Re: [Rats] RATS use cases review
Michael Richardson <mcr+ietf@sandelman.ca> Mon, 07 October 2019 12:35 UTC
Return-Path: <mcr@sandelman.ca>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B90C1200CD for <rats@ietfa.amsl.com>; Mon, 7 Oct 2019 05:35:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.435
X-Spam-Level: *
X-Spam-Status: No, score=1.435 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_SBL_CSS=3.335, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8Ce_ES1gKpIU for <rats@ietfa.amsl.com>; Mon, 7 Oct 2019 05:35:17 -0700 (PDT)
Received: from relay.sandelman.ca (relay.cooperix.net [IPv6:2a01:7e00::f03c:91ff:feae:de77]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 539E3120169 for <rats@ietf.org>; Mon, 7 Oct 2019 05:35:17 -0700 (PDT)
Received: from dooku.sandelman.ca (unknown [80.233.45.41]) by relay.sandelman.ca (Postfix) with ESMTPS id 025CC1F488; Mon, 7 Oct 2019 12:35:16 +0000 (UTC)
Received: by dooku.sandelman.ca (Postfix, from userid 179) id 3DBE732E9; Mon, 7 Oct 2019 13:01:40 +0200 (CEST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: Jessica Fitzgerald-McKay <jmfmckay@gmail.com>
cc: rats@ietf.org
In-reply-to: <CAM+R6NW1KSf3ziAp8TqnTNwS+a7Y+4TuTDTPVZC8Ae32noXMYA@mail.gmail.com>
References: <CAM+R6NW1KSf3ziAp8TqnTNwS+a7Y+4TuTDTPVZC8Ae32noXMYA@mail.gmail.com>
Comments: In-reply-to Jessica Fitzgerald-McKay <jmfmckay@gmail.com> message dated "Wed, 10 Jul 2019 13:53:41 -0400."
X-Mailer: MH-E 8.6; nmh 1.6; GNU Emacs 24.5.1
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha256"; protocol="application/pgp-signature"
Date: Mon, 07 Oct 2019 13:01:40 +0200
Message-ID: <30566.1570446100@dooku.sandelman.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/_QEcmnV65wPF2-6txjrMhl328Gw>
Subject: Re: [Rats] RATS use cases review
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Oct 2019 12:35:19 -0000
Jessica Fitzgerald-McKay <jmfmckay@gmail.com> wrote: > I took a careful read of the use cases document. I notices that > Sections 5.1 - 5.6.2 each are variations on the themes of attesting to > a device's: ... > In this light, the right approach is to organize the document around > the information that is being attested (the above list, plus end-user > information (section 5.6.3), geographic attestation (section 5.7), and > connectivity attestation (section 5.8)), with perhaps additional > information on how these types of attestation can be combined in > support of things like, say, critical infrastructure security, etc. > What does the work group think? This thread didn't go very far, unfortunately. I've spent quite a few hours since thinking about your suggestion. In many ways, the Thursday morning side-meeting went in the other direction, providing new situations which differed from existing use cases only in the severity. As I explain in another email, I have added a set of attributes to each use case, being; - Who will use it: - Attestation type: (passport or background check) - Attesting Party - Relying Party - Claims used The claims used are all TBD at this point. As I said at the meeting in March, I don't want to do ontology up-front, but rather to just collect all sorts of things, even if they seem to overlap. Some of Guy's suggestions (in a PDF he sent me) also related to refactoring some use cases, and while I actually agree with his suggestion, I still want to avoid that. -- ] Never tell me the odds! | ipv6 mesh networks [ ] Michael Richardson, Sandelman Software Works | network architect [ ] mcr@sandelman.ca http://www.sandelman.ca/ | ruby on rails [
- [Rats] RATS use cases review Jessica Fitzgerald-McKay
- [Rats] 答复: RATS use cases review Xialiang (Frank, Network Standard & Patent Dept)
- Re: [Rats] RATS use cases review Panwei (William)
- Re: [Rats] RATS use cases review Michael Richardson
- Re: [Rats] RATS use cases review Jessica Fitzgerald-McKay
- Re: [Rats] RATS use cases review Michael Richardson
- [Rats] Claims for to device trust (was Re: RATS u… Laurence Lundblade