[Rats] Re: [lamps] Re: Hint Discussion in CSR Attestation Draft
Thomas Fossati <thomas.fossati@linaro.org> Mon, 24 June 2024 15:29 UTC
Return-Path: <thomas.fossati@linaro.org>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61798C14F615 for <rats@ietfa.amsl.com>; Mon, 24 Jun 2024 08:29:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.106
X-Spam-Level:
X-Spam-Status: No, score=-7.106 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=linaro.org
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0i8BSVuMfAHN for <rats@ietfa.amsl.com>; Mon, 24 Jun 2024 08:29:09 -0700 (PDT)
Received: from mail-qv1-xf35.google.com (mail-qv1-xf35.google.com [IPv6:2607:f8b0:4864:20::f35]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DD48C14F5F7 for <rats@ietf.org>; Mon, 24 Jun 2024 08:29:09 -0700 (PDT)
Received: by mail-qv1-xf35.google.com with SMTP id 6a1803df08f44-6b4ff7cb429so19388096d6.2 for <rats@ietf.org>; Mon, 24 Jun 2024 08:29:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; t=1719242948; x=1719847748; darn=ietf.org; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=HHg0a4e5jpETQD226HEw8Wg3K26mdfn75cZNBQtFJpA=; b=aaDPqEiDFzALHMzpXNf/ynvFHmF7Lis0UD4wzI0bT201fIk4v0/lkNouwIbpx0umLz cpij67EWXAe3uARut0x7XYr7P2/qGwjIkJryOHI6quIFganl4nqvQz0DYe24OKek1/Cc QRChpA9UcrtDeDAfShlJ5RoOwoL4c+Z7TmIZLNcU4abTOl0sJ+5AwwZ6FQS1vgfKNlJU DXXM2nidhx0UdH6GWSmjmKFqVvxGAz+KbKv2j8tS6vBD0CmpKPvDn8aGLZ5C+IteWmc5 EsKRCEVCiZCQuRYxrPv/gri+DMrG6ZJgfhF6G1Yqxh+Zc7GhXBiz58r36jHUES+oLEwd qyDQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1719242948; x=1719847748; h=content-transfer-encoding:cc:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=HHg0a4e5jpETQD226HEw8Wg3K26mdfn75cZNBQtFJpA=; b=IqbFDuofyKmaiHu5074x+dfs7bopYarYdem5o571V0NKZAUZTyH5y7FPxFwTx3hSBx FY4SnHhLlZqhMSqrPfdBAnT9K316LN/1ffU2zCzGXtZpshQfKfazAnQuQ7fZrvOFHty1 ZxW2PCVNuCGKB5S/+JzG0etQwEqzDs4dClFzUZfJdJTMoPTqzXGYIXpwB+QTll2biRH9 Eg1eJFAWhQdi30ZXgrTanZoZejz+AqyghP9LJN9VNvP+neGNA/PpDREVNGcgsbt2BG6o NRYy95INy+dLR/T/dfkJ+8Ff4319qRfoSZIJ9FeeBf+o3UTbYglzYIUIuyxJIr4G4z+q ilYg==
X-Forwarded-Encrypted: i=1; AJvYcCUsblPg874SlK/9G1DrcI6ju65xlMRG8adzxcRXxd7PGc9wNnUYNeFsELcil8/AmaG2PzRjwrm+dm3+To4I
X-Gm-Message-State: AOJu0Yw8TsHLkjpkqhKQJyYFp9Q7743V6MNTSm9rQ/fd00fYf1Ur74Fp wYtPukVXWIWVhH5zx5CmXVxPrzRfC/r+vAOJZfE1LuDpvrQss30xRlYggLh9IYu1HPfGHjmp6Mc C8lFegPScH7XiBtGBDsF9dGBbZRCp0WjMSdM94Q==
X-Google-Smtp-Source: AGHT+IGvwi/M+kHtYDOXb+n+/SpZ91EqxpK2bgR6sYw3Lum8Tgr5HYoRN8MjzpQPFC4rJHZ/9FVa2nxL1Cyc3R6EkYc=
X-Received: by 2002:a0c:ebcf:0:b0:6b4:fd02:1daa with SMTP id 6a1803df08f44-6b540aa401emr51440536d6.44.1719242948549; Mon, 24 Jun 2024 08:29:08 -0700 (PDT)
MIME-Version: 1.0
References: <946C676F-8877-403A-86DA-6B8A41063C03@redhoundsoftware.com>
In-Reply-To: <946C676F-8877-403A-86DA-6B8A41063C03@redhoundsoftware.com>
From: Thomas Fossati <thomas.fossati@linaro.org>
Date: Mon, 24 Jun 2024 17:28:51 +0200
Message-ID: <CA+1=6ye36h4hHD5O+To4zuE0bqgz2JwiWNrpCUeSFTL3tdWa6g@mail.gmail.com>
To: Carl Wallace <carl@redhoundsoftware.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Message-ID-Hash: HESUOOBAAZTHKPPTFB2DERLRKYK2IQJJ
X-Message-ID-Hash: HESUOOBAAZTHKPPTFB2DERLRKYK2IQJJ
X-MailFrom: thomas.fossati@linaro.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Smith, Ned" <ned.smith@intel.com>, rats <rats@ietf.org>
X-Mailman-Version: 3.3.9rc4
Precedence: list
Subject: [Rats] Re: [lamps] Re: Hint Discussion in CSR Attestation Draft
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/IxLGfGsxjlr7yIYTONR4mfKXQ2k>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>
On Mon, 24 Jun 2024 at 17:17, Carl Wallace <carl@redhoundsoftware.com> wrote: > > The below was posted to LAMPS but I had missed the introduction of the "hint" notion to the msg-wrap spec and upon a brief review of the latest draft do not understand section 3.3.1, which was introduced in the recent -05 draft, so I replied to RATS. What is this paragraph trying to say? > > "A CMW Collection's tree structure is not required to be a spanning tree of the system's composite Attester topology. If a label changes Verifier state beyond a "hint" (e.g., for better Verifier performance or human comprehension), we say that it carries semantic content. When a label carries semantic content that is not bound to other forms of evidence contained in the collection, the collection SHOULD be signed by an attestation key, e.g., by including the collection in a signed EAT [I-D.ietf-rats-eat]." The PR that introduced Section 3.3.1 [1] has some extra context in its description that may help understanding Dionna's thinking. [1] https://github.com/ietf-rats-wg/draft-ietf-rats-msg-wrap/pull/78
- [Rats] Hint Discussion in CSR Attestation Draft Tschofenig, Hannes
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Henk Birkholz
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Carl Wallace
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Thomas Fossati
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Michael Richardson
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Thomas Fossati
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Michael Richardson
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Carl Wallace
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Hannes Tschofenig
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Hannes Tschofenig
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Carl Wallace
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Hannes Tschofenig
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Michael Richardson
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Henk Birkholz
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Michael Richardson
- [Rats] Re: Hint Discussion in CSR Attestation Dra… Michael Richardson
- [Rats] Re: [lamps] Re: Hint Discussion in CSR Att… Carl Wallace
- [Rats] Re: [lamps] Re: Hint Discussion in CSR Att… Thomas Fossati
- [Rats] Re: [lamps] Re: Hint Discussion in CSR Att… Carl Wallace
- [Rats] Re: [lamps] Re: Hint Discussion in CSR Att… Thomas Fossati