Re: [Rats] Supply Chain Attestation (was Re: 3 Use cases)
Michael Richardson <mcr+ietf@sandelman.ca> Tue, 08 October 2019 06:51 UTC
Return-Path: <mcr@sandelman.ca>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 784691200B5 for <rats@ietfa.amsl.com>; Mon, 7 Oct 2019 23:51:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.436
X-Spam-Level: *
X-Spam-Status: No, score=1.436 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_SBL_CSS=3.335, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Slhsji45AeHS for <rats@ietfa.amsl.com>; Mon, 7 Oct 2019 23:51:50 -0700 (PDT)
Received: from relay.sandelman.ca (relay.cooperix.net [IPv6:2a01:7e00::f03c:91ff:feae:de77]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E737E12000F for <rats@ietf.org>; Mon, 7 Oct 2019 23:51:49 -0700 (PDT)
Received: from dooku.sandelman.ca (unknown [46.183.103.8]) by relay.sandelman.ca (Postfix) with ESMTPS id DDA9A1F456 for <rats@ietf.org>; Tue, 8 Oct 2019 06:51:46 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id E48F91207; Tue, 8 Oct 2019 08:52:09 +0200 (CEST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "rats@ietf.org" <rats@ietf.org>
In-reply-to: <b7dd0b78-9e85-0f9e-9549-0019ce1cea34@sit.fraunhofer.de>
References: <HE1PR0701MB2267E23FFE8FF91F5DAC6FD58FCF0@HE1PR0701MB2267.eurprd07.prod.outlook.com> <1882.1570451614@dooku.sandelman.ca> <CAHbuEH6=O7zwyKD3-NAG=128dFtd7BVZ0QKEPTUcCLmJeenEGg@mail.gmail.com> <b7dd0b78-9e85-0f9e-9549-0019ce1cea34@sit.fraunhofer.de>
Comments: In-reply-to Henk Birkholz <henk.birkholz@sit.fraunhofer.de> message dated "Mon, 07 Oct 2019 20:45:12 +0200."
X-Mailer: MH-E 8.6; nmh 1.6; GNU Emacs 24.5.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Date: Tue, 08 Oct 2019 08:52:09 +0200
Message-ID: <18346.1570517529@dooku.sandelman.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/HG6B4JAWU3LORvCuNRgj-3rnd5I>
Subject: Re: [Rats] Supply Chain Attestation (was Re: 3 Use cases)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Oct 2019 06:51:52 -0000
Henk Birkholz <henk.birkholz@sit.fraunhofer.de> wrote: > That brings up an interesting topic. > If you want to nest objects/maps in EAT, do you have to define a separate EAT > for each layer or can you define nested (potentially multiple) sub-structures > as a single EAT flavor/specification? Like a "required nesting that is > predefined". And there are two ways to do this. A: (eat (eat (eat (eat X)))) B: (eat (eat) (eat) (eat) (eat)) And they aren't mutually exclusive, either: C: (eat (eat (eat) (eat (eat))) (eat)) (A) above is the where there are multiple layers of Supply Chain, and each is made up ofaggregated things. (B) is where one takes a few different assemblies together. For instance: Door assembly system + 6 chair-systems => train compartment 4x train compartments + 40 open-seats + bathroom + 4 outer-door systems => wagon 11 wagons 1->11 => ICE 802 I'm not in favour of arbitrary ways to do things as I think it will be too difficult for relying parties to understand. I look at the incredible difficulty that XPATH interpretation of XML and HTML documents presents. On the other hand, I'd want the system to be sufficiently maleable to not instantly break because a sub-assembly changed sub-sub-suppliers. I don't have a good answer here. -- Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works -= IPv6 IoT consulting =-
- [Rats] 3 Use cases Oliver, Ian (Nokia - FI/Espoo)
- Re: [Rats] 3 Use cases Thomas Fossati
- Re: [Rats] 3 Use cases Panwei (William)
- Re: [Rats] 3 Use cases Oliver, Ian (Nokia - FI/Espoo)
- [Rats] Dynamic Systems in IETF RATS (was Re: 3 Us… Michael Richardson
- [Rats] Supply Chain Attestation (was Re: 3 Use ca… Michael Richardson
- [Rats] Data Attestation (was Re: 3 Use cases) Michael Richardson
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Kathleen Moriarty
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Smith, Ned
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Henk Birkholz
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Laurence Lundblade
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Michael Richardson
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Henk Birkholz
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Henk Birkholz
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Kathleen Moriarty
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Laurence Lundblade
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Smith, Ned
- Re: [Rats] Dynamic Systems in IETF RATS (was Re: … Oliver, Ian (Nokia - FI/Espoo)
- Re: [Rats] Data Attestation (was Re: 3 Use cases) Oliver, Ian (Nokia - FI/Espoo)
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Michael Richardson
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Smith, Ned