IETF Logo Mail Archive

Re: [Rats] Use case -> architecture document

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Wed, 16 October 2019 14:18 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E2A212010D for <rats@ietfa.amsl.com>; Wed, 16 Oct 2019 07:18:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lJaS76XDDOdj for <rats@ietfa.amsl.com>; Wed, 16 Oct 2019 07:18:45 -0700 (PDT)
Received: from mail-oi1-x232.google.com (mail-oi1-x232.google.com [IPv6:2607:f8b0:4864:20::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C252F120026 for <rats@ietf.org>; Wed, 16 Oct 2019 07:18:45 -0700 (PDT)
Received: by mail-oi1-x232.google.com with SMTP id w6so20110730oie.11 for <rats@ietf.org>; Wed, 16 Oct 2019 07:18:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=Jnyc7QJ5JCqJulkm3Yh5AByPD3zJ4lP8+dXaZMRlP8Y=; b=kkgrubRTLnh2VjZHuiQGLuNm7xn1t62Ifz9opaZYSXb5kmh+j4ZzKUOC1mj5AJoXUc kzKtY2LBdDTYoKwIIpsB9RFMa6oEI2Vleq1HPqZ5izHnqjZjqKI1nWLTH5rQIbhHySrn /mPAN5KqMqnEEhkQ/B24vUmpnhblM8g9Y7yuQ3spu0F57LlaDP8RN1aeMGdd2nAo+l2n SimP9t1/vRfU1b1PlO1O6SB2v2mKCN2QCuXLi07eIvsx7d1xIfzST+GD2+80u17+pAgc pA1Wr9PZqnf4rH+LzVIYuj8eOQ5g/HUCTzXtezGzsehx/guA7NV2mxq+uYEU3AAddOr1 7Vdg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=Jnyc7QJ5JCqJulkm3Yh5AByPD3zJ4lP8+dXaZMRlP8Y=; b=qMg6qfvXgDRJoA5EQvbTs1SHeCi3AFjZ/E1P5s8NuyPdFvfvMNp6lL1Fn2u9kngqo/ LapALnmVuQbzLbn5ek1xqQTEA0ya44JIQBTih+SA0C+JlVogqH/F51RLhnzXledjmwlG pYmwRidcJZnBMiREU9y4SdFMzh3ku7ngrBbFaRa7eWt28M1bAsIM5n4HgExLEZxGPuQ3 IdjmNlXtcqtZ275JeHhDZpPZ7XTreai3/RxjpyQdr1oxCoP/eE6DoEAwJV+usGj8H+ZL 5ZjTMAN63wABu6wfbTCaY8Grh/syYswZlfzfJVOYTFgedD/iqHEfoKOBZbwFVgFZXXr7 DQsw==
X-Gm-Message-State: APjAAAWL+Aozw0v0/WyAjhasX72Pg+WDPjUiUTXrZ/3hzSt+B5CqEWz7 ENwsD0NR75hveX/lWG63T8sijFWVaPuBa+sxsQC1nb0s
X-Google-Smtp-Source: APXvYqx0DxeZEkozfS+L/0kkPdDKCVWHjLT6As7qhxYPhI3dGPyYh3YEGeYvMuEEcWHZoeUOrsdWT3zBO10asBBey6k=
X-Received: by 2002:a05:6808:114:: with SMTP id b20mr3781008oie.114.1571235525013; Wed, 16 Oct 2019 07:18:45 -0700 (PDT)
MIME-Version: 1.0
References: <CAHbuEH7f0jjquR=iZDgof4DkgpZKgxEP86NcQ0A1NQ=SP+_FHA@mail.gmail.com> <C02846B1344F344EB4FAA6FA7AF481F13E9560C0@dggemm511-mbx.china.huawei.com> <CAHbuEH7WkqeyUW3sL5bdw5N25B6O7ZEF0Qkx03fE5c42Sd4M5w@mail.gmail.com> <b91baad2-2fc3-a5e4-6898-e2cddcda300d@sit.fraunhofer.de> <20191009145006.r2pjsoo6jxirah64@anna.jacobs.jacobs-university.de> <CAHbuEH6u-6GsJjK8s0eFQPLeSuGjPMgonhyQkmaeA6Q+rp42kA@mail.gmail.com> <9379d880-2b7e-6657-c547-b37bb7a9e466@sit.fraunhofer.de> <CAHbuEH7XfWgPT+=T-Za9Cw-5GRQj0_+WT3L+Kd4aPp6VvU9jAQ@mail.gmail.com> <MWHPR21MB078499E5D4A2A5E697924EC7A3900@MWHPR21MB0784.namprd21.prod.outlook.com> <20191015154500.ruv2ie36hsxfb3qq@anna.jacobs.jacobs-university.de> <18413.1571227622@dooku.sandelman.ca>
In-Reply-To: <18413.1571227622@dooku.sandelman.ca>
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Date: Wed, 16 Oct 2019 10:18:08 -0400
Message-ID: <CAHbuEH6vTuJ-GuYfeEvUXFaFT-DeGv-c9NAAYyDFBFPWWSfbJQ@mail.gmail.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: "rats@ietf.org" <rats@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000053b5c0059507c776"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/SLydQmkZKrIRbhVwfSbD9ajG-U8>
Subject: Re: [Rats] Use case -> architecture document
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Oct 2019 14:18:48 -0000

On Wed, Oct 16, 2019 at 8:06 AM Michael Richardson <mcr+ietf@sandelman.ca>
wrote:

>
> Schönwälder, Jürgen wrote:
>     > Henk's architecture discusses 'Attestation Principles' that are not
> in
>     > Dave's proposal. I guess the WG needs to decide whether to include
> them
>     > or not. Are these important for understanding or guiding the RATS
> work?
>
> I think that, to the extent that the architecture document includes
> requirements on the technical document must answer, that these principles
> need to be made explicit.   They should be numbered as well so that we know
> which principle to compromise to maintain another one.
>

In a sense, Dave's document covers this idea as it does discuss the ability
for 2 functions to be combined.  I don't think adding a term is needed to
state that though and adding a specific term for that leads to confusion.


>
>     > I also like to mention that there are research papers where the
> remote
>     > attestation process is described more in the form of a challenge
>     > response interaction, where the verifier sends a specific challenge
> to
>     > a device and the device returns a response that is than evaluated by
>     > the verifier. An example is "compute a hash over certain memory areas
>     > within a certain time limit" and then the device returns the result
> and
>
> That's an interesting thing to add.
> I think that this makes for some interesting additions to use cases.
>

And an architectural pattern.

Best regards,
Kathleen


>
> --
> ]               Never tell me the odds!                 | ipv6 mesh
> networks [
> ]   Michael Richardson, Sandelman Software Works        | network
> architect  [
> ]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on
> rails    [
>
> _______________________________________________
> RATS mailing list
> RATS@ietf.org
> https://www.ietf.org/mailman/listinfo/rats
>


-- 

Best regards,
Kathleen

v2.23.0 | Report a Bug | By Email