IETF Logo Mail Archive

Re: [Rats] UJCS standardization (relates to UCCS WG last call)

"lgl island-resort.com" <lgl@island-resort.com> Fri, 15 September 2023 18:43 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B2351C14CE3B for <rats@ietfa.amsl.com>; Fri, 15 Sep 2023 11:43:06 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.908
X-Spam-Level:
X-Spam-Status: No, score=-6.908 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xLw402AiZiQD for <rats@ietfa.amsl.com>; Fri, 15 Sep 2023 11:43:02 -0700 (PDT)
Received: from NAM02-DM3-obe.outbound.protection.outlook.com (mail-dm3nam02on2101.outbound.protection.outlook.com [40.107.95.101]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A5A7DC14CE5D for <rats@ietf.org>; Fri, 15 Sep 2023 11:43:02 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ob9j6Ih6WJK9hFwaQAZG3aEqqCwS2fVdTAaduNf9O/jK/UhYdGkokVRKJosdmXT2Tyxn1D7EcrSnsupyErNEiyRmmeGhggQpbzYHrsteC9wVGki03Fvu4UUH2F1SBSYY5bMaF29TxmCYPzfl1iNBIY8JYkqISSzQgdTOTbOUG2k87e+xFuC2UYLZkjO39Xy4r10vG5GU03KFyQNxPsB7lSuOVFgvHpyMx86i82QAFI0BrUY3P/R4Eote3xB1Qed0kjwW5ZzIE0bgj28sGC12qQMT8teLrB3JsPM+aG4VPRq4shcBPBuZLAMlnmbx3tRgLKWyxco4uvEJL5tTL1Lirg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=zMarbtop1dg04WjqOPpm8IK4ZU+xqN4NihmuhL9utQQ=; b=bin91cdE8eBpQz2RZlllI0JVTovsZrNgKRZG8Z3JsIpT6/Kl6ptum50zH5iGI49Rxjn42oANGPU23RV81waC89m1dcjVeTYYdjr2PqqLoFkvrIGapzQOK52gD3Z5FA5I3EIM5/Ofrl8eaUBnnKgCR7vfDqf1QmHc8BUtUIkPkxX3DpPlq9C7POnaOPbdn7d03qiJlVCoLSAyCrdlpIzkDCcrgKAgU/dL8PpiHwxgxWm1K2Cn6D+3IL/XDLwXlHKU/HMALfMpmK+jQ5fuVIhLs3CtlZAHFvw74ebLGbFJPaHrphgcy7O+iZcIzXXInJ0pxUa+z2FRxI2KQOuNVFwnYg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by SJ2PR22MB5184.namprd22.prod.outlook.com (2603:10b6:a03:589::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6768.33; Fri, 15 Sep 2023 18:42:58 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::f317:e4d1:7e1e:3934]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::f317:e4d1:7e1e:3934%3]) with mapi id 15.20.6792.020; Fri, 15 Sep 2023 18:42:58 +0000
From: "lgl island-resort.com" <lgl@island-resort.com>
To: Thomas Fossati <thomas.fossati@linaro.org>
CC: rats <rats@ietf.org>, Roman Danyliw <rdd@cert.org>
Thread-Topic: [Rats] UJCS standardization (relates to UCCS WG last call)
Thread-Index: AQHZ5mx2v7tLxNSUrE6/0b66cXOJu7Ab30kAgABctYA=
Date: Fri, 15 Sep 2023 18:42:58 +0000
Message-ID: <4D0A70FB-2F99-423B-9E3B-77ACD58C5470@island-resort.com>
References: <CE435754-AA38-41CD-9AA2-65EB2347EBA0@island-resort.com> <CA+1=6yd0QM6E2BnCKgWOJHqJxhcmajFb_j9qd81fAbKw2=yeZg@mail.gmail.com>
In-Reply-To: <CA+1=6yd0QM6E2BnCKgWOJHqJxhcmajFb_j9qd81fAbKw2=yeZg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR22MB3092:EE_|SJ2PR22MB5184:EE_
x-ms-office365-filtering-correlation-id: 9f2c72e6-43a3-48ab-8fb6-08dbb61b94d3
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR22MB3092.namprd22.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(396003)(346002)(376002)(136003)(366004)(39830400003)(186009)(451199024)(1800799009)(41300700001)(6506007)(6486002)(71200400001)(53546011)(38100700002)(26005)(122000001)(36756003)(38070700005)(86362001)(166002)(6512007)(33656002)(2616005)(64756008)(2906002)(83380400001)(66556008)(54906003)(6916009)(8936002)(66446008)(478600001)(8676002)(4326008)(5660300002)(66946007)(76116006)(316002)(66476007)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_4D0A70FB2F99423B9E3B77ACD58C5470islandresortcom_"
MIME-Version: 1.0
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 9f2c72e6-43a3-48ab-8fb6-08dbb61b94d3
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Sep 2023 18:42:58.0155 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 3WAzRmSasrK0k+Iw4hl3aVI1hhp7PUzEu9cfxXnkI4Iuwf5JJ11stKbwyEFvyW8m+PL1HBOc1TgUpbtgHnPzlw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ2PR22MB5184
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/ZNWt7flv2th6mVGRFK3Wr8sSIco>
Subject: Re: [Rats] UJCS standardization (relates to UCCS WG last call)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Sep 2023 18:43:06 -0000

I’ve created the PR here<https://github.com/ietf-rats-wg/draft-ietf-rats-uccs/pull/18> to add UJCS support.

- Renamed to “UCS” for Unsigned Claim Set, but don’t mind “UTCS" for Unsigned Token Claim Set

- Mostly I just changed “UCCS” to “UCS” and “CWT” to “CWT/JWT” through out the document.

- I added CDDL that has nothing to do with EAT:
   - Corrected UCCS CDDL — previous CDDL was missing definition of tagged and untagged
   - New CDDL for UJCS, which is very simple
   - (I haven’t tested this CDDL against nested EAT examples yet; will do that if there is desire to go forward).

- I added the glue CDDL to hook up UJCS and UCCS to EAT


While I know many of you have local use cases that only need CBOR and have waited many years for this, I still think we should do this for the sake of the larger community, so save ourselves work and make it easier for the reader and future work based on CWT/JWT. I’m trying to help out here to make it go.

Of course, in the end it is the consensus of this WG that determines what we do.  Now we have a rough idea of the work it takes to get this done to help decided whether to do this or not.

LL



On Sep 15, 2023, at 6:10 AM, Thomas Fossati <thomas.fossati@linaro.org> wrote:

hi Laurence,

On Wed, 13 Sept 2023 at 20:02, lgl island-resort.com
<lgl@island-resort.com> wrote:
I did look at what it would take to add it to the UCCS raft and it doesn’t seem too difficult. The biggest disruption is seems like the name change. The CDDL is already there. I will try to help with the authorship in UCCS.

Am I reading this correctly that you'd be the one preparing a PR with
the necessary changes?

That'd give us a precise measure of the effort required for widening
scope to UJCS, and it's probably the best way to convince all doubting
Thomas :-)

cheers, t

v2.23.0 | Report a Bug | By Email