Re: [Rats] New RATS
"Smith, Ned" <ned.smith@intel.com> Tue, 31 May 2022 17:17 UTC
Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 57F9DC157B58 for <rats@ietfa.amsl.com>; Tue, 31 May 2022 10:17:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.85
X-Spam-Level:
X-Spam-Status: No, score=-2.85 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CJV3IaIS-Vp9 for <rats@ietfa.amsl.com>; Tue, 31 May 2022 10:17:45 -0700 (PDT)
Received: from mga06.intel.com (mga06b.intel.com [134.134.136.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7C427C14792E for <rats@ietf.org>; Tue, 31 May 2022 10:17:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1654017465; x=1685553465; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=XxGq+S+veD4jHEkw6dWd1chGt1ycfbcB5Tx4kyxHzrk=; b=BtEeZV9QVu15ioSm2RhlzYSuwS+p9oBvb2dhYCcHzzventmzngULnfS2 /9FEZ2f876TNLOXD7KxwygG1CDCGk5Sw8H06NOjBENyj0UTRIma1BXxft msA32xjCdEbZ9GDICGYh9BTrgYzVfSWxq4YtI3dqUhXGhtpIWq+EJ9FLq 16BwERin4ODUvnnbbXsI6gczYmM8aRBLwhi+gh4oQZTiM5VGAayuylHE9 RtbjmuMDMOtHdvmLoMkk6TV8bu2rJPeQn3eLuSs9fH4PcZcC/nPo3uaUZ CeX5OEW9CtO4eOrZ8DV5I97vKGc/axgqIYv7heP+aUMWOJK0eZ/P4CPwR w==;
X-IronPort-AV: E=McAfee;i="6400,9594,10364"; a="335983610"
X-IronPort-AV: E=Sophos;i="5.91,265,1647327600"; d="scan'208,217";a="335983610"
Received: from fmsmga005.fm.intel.com ([10.253.24.32]) by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 May 2022 10:17:40 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.91,265,1647327600"; d="scan'208,217";a="904064478"
Received: from orsmsx606.amr.corp.intel.com ([10.22.229.19]) by fmsmga005.fm.intel.com with ESMTP; 31 May 2022 10:17:40 -0700
Received: from orsmsx603.amr.corp.intel.com (10.22.229.16) by ORSMSX606.amr.corp.intel.com (10.22.229.19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27; Tue, 31 May 2022 10:17:39 -0700
Received: from ORSEDG602.ED.cps.intel.com (10.7.248.7) by orsmsx603.amr.corp.intel.com (10.22.229.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27 via Frontend Transport; Tue, 31 May 2022 10:17:39 -0700
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.109) by edgegateway.intel.com (134.134.137.103) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2308.27; Tue, 31 May 2022 10:17:39 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ivve0WJABUNvACZYemii6I4PTJ0UYydD+ySBkt/BjGudnR3YCEE2Hld8qZ8J3OB2z0o/n40Iz3fXqKWX2y8hyhfoiOv2Kn20STse8GOFByMsKG7IMEVOM8xlT4dOmgfosd7zZmFO3ovQyi2X5eB4w32fPnuFX6R7HgB4u4S5mwjWVDfBibm3WtsmxBCt2OXdRPlvyFX71g8r0Ihs+sTy5Ustu3AVljm4Zim8z91ccF0vcF8J4sNiRYat2qG5O7qbDwnq/igBUK2nyCAYzOao7jIjhqFvscU2JJLf0/JnFyfvLizbHHu+ISUV5bXpISRsWfXTvyaRE3D6ZmLt/ZkNbA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=XxGq+S+veD4jHEkw6dWd1chGt1ycfbcB5Tx4kyxHzrk=; b=XmeuqHXJjwtBe9/0jQ4V2HWZRW6XQ3UImRgrlCKNIjgZVRcigtV7MFj9Ff0qrvCIwpMO5JiD0cGrogSAgaD8tx8+J4cLp7qQTeOA0qn+qzWLLhoWSadZtbDefY8kPD+e06pgF4gs0iofJewqKnGd9UyGcOmAmj2ZKJNn/kUjGVRclx6xdfwJxCo9lnaXI4/4y2ZXGvc9f50LxrG8euyW+4wgyEkDgZ8J6/eZ9OUD1cq3vwDrodrXikKXQskkLLU82kXImJKG8+Jj8sKpFE+GEHyFZx1Vn3Lw69ua/Pm6BN3vDS99sdd9uxeFwXX+Fj7FPy5gBOk4EL12CNZtYd47TQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by DM4PR11MB6549.namprd11.prod.outlook.com (2603:10b6:8:8e::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5293.19; Tue, 31 May 2022 17:17:38 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::5dfe:31c7:a62a:d8b8]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::5dfe:31c7:a62a:d8b8%3]) with mapi id 15.20.5314.012; Tue, 31 May 2022 17:17:38 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: Simon Frost <Simon.Frost@arm.com>, "rats@ietf.org" <rats@ietf.org>
CC: Thomas Fossati <Thomas.Fossati@arm.com>
Thread-Topic: [Rats] New RATS
Thread-Index: Adh0GG2wOl1fGdhXSJ+DJzH62+JLawAvzhYA
Date: Tue, 31 May 2022 17:17:37 +0000
Message-ID: <974C4ABC-20AC-4858-AEEA-5822ABA0DD78@intel.com>
References: <AS8PR08MB6392C7D0CC195B30CBC789CBEFDD9@AS8PR08MB6392.eurprd08.prod.outlook.com>
In-Reply-To: <AS8PR08MB6392C7D0CC195B30CBC789CBEFDD9@AS8PR08MB6392.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f4fa5956-05b9-4898-05bf-08da43297613
x-ms-traffictypediagnostic: DM4PR11MB6549:EE_
x-microsoft-antispam-prvs: <DM4PR11MB65490FD125EC5FBD75C6D3F6E5DC9@DM4PR11MB6549.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB5169.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(66446008)(122000001)(83380400001)(64756008)(4326008)(8676002)(36756003)(316002)(82960400001)(66476007)(2616005)(26005)(38100700002)(186003)(76116006)(33656002)(66946007)(66556008)(53546011)(166002)(110136005)(6512007)(6506007)(2906002)(5660300002)(86362001)(71200400001)(38070700005)(508600001)(966005)(6486002)(8936002)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_974C4ABC20AC4858AEEA5822ABA0DD78intelcom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f4fa5956-05b9-4898-05bf-08da43297613
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 May 2022 17:17:37.9400 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: I8l06Z3gMf6Cq4UTVngiNqJUw0X1vAXY6NWh0qkcyRaMJI37hv0d5kxmIXXNWeCty6j/ZD1Go/TJE6qzlPFVZg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM4PR11MB6549
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/hzCCU_TyzcCf6vt5Bm0W55MyB6k>
Subject: Re: [Rats] New RATS
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2022 17:17:49 -0000
Simon, A couple of comments. The RATS Arch doesn’t use the term ‘Attestee’. Would it be appropriate to use ‘Attester’ or possibly ‘Target Environment’ if the objective is to refer to the environment (object) from which claims are collected by an ‘Attesting Environment’? I didn’t see a reference to DEB objects. Could that be included? Should a $$EAT-CBOR-Tagged-Token or $$EAT-CBOR-Untagged-Token be signed for integrity protection – for example using COSE/JOSE? Thanks, Ned From: RATS <rats-bounces@ietf.org> on behalf of Simon Frost <Simon.Frost@arm.com> Date: Monday, May 30, 2022 at 4:34 AM To: "rats@ietf.org" <rats@ietf.org> Cc: Thomas Fossati <Thomas.Fossati@arm.com> Subject: [Rats] New RATS FYI. I’ve just submitted a new draft for a proposed extension to the top level object in EAT. There’s a full justification in the doc, but as a quick summary, there are difficulties in creating a top level ‘envelope’ object for a multi-token system while remaining compatible with EAT. Given the recent move to fix the list of top level objects but embrace extensions, this approach seems to be an appropriate proposal. See: https://datatracker.ietf.org/doc/draft-frost-rats-eat-collection/ & https://github.com/SimonFrost-Arm/draft-frost-rats-eat-collection Thanks Simon Simon Frost Senior Principal Systems Solution Architect, ATG, Arm Mob: +44 7855 265691 IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [Rats] New RATS Simon Frost
- Re: [Rats] New RATS Carl Wallace
- Re: [Rats] New RATS Simon Frost
- Re: [Rats] New RATS Smith, Ned
- Re: [Rats] New RATS Simon Frost
- Re: [Rats] New RATS Laurence Lundblade
- Re: [Rats] New RATS Henk Birkholz
- Re: [Rats] New RATS Smith, Ned
- Re: [Rats] New RATS Simon Frost
- Re: [Rats] New RATS Thomas Fossati
- [Rats] Collection binding (was Re: New RATS) Laurence Lundblade
- [Rats] Mixed format token collections (was Re: Ne… Laurence Lundblade
- Re: [Rats] Collection binding (was Re: New RATS) Simon Frost
- Re: [Rats] Mixed format token collections (was Re… Simon Frost
- Re: [Rats] Mixed format token collections (was Re… Laurence Lundblade
- Re: [Rats] Collection binding (was Re: New RATS) Laurence Lundblade