[Rats] FW: I-D Action: draft-ietf-rats-tpm-based-network-device-attest-05.txt

Guy Fedorkow <gfedorkow@juniper.net> Mon, 26 October 2020 19:55 UTC

Return-Path: <gfedorkow@juniper.net>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3DDBD3A0E7F for <rats@ietfa.amsl.com>; Mon, 26 Oct 2020 12:55:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=tlZerWhd; dkim=pass (1024-bit key) header.d=juniper.net header.b=Je1zx4c5
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id U59WNMrQMO34 for <rats@ietfa.amsl.com>; Mon, 26 Oct 2020 12:55:28 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 827403A0E83 for <rats@ietf.org>; Mon, 26 Oct 2020 12:55:28 -0700 (PDT)
Received: from pps.filterd (m0108161.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 09QJrQ8Q000690; Mon, 26 Oct 2020 12:55:21 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : references : in-reply-to : content-type : content-transfer-encoding : mime-version; s=PPS1017; bh=k77AiB2qylRHwLAj7VMaYmJExYML9L4GfMUDHdrHS74=; b=tlZerWhdWo73Swl4vCp127wd8y6wt081YkvhVWLGwTFmos/YASMHA4R/4E22bFlLu6ic OtNBw1wEFQzhkirncmm+reklqGq1mZcyAAWvAv7L2bxgsqfoIO2GSbPTyghfIKZB9yGx brf3Gzy8WJwaslm/u4kSaY6dNd7oDQtYwUVg+wqeHDjNdKVWqj23u40GRMrH+osWzEf+ voBdsbuNObQ8p4v1AGxW2+OKgGry8lJbDNy4BO+ycs8wWX8FEfbqdmBKqUNSa5DUlmb5 lTGWN0G0/qV/ElUO9kC5VgFZ7aX1M1eQAdLjCfi2/dROyPB+xErvDj/0fyCaY81BKGa1 9g==
Received: from nam11-dm6-obe.outbound.protection.outlook.com (mail-dm6nam11lp2174.outbound.protection.outlook.com [104.47.57.174]) by mx0b-00273201.pphosted.com with ESMTP id 34ckcxb1y7-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Mon, 26 Oct 2020 12:55:21 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Bs5A7FRxdngmkExYKaDEsClUUTfoMVcZWDxu4YB2YIv5qvi/A4aBWccg5BJegvwOEMEpnqtw7DNJevglru7c0DoTeDRbgi7sWlSdtM+Zy9m1zTVWZ8/TlQi40TxxyREtFGy95Obif555uPlWokKrqxQP/A/mSfGbmIOajgLkSPxSwheV0CnoBy2V+ocVPNCGc5r9vfIpw5/60us1QailYWy0z24oAW0D/sOpbwCdwBEakYAYTq0zzfwQeC9dQ6VLBnIaneWFuoVzFCTALXx9TxwGdjmH8CzLszgBCs2EPW1dy4Sz7eNT4W93Lg+sRD++ozfmGpsY1YL3Xpqe0FP4LA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=k77AiB2qylRHwLAj7VMaYmJExYML9L4GfMUDHdrHS74=; b=lYzdRXEWFLE6oJ0aSqE4ARsatmQmvOjJD/nJxmIdIzSPpb4LCL0S3wbR5lFAvM+JQNBIY2xf9ToQU31Fwp7KOxEjL6yURDzq6V3XcYO9gmKfIjpCaKDhHjxrl/PYRjDcc+/DYTjknKmL0MLrZyy7Flx8pzWcjIRw0di993UUzvrZOcWaByqZu8s+lJ42+nz8szEz6dtzAwcLYrT2dEGb4rOlMG/fZnwnxV1b0Ac7p5ZBBVEXyXdFnsFv6ftxaTvkiqg5OVaw7SeWcCAMC0PV00Ourz5btMWWch40JqHZLPUqPR0N19M1HVixjlBogUHfmL/9I7+VLto3V8o4xFHkAA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=k77AiB2qylRHwLAj7VMaYmJExYML9L4GfMUDHdrHS74=; b=Je1zx4c5mSvCe/TKI8PsFP1XQo7EwkUBXd+koex972s8W+w8i/9qKFP1Ob2S+qog5Qc8+YiD1PtoAzNcYA0JCrs4N72lUDbI7fT0kCu3sAyB7vX4L9ABcy6PwWOupVNBlEM4LFhP2oz0U8k5TBpKebgjGkaaaW5Z8QZ0ZAsQXeM=
Received: from BLAPR05MB7378.namprd05.prod.outlook.com (2603:10b6:208:298::10) by BLAPR05MB7489.namprd05.prod.outlook.com (2603:10b6:208:287::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3499.4; Mon, 26 Oct 2020 19:55:17 +0000
Received: from BLAPR05MB7378.namprd05.prod.outlook.com ([fe80::ed9a:1675:208f:4600]) by BLAPR05MB7378.namprd05.prod.outlook.com ([fe80::ed9a:1675:208f:4600%3]) with mapi id 15.20.3499.017; Mon, 26 Oct 2020 19:55:17 +0000
From: Guy Fedorkow <gfedorkow@juniper.net>
To: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, Dave Thaler <dthaler@microsoft.com>, "Smith, Ned" <ned.smith@intel.com>, "Panwei (William)" <william.panwei@huawei.com>, Mark Baushke <mdb@juniper.net>, Ira McDonald <blueroofmusic@gmail.com>, "Bill Sulzen (bsulzen)" <bsulzen@cisco.com>
CC: Jessica Fitzgerald-McKay <jmfmckay@gmail.com>, "Eric Voit (evoit)" <evoit@cisco.com>, "rats@ietf.org" <rats@ietf.org>, "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>
Thread-Topic: [Rats] I-D Action: draft-ietf-rats-tpm-based-network-device-attest-05.txt
Thread-Index: AQHWq8F7YsqzDldsd0e0zdGQRheW7amqSnEA
Date: Mon, 26 Oct 2020 19:55:17 +0000
Message-ID: <BLAPR05MB7378D4884A906FD47F6657B1BA190@BLAPR05MB7378.namprd05.prod.outlook.com>
References: <160373503765.26087.6796865607217511838@ietfa.amsl.com>
In-Reply-To: <160373503765.26087.6796865607217511838@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
dlp-product: dlpe-windows
dlp-version: 11.5.0.60
dlp-reaction: no-action
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=true; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-10-26T19:55:15Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Method=Standard; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=0633b888-ae0d-4341-a75f-06e04137d755; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=c713eb96-e3c5-4c69-ab86-9c25b19547e7; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ContentBits=2
authentication-results: sit.fraunhofer.de; dkim=none (message not signed) header.d=none;sit.fraunhofer.de; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [24.61.11.4]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 73fcd53f-b5ec-4424-ed40-08d879e91009
x-ms-traffictypediagnostic: BLAPR05MB7489:
x-ld-processed: bea78b3c-4cdb-4130-854a-1d193232e5f4,ExtAddr,ExtFwd
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BLAPR05MB7489A11F9D00A0D48BF00D3ABA190@BLAPR05MB7489.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: sIru0i6dBejnHnoP+f0bBUrH8QadEbnbTbgr9fa/suF0iaIlXxP/Gf+L0WbLtJkIDGoYylQZ7IwWwE8aDvs92b9PYZPGABw6/ymmuicWnMgwD7GdbvlnRSekZItK5/tIoCKJT7RX6RESmmtVnO473ZGyT9JEaHZL9BbYceD9ht+NKj8asVXQx13BRe2v+U0NY3geAzPveRdDhVvs0OuKfC4wv8bSRkGjyo1a60C4M0CKZfUdpKhfTIluEZvSMBwM/hfHyzVKJofNzYpNrFUNk3zkWgt/ehxPz8DNMwNaNhluqcO/Mivs7C5RZ37QfFVmpi/4r3H/ua79BA1vfJv881weiuHX8fr3DNBoKo1T0blmQL8/d2tR/vKB32XsOMt9XIlsFv4/n4GslXp+L6Svhw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BLAPR05MB7378.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(396003)(39860400002)(346002)(366004)(376002)(52536014)(5660300002)(186003)(55016002)(26005)(53546011)(9686003)(4001150100001)(7696005)(76116006)(6506007)(71200400001)(66574015)(7416002)(66556008)(83380400001)(66946007)(4326008)(64756008)(86362001)(66476007)(66446008)(8676002)(110136005)(33656002)(2906002)(8936002)(316002)(478600001)(966005)(54906003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BLAPR05MB7378.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 73fcd53f-b5ec-4424-ed40-08d879e91009
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Oct 2020 19:55:17.4052 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: VzTrkD5v1TooECnqSY9E/HJDKbCRTec5BHnjKFPFMq3ZmZaZ8BHeTocolk75OOAjkTjDJ7u57VGB8y2F22witw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLAPR05MB7489
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.737 definitions=2020-10-26_14:2020-10-26, 2020-10-26 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 lowpriorityscore=0 adultscore=0 priorityscore=1501 malwarescore=0 suspectscore=0 phishscore=0 spamscore=0 mlxscore=0 clxscore=1011 mlxlogscore=999 bulkscore=0 impostorscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2009150000 definitions=main-2010260131
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/svMEOaJpHTEnnrDwyg98rJcm5Og>
X-Mailman-Approved-At: Mon, 26 Oct 2020 14:10:03 -0700
Subject: [Rats] FW: I-D Action: draft-ietf-rats-tpm-based-network-device-attest-05.txt
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Oct 2020 19:55:30 -0000

Greetings colleagues, I've checked in the -05 version of the RATS RIV specification.  As far as I know, this version addresses all the comments from WG Last Call, plus others from earlier reviewers.
  Please take a look, and if your remark wasn't addressed properly, let me know and I'll correct the corrections.  And of course if anyone spots collateral damage, please point it out!
  Thanks all
/guy



Juniper Business Use Only

-----Original Message-----
From: RATS <rats-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org
Sent: Monday, October 26, 2020 1:57 PM
To: i-d-announce@ietf.org
Cc: rats@ietf.org
Subject: [Rats] I-D Action: draft-ietf-rats-tpm-based-network-device-attest-05.txt

[External Email. Be cautious of content]


A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Remote ATtestation ProcedureS WG of the IETF.

        Title           : TPM-based Network Device Remote Integrity Verification
        Authors         : Guy Fedorkow
                          Eric Voit
                          Jessica Fitzgerald-McKay
        Filename        : draft-ietf-rats-tpm-based-network-device-attest-05.txt
        Pages           : 43
        Date            : 2020-10-26

Abstract:
   This document describes a workflow for remote attestation of the
   integrity of firmware and software installed on network devices that
   contain Trusted Platform Modules [TPM1.2], [TPM2.0], as defined by
   the Trusted Computing Group (TCG).


The IETF datatracker status page for this draft is:
https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-ietf-rats-tpm-based-network-device-attest/__;!!NEt6yMaO-gk!TB2y-zn6l6cA57KkgR_-lgmWRtPHcbBhAin0NFydKucXTTIvEY_o6fkG1_i7HIYHiPg$

There are also htmlized versions available at:
https://urldefense.com/v3/__https://tools.ietf.org/html/draft-ietf-rats-tpm-based-network-device-attest-05__;!!NEt6yMaO-gk!TB2y-zn6l6cA57KkgR_-lgmWRtPHcbBhAin0NFydKucXTTIvEY_o6fkG1_i74K3PRzY$
https://urldefense.com/v3/__https://datatracker.ietf.org/doc/html/draft-ietf-rats-tpm-based-network-device-attest-05__;!!NEt6yMaO-gk!TB2y-zn6l6cA57KkgR_-lgmWRtPHcbBhAin0NFydKucXTTIvEY_o6fkG1_i7EVVqwYo$

A diff from the previous version is available at:
https://urldefense.com/v3/__https://www.ietf.org/rfcdiff?url2=draft-ietf-rats-tpm-based-network-device-attest-05__;!!NEt6yMaO-gk!TB2y-zn6l6cA57KkgR_-lgmWRtPHcbBhAin0NFydKucXTTIvEY_o6fkG1_i7CSmkfSE$


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
https://urldefense.com/v3/__ftp://ftp.ietf.org/internet-drafts/__;!!NEt6yMaO-gk!TB2y-zn6l6cA57KkgR_-lgmWRtPHcbBhAin0NFydKucXTTIvEY_o6fkG1_i71-Q1Ydk$


_______________________________________________
RATS mailing list
RATS@ietf.org
https://urldefense.com/v3/__https://www.ietf.org/mailman/listinfo/rats__;!!NEt6yMaO-gk!TB2y-zn6l6cA57KkgR_-lgmWRtPHcbBhAin0NFydKucXTTIvEY_o6fkG1_i7w-wSnkI$