IETF Logo Mail Archive

Re: [Rats] EAT Profiles

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Mon, 19 September 2022 11:02 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 20330C14CEFC for <rats@ietfa.amsl.com>; Mon, 19 Sep 2022 04:02:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=dTlio//D; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=dTlio//D
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pyjeOp7AS0cF for <rats@ietfa.amsl.com>; Mon, 19 Sep 2022 04:02:51 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60047.outbound.protection.outlook.com [40.107.6.47]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 86E3CC14F723 for <rats@ietf.org>; Mon, 19 Sep 2022 04:02:46 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=pass; b=dAzrYrhRFQrq125WvYSnN34yP+58nI3eStjhyKAZiK9b6sfbDkUR6EaMQ6KftaIfHJBoSxTACVF3jEcDR8sc8xnyg5YyitWmfbY/cLFda3kh6L4LNz7IDAEtQVczbdts7pkVm53FlZ35r/oZ0hlAT3pDUHhgPdpTSsZ14nDt8ljWm1/lE8GCvSHZYb0n/4Ak31bgp/Q1G3zWB3EL/U7xfmVmDkZwRApGPjpSdmbNOJpdT50bZ2SV/Z5W2dqexdVCA6MUQ7rz2gOBwnY4fa0xwViijVfj+PQqt5yBCvL95Wu493vfdganyfx1ABw0HpZGNTSz5Qmai9LgSwbEQBFltQ==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=KsojlbMic5zO4emgT+pN/bkZy4e6HplOjcJiravo6j4=; b=R04gXBhJNax5Y/IP+HFP5DNwz6gDIpa7wbppOKtBPHdwIYp1DJJpo6J91lk84wITfOCWUrWIsxBCACEUv7MjLlCwCiIOTlX20sSFckcfcxXugN8f9pN6YTZW1SJpVmw5vy1JvHzj4O3FT3/hMDu1pEANCIOLykQWjhYmkz0fssOKr4BtPE+PR9mo1F8aMaG66Y4xacZXCLKtk11r5eoqE/eqCaYc/H5jcVTNFlUw5NFsFZSDUDxvn241d5myAGJZf5u/GCnVFPb9VZZ7UcTGGzEiniRezE7W5A+zCVQtBjNpPy9yZmXA+e7+deN5uMUFvM4s3DzhZsWL82Y6igWsYA==
ARC-Authentication-Results: i=2; mx.microsoft.com 1; spf=pass (sender ip is 63.35.35.123) smtp.rcpttodomain=ietf.org smtp.mailfrom=arm.com; dmarc=pass (p=none sp=none pct=100) action=none header.from=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com; arc=pass (0 oda=1 ltdi=1 spf=[1,1,smtp.mailfrom=arm.com] dkim=[1,1,header.d=arm.com] dmarc=[1,1,header.from=arm.com])
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KsojlbMic5zO4emgT+pN/bkZy4e6HplOjcJiravo6j4=; b=dTlio//DdaMrfuOhUMFwjcenTrBnob1fsrGm3G/x9oBOSutmvzbklc4aqGfGwJID09xINWfhU0AXfUTYlFB+vRYlvPjtRO8CXW6Pd20aOCxEw16Ll4DbN3LbBJBji92Ubeb9YeHyqyVPmDufB23JI8TSG5aB4uVHagJRXc3JNgo=
Received: from AM5PR0202CA0017.eurprd02.prod.outlook.com (2603:10a6:203:69::27) by DB8PR08MB5515.eurprd08.prod.outlook.com (2603:10a6:10:11f::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.19; Mon, 19 Sep 2022 11:02:43 +0000
Received: from AM7EUR03FT062.eop-EUR03.prod.protection.outlook.com (2603:10a6:203:69:cafe::bd) by AM5PR0202CA0017.outlook.office365.com (2603:10a6:203:69::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.19 via Frontend Transport; Mon, 19 Sep 2022 11:02:43 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com; pr=C
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by AM7EUR03FT062.mail.protection.outlook.com (100.127.140.99) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.12 via Frontend Transport; Mon, 19 Sep 2022 11:02:43 +0000
Received: ("Tessian outbound 9236804a5e9b:v124"); Mon, 19 Sep 2022 11:02:42 +0000
X-CR-MTA-TID: 64aa7808
Received: from 7608c93eda0f.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 735E41E7-D73A-4616-9DC6-CE9A77097E62.1; Mon, 19 Sep 2022 11:02:36 +0000
Received: from EUR05-AM6-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 7608c93eda0f.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Mon, 19 Sep 2022 11:02:36 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fFhbkuL8FrVU7GM0V0fPI4bci3MHkx4R9mFy3K6eK/IGnjN7cVDRjA4i+Fjqr2bGg+kqj+m8Apc4985CXvOSx/lSBDQEozWRMjmp7B8aGSlfP+nPR15CcXJBfV+maa87e/omcusMdgwX7EJ8dc2PPyHyXLK+K3s3j58f1ffTPKzETGwdppoBLpHDtXsz+Ny8jHhdJ4yf/DjFDVWwy6Nu9Mq8kAA2ofqrnMpKMgQwH/N5VLf8zKGBckQ7552OjEAfWWTwj2gtFqweI+knWdRZvpEIDYHGgtgltU3uyXAYbOUsrIckcJcbJ6IsAh3NdSo6M7xWRhPPRfNPWvtSJz1PUQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=KsojlbMic5zO4emgT+pN/bkZy4e6HplOjcJiravo6j4=; b=MYAqkk3pSlVS/Idq4sogci4NZ9CjpQ9tDig/nDWh2vUCBP0Zs/OUSvB5ZgBvxR+orPbEPzYm4Ts8nHvUHv/oyuAsxo1cVs3gfo+Rh2qxDWcSR1qLCkCXesjzoiKyqLxRPjI1/4dMDSyFU1RixQh0KKtfglQduIqEPMnb27rG5TZ39JJtCnM6KdaMEe3cMfAnv72ozuPKRuqWwp3uBRoeIFxf3UvWWMgF4dKRxrbIirKH8R9q/0De7bHGar1AWaDHapatL3kDnft4QtKKBkdyiCbjVgOsjY2t6MxRRpKL4y4lqadTcx0RWZBIKFiTjd8TOmb+3rsAfmt6K+Sgmqj9cA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=KsojlbMic5zO4emgT+pN/bkZy4e6HplOjcJiravo6j4=; b=dTlio//DdaMrfuOhUMFwjcenTrBnob1fsrGm3G/x9oBOSutmvzbklc4aqGfGwJID09xINWfhU0AXfUTYlFB+vRYlvPjtRO8CXW6Pd20aOCxEw16Ll4DbN3LbBJBji92Ubeb9YeHyqyVPmDufB23JI8TSG5aB4uVHagJRXc3JNgo=
Received: from AS8PR08MB5911.eurprd08.prod.outlook.com (2603:10a6:20b:292::17) by GV2PR08MB9157.eurprd08.prod.outlook.com (2603:10a6:150:db::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5632.20; Mon, 19 Sep 2022 11:02:34 +0000
Received: from AS8PR08MB5911.eurprd08.prod.outlook.com ([fe80::2032:b95:7890:303b]) by AS8PR08MB5911.eurprd08.prod.outlook.com ([fe80::2032:b95:7890:303b%8]) with mapi id 15.20.5632.019; Mon, 19 Sep 2022 11:02:34 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
CC: "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] EAT Profiles
Thread-Index: AQHYyEuC1ToiOxtxD0CrmJtWlazaGq3iMc4AgAAMGwCABF9ZQA==
Date: Mon, 19 Sep 2022 11:02:33 +0000
Message-ID: <AS8PR08MB5911DB2FE9608541698983B0FA4D9@AS8PR08MB5911.eurprd08.prod.outlook.com>
References: <71934.1663019954@dooku> <DBBPR08MB5915AC23726BF997EB9E44C4FA489@DBBPR08MB5915.eurprd08.prod.outlook.com> <19805.1663344806@dooku>
In-Reply-To: <19805.1663344806@dooku>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ts-tracking-id: 24F170BF4F94FC4AAED65BC57A8D7B98.0
x-checkrecipientchecked: true
Authentication-Results-Original: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
x-ms-traffictypediagnostic: AS8PR08MB5911:EE_|GV2PR08MB9157:EE_|AM7EUR03FT062:EE_|DB8PR08MB5515:EE_
X-MS-Office365-Filtering-Correlation-Id: b6cd69ef-6db7-4fa1-89d6-08da9a2e79fe
x-checkrecipientrouted: true
nodisclaimer: true
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AS8PR08MB5911.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(136003)(396003)(346002)(376002)(39860400002)(366004)(451199015)(66476007)(122000001)(33656002)(86362001)(38100700002)(38070700005)(55016003)(5660300002)(2906002)(478600001)(66556008)(66946007)(64756008)(66446008)(4326008)(71200400001)(8676002)(52536014)(8936002)(76116006)(316002)(186003)(83380400001)(41300700001)(6506007)(7696005)(9686003)(26005); DIR:OUT; SFP:1101;
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GV2PR08MB9157
Original-Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM7EUR03FT062.eop-EUR03.prod.protection.outlook.com
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id-Prvs: a9c832c0-1b62-406a-071d-08da9a2e74f5
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: +FhyNe+kOA3LSMVVVjrW9nZZdppKxGwSidn+3rr7Gvygim6Y/WuUuWeK7fEVdOZusZT+AIxe0JqC+3SQ6Yw0G5seXJsNGCFSO7BIi7Ghgm76/U9FPGaaZwUoTNkd9FCKuVkw44djw7iG34VgMpytcxIECgq6klulWb8uZn1XH1uibgz1DXr3sp7QBryMdb8eaExMYx7cu3yFEMO3lbHk74dfgrOY+xYsulxrFp4TRbmPsNSdITYuTD8cqwQ2zm2bgwRrY/jzzbnHyapzFVKKwp/J4o4oEWQfB5it3l04HNkbCbKYKpVx+IAetajViZm3PAmBOxZQ3QGk96omYdc9c5nY/FO4/e7wv46hz4pUhVFWDGdkc8AqmXwmoJXP+QTBnwFMKqmqXx7XLXNXy1N6e8Df7VldpHECsbZNWTEZScdQ7oohIDeNgjM69dYXrZRG6qz8lG146B71uPF2c3UzOeoPPoW+yHdk+Ych3kJ1Mt8Al5vTxb/aRpqooTbs5fdEtyJCFMKFDZOA38mjW7nHhN9zYhCrO4CAgtmhg2uwSDOEMyWRtxGhv1g25HYz/ygY8fapRSlnabwia3oD5iGtwFsFiZoVje0FJ4ADYT00IQvdhqAF/J8RlJLAmlL1xRPG2nKRn8Gp7Y+WNEYtuUuPAKKoLoOXWh63lATAlYzMh/aLu/XMUtUDZww4SoI8ehusQAZTmKxvTW3pfdXbh9mNgn7+MOlcfui1kmuWA3wHfTeyMIYDLNmxTq8kslwANSKn
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(13230022)(4636009)(39860400002)(136003)(376002)(396003)(346002)(451199015)(36840700001)(46966006)(52536014)(70586007)(70206006)(8676002)(4326008)(6862004)(5660300002)(8936002)(86362001)(83380400001)(316002)(47076005)(82740400003)(36860700001)(33656002)(81166007)(7696005)(41300700001)(6506007)(478600001)(356005)(336012)(186003)(9686003)(26005)(2906002)(55016003)(40480700001)(82310400005); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 19 Sep 2022 11:02:43.1619 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: b6cd69ef-6db7-4fa1-89d6-08da9a2e79fe
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: AM7EUR03FT062.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR08MB5515
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/RiMMKVCxtKCHqBtThB1LG99LTiw>
Subject: Re: [Rats] EAT Profiles
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Sep 2022 11:02:54 -0000

Hi Michael,

Hannes Tschofenig <Hannes.Tschofenig@arm.com> wrote:
    > I do not see a problem with the EAT profile in the TEEP specification.

There isn't any problem with it.
It's not *wrong* for TEEP.
I claim that TEEP is having to do too much work.

[Hannes] I didn't see that work.

I also claim that the uncertainty created by EAT's too many options means that libraries will be too complex and too hard to test.

[Hannes] We have created a library that produced an EAT based on our profile and it was not too complex.

    > I also have no problem with the EAT specification to define a list of
    > items to think about when creating such a profile.  I am fine with
    > having EAT leave options for profiles.

Okay, so if you want to have the option of having CBOR maps use indefinite arrays and maps, then can give me a technical reason to pick this?

[Hannes] This is probably a corner case, which most developers don't care about.

    > * Would it be useful to reference profiles by number (rather than
    > URLs)? Probably so.

It seems like we ought to have an optional registry, and if someone wants to use a URI, then fine.

[Hannes] That would be fine for me.


    > * Is it OK that the TEEP profile of EAT does not
    > mandate certain claims? Maybe it should do so, but this would be a
    > topic to discuss in TEEP not in RATS.

I agree that it's an TEEP issue.

[Hannes] Maybe you could post it to the TEEP list.

Ciao
Hannes




IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email