUpivrq1YUrrfsh2TL/4cAmNXwZ062hbPaeX5bcPUxPyrq51GckiNhLiE0OBge+owk0mmH6DvQmXO74yRt39ohwgHICLf5fxjhS1zqJF8Hrx1Q1Tv6r8U8dKq5uazUfOsjrBiXy5ZmCR+cbSISIL7zTYKtGDF+n7mgXZTrR/fKyXiOPBiOeShfctc6oqgKb4q7JiFfyv3mBAE1J6GM+phC3JwPldBKBWSU193Us91s8OAUzuBvM0MtvFo0r0ukoZKUIwrb7ZXZGB5jDn3
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="2.16.840.1.101.3.4.2.1"; boundary="----=_NextPart_000_0000_01D87B15.DBE5CDB0"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BL0PR11MB3122.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 03f47685-eb6f-426f-bbe1-08da494ec39d
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Jun 2022 12:59:46.4361 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: PNSrxlwDhMedP3LYLinB+sLpOnAKH15PEJZ+JBSmUuKPDYPHteJaquF/7DedxJfz
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR11MB1594
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 64.101.210.232, xfe-rtp-002.cisco.com
X-Outbound-Node: alln-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/F1tX6vDS2c1f41Zf_BOZFTLL_ZA>
Subject: Re: [Rats] Function of an endorsement relative to evidence
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Jun 2022 12:59:56 -0000
From: Laurence Lundblade, June 6, 2022 3:45 PM ~ Think about these static Attestation claims set by the Attester Manufacturer: OEMID: Set once at manufacturer time and never changes; it is the same for large numbers of devices UEID: Set once at manufacturing and never changes; it is different for each device HW Version and Mode: Set once at manufacturing time and never changes; large groups have the same ID We’re fine with these being set and sent as claims. They don’t have to be in an Endorsement, right? Some of them could be in an Endorsement, but there is nothing wrong with them in Evidence. Of course if they are sent in Evidence, then there has to be an Endorsement that tells the Verifier they can believe these claims in Evidence and the signature on Evidence has to be verified. To me security-level (the static statement of designed security level; see here <https://mailarchive.ietf.org/arch/browse/rats/?qdr=d> ) is pretty much the same as the above claims in the way it is conveyed securely. What ever the outcome for security-level is, I think getting to common understanding of how claims are secured relative to Endorsements is critical to Rats. <eric> The three claims listed above are focused on establishing instance identity. A policy of the Relying Party needs to establish an instance identity to understand the context of other claims. An endorsed security level should be a known function of the instance identity once that identity has been established. Eric LL
- [Rats] Function of an endorsement relative to evi… Laurence Lundblade
- Re: [Rats] Function of an endorsement relative to… Ira McDonald
- Re: [Rats] Function of an endorsement relative to… Michael Richardson
- Re: [Rats] Function of an endorsement relative to… Laurence Lundblade
- Re: [Rats] Function of an endorsement relative to… Henk Birkholz
- Re: [Rats] Function of an endorsement relative to… Smith, Ned
- Re: [Rats] Function of an endorsement relative to… Laurence Lundblade
- Re: [Rats] Function of an endorsement relative to… Henk Birkholz
- Re: [Rats] Function of an endorsement relative to… Eric Voit (evoit)
- Re: [Rats] Function of an endorsement relative to… Michael Richardson
- Re: [Rats] Function of an endorsement relative to… Smith, Ned
- Re: [Rats] Function of an endorsement relative to… Laurence Lundblade