Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
Laurence Lundblade <lgl@island-resort.com> Thu, 02 June 2022 17:27 UTC
Return-Path: <lgl@island-resort.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A81E4C15AAD2 for <rats@ietfa.amsl.com>; Thu, 2 Jun 2022 10:27:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.908
X-Spam-Level:
X-Spam-Status: No, score=-1.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ph3F3fvCJtm8 for <rats@ietfa.amsl.com>; Thu, 2 Jun 2022 10:27:34 -0700 (PDT)
Received: from p3plsmtpa11-09.prod.phx3.secureserver.net (p3plsmtpa11-09.prod.phx3.secureserver.net [68.178.252.110]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5EBA0C14CF14 for <rats@ietf.org>; Thu, 2 Jun 2022 10:26:45 -0700 (PDT)
Received: from [192.168.1.4] ([75.80.148.139]) by :SMTPAUTH: with ESMTPA id woapntB9aeq8DwoapnLwG1; Thu, 02 Jun 2022 10:26:44 -0700
X-CMAE-Analysis: v=2.4 cv=a7n1SWeF c=1 sm=1 tr=0 ts=6298f2d4 a=qS/Wyu6Nw1Yro6yF1S+Djg==:117 a=qS/Wyu6Nw1Yro6yF1S+Djg==:17 a=48vgC7mUAAAA:8 a=NEAV23lmAAAA:8 a=QyXUC8HyAAAA:8 a=EUspDBNiAAAA:8 a=7CQSdrXTAAAA:8 a=dghLgVKExXj24KOYSG4A:9 a=QEXdDO2ut3YA:10 a=YXBTSE9KZCgCZYnwqIQA:9 a=5fyG1_-IjkR3fAJy:21 a=_W_S_7VecoQA:10 a=w1C3t2QeGrPiZgrLijVG:22 a=rMCfJy6NHDicN4J276Yl:22 a=a-qgeE7W1pNrGK8U0ZQC:22
X-SECURESERVER-ACCT: lgl@island-resort.com
From: Laurence Lundblade <lgl@island-resort.com>
Message-Id: <D1741322-C4A3-4E38-A10D-97913C38C46A@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_B9C8AA59-233D-4723-9712-46991F98B828"
Mime-Version: 1.0 (Mac OS X Mail 12.4 \(3445.104.21\))
Date: Thu, 02 Jun 2022 10:26:43 -0700
In-Reply-To: <55C9F1B1-2CEA-472B-B382-AC05D895DA91@intel.com>
Cc: Giridhar Mandyam <mandyam@qti.qualcomm.com>, Thomas Fossati <Thomas.Fossati@arm.com>, "rats@ietf.org" <rats@ietf.org>
To: "Smith, Ned" <ned.smith@intel.com>
References: <45618431-7329-4F31-941F-A39BBC9D575F@cisco.com> <DB9PR08MB65241E9E259EBBD532480E469CDC9@DB9PR08MB6524.eurprd08.prod.outlook.com> <30BB98D4-8CC0-4EA3-BB89-9F95DC6F2CA8@island-resort.com> <SJ0PR02MB83533D9FAAA5C935EFFE2BED81DC9@SJ0PR02MB8353.namprd02.prod.outlook.com> <D6FBA9E8-EAF5-4D43-831E-4F11EEF56AC1@intel.com> <D4DFCC84-43A9-45F1-86CC-577665206643@island-resort.com> <DB9PR08MB6524A23DF4EF603E60641C449CDF9@DB9PR08MB6524.eurprd08.prod.outlook.com> <SJ0PR02MB8353B3CAE4C2216DE827919D81DF9@SJ0PR02MB8353.namprd02.prod.outlook.com> <DB9PR08MB6524EF37525128BB58E914CB9CDE9@DB9PR08MB6524.eurprd08.prod.outlook.com> <SJ0PR02MB8353C0333529F58051E3B10581DE9@SJ0PR02MB8353.namprd02.prod.outlook.com> <55C9F1B1-2CEA-472B-B382-AC05D895DA91@intel.com>
X-Mailer: Apple Mail (2.3445.104.21)
X-CMAE-Envelope: MS4xfEvcARY6gFVRGp6v72wIv4oE4OtER5TdxXLpaCt2ONgktfwOH+p6Ygv0UnZv9SUhNkJQKL7rK5bp5Go8fYPrK82HOY/SmtDI9gIBe1iwXnVq1G0cqCXu 197qKQTlP/C6gmmbM4Ga+cSBckSWfO4EuSaB0MxE41ySBgml7cuz7i4DwBojEJBeW7WOY7nRtacsw56z4IhajHBJgqyuwQrYguXfByeha+nlLlm80T8BGHDm PKBJV9vtqk4+XfeJJjzSIxvadFeCk84IldTH+YPKy4gUe6wxNh18JcnOVApInnmf
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/Tk6KfCwF2LwxULId1yl_gbp3VcY>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jun 2022 17:27:38 -0000
I believe the question is solely about extensibility of the top-level EAT formats via a CDDL socket. I believe this PR <https://github.com/ietf-rats-wg/eat/pull/194> can resolve the issue fully. The only anticipated extension to plug into this socket is UCCS and UJCS. I see no need for a registry because only one pair is anticipated. Listing it out fully, the top-level formats for and EAT are now: CWT JWT DEB (both CBOR and JSON) versions This will be extended to two more: UCCS UJCS Not everything that is extensible needs a registry. Or this — registries are about identifiers for things. The identifier space here is media types (MIME and CoAP) and/or CBOR tags. We already have a registry for these and definition of types and tags for the top-level types for these too. I think profiles are mostly orthogonal here. They apply to what ever formats are allowed / defined, but they don’t control who or how these formats are defined. (And I don’t think we need a registry for profiles). There’s some discussion in this thread about general extensibility of protocols. I don’t think EAT is much different than most other protocols in this regard. Is JWT nebulous? Is it wrong that we turned CWT into EAT? LL > On Jun 2, 2022, at 9:35 AM, Smith, Ned <ned.smith@intel.com> wrote: > > >the profile definition addresses interop > Section 7 suggests that a profile can take on many forms. The EAT draft accommodates this by offering a way to reference the profile document (or whatever it happens to be). I interpret Thomas’s point that “the claims-set is governed by the CWT Claims registry, whilst the EAT type system has no > such mechanism (yet)” to mean there isn’t a profile yet defined that operates like a global registry. > > It seems IANA is being used as the global registry for code point names/values currently. IANA CBOR registry could be used for CBOR top level EAT structures, but such equivalent exists for JSON structures. > > However, it seems some EAT CBOR structures that could be considered ‘top level’ don’t currently have IANA CBOR registry entries. > > Is the way forward for EAT draft to create IANA CBOR tags for top level EAT structures? > > Thx, > Ned > > From: RATS <rats-bounces@ietf.org> on behalf of Giridhar Mandyam <mandyam@qti.qualcomm.com> > Date: Thursday, June 2, 2022 at 6:20 AM > To: Thomas Fossati <Thomas.Fossati@arm.com>, "rats@ietf.org" <rats@ietf.org> > Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat) > > >> I think the underlying data structures make it extensible, independent of the CDDL notation. However if an implementor chooses to extend EAT without an accompanying standard as a result, then interoperability may not be assured. Therefore it is in an implementor’s interest to define a standard if they are seeking interop. > > >The core difference is the extensibility story for the claims-set is governed by the CWT Claims registry, whilst the EAT type system has no such mechanism (yet). > > I don’t agree: the profile definition addresses interop – see https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat#section-7 <https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat#section-7>. Up to this point, no-one has objected to the way profiles are defined in the specification, nor the lack of a registry. > > -Giri > > From: Thomas Fossati <Thomas.Fossati@arm.com> > Sent: Thursday, June 2, 2022 6:13 AM > To: Giridhar Mandyam <mandyam@qti.qualcomm.com>; rats@ietf.org > Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat) > > WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros. > > > Giridhar Mandyam <mandyam@qti.qualcomm.com <mailto:mandyam@qti.qualcomm.com>> wrote: > > I think the underlying data structures make it extensible, independent > > of the CDDL notation. However if an implementor chooses to extend EAT > > without an accompanying standard as a result, then interoperability > > may not be assured. Therefore it is in an implementor’s interest to > > define a standard if they are seeking interop. > > The core difference is the extensibility story for the claims-set is > governed by the CWT Claims registry, whilst the EAT type system has no > such mechanism (yet). > > > > > IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. > _______________________________________________ > RATS mailing list > RATS@ietf.org > https://www.ietf.org/mailman/listinfo/rats
- [Rats] WGLC for https://datatracker.ietf.org/doc/… Nancy Cam-Winget (ncamwing)
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Thomas Fossati
- [Rats] Where does a EAT end? (was: Re: WGLC for h… Thomas Fossati
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Kathleen Moriarty
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Henk Birkholz
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Henk Birkholz
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Roman Danyliw
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Henk Birkholz
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Michael Richardson
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Laurence Lundblade
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Michael Richardson
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Giridhar Mandyam
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Smith, Ned
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Laurence Lundblade
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Thomas Fossati
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Eric Voit (evoit)
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Giridhar Mandyam
- [Rats] security-level claim (was Re: WGLC for htt… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Henk Birkholz
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Ira McDonald
- Re: [Rats] security-level claim (was Re: WGLC for… Eric Voit (evoit)
- Re: [Rats] security-level claim (was Re: WGLC for… Henk Birkholz
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Thomas Fossati
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Smith, Ned
- Re: [Rats] security-level claim (was Re: WGLC for… Smith, Ned
- Re: [Rats] security-level claim (was Re: WGLC for… Smith, Ned
- Re: [Rats] security-level claim (was Re: WGLC for… Eric Voit (evoit)
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Laurence Lundblade
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Henk Birkholz
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Jeremy O'Donoghue
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Kathleen Moriarty
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Thomas Fossati
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Thomas Fossati
- Re: [Rats] Where does a EAT end? (was: Re: WGLC f… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Smith, Ned
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Smith, Ned
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Eric Voit (evoit)
- Re: [Rats] security-level claim (was Re: WGLC for… Michael Richardson
- Re: [Rats] security-level claim (was Re: WGLC for… Smith, Ned
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Eric Voit (evoit)
- Re: [Rats] security-level claim (was Re: WGLC for… Henk Birkholz
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] security-level claim (was Re: WGLC for… Eric Voit (evoit)
- Re: [Rats] security-level claim (was Re: WGLC for… Laurence Lundblade
- Re: [Rats] security-level claim (was Re: WGLC for… Giridhar Mandyam
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Carl Wallace
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Michael Richardson
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Laurence Lundblade
- Re: [Rats] WGLC for https://datatracker.ietf.org/… Michael Richardson