IETF Logo Mail Archive

Re: [Rats] Requesting a Nonce from a Verifier

Orie Steele <orie@transmute.industries> Tue, 05 March 2024 20:29 UTC

Return-Path: <orie@transmute.industries>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E2B9C14F695 for <rats@ietfa.amsl.com>; Tue, 5 Mar 2024 12:29:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.086
X-Spam-Level:
X-Spam-Status: No, score=-2.086 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, T_REMOTE_IMAGE=0.01, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=transmute.industries
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H8KkGVCM1fCK for <rats@ietfa.amsl.com>; Tue, 5 Mar 2024 12:29:07 -0800 (PST)
Received: from mail-pj1-x1032.google.com (mail-pj1-x1032.google.com [IPv6:2607:f8b0:4864:20::1032]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 31225C15109D for <rats@ietf.org>; Tue, 5 Mar 2024 12:29:07 -0800 (PST)
Received: by mail-pj1-x1032.google.com with SMTP id 98e67ed59e1d1-29b7164eef6so261714a91.2 for <rats@ietf.org>; Tue, 05 Mar 2024 12:29:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=transmute.industries; s=google; t=1709670546; x=1710275346; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=7AK0w83aGLcPXVGqBQIipzrjMfXDFBK2HA5oTJ9UumU=; b=fShqI21g/ib3j41REWV5V8UMfjmnOitNInEOFEruhwsz3vXYlveulxDcf1TXb0IYvt PCUcxA7vfWbbmOZbj+YYGva2l/iorDo3QPQlc55d5y/TIqKSm/H5knoJwSeDZ9V6c9oV W4ctLpTztUggnX1Yj5wmO7pciRg0lo4ynpIIDCjXL+VhzA73BEcs7Eb5q/iiCfl6iDv1 3h3F15R6H/nUB4yl9bZh9ij6v/0OyOHGjA8BkONdHcJRvB2JkqPPMqWYKsTvGzguclLn skrWYJLzZHR4TH86N8yJOkvsfaOEm2P+tPB+qOGd+L4TAoGOqo3BTBaMpIY4bDIF0x+3 Z/dg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1709670546; x=1710275346; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=7AK0w83aGLcPXVGqBQIipzrjMfXDFBK2HA5oTJ9UumU=; b=bBP+wMhkedoXm9yNQRnYivCQp+7UV0c+YMVwtCUUdwre0mbSsZsQATbwCFjsS5Bmqv JqAH4Zkth8zmtsGm1P5Q/IyY+6Nk3umt4X/KhZAfkP/dOW8qGcm7bMTw3IFDR8O6lsRo iOWbMVdrPvQEb1HSyrVHPrZX41ysVgqoiyfVQdO6150VTc9wOg4nKzQPH8H1avv75uAZ pJl80nm+9Ot6UufGEohwXDEd1VJhXFDbo+vleKPaCwrhFwMao1d3mJ3/UV2rO7Y146mw DTygCQWqYFJa5W2URMu2acaW5nskA5EBV0a2YnRb/1v537MlnFlkbPJzYBWYcfSw4aew MQCA==
X-Forwarded-Encrypted: i=1; AJvYcCV37HpNjlGXBQCdG4KjGJPXJwogLEA7brBwfWdgZo8OTVYnDDF59s2uOLkNnSmPuo1ya4I16vMZ5kF+oG9t
X-Gm-Message-State: AOJu0YxEYMTGUq8LGf5IHC4r2RlFXuC6e53hvhzTwpLRDjmwZ1Qhhx8+ m877T1Xp9K8LlMF+NwX9eo2MB1ecjWp5h0HK01KwlZiZQYqFA/6SmyYRRZM58ok2anpdV0sjIUt 2mQRuUpkEDiZvPtB2S9ciEAqNnGcwvfGQCmJAIA==
X-Google-Smtp-Source: AGHT+IE/BasIWErbB7Y1ugy+7vxk2WDbBoYm+M1kd4IVIETocOfU7N7uqh6Ls/XpBR/i8NkePJVs9uQe7Pgz735Le7o=
X-Received: by 2002:a17:90b:fc9:b0:299:7f4c:31e0 with SMTP id gd9-20020a17090b0fc900b002997f4c31e0mr11599457pjb.1.1709670546094; Tue, 05 Mar 2024 12:29:06 -0800 (PST)
MIME-Version: 1.0
References: <02c501da6987$d2d64490$7882cdb0$@gmx.net> <ecf9ac86-82f2-80b7-160a-bdde42387ef0@ietf.contact> <2E3E84DF-F528-420D-BB70-B6E23FEE0978@intel.com> <CAN8C-_LO+J+gj3=RutGiyxzpvint3Jb40-OwEEraGht-1dhdBw@mail.gmail.com> <010201da6d59$dc8a9ec0$959fdc40$@gmx.net> <CAN8C-_LH+oeMRUuEZrWr1Ksn53CuFL2qx6V1pAwZ59-ZgmSg2g@mail.gmail.com> <29743.1709663753@obiwan.sandelman.ca>
In-Reply-To: <29743.1709663753@obiwan.sandelman.ca>
From: Orie Steele <orie@transmute.industries>
Date: Tue, 05 Mar 2024 14:28:55 -0600
Message-ID: <CAN8C-_L=b3bj3iXQeysSexF1UbECvaByYBj3QWvWZSj-D_2+zw@mail.gmail.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: Hannes Tschofenig <hannes.tschofenig@gmx.net>, "Smith, Ned" <ned.smith@intel.com>, Henk Birkholz <henk.birkholz@ietf.contact>, rats <rats@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000009558f60612efb16d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/bdMHemC4QK2VZADOpVlgl7qu-sQ>
Subject: Re: [Rats] Requesting a Nonce from a Verifier
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Mar 2024 20:29:11 -0000

Hey Michael,

The point of
https://datatracker.ietf.org/doc/draft-demarco-oauth-status-attestations/

Is for the wallet / holder to convince the verifier that their credential
has a state, within some refresh window.

This eliminates the need for the verifier to contact the issuer, and
address the herd privacy issues with
https://datatracker.ietf.org/doc/draft-ietf-oauth-status-list/

In order for the issuer to know if they should provide the proof of non
revocation, the wallet / holder needs to demonstrate proof of possession
for the credential the revocation is bound to.

However, even in the status list approach, the wallet / holder might
present the full list (all statuses for all credentials) to the verifier,
in the case the verifier cannot make network requests to the issuer.

It's generally considered "bad" for the verifier to "phone home" regarding
credential use, because it enables tracking... and while herd privacy does
increase the anonymity set, it's still an information leakage.

Regards,

OS


On Tue, Mar 5, 2024 at 12:35 PM Michael Richardson <mcr+ietf@sandelman.ca>
wrote:

>
> Orie Steele <orie@transmute.industries> wrote:
>     > The wallet proves possession of the license, the issuer provides a
>     > fresh proof of non revocation, and then later (within some validity
>     > period window for the status attestation) the wallet can present both
>     > the credential and the proof of non suspension, even to an offline
>     > verifier.
>
> Does the verifier have to contact the issuer to determine if
> the non-revocation proof is valid?    If that part a symmetric encryption
> from the issuer, or an assymetric signed statement?   I guess I am
> confusing
> the nonce with the fresh-proof of non-revocation.
>
>
> --
> Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
>            Sandelman Software Works Inc, Ottawa and Worldwide
>
>
>
>
>

-- 


ORIE STEELE
Chief Technology Officer
www.transmute.industries

<https://transmute.industries>

v2.23.0 | Report a Bug | By Email