[Rats] Re: Security considerations of remote attestation (RFC9334)
"lgl island-resort.com" <lgl@island-resort.com> Thu, 09 January 2025 02:19 UTC
Return-Path: <lgl@island-resort.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 67166C180B4F for <rats@ietfa.amsl.com>; Wed, 8 Jan 2025 18:19:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.904
X-Spam-Level:
X-Spam-Status: No, score=-1.904 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jWznNAG-70ba for <rats@ietfa.amsl.com>; Wed, 8 Jan 2025 18:19:12 -0800 (PST)
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (mail-dm6nam11on2090.outbound.protection.outlook.com [40.107.223.90]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CB579C14F6EE for <rats@ietf.org>; Wed, 8 Jan 2025 18:19:11 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=bTlM+Q/j/ylp65FJhvpdGO6ZhcxP1fXrGcy4McbDjYngKGJD8aXPm1713s9U/0H3NR3fFis80sy5afR/xWDSbDxeJPeyxDtHbdPuAD+FWYiJBDWR5i264H+0emFiiIgkY6glFVp5zzhAUO/a8JC54XnUeZmkjT3lL/Ye7HCVPDa91CP/vFInMIYPeMfYvXlCR5nwakMS3HfheehjnqRoWCwb91T0tOZTZFmEJNdN/HjzesOuCY5IYzoqbfgpqxGxfEBwIyzJs3LrbLxoiYCSQqiceqvSFvt3Qb+i+98GI4Xjsn+g/Rjw1+6TNrHPlNN/oQ8XsgX2wosv6kzVIqxO+A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=HSwH3GH8B9LXzoagyVnrsP5OdsSbIjbP+MkI0KVK7/w=; b=kxKbD8SUU34kwzrI5RznL3+a5oNtistm00Oc9cX9riG9uOHoqtPHEN6XbfiwtBJ74q2nMxNvWzGMWme2UFNphH7N/oXHOAADH6Y0vVaqY2DNQjnh0iGL2OHeo+nnPGjWoa9WLDPxXVX/y2HuDXR3ApbBHJuq1tCQqidlg8vlRWiG/XP5M/ZWA+2zzfNKCibmgKR+o1FTbpwHShwuKpyilqDmg2sdSCZSpDocT280kd8Fa1+xIjPPBhGCSvbiCWsYTbqtl5AfIr2rL367IGeniqLiaytub2bMO2DIcm5wU3gvqvSCyG7l7wJfTAyzGoUEn+YJrcb/z56zFDuf0US6yA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by SJ0PR22MB3502.namprd22.prod.outlook.com (2603:10b6:a03:439::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8335.11; Thu, 9 Jan 2025 02:19:08 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::8515:3aa6:3ced:15e]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::8515:3aa6:3ced:15e%4]) with mapi id 15.20.8314.018; Thu, 9 Jan 2025 02:19:08 +0000
From: "lgl island-resort.com" <lgl@island-resort.com>
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
Thread-Topic: [Rats] Security considerations of remote attestation (RFC9334)
Thread-Index: AQHbXTyXDRAfeFMNqkmefETPCnphELMD7OaAgAAgcICAALH3gIAAmN6AgAAbRgCAAilAgIAAeEYAgAWqOwA=
Date: Thu, 09 Jan 2025 02:19:07 +0000
Message-ID: <F78D9011-E0A8-43E6-A1BA-DDA44BF24348@island-resort.com>
References: <4ffdd034-05ec-4565-9cad-b40ff82f83fc@tu-dresden.de> <1b1ae008-94e6-47fd-9c3a-ae4fa8c2c85a@tu-dresden.de> <CO1PR11MB516988E02678059E77D0D464E5062@CO1PR11MB5169.namprd11.prod.outlook.com> <061efb99-89ef-4f4a-a9d7-0e41b4c97623@tu-dresden.de> <4099D519-7A37-4083-A8FF-C84065155CCE@tzi.org> <PH0PR11MB5176B7EDB6FCF245A8203EF5E5092@PH0PR11MB5176.namprd11.prod.outlook.com> <1060115c-7984-4c54-bc4d-903e5283a963@tu-dresden.de> <9a30a850c3d34f2fa0b614035ae4a134@huawei.com> <6c8ccd3f-4186-4958-a916-3e627709e55c@tu-dresden.de> <2ae4aec812e04d8aab44aac53781fcae@huawei.com> <0B1D3D34-3D4D-4DF1-A125-8CF4AFAA4C6A@island-resort.com> <3f1efaff-db26-4e54-b26b-d74a6dc140c3@tu-dresden.de> <272FC0C8-A49A-46D6-B9B1-67127FABC0A3@island-resort.com> <34b8ea44-e4b7-4024-873b-e939717c6259@tu-dresden.de> <2E15F514-29BF-4763-A844-5E38CDEF5791@island-resort.com> <17359f9b-914e-4d3d-8923-92bdf2cc887e@tu-dresden.de> <983AE2D0-D1CF-43F6-8888-F6D0487B4B8E@island-resort.com> <bf973538-b390-4c60-8c99-7a93f00c3833@tu-dresden.de>
In-Reply-To: <bf973538-b390-4c60-8c99-7a93f00c3833@tu-dresden.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: PH7PR22MB3092:EE_|SJ0PR22MB3502:EE_
x-ms-office365-filtering-correlation-id: 4522bd23-0549-4bf9-178b-08dd3053ff3d
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;ARA:13230040|1800799024|376014|366016|7053199007|38070700018|8096899003;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PH7PR22MB3092.namprd22.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(1800799024)(376014)(366016)(7053199007)(38070700018)(8096899003);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_F78D9011E0A843E6A1BADDA44BF24348islandresortcom_"
MIME-Version: 1.0
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4522bd23-0549-4bf9-178b-08dd3053ff3d
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Jan 2025 02:19:07.8879 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 65nUMggx410TiHd5ev/weC2H81iAlqGJqjskcMHFY3cVAeLKRguROMgyxxpd0TVxds19cdTtFJRaXvCng/kNvQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR22MB3502
Message-ID-Hash: JRZE5KSFFRS5KH47DX4XDUBIJRTA45LJ
X-Message-ID-Hash: JRZE5KSFFRS5KH47DX4XDUBIJRTA45LJ
X-MailFrom: lgl@island-resort.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Panwei (William)" <william.panwei=40huawei.com@dmarc.ietf.org>, "rats@ietf.org" <rats@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: Security considerations of remote attestation (RFC9334)
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/gcjrRFM8iYTkwDgAlJHsCVcV3qE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>
A detour for the purpose of framing: The reason attestation is so important for client devices is that end user people are entirely untrustworthy. The person using a mobile phone or a FIDO authenticator is not a security professional, doesn’t want to update their software and can be duped. Banking services, distributors of important documents and such want to know the device the user is using behaves. They can NOT rely on the user to assure that. This makes it critical that the attestation key is entirely different from what ever authenticates the end user person. The attestation key has to be associated with the device maker, never the end user person. I started in this thread thinking the same distinction was important for server/services, but maybe not... On Jan 5, 2025, at 4:48 AM, Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de> wrote: I think we are getting closer. I do appreciate that you want to be inclusive by saying "keying material" to include HMAC-like solutions but just to understand each other better, let's be more precise about the keys - the way we put it in draft can be different. Below I am assuming a remote attestation solution based on digital signatures. At a high level, there are three main keys: 1. Attestation Key (AK): It is used for signing attestation claims. It also must identify the implementor of the attester so a verifier can decide if they are trustworthy. draft-fossati-tls-attestation section 1 says: Attestation [RFC9334] is the process by which an entity produces evidence about itself that another party can use to evaluate the trustworthiness of that entity. That’s not very good because the entity could be lying. You also need to know the entity is trustworthy. That happens through proved identity and out-of-band information that the identified entity is trustworthy. 2. TLS Identity Key (TIK): Ephemeral Key (EK): It is a key generated within a TEE and its public part is signed by AK. However, the TLS peer (TLS client in my case) has no prior knowledge about this key. This is an internal part of TLS protocol, right? 3. TLS Identity Key (TIK): Long-term Key (LTK): It is the key bound to the machine's long-term identity (assigned name/FQDN etc.) and it is the key which is typically used to provide "authentication" in standard (non-PSK based) TLS protocol. For the common public Internet use of TLS, I’d describe this as the https service provider key. If you paid widgets.com and they didn’t send your package of widgets you know who to go after. It’s not really about a machine or even a key because the machines and keys for https://widgets.com will come and go. I’d say that these keys actually authenticates the legal entity, the people that work there, its business practices and such (e.g. Widgets Inc.). When you decide to pay widgets.com, that’s what you have in mind. So, yes, we’re reasonably in agreement on keys. :-) Based on this, please see inline: On 05.01.25 05:38, lgl island-resort.com wrote: IIUC you are describing TLS client as attester while I had TLS server as attester in my mind. This is partly because we have done the formal analysis of the latter [1], while only some initial specification work for the former. Seems like we can do attestation in either (or even both) directions with TLS. Sure. I am really sorry if it came across wrong. I didn't mean to say that the TLS client as attester as well as mutual attestation are not possible. They are perfectly legitimate cases with TLS. In fact, draft-fossati-tls-attestation includes all these cases. Absolutely no worries here. It’s a good discussion. I intended to say that TLS client as attester and mutual attestation are currently work-in-progress from formal verification perspective. I do not expect a major change in results for these cases but I wanted to stick to TLS server as attester for which we do have better understanding as well as results of formal verification. It is also a typical case in confidential computing. I understand from [1] that there maybe some TLS protocol issues, but what’s interesting to me is the key material of something like RA-TLS. I don’t understand what the thinking is for this yet. Can you clarify the key material for which of above keys (1, 2 or 3) you were interested in? Also, I suspect you are interested in the Key Derivation Function (KDF) of the key, right? 1 and 3 because I’m interested in the ownership, life cycle and policies for the keys. Pretty sure I’m not interested in the KDF. I think the purpose of https key material is to authenticate that bigbank.com really is Big Bank Corp and that it is distinct from attestation key material provided by Intel, Qualcomm and such vendors. Here is my understanding (please correct me if I am wrong): * "https key material" refers to 3 above * "attestation key material" refers to 1 above Yes Anyway, trying to map what you said to my scenario: Intel develops an attester (e.g., TDX), installs key pair AK and publishes public key via website. But at the time when this attester leaves Intel factory, neither the location of attester where it will run nor the organization which will control this attester is known. Both may be important for regulatory purposes, such as processing of medical and financial data. An attester isn’t really an attester until someone controls it, right? I don't think so. I think there is always someone who can control it. For example, Intel is in full control until some new owner (purchaser) assigns it a new identity. Right. It is likely always under control of someone, but the policy and semantics may change with an ownership change. Same as a key pair someone generates. A key pair isn’t interesting or useful until we know who owns the private key and what they will sign with it. Sorting out ownership hand-offs seems complicated. I think Ned was trying to describe what to do. Seems that this could be difficult to standardize and end up very vendor specific. For security properties, I am thinking about [2], e.g., Server authentication. The software and hardware can be "attested" but the server "authentication" does not hold because the long-term identity (machine identity: assigned name/FQDN) is never used in the protocol you mentioned. Please correct me if I misunderstood something in your reasoning. The question I have is whether the https service provider key material for bigbank.com is somehow made to also serve as attestation key material. Assuming the following (please correct me if wrong): * "https service provider key material" refers to 3 above * "attestation key material" refers to 1 above Both yes and no :) depending on the protocol, see below If yes, how? Depending on what exactly you mean by "also serve as" (please clarify further if I am misinterpreting), two relevant examples are attested CSR [3] and attested TLS [4]. I believe (haven't evaluated formally yet) the former, with passport model, has weak security guarantees. The latter, however, has technical limitations as CertificateVerify message of TLS is not extensible and you can provide proof-of-possession of only one key [5]. So, with [4] you can have either "attestation" or "authentication", but not both. If no, then what key material is used for attestation? RA-TLS [1] is an example here. It uses 1 for attestation. The protocol never uses 3. My point was that such protocols which use only 1 and 2 (and not 3) can only provide "attestation" of software and hardware but cannot provide "authentication" of who is in control of the machine and where it runs. Do you agree? Yes, I do agree. This is still thinking-in-progress, but maybe the first thing to be clear about for a given attested TLS design is whether it can support separate keys for 1 and 3. We could define: Split server-auth and attestation — Does both server auth and attestation and uses a different key for each Merged server-auth and attestation — Uses the (very common) server auth key to do both attestation and server auth Attestation-only — Only one key and it does attestation, never server auth Maybe for the next round of email: a description of the security disadvantages of merging server auth and attestation. LL [1] https://ieeexplore.ieee.org/document/10752524 [2] https://datatracker.ietf.org/doc/html/rfc8446#appendix-E.1 [3] https://datatracker.ietf.org/doc/draft-ietf-lamps-csr-attestation/ [4] https://www.ietf.org/archive/id/draft-fossati-tls-attestation-08.html#name-attestation-alongside-x509- [5] https://github.com/tls-attestation/draft-tls-attestation/issues/73 [6] https://ieeexplore.ieee.org/document/10373038
- [Rats] Security considerations of remote attestat… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Alexander Stein
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Jens Finkhäuser
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… junzhang
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Thomas Fossati
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Carsten Bormann
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Carsten Bormann
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Laffey, Tom (HPE Aruba Networks)
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Jens Finkhäuser
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Panwei (William)
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Giridhar Mandyam
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… lgl island-resort.com
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Dave Thaler
- [Rats] Re: Security considerations of remote atte… Dave Thaler
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Kathleen Moriarty
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… Henk Birkholz
- [Rats] Re: Security considerations of remote atte… John Kemp
- [Rats] Re: Security considerations of remote atte… Michael Richardson
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar
- [Rats] Re: Security considerations of remote atte… Smith, Ned
- [Rats] Re: Security considerations of remote atte… Muhammad Usama Sardar