[Rats] [New I-D] Attestation of Hardware Components
Antoine POULAIN <antoine.poulain@secure-ic.com> Tue, 31 March 2026 14:20 UTC
Return-Path: <antoine.poulain@secure-ic.com>
X-Original-To: rats@mail2.ietf.org
Delivered-To: rats@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 5446BD41EAC9 for <rats@mail2.ietf.org>; Tue, 31 Mar 2026 07:20:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1774966844; bh=4LPD02rfHvux+COOoRXkf6wsduuBqkwKDuzZI+zODsU=; h=From:To:Subject:Date:References:In-Reply-To; b=VPNDKNFX/0thZii38RaBaMHpIaZvsneS6ZemvnOCN2nAZXaAUGThRx1dAgoQJXzzI EzEFdRtM/1FAJEPp8qtMd3tltun43f9fUHrr7BKfYRPjPweEcRoi0XWxGIpsqAnSnP /RANGpSJDR/wHnHzAhviNffj1ZYiQcNc6023E32k=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=secure-ic.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Gv4L1VASwLWs for <rats@mail2.ietf.org>; Tue, 31 Mar 2026 07:20:43 -0700 (PDT)
Received: from PAUP264CU001.outbound.protection.outlook.com (mail-francecentralazon11021104.outbound.protection.outlook.com [40.107.160.104]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id C2093D41EA73 for <rats@ietf.org>; Tue, 31 Mar 2026 07:20:35 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=ht0hX/nkBxEGHm/cAuzQabuefuU0djWhsMnDSUD/mImTQNksPwlr3tPjdN0mJQFIc/4DjtXFPZZNO8VNMlIMvnpxyc2hNK8H/OzaVp9cB4BWn0O+glyPqfvB3N9XTVxqIoTAwMSgtXRN0o09nk7MarLKWzHnqrmd22RbzB/MonuNBNa64dtq/MrpLgP0UH+z6sdWBBuaWOiDX0P/J+UZSaJgggEz3BldJrwcHIb16w1B+J6Z5BxECep4JD564kslbL86EFIzmcCuck+Re6V3RvOjHZEam8aAZGHDdHLIR1VAmodrlJYNcrAQm0gV7UCr0i0g9OBtp4zzmZIUnpHLwQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=4LPD02rfHvux+COOoRXkf6wsduuBqkwKDuzZI+zODsU=; b=o3ZEgPGhDZkP0Eo0xbcX3NBTYnu+L4V2zVrSJJJ0H5UUkFkL46MuTYI4XJgxR4PVVFIJFoi8wUl3R4Ovoejf4xqRw5CzUSKeS8ls+Z2TjoPbdbgl0zP0dMr+GJPxJ51z1BBpXkO2Pb56lcgdVLAL6oLIcNx6gWDQF/VUCf7kl+SXSOGv0rbkJ86HDBhkMeEsI5tEAvdA4G2kWZaY1EfwmUvnrsEUfaz1uhq4N54hOSoH2pL6wDsYAkjNcSMKga3ohakEcYD4lLR1mdNAMhnRn4EJN7C1mWf2z4xYJ+8m2gv7ZPd8lPIzQAb0xZ8KANyK7GonFfBKd8PXu5b4/QF7Kg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=secure-ic.com; dmarc=pass action=none header.from=secure-ic.com; dkim=pass header.d=secure-ic.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=secure-ic.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4LPD02rfHvux+COOoRXkf6wsduuBqkwKDuzZI+zODsU=; b=Ag7kQlRVmYrFqirTPqG1RZVKanNDZhTI/qCgpOj8mb4wbRgRM9iDeh9nANbhzaLVMZS6b7T5AEvtNtSiQgFlQSqi7rbTclfwZSavwFP8LiRPQl7YEB+EAziP628chFZXDpnwimTnfH7X8XbbwF/giVo1PzwxftYr/8HOljoRnf0=
Received: from MR0P264MB6966.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:9d::6) by MR1P264MB3425.FRAP264.PROD.OUTLOOK.COM (2603:10a6:501:23::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.9769.15; Tue, 31 Mar 2026 14:20:25 +0000
Received: from MR0P264MB6966.FRAP264.PROD.OUTLOOK.COM ([fe80::fac0:d9a8:7b75:5b58]) by MR0P264MB6966.FRAP264.PROD.OUTLOOK.COM ([fe80::fac0:d9a8:7b75:5b58%4]) with mapi id 15.20.9769.014; Tue, 31 Mar 2026 14:20:25 +0000
From: Antoine POULAIN <antoine.poulain@secure-ic.com>
To: "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [New I-D] Attestation of Hardware Components
Thread-Index: AQHcwRmEkqbeqXuLQkq0LVBZx6PnyQ==
Date: Tue, 31 Mar 2026 14:20:25 +0000
Message-ID: <MR0P264MB69669811B01C30BE84D6938EBD53A@MR0P264MB6966.FRAP264.PROD.OUTLOOK.COM>
References: <177496517830.1642521.7254676412472883351@dt-datatracker-5775bcb475-pnkww>
In-Reply-To: <177496517830.1642521.7254676412472883351@dt-datatracker-5775bcb475-pnkww>
Accept-Language: en-GB, en-US
Content-Language: fr-FR
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=secure-ic.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MR0P264MB6966:EE_|MR1P264MB3425:EE_
x-ms-office365-filtering-correlation-id: b30ada68-e130-485e-4be4-08de8f30a6d7
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|366016|1800799024|376014|38070700021|13003099007|18002099003|22082099003|56012099003;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MR0P264MB6966.FRAP264.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(366016)(1800799024)(376014)(38070700021)(13003099007)(18002099003)(22082099003)(56012099003);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: EGic7/tKY9WVXy+lSjYiMSdSOCwo7kpeSSbCHrK+UqbqhE5EpVCxLAZuOnHJRjl+ZnkdDkAIfImUiOttnHhZtyY8LgRzRWeA9i4fbGD2fz20gYA6TqBfSdmosswTn0LECDKE6mhiXTWzzWl0P/jEOWYuQaUrZQZnJ8U6rjFZ4R/hNSjsJkC9U60qEwDVcdzinqrjQBe7sjRBUXL8XJ1eNkwigHRwDUIgOcBUVU9LAx5ZwXZ+eiv8e+/1Cc0fDmkroJPXnn6VEZgdh6u8FgSHFm50N9mV1ggx4fsocFPDvaPHD/vxb/W4ZZduQZRwBfGRL4HQ1btNbNpYuPdvNz2zotEwsrmQ2EMkTgEaBz6HCKz9fKLIqXi7+38iVMKn9IGvm3zkYiiM9Hw0ezxjAfp1BhxQgy0wPr0vgspnRsc5qxwiBjQj8YhANajQv/3BH2ANAgMX+AWcNkRRlG2kMPuzTgvXJKh3L5yv32wcw9hxQYfqqAgd3mav7owv7Ot5Ch4/AEZYcYIXaaYYDPGZF6uNSAnJ5RG9Ga/9SM4/yozvcDhcTQDy4Ci2rVPkLdFw4io3ohy7CGc+Jy06NZv/3LhJg5V8qYKoL0O5oB9klsbdwq46rdhPuEQb3tXpApNdQePPGhLj3kX5O6X01DaqxKKS7F8yR2GWjPTVOvXLuWUhSZC2gc4HlPDnPd5YFJEZJl7yCFkW4pUihkgOTnD2KNE05THzEWIf+5abbPKXfJQtrZvFg79x+ziN4j1bAqCF8kkzQ7Y7hwaXoKM2uEiQ+RjXKYOVp+k9k/xPxdgBUbWatylngrGyG+nOWB2pL0XebpBTyipp0KaAwEcpMhYIIoLcXz5jcfTnKzfR00/Ap/jEhWnugvBLzgTR8wSmh8rfid5NmF89kHaytOkvOBgbFyZEiWyLwLw3jCwRGzDYymbSMJ/wpV8uusH4QFGfip3Qf7QnB3yUuzXm/PJja1S3sLIBH2tBWbN35UQzKkv73jJDNTMwGAfcRjArjA4NG/DEArQCkSYe9gYV+UfvTTYZ8XVtDjnrTJkGFKEmbpyfaM07MEkvitTciXhxPZD7YNtrJj9gyDkEWQ+OnEjvY7vNGdDRZdKYa3HKgYJeTSVLocMPgnJIsi7S6NB9iTLCHSEyAP2uJmP3nTCK29VjJGqtW8xijuu/JTDeGvsUpTIaG7rZ+kFMFBR95deBeeXla+7QS5bgyoDdqbndPLh4csw45NUikO8byvOE0oNVM14YU+bbS7svxBqoB0zhEANoRBIj5ZcU64l5nOnppin3gGAAbvmnTMQylFNh4RCYaEms7816HHkSmdMbYrhM8w2XTJu07CfHLsecgiw09Dv96M1vllejEzpVMxwRf09S65A1SXhwg4yGvAc9NRuA5ynB9IPn24rCnmyI0LiZ33BL4ZEM8bsTYAvx8NebGTLDvHm+tLz9ZNgF89pf3RBv6boDIIHGoKIyTjfszun7PO44tMpKDHr2Ue8xAqVbLlqKvpvqAf6Qm45WjgxoLEjBWrL0kvXl8/47LCNe20Y5p5uJjQFS6qJMFJDtpRnJ7xj8nMycVwXozgo6DY+nfunc2u94ip6iQLixk0hqUGBa0vxpIBPO7LJZCWEPxRs7p7r6k/se8JELrZSo3PFaXVhc3LPLRiZ5C9b/pwaXZmMKyXM/sdwqHQTpnONnxtbpblWAR/XmoPM8RaRVjtPx1PbUJyMviv37thz9eiKhTaf8ZaPZW/8S/lUxdw==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: secure-ic.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MR0P264MB6966.FRAP264.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: b30ada68-e130-485e-4be4-08de8f30a6d7
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Mar 2026 14:20:25.3372 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 43127755-04d2-4bb4-b4ae-d881447a87b1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 4DEUuUb/3ZHJW09+yr0V17tax0ROaZ+tATJzjG07Lgy3QF6v9xrAtclx2RPLPIlxSf8jll3U8FPuEjWk2qaVIgUamNZS6efPXCncIYeWQjw=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MR1P264MB3425
X-MailFrom: antoine.poulain@secure-ic.com
X-Mailman-Rule-Hits: nonmember-moderation
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0
Message-ID-Hash: N6AWGC44CKQ5XULNMZQH4E3N7TVL7V5I
X-Message-ID-Hash: N6AWGC44CKQ5XULNMZQH4E3N7TVL7V5I
X-Mailman-Approved-At: Tue, 31 Mar 2026 09:09:06 -0700
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] [New I-D] Attestation of Hardware Components
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/SxL8YcF3XyW-FYcuShegcKQkgpM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>
Hello, We would like to draw your attention to a new Internet-Draft, Title: Attestation of Hardware Components Draft: https://datatracker.ietf.org/doc/draft-paka-rats-hardware-component-attestation/ Latest (github): https://github.com/antoinepoulain/hardware-component-attestation/blob/main/draft-paka-rats-hardware-component-attestation.txt This draft proposes a model for including runtime measurements of hardware components as attestation Evidence, complementing the existing Endorsement-based approach. The objective is to improve visibility into the actual runtime state of hardware by capturing effects such as aging, environmental conditions, and physical attacks. This is particularly relevant for systems with strong safety and/or reliability requirements. We included many practical examples (section 7) so you can understand the intent of the document and how we envision it to fit in the RATS ecosystem. Feedback is very welcome, particularly we would like your comments on: - Alignment with the RATS architecture and use of Conceptual Messages, - Pertinence of the proposed abstract Attester model, - Missing content related to RATS ecosystem. Thank you, Regards, Antoine Poulain and Abdellah Kaci, Secure-IC -----Message d'origine----- De : internet-drafts@ietf.org <internet-drafts@ietf.org> Envoyé : mardi 31 mars 2026 15:53 À : Abdellah KACI <abdellah.kaci@secure-ic.com>; Antoine POULAIN <antoine.poulain@secure-ic.com> Objet : New Version Notification for draft-paka-rats-hardware-component-attestation-00.txt A new version of Internet-Draft draft-paka-rats-hardware-component-attestation-00.txt has been successfully submitted by Antoine Poulain and posted to the IETF repository. Name: draft-paka-rats-hardware-component-attestation Revision: 00 Title: Attestation of Hardware Components Date: 2026-03-31 Group: Individual Submission Pages: 35 URL: https://www.ietf.org/archive/id/draft-paka-rats-hardware-component-attestation-00.txt Status: https://datatracker.ietf.org/doc/draft-paka-rats-hardware-component-attestation/ HTML: https://www.ietf.org/archive/id/draft-paka-rats-hardware-component-attestation-00.html HTMLized: https://datatracker.ietf.org/doc/html/draft-paka-rats-hardware-component-attestation Abstract: Hardware components constitute the foundation of all computations and therefore play a critical role in system integrity and reliability. Existing attestation mechanisms primarily rely on manufacturer endorsements, which provide limited visibility into the runtime behavior of hardware. This document extends the Remote ATtestation procedureS (RATS) architecture by defining a data model and guidelines for including measurements of hardware components in attestation Evidence. These measurements may represent physical properties, results of self-tests, or behavioral observations. The document considers a threat model that includes both adversarial actions and physical phenomena such as environmental variations and aging. It proposes abstract interfaces for collecting measurements, enabling interoperability while remaining agnostic to implementation mechanisms, and outlines a security model for their use in appraisal. The IETF Secretariat
- [Rats] [New I-D] Attestation of Hardware Componen… Antoine POULAIN
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Muhammad Usama Sardar
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Antoine POULAIN
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Muhammad Usama Sardar
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Carl Wallace
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Antoine POULAIN
- [Rats] Re: [New I-D] Attestation of Hardware Comp… ned.smith.ietf@gmail.com
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Muhammad Usama Sardar
- [Rats] Re: [New I-D] Attestation of Hardware Comp… Antoine POULAIN