[Rats] Data Attestation (was Re: 3 Use cases)
Michael Richardson <mcr+ietf@sandelman.ca> Mon, 07 October 2019 12:35 UTC
Return-Path: <mcr@sandelman.ca>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 40918120804 for <rats@ietfa.amsl.com>; Mon, 7 Oct 2019 05:35:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5ai-WRNJ5t94 for <rats@ietfa.amsl.com>; Mon, 7 Oct 2019 05:35:17 -0700 (PDT)
Received: from relay.sandelman.ca (relay.cooperix.net [176.58.120.209]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 446CB1200B1 for <rats@ietf.org>; Mon, 7 Oct 2019 05:35:17 -0700 (PDT)
Received: from dooku.sandelman.ca (unknown [80.233.45.41]) by relay.sandelman.ca (Postfix) with ESMTPS id F240C1F485; Mon, 7 Oct 2019 12:35:15 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id DB6FB335B; Mon, 7 Oct 2019 13:39:39 +0200 (CEST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "Oliver, Ian (Nokia - FI/Espoo)" <ian.oliver@nokia-bell-labs.com>
cc: "rats@ietf.org" <rats@ietf.org>
In-reply-to: <HE1PR0701MB2267E23FFE8FF91F5DAC6FD58FCF0@HE1PR0701MB2267.eurprd07.prod.outlook.com>
References: <HE1PR0701MB2267E23FFE8FF91F5DAC6FD58FCF0@HE1PR0701MB2267.eurprd07.prod.outlook.com>
Comments: In-reply-to "Oliver, Ian (Nokia - FI/Espoo)" <ian.oliver@nokia-bell-labs.com> message dated "Mon, 15 Jul 2019 08:57:23 -0000."
X-Mailer: MH-E 8.6; nmh 1.6; GNU Emacs 24.5.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Date: Mon, 07 Oct 2019 13:39:39 +0200
Message-ID: <31165.1570448379@dooku.sandelman.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/TmXXzKtr5-X2wIpaMYo4-NbNjWQ>
Subject: [Rats] Data Attestation (was Re: 3 Use cases)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Oct 2019 12:35:19 -0000
Oliver, Ian (Nokia - FI/Espoo) <ian.oliver@nokia-bell-labs.com> wrote: > Data Attestation > A piece of data received from a trusted element may itself contain > information about the configuration of that device when that data was > received. This might be a single measurement or a combination of > measurements over time bounded by a session or transacition. > In this use case we continue the chain-of-trust up from the device > firmware/operating environment to the data. This enables that once a > data packet is received, it's integrity can be checked (cf: JWT) and > this information also be traced to the device that produced that > data. The data and device then can be attested together. This use case seems similar to the the geographic cases, but also to the FIDO use cases, where one needs to know the state of the device that took the biometric reading in order to know if the biometric is useful. Can I ask you to fill in my template: Use case name: Who will use it: Attesting Party: Relying Party: Attestation type: Passport or Background Check Claims used: Description: -- ] Never tell me the odds! | ipv6 mesh networks [ ] Michael Richardson, Sandelman Software Works | network architect [ ] mcr@sandelman.ca http://www.sandelman.ca/ | ruby on rails [
- [Rats] 3 Use cases Oliver, Ian (Nokia - FI/Espoo)
- Re: [Rats] 3 Use cases Thomas Fossati
- Re: [Rats] 3 Use cases Panwei (William)
- Re: [Rats] 3 Use cases Oliver, Ian (Nokia - FI/Espoo)
- [Rats] Dynamic Systems in IETF RATS (was Re: 3 Us… Michael Richardson
- [Rats] Supply Chain Attestation (was Re: 3 Use ca… Michael Richardson
- [Rats] Data Attestation (was Re: 3 Use cases) Michael Richardson
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Kathleen Moriarty
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Smith, Ned
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Henk Birkholz
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Laurence Lundblade
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Michael Richardson
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Henk Birkholz
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Henk Birkholz
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Kathleen Moriarty
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Laurence Lundblade
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Smith, Ned
- Re: [Rats] Dynamic Systems in IETF RATS (was Re: … Oliver, Ian (Nokia - FI/Espoo)
- Re: [Rats] Data Attestation (was Re: 3 Use cases) Oliver, Ian (Nokia - FI/Espoo)
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Michael Richardson
- Re: [Rats] Supply Chain Attestation (was Re: 3 Us… Smith, Ned