IETF Logo Mail Archive

[Rats] Re: Security considerations of remote attestation (RFC9334)

Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> Thu, 28 November 2024 12:22 UTC

Return-Path: <muhammad_usama.sardar@tu-dresden.de>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ECF9FC151525 for <rats@ietfa.amsl.com>; Thu, 28 Nov 2024 04:22:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.103
X-Spam-Level:
X-Spam-Status: No, score=-2.103 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=tu-dresden.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W23AkqOto8_O for <rats@ietfa.amsl.com>; Thu, 28 Nov 2024 04:22:21 -0800 (PST)
Received: from mailout4.zih.tu-dresden.de (mailout4.zih.tu-dresden.de [141.30.67.75]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 76B24C14F749 for <rats@ietf.org>; Thu, 28 Nov 2024 04:22:19 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tu-dresden.de; s=dkim2022; h=Content-Type:In-Reply-To:From:References:CC:To :Subject:MIME-Version:Date:Message-ID:Sender:Reply-To: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=/oTjcuHNtEFswwfugIhLVUEn9XGJtbhK9Qrf6wQXyd0=; b=oTP2UkdHI/wLPLmIhgM1l3DudZ KbbC6WDzo8MYrl8mnzX7ZZN852Fxbs5xLq8qy+rZHKAM6CLubsYr39kxnf+5huRxpMvxEtnYlckO8 Vk8l/OpCreIaF1MKLd0+RvyQ8Z7E/frg/l777XdRbdXBV5gZrOmUA/6L5GSTKBGyWOYah9YgQBwIQ EJSjQJFAD7XCYXjjTuy/uTM+z251TuRqPtc3rmmRrKDYfF4Pf8hb7JKVpPy3S8nkAONVH0XX0exGN cAx7ExNcb0a8U37b/2mTOJnU4fzqwXRXlB1D82zzA5uJzsQUHWXQbxGg5mkld7fqmgnARuID3nJYb ZNYp5z2Q==;
Received: from [172.26.35.139] (helo=msx.tu-dresden.de) by mailout4.zih.tu-dresden.de with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <muhammad_usama.sardar@tu-dresden.de>) id 1tGdX9-008zI8-GP; Thu, 28 Nov 2024 13:22:11 +0100
Received: from [192.168.1.2] (78.55.46.244) by msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1544.11; Thu, 28 Nov 2024 13:22:08 +0100
Message-ID: <b273e32a-8855-48b8-b16a-839a238537ee@tu-dresden.de>
Date: Thu, 28 Nov 2024 13:22:08 +0100
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: Thomas Fossati <thomas.fossati@linaro.org>
References: <4ffdd034-05ec-4565-9cad-b40ff82f83fc@tu-dresden.de> <CAHAF5K0Ho_v5EgCSogMjhE5AsN6oYnnHgvVbAu7iyGp3stXzMw@mail.gmail.com> <c7808768-35ce-4783-bece-124d8748ec0c@tu-dresden.de> <CAHAF5K1Sh0ruzz3+wUOCyPE1OWC+LWjkf0j5FqJEtCRjBO3xkQ@mail.gmail.com> <6ae884d8-b7a2-4e5d-9f36-a819284f7589@tu-dresden.de> <f356d4cfc944484ba53600177001ba30@huawei.com> <42365842-ea0e-4129-8469-9f8a22ac0c7d@tu-dresden.de> <9006a93d-4fdd-18da-185a-d20606bb3d20@ietf.contact> <196f403d-f95a-4f81-b00e-08aace4976cc@tu-dresden.de> <CA+1=6yfED4vPA=SJE6OLK7Tpva6QBKGvOnbVpOUexT_nv2T+jA@mail.gmail.com> <5073b0a0-e938-4299-936b-0dd644ea3f88@tu-dresden.de> <CA+1=6ydHjEf8cBEu0oaa8pHBn_As2dowwoEtrtRHR1U+=Vhscg@mail.gmail.com> <92b82fe0-34e6-4a35-b265-a29466cda69a@tu-dresden.de> <CA+1=6yffVFhnMxcXo2pwD1xFdWdHKCj60zT2RKgAg=5DyBKDXQ@mail.gmail.com> <01ede5ee-6e98-4855-b351-5c3c0961f8d2@tu-dresden.de> <CA+1=6yfP+RV0MuyKhSw8CkjJh6gX4pG0hreQdYgqb9AZyZ1kvg@mail.gmail.com>
Content-Language: en-US
From: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
In-Reply-To: <CA+1=6yfP+RV0MuyKhSw8CkjJh6gX4pG0hreQdYgqb9AZyZ1kvg@mail.gmail.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-512"; boundary="------------ms040105040409040401010503"
X-ClientProxiedBy: MSX-L311.msx.ad.zih.tu-dresden.de (172.26.34.111) To msx-t422.msx.ad.zih.tu-dresden.de (172.26.35.139)
X-TUD-Virus-Scanned: mailout4.zih.tu-dresden.de
Message-ID-Hash: 5USWVEMRE45FGDDYPTFEDJELNE77KIF6
X-Message-ID-Hash: 5USWVEMRE45FGDDYPTFEDJELNE77KIF6
X-MailFrom: muhammad_usama.sardar@tu-dresden.de
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Henk Birkholz <henk.birkholz@ietf.contact>, junzhang <junzhang1@huawei.com>, Giridhar Mandyam <giridhar.mandyam@gmail.com>, "lgl island-resort.com" <lgl@island-resort.com>, "rats@ietf.org" <rats@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: Security considerations of remote attestation (RFC9334)
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/fufpTcn7LCVrtDE22LolySS9TDk>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>

On 28.11.24 12:03, Thomas Fossati wrote:

> already titanic discussion tree

I have so far only been talking about things which were "pretty well 
understood". I have not yet opened any of the main Pandora boxes. So the 
iceberg under this titanic is still to come until somebody can convince 
me that RFC9334bis is not required for 5 years.

v2.46.0 | Report a Bug | By Email | System Status