[Rats] [ietf-rats-wg/eat] 8c9a3e: Security Considerations
Laurence Lundblade <noreply@github.com> Thu, 19 March 2020 18:02 UTC
Return-Path: <noreply@github.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 113133A0C66 for <rats@ietfa.amsl.com>; Thu, 19 Mar 2020 11:02:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.1
X-Spam-Level:
X-Spam-Status: No, score=-7.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=github.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pV7Y2GrowK4w for <rats@ietfa.amsl.com>; Thu, 19 Mar 2020 11:02:21 -0700 (PDT)
Received: from out-23.smtp.github.com (out-23.smtp.github.com [192.30.252.206]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BC13F3A0C1A for <rats@ietf.org>; Thu, 19 Mar 2020 11:02:17 -0700 (PDT)
Date: Thu, 19 Mar 2020 11:02:16 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=github.com; s=pf2014; t=1584640936; bh=dqbiDJxkY7ilBydP6mPOE89Dx01T6Iy7MzeSJ4xbenQ=; h=Date:From:To:Subject:From; b=rHT2L+DYOLqlCGWDmutFzOto9XdOi6+Z9Q0nnQwjXShDhAzgTmG8hurKr7XNrrgjD uYW+e39ITtk/iBo461QwZUgSyXPMUyYigfirMW01NPyxEfbdMyNKbUp9ZQ7Mi1YPgT S+4pcxZEvntrQd116aaX4zR4WYfIe2hizlflSYQA=
From: Laurence Lundblade <noreply@github.com>
To: rats@ietf.org
Message-ID: <ietf-rats-wg/eat/push/refs/heads/update_debug_claim/b43048-cc226d@github.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
X-GitHub-Recipient-Address: rats@ietf.org
X-Auto-Response-Suppress: All
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/UDbmfSj5KBhjYhvYnq_FripUHgI>
Subject: [Rats] [ietf-rats-wg/eat] 8c9a3e: Security Considerations
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Mar 2020 18:02:23 -0000
Branch: refs/heads/update_debug_claim Home: https://github.com/ietf-rats-wg/eat Commit: 8c9a3eaa2273979da0e247c58a04d093d2780016 https://github.com/ietf-rats-wg/eat/commit/8c9a3eaa2273979da0e247c58a04d093d2780016 Author: gmandyam <mandyam@quicinc.com> Date: 2019-08-12 (Mon, 12 Aug 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Security Considerations First cut Commit: f47a8b49b49763f5cd6887e48bb22bc521175471 https://github.com/ietf-rats-wg/eat/commit/f47a8b49b49763f5cd6887e48bb22bc521175471 Author: gmandyam <mandyam@quicinc.com> Date: 2019-10-16 (Wed, 16 Oct 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Update draft-ietf-rats-eat.md Commit: c237b91135dcd940339e0860d33036e90dd9d941 https://github.com/ietf-rats-wg/eat/commit/c237b91135dcd940339e0860d33036e90dd9d941 Author: Laurence Lundblade <lgl@securitytheory.com> Date: 2019-10-31 (Thu, 31 Oct 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- revamp of submods and nested tokens Commit: 5bfb9df8c6c6043a71bc98c140a100e4a0c278c6 https://github.com/ietf-rats-wg/eat/commit/5bfb9df8c6c6043a71bc98c140a100e4a0c278c6 Author: Laurence Lundblade <lgl@securitytheory.com> Date: 2019-10-31 (Thu, 31 Oct 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Revert "revamp of submods and nested tokens". It should be a PR, not a direct commit. This reverts commit c237b91135dcd940339e0860d33036e90dd9d941. Commit: 2a051f45f07398de86a5731ff124c20a52ce1e09 https://github.com/ietf-rats-wg/eat/commit/2a051f45f07398de86a5731ff124c20a52ce1e09 Author: gmandyam <mandyam@quicinc.com> Date: 2019-11-14 (Thu, 14 Nov 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Update draft-ietf-rats-eat.md Co-Authored-By: Thomas Fossati <tho.ietf@gmail.com> Commit: b1be67930ffd4c74f75d7e72ee0508e09126753e https://github.com/ietf-rats-wg/eat/commit/b1be67930ffd4c74f75d7e72ee0508e09126753e Author: gmandyam <mandyam@quicinc.com> Date: 2019-11-17 (Sun, 17 Nov 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Update draft-ietf-rats-eat.md Commit: bdb24b4b85f06781b66f92d6c458e489d39cd8ab https://github.com/ietf-rats-wg/eat/commit/bdb24b4b85f06781b66f92d6c458e489d39cd8ab Author: Henk Birkholz <henk.birkholz@sit.fraunhofer.de> Date: 2019-11-27 (Wed, 27 Nov 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- first attempt at fixing the CirclCI issues (and apparently xml2rfc) that creates an Error: Expected <date> attribute "year" to be an integer, but found "n.d." Commit: a69331d7248345bde8fad2de93e4ce39c753be85 https://github.com/ietf-rats-wg/eat/commit/a69331d7248345bde8fad2de93e4ce39c753be85 Author: Laurence Lundblade <laurencelundblade@users.noreply.github.com> Date: 2019-12-05 (Thu, 05 Dec 2019) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- OEMID clarifications and references (#41) * OEMID clarifications and references * Typographic errors in OEM ID section * Fix dates in references that seem to be causing build failures Commit: efd3e2c1217936ca454d8b666e90e1a832a46152 https://github.com/ietf-rats-wg/eat/commit/efd3e2c1217936ca454d8b666e90e1a832a46152 Author: Laurence Lundblade <laurencelundblade@users.noreply.github.com> Date: 2020-01-06 (Mon, 06 Jan 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Add nonce claim, update jti/cti text (#42) * Add nonce claim, update jti/cti text * Remove confusing comment about nonce transport security * Add size range for nonce and correct the CDDL Commit: e0132c0a3bf8abf876b8cfd88c1d92ca4d844ea1 https://github.com/ietf-rats-wg/eat/commit/e0132c0a3bf8abf876b8cfd88c1d92ca4d844ea1 Author: Laurence Lundblade <lgl@securitytheory.com> Date: 2020-01-06 (Mon, 06 Jan 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Add changes since -01 section Commit: 7d9a8de9cf276d7a71b4eaa8bf254f3757966fcf https://github.com/ietf-rats-wg/eat/commit/7d9a8de9cf276d7a71b4eaa8bf254f3757966fcf Author: Laurence Lundblade <laurencelundblade@users.noreply.github.com> Date: 2020-02-07 (Fri, 07 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- UEID update: add references; 128 bits now, up to 256 bits later * Up UEID to 256 bits and add design rationale appendix * More thorough justification for 256-bit UEID * Correct spelling of BlueTooth Co-Authored-By: Thomas Fossati <tho.ietf@gmail.com> * Grammar Co-Authored-By: Thomas Fossati <tho.ietf@gmail.com> * Grammar Co-Authored-By: Thomas Fossati <tho.ietf@gmail.com> * Spelling Co-Authored-By: setrofim <setrofim@gmail.com> * Grammar Co-Authored-By: Thomas Fossati <tho.ietf@gmail.com> * fixed date issues for registries in yaml header * 128 bit UEIDs allowed, 256 optional; improve analysis in appendix * Correctly refer to oemid claim rather than OUI * EUI-48... are rolled in to EUI; add reference for IMEI * add references for EUIs Co-authored-by: Thomas Fossati <tho.ietf@gmail.com> Co-authored-by: setrofim <setrofim@gmail.com> Co-authored-by: Henk Birkholz <henkbirkholz@users.noreply.github.com> Commit: 2c14b48b2b43df2f23f1c6c0a0540f4ee1db8331 https://github.com/ietf-rats-wg/eat/commit/2c14b48b2b43df2f23f1c6c0a0540f4ee1db8331 Author: Laurence Lundblade <laurencelundblade@users.noreply.github.com> Date: 2020-02-13 (Thu, 13 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- revamp of submods and nested tokens (#43) * the nested eat claims is folded in with submods * specifies no inheritance * fix date for birthday attack reference to address build error * correction to say submod security level is less than or equal to rather than less than Commit: 136d631593e21078c3d1010f1866ce837f7ed189 https://github.com/ietf-rats-wg/eat/commit/136d631593e21078c3d1010f1866ce837f7ed189 Author: Laurence Lundblade <lgl@island-resort.com> Date: 2020-02-13 (Thu, 13 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- add differences from -02 draft Commit: a648f41f4040e94847d2f6669bb0045e4331d53a https://github.com/ietf-rats-wg/eat/commit/a648f41f4040e94847d2f6669bb0045e4331d53a Author: Laurence Lundblade <laurencelundblade@users.noreply.github.com> Date: 2020-02-19 (Wed, 19 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Lots of CDDL fixes (#52) * Lots of fixes to the CDDL * update changes since -02 draft * Correct labels so the are integers and other minor * fix tiny typo Thanks, Henk Commit: b899254440826cea379eb1a5115ad08d1ed69898 https://github.com/ietf-rats-wg/eat/commit/b899254440826cea379eb1a5115ad08d1ed69898 Author: Giri Mandyam <mandyam@quicinc.com> Date: 2020-02-19 (Wed, 19 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Merge branch 'master' into br1 Commit: cf76bd58c185a98a8a9d1637b9030e17f1054a92 https://github.com/ietf-rats-wg/eat/commit/cf76bd58c185a98a8a9d1637b9030e17f1054a92 Author: Giri Mandyam <mandyam@quicinc.com> Date: 2020-02-19 (Wed, 19 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Merge pull request #28 from gmandyam/br1 Security Considerations Commit: 402099d886100f0181b2c9cbf51de39d2cda3afb https://github.com/ietf-rats-wg/eat/commit/402099d886100f0181b2c9cbf51de39d2cda3afb Author: Giri Mandyam <mandyam@quicinc.com> Date: 2020-02-19 (Wed, 19 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Update draft-ietf-rats-eat.md Commit: 181c5fc09e5e71dc80c1108828fe2cfc4dfaec60 https://github.com/ietf-rats-wg/eat/commit/181c5fc09e5e71dc80c1108828fe2cfc4dfaec60 Author: Giri Mandyam <mandyam@quicinc.com> Date: 2020-02-19 (Wed, 19 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Update draft-ietf-rats-eat.md Commit: 82dc3b0b98ccf5ae46378d85ab7481e275440159 https://github.com/ietf-rats-wg/eat/commit/82dc3b0b98ccf5ae46378d85ab7481e275440159 Author: Laurence Lundblade <lgl@island-resort.com> Date: 2020-02-20 (Thu, 20 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Array of nonces; fix example; text reformatting Commit: 22462da89d970fbb3b5922402263381ea5052692 https://github.com/ietf-rats-wg/eat/commit/22462da89d970fbb3b5922402263381ea5052692 Author: Giri Mandyam <mandyam@quicinc.com> Date: 2020-02-20 (Thu, 20 Feb 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- Update draft-ietf-rats-eat.md Commit: 15eacfa4f5f8915fb2c2e0c53464aefcb859b6af https://github.com/ietf-rats-wg/eat/commit/15eacfa4f5f8915fb2c2e0c53464aefcb859b6af Author: Laurence Lundblade <lgl@securitytheory.com> Date: 2020-03-19 (Thu, 19 Mar 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- merge master into boot state branch Commit: cc226daac1d6dcef8bcd71e7bbd1ca4e268fc038 https://github.com/ietf-rats-wg/eat/commit/cc226daac1d6dcef8bcd71e7bbd1ca4e268fc038 Author: Laurence Lundblade <lgl@securitytheory.com> Date: 2020-03-19 (Thu, 19 Mar 2020) Changed paths: M draft-ietf-rats-eat.md Log Message: ----------- split boot-state claim into debug disable and secure boot claims Compare: https://github.com/ietf-rats-wg/eat/compare/b430487d7d35...cc226daac1d6
- [Rats] [ietf-rats-wg/eat] 8c9a3e: Security Consid… Laurence Lundblade