[Rats] Re: Question for the Multiple Verifiers Draft
Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> Tue, 31 March 2026 15:56 UTC
Return-Path: <muhammad_usama.sardar@tu-dresden.de>
X-Original-To: rats@mail2.ietf.org
Delivered-To: rats@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 7AF48D42CBB5 for <rats@mail2.ietf.org>; Tue, 31 Mar 2026 08:56:21 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1774972581; bh=ZkJTF/5D/CfEyIjwxGBHRxl/2dtS4jHgHSAWxmvmTnk=; h=Date:From:Subject:To:References:In-Reply-To; b=UXZUeHZm+kwpB23y7nU62AKr9VFGOeJfr2ChfjMzo81Lq3VT4ySDpM0hId2z3Jcze OuARFnrxZxeEUjlNHRYayQHNL4AS9Zy0h1eBD6SMGEV1AOVvYR82n5uBJ3z23wJ72Q jn89iwqGtWxwkf5HtuEaC0KUIC3durUzgZAHM9y0=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=tu-dresden.de
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2VRPJ9uldEeU for <rats@mail2.ietf.org>; Tue, 31 Mar 2026 08:56:20 -0700 (PDT)
Received: from mailout7.zih.tu-dresden.de (mailout7.zih.tu-dresden.de [141.76.32.220]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 79504D42CB9E for <rats@ietf.org>; Tue, 31 Mar 2026 08:56:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tu-dresden.de; s=dkim2022; h=Content-Type:In-Reply-To:References:To:Subject :From:MIME-Version:Date:Message-ID:Sender:Reply-To:Cc: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=C20xS+QIYu0QTDdhjPj2ITl/SfY2L1xesymsw1FbczU=; b=k3Pk0sOJDigFJjLku4UCHy+8d7 oqB46H1Ax8qZ5+A8Z+ttJEHMPp0DYXubdaWyhZKHTNFTH/upmbLK+k7iR+vOtRM3ELrOKTsW717NG NCwKZkaXJOVqgEwzV/MFDOPm0Q/PkvIycwccYz7ruVWf1V8QoCa2VGrEvQKSYFv97thmoo9WpmAMJ TwH2CVXoOXYvmraPbANtu/Qrwq/nBLIpBKyjMV/gxo8+yd9ZLiAz1XlySJ3p/nt6EuoB6VEUCu6jB jDeHPzB0VbULd4PKbVdewRsjvY7nd1CAJ+HrcrmKeCBTVbKt1Xheh3tZ6EsKJ8e6yl/6SVVASuaCv M/z9u/Kw==;
Received: from msx-t422.msx.ad.zih.tu-dresden.de ([172.26.35.139] helo=msx.tu-dresden.de) by mailout7.zih.tu-dresden.de with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96) (envelope-from <muhammad_usama.sardar@tu-dresden.de>) id 1w7bRs-004mDb-1K; Tue, 31 Mar 2026 17:56:19 +0200
Received: from [10.12.5.228] (141.76.13.165) by msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.2562.37; Tue, 31 Mar 2026 17:56:13 +0200
Message-ID: <1786074c-0b45-4d15-87d4-68155e7e1528@tu-dresden.de>
Date: Tue, 31 Mar 2026 17:56:12 +0200
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
From: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
To: Hannes Tschofenig <hannes.tschofenig=40gmx.net@dmarc.ietf.org>, rats <rats@ietf.org>
References: <4f862ce7-3e5d-46a4-bdf4-950f9a71dfd0@gmx.net>
Content-Language: en-US
In-Reply-To: <4f862ce7-3e5d-46a4-bdf4-950f9a71dfd0@gmx.net>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-512"; boundary="------------ms090604070100080503070501"
X-ClientProxiedBy: MSX-L422.msx.ad.zih.tu-dresden.de (172.26.34.142) To msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139)
X-TUD-Virus-Scanned: mailout7.zih.tu-dresden.de
Message-ID-Hash: DXABGH5Z7OTESOYDTSYWG7DKC2DMDEUX
X-Message-ID-Hash: DXABGH5Z7OTESOYDTSYWG7DKC2DMDEUX
X-MailFrom: muhammad_usama.sardar@tu-dresden.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: Question for the Multiple Verifiers Draft
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/XAofKRviX7lz0W322NpDxTsN1sE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>
Hi Hannes, Unfortunately, not an answer to your question, but a related note that might bring everyone on the same page: On 31.03.26 13:54, Hannes Tschofenig wrote: > > 1. Do you expect nonces to be generated by the verifiers? > As some of us discussed in the attested TLS as well as composite attesters design team meetings (both on 16.02.), I think there is a need to qualify the usage of "nonce" because I believe there has been potential confusion in the discussions: 1. Protocol nonce (such as client nonce and server nonce in TLS) 2. Attestation nonce (for attestation) 3. Cryptographic nonce (e.g., for ECDSA) See how Ned precisely distinguishes those [0] and related issues for details [1,2]. ISTM that reference interaction models draft hasn't done justice with this and closed the issue [1], so I plan to discuss this in more detail in draft-sardar-rats-sec-cons [3]. Best, -Usama [0] https://github.com/mcr/composite-attesters/issues/25 [1] https://github.com/ietf-rats-wg/draft-ietf-rats-reference-interaction-models/issues/82 [2] https://github.com/tls-attestation/exported-attestation/issues/57 [3] https://datatracker.ietf.org/doc/draft-sardar-rats-sec-cons/
- [Rats] Question for the Multiple Verifiers Draft Hannes Tschofenig
- [Rats] Re: Question for the Multiple Verifiers Dr… Thomas Fossati
- [Rats] Re: Question for the Multiple Verifiers Dr… Muhammad Usama Sardar
- [Rats] Re: Question for the Multiple Verifiers Dr… Hannes Tschofenig
- [Rats] Re: Question for the Multiple Verifiers Dr… Henk Birkholz
- [Rats] Re: Question for the Multiple Verifiers Dr… Hannes Tschofenig
- [Rats] Re: Question for the Multiple Verifiers Dr… Hannes Tschofenig
- [Rats] Re: Question for the Multiple Verifiers Dr… Thomas Fossati