[Rats] TPM-based attestation
Guy Fedorkow <gfedorkow@juniper.net> Fri, 17 July 2020 16:07 UTC
Return-Path: <gfedorkow@juniper.net>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 558683A0821 for <rats@ietfa.amsl.com>; Fri, 17 Jul 2020 09:07:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=Ap4Qotqn; dkim=pass (1024-bit key) header.d=juniper.net header.b=QWHUreQC
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vrjkzV_5fSsx for <rats@ietfa.amsl.com>; Fri, 17 Jul 2020 09:07:19 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B90773A0979 for <rats@ietf.org>; Fri, 17 Jul 2020 09:07:08 -0700 (PDT)
Received: from pps.filterd (m0108163.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 06HG2fcg016607; Fri, 17 Jul 2020 09:07:06 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : content-type : mime-version; s=PPS1017; bh=QBsj1cqn732Kaxk4iw8HU8tq9eJm9MXCkChhw5Ff+UE=; b=Ap4Qotqn7IyUykPNczkxn6fYVxO01UvuMSBQS1MuvxFO61J88zZdESctIzSRx2InRfHB 176Y/5m6wvw7reu4RIcH7oR1WmDBy1IG9ibdz9dKabS2+1GpzE4eB4frR+Fe10ihZbiW bexgBQOGjpbGf4JgNNi/paojRzgNuRqGpT1/7b0mcY6TNRVcm9EsUyVw6Y8XbDDCsDSx uVekhU5whNLhxu0EIFc4ABRPpRRYIf5KcwXLNckdKctNXPz25s0uaqWhTlHrv6VdqkNS x305XkUhOEzUo36oq+gLg7z9jnMxVvYNPAStapQS51bcKtSB1FJTxZYgfhy0m39RIR5i wg==
Received: from nam10-bn7-obe.outbound.protection.outlook.com (mail-bn7nam10lp2104.outbound.protection.outlook.com [104.47.70.104]) by mx0b-00273201.pphosted.com with ESMTP id 32a8n7bqgk-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Fri, 17 Jul 2020 09:07:06 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=aA0QI6Cl3tM7pybg22WONapcjbSDLzp8xFhoBh7hf79Dpz4GV53+CpyJt9bEovxiUyYOVdCIViZ0ZD7Rr5rUx6e5ecx4YhMlCbml1eLUOom+Wffjgth4OfnHhjHGQVkisVT3+tWQ+AKp7inX3KCsyAuLpsGC9eEy7CtX3wxzTEorBGErVZdN06qDkdZRrf+MEuhCBQsBjNR7h+cJJSpqC8hjNoQ5O/OQvVvxFCNFsOK69VE1/EXlwVgGzgCcL5LnKnkcwdSR84OHtWXfQOQevUNAPVAfOMQRsXCOpUqbBr1O4CkzY/hhijSfL2GdXT16KH2QRaMV5fOPA2vpQV2q3A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QBsj1cqn732Kaxk4iw8HU8tq9eJm9MXCkChhw5Ff+UE=; b=Mt/TYmeYgHTIT0s8mSirZESrEFJSeJ3JEHGmWTebqpZBsSJiu/VQgvdHKRpHRb/7tOYhjWD/Whl7HKhXXQPXf07NAQkYb5nYO9h7XrdgzTlodcNiuLUi0An2dQ6glkSBvaLN16CmGicS7LYJPlkNAjaQNFAi3mmqFxU1A8AL2bsdcbciCde+V/OOPd2hM3B+3LisrGL3fsfJUAYjAsPLOcVFNtNywk0fdKGgJwTvYe83Sm/slACj5LNSDUv3uXZGurLzQbk2KQM69yiQ2t/Q9kySB2PFtMFH1QjG7ijiQUEbGVOJwrhAOWnGOu/WTScmhjknllBE6uiCUksS1xr7HA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QBsj1cqn732Kaxk4iw8HU8tq9eJm9MXCkChhw5Ff+UE=; b=QWHUreQCMKtfQClhMrf1GomWC1twpYmNgIVBo6HL5qZP5AMfd0y9RXtnZP9fmldTbKuYI1Pxus7z+QHTalMrB9zjHNLpXNvwdNV1ydW2DqGuSiby2S7oTNgTIhdOmgfIbEtfronJnTooE1wyciKr/ci0PaTIay3BwxzlTTLI1ew=
Received: from DM6PR05MB6889.namprd05.prod.outlook.com (2603:10b6:5:204::22) by DM5PR0501MB3910.namprd05.prod.outlook.com (2603:10b6:4:77::33) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3195.9; Fri, 17 Jul 2020 16:07:04 +0000
Received: from DM6PR05MB6889.namprd05.prod.outlook.com ([fe80::f5ae:e4dc:9e61:d5f5]) by DM6PR05MB6889.namprd05.prod.outlook.com ([fe80::f5ae:e4dc:9e61:d5f5%5]) with mapi id 15.20.3195.022; Fri, 17 Jul 2020 16:07:04 +0000
From: Guy Fedorkow <gfedorkow@juniper.net>
To: "rats@ietf.org" <rats@ietf.org>
CC: "Eric Voit (evoit)" <evoit@cisco.com>, "jessica.m.fitzgerald-mckay.civ@mail.mil" <jessica.m.fitzgerald-mckay.civ@mail.mil>
Thread-Topic: TPM-based attestation
Thread-Index: AdZcVDyk1dTscE8WTAG3E3Vf2bzwMw==
Date: Fri, 17 Jul 2020 16:07:04 +0000
Message-ID: <DM6PR05MB6889E8CFDC6AF2B311DD29DDBA7C0@DM6PR05MB6889.namprd05.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.5.0.60
dlp-reaction: no-action
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [66.129.241.10]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: a7007779-dffb-4113-da93-08d82a6b729f
x-ms-traffictypediagnostic: DM5PR0501MB3910:
x-microsoft-antispam-prvs: <DM5PR0501MB39102860E0C4B7CE55F5E131BA7C0@DM5PR0501MB3910.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 4HCzq+KjkPn5OaAIX8nOD11NjqSZE1x3WVgwvvDKi0RYbP3ZsOE69SMNVlcVt2kxuaenMEzRpqTMgQWBhuVcOM78gjuHnycBfTSLFbPTznZwpCLcL+pLIvsrcKynl4JYLp+0sYE+rixzLobhqAXaYQjrCEBrPJiUBS/P1OPfFJpqWttwIJZEOrWQhErCUX6OCsuNi+LC0EUeCr493tzBTXSXbZ5X/ELui5n6frgweL+ZyFmf5Y+ip2IingvIb/vTHlnzO2A64RmI1xDBUx9vhtnlaoW34r33F3X75Ir+h/KR5WMBCbCCVRIDXbv9FEHdOIFD7iRi3TWusDv3dukpQNvFSZuuZSKoQdyh/gT/TzBQL8GczB380iRpc+2hc7R/n5Vm/Mtr7sHr4AA1ArsRKg==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR05MB6889.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(396003)(346002)(136003)(366004)(376002)(39860400002)(5660300002)(33656002)(9686003)(52536014)(8936002)(966005)(26005)(186003)(4326008)(6506007)(83380400001)(54906003)(66446008)(166002)(2906002)(66946007)(76116006)(8676002)(4744005)(55016002)(66476007)(7696005)(66616009)(64756008)(66556008)(3480700007)(316002)(478600001)(99936003)(86362001)(6916009)(71200400001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: J+IgArk7fKxXPki8h1p7jg6/1vcLSRwLzklllKI2HeDD6o1wQxe4exiwP1LvEav6yLCyg48NvwtPmMR5453kMb+1t+IyK7JajFtMf36EJFqHvyFqJ7rYYD6FRGHmTgoKcljFu9VO4WKI2oxZd1uuDhjx2RZxsjsgtotgAqt1FQP4IKOQhgFP958VDyVsSqAO2g+z2vJnLlxq25RWa1Od+mnKNffx3G0HxycBPgawof5xi2n3f4uBe5ftQA1hAz+7nk+xYIhV58Ae7UxmqolPI/fK6d9Nnwln/D3Z4gx7M2ab9WGsadE8CxTh0xB05tZ8AXoi3vQmesISK1KPxXBwchpLIeuD3/emhEwnwFFIwtVayP6QUxXXmjOTBTZd5CejixixeVpxDPWy7N4uRTbj4NJ8sQZrdVLI76a/ovjpN6O3gCpVyIwkdKKA5Wpk9C7gCQmohUHi0jFPdVzuz9Cvhgdb92ixkzFOKV496UWE3RA=
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_0090_01D65C32.C7D98590"
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR05MB6889.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a7007779-dffb-4113-da93-08d82a6b729f
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Jul 2020 16:07:04.4621 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: SKt/ttmFBYU9O0G+8oWrVU1YgTyI6srZrboFbQ20xK823yVtqydumtjQGOLZmPe6maaxJD+KLqHq+0mW0qV05A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR0501MB3910
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-07-17_08:2020-07-17, 2020-07-17 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 lowpriorityscore=0 mlxlogscore=968 phishscore=0 adultscore=0 clxscore=1015 impostorscore=0 spamscore=0 malwarescore=0 priorityscore=1501 mlxscore=0 suspectscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2006250000 definitions=main-2007170115
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/6MD-Lh6SvZtB0J836aMrsoQ6Opk>
Subject: [Rats] TPM-based attestation
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Jul 2020 16:07:21 -0000
We've checked in an updated copy of https://tools.ietf.org/html/draft-ietf-rats-tpm-based-network-device-attest- 02 and expect to have a short slot to discuss the modest changes during IETF 108. I think the doc will need another pass to align the terminology with the RATS Architecture. Henk, Ned, can you suggest when you think the terminology in the Arch doc will be settled enough to make it worth reviewing that specific topic/ And if anyone sees topic areas that the document is not currently addressing properly, please let us know. Can't change it before IETF 108, but if there are suggestions, we should discuss them on the July call. Thanks! /guy
- [Rats] TPM-based attestation Guy Fedorkow