IETF Logo Mail Archive

Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

"Smith, Ned" <ned.smith@intel.com> Tue, 31 May 2022 20:56 UTC

Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF694C15AAF4 for <rats@ietfa.amsl.com>; Tue, 31 May 2022 13:56:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.851
X-Spam-Level:
X-Spam-Status: No, score=-7.851 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.745, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yTBBZOZKyWZs for <rats@ietfa.amsl.com>; Tue, 31 May 2022 13:56:38 -0700 (PDT)
Received: from mga03.intel.com (mga03.intel.com [134.134.136.65]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 16487C15AAE7 for <rats@ietf.org>; Tue, 31 May 2022 13:56:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1654030598; x=1685566598; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=s4G0xVg9xNF1ovjSKkILEQIY3FrblHQZOLSUQV5/UVg=; b=m21G2w1yredbjI7s3BDgsxgAJ0Cn8lT9qzJwFHJP7Itby99zZBh70+KP 75teh/t3d5F02+7KRtZZTlDxS1g3h8jRoYokqBHRkK3mhOAb6UnyU2IGW wmxrtAEgNN/KPa1Q2i/mHIXhIqzgaOhVgfrwg+DKmSM+e6zQhggvFBHHe z26TyjM4AQngfbvkuYSIsY51n7rTFUT2tPoBdz+l1Vf2vKdlcX7CVtoYd h4t9kd1qahW7JUXcto9oB6sPju3KzPPv/rvkl33pNexLRy5QRn9o5BUib HO1vyGN8jRGNYNcAYFPhdHJOFYwIMjYraDh930IcHbOQiRj3Ojb83z6L7 w==;
X-IronPort-AV: E=McAfee;i="6400,9594,10364"; a="275388784"
X-IronPort-AV: E=Sophos;i="5.91,266,1647327600"; d="scan'208,217";a="275388784"
Received: from orsmga006.jf.intel.com ([10.7.209.51]) by orsmga103.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 31 May 2022 13:56:36 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.91,266,1647327600"; d="scan'208,217";a="551974994"
Received: from orsmsx602.amr.corp.intel.com ([10.22.229.15]) by orsmga006.jf.intel.com with ESMTP; 31 May 2022 13:56:35 -0700
Received: from orsmsx609.amr.corp.intel.com (10.22.229.22) by ORSMSX602.amr.corp.intel.com (10.22.229.15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27; Tue, 31 May 2022 13:56:35 -0700
Received: from orsmsx610.amr.corp.intel.com (10.22.229.23) by ORSMSX609.amr.corp.intel.com (10.22.229.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27; Tue, 31 May 2022 13:56:35 -0700
Received: from ORSEDG602.ED.cps.intel.com (10.7.248.7) by orsmsx610.amr.corp.intel.com (10.22.229.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27 via Frontend Transport; Tue, 31 May 2022 13:56:35 -0700
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.105) by edgegateway.intel.com (134.134.137.103) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2308.27; Tue, 31 May 2022 13:56:34 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=i/q9llEDe2KIyTmYESgeu6frLhcAwhY2UDqeRssZOlVN+sP3mgpGUo6VuhU7z7u0U/VGdF1aZsDaYDZAEm3FJ8ttX5eIN8MigoEIVp226Vwy8S5lAezdhtRLgb3kfKSCAOC4rKqOgCY+VhpxQ1il5Vb3qiEJZ0HcrJeuWhq7x0vVn/c+dhdmeiZx1qSeTgkHCVwKYgU5H8hzpGdg1Ur+1XZrhD6s4V3Z5KoC1HOdKXzt/IgiQGYdOoN3ywLOhfvMYxLUJQLyrtoeLVGATVvIVYF6fgwCBRBPgIIvwRABfuaHPktvL5CZBjYB+f8ox46wlOo7hjra4iZOhpyIj+e2jA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=s4G0xVg9xNF1ovjSKkILEQIY3FrblHQZOLSUQV5/UVg=; b=BjMpH3F5ZOM3L54McKI9M3ETCPdG5U9EBX1v+yuYT0m9sqEzkTP+K92J/4M/G+B5L3HnUbHT5dIBbDjMwT2JLuZPDlx2vAPLL6jUiuinOV6FUWPiCoPwiH32njoyyuIKyRsu6sJSDK2++hJsUYfuPftlTskOdztVeVtcEO6qmusG5bMEfrQeKBb/XCQ6wSZB5FvTsiIsaMXxhCj5O03EYLkQhsiiWRQH4A56ZVGPy4UIP66mXc8/sezt4pnxhmfpaauhu+eKfjim05UdvwUyVpiGpgJNTBq0tpTgs2il8pX6FRWopRydwTre4Ly0O8Ea3AwgOLvxLOoQxtTpRdNTJg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by MW3PR11MB4620.namprd11.prod.outlook.com (2603:10b6:303:54::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5293.13; Tue, 31 May 2022 20:56:32 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::5dfe:31c7:a62a:d8b8]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::5dfe:31c7:a62a:d8b8%3]) with mapi id 15.20.5314.012; Tue, 31 May 2022 20:56:32 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: Giridhar Mandyam <mandyam@qti.qualcomm.com>, Laurence Lundblade <lgl@island-resort.com>, Thomas Fossati <Thomas.Fossati@arm.com>, "rats@ietf.org" <rats@ietf.org>
CC: "Nancy Cam-Winget (ncamwing)" <ncamwing=40cisco.com@dmarc.ietf.org>
Thread-Topic: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
Thread-Index: AQHYdNVUG1GsbTr/P0eau4mczDwmD605NHiAgAAygwD//5vRAA==
Date: Tue, 31 May 2022 20:56:32 +0000
Message-ID: <D6FBA9E8-EAF5-4D43-831E-4F11EEF56AC1@intel.com>
References: <45618431-7329-4F31-941F-A39BBC9D575F@cisco.com> <DB9PR08MB65241E9E259EBBD532480E469CDC9@DB9PR08MB6524.eurprd08.prod.outlook.com> <30BB98D4-8CC0-4EA3-BB89-9F95DC6F2CA8@island-resort.com> <SJ0PR02MB83533D9FAAA5C935EFFE2BED81DC9@SJ0PR02MB8353.namprd02.prod.outlook.com>
In-Reply-To: <SJ0PR02MB83533D9FAAA5C935EFFE2BED81DC9@SJ0PR02MB8353.namprd02.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.61.22050700
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 03183180-7b33-40bb-dadf-08da43480ae5
x-ms-traffictypediagnostic: MW3PR11MB4620:EE_
x-microsoft-antispam-prvs: <MW3PR11MB46206D761E5442BF7E90438DE5DC9@MW3PR11MB4620.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB5169.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(166002)(86362001)(8936002)(122000001)(82960400001)(38070700005)(36756003)(8676002)(6486002)(4326008)(66476007)(64756008)(66446008)(76116006)(66556008)(66946007)(110136005)(33656002)(71200400001)(966005)(5660300002)(2616005)(66574015)(186003)(6512007)(6506007)(26005)(53546011)(508600001)(2906002)(38100700002)(316002)(83380400001)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_D6FBA9E8EAF54D43831E4F11EEF56AC1intelcom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 03183180-7b33-40bb-dadf-08da43480ae5
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 May 2022 20:56:32.5263 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: YV26qG9ok0xLP6DLfN2D5tNu61IHXuwOfYTHrr5KmyE9MjlLU4/72UL5ybUDvLDXJkXuUdI69MTTDqYBksnR6w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW3PR11MB4620
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/kPo45oAUO1QMsK18PVS8bcJS8Og>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 31 May 2022 20:56:43 -0000

+1 “I am not sure I understand what is being suggested in this email chain”

Data definition languages and encoding schemes are flexible / extensible by design. I don’t think anyone is saying we should change this (correct me if I’m wrong).

When modeling a device / system object, the object being modeled has inherent structure that limits the need for arbitrary expressiveness and extension. Hence, the object (or a schema for the object) should be the oracle that resolves questions about “where EAT ends”.

If the concern is that due to a lack of oracles, arbitrary flexibility should be incorporated in the EAT draft, then some guard rails should be in place. For example, observing where structures can be extended later (vs. defining flexible but nebulous structures or making something optional that in practice is unused).

Are there structures in the draft that should be characterized as nebulous?

Thanks,
-Ned

From: RATS <rats-bounces@ietf.org> on behalf of Giridhar Mandyam <mandyam@qti.qualcomm.com>
Date: Tuesday, May 31, 2022 at 12:55 PM
To: Laurence Lundblade <lgl@island-resort.com>, Thomas Fossati <Thomas.Fossati@arm.com>
Cc: "Nancy Cam-Winget (ncamwing)" <ncamwing=40cisco.com@dmarc.ietf.org>, "rats@ietf.org" <rats@ietf.org>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

I am not sure I understand what is being suggested in this email chain.  As far as I can tell (focusing on the CBOR option for EAT alone):


  1.  EAT inherits from CWT, and CWT’s are ultimately CBOR objects.
  2.  There is no prohibition against defining a CBOR array with CWT’s/EAT’s as entries, and those can be of indeterminate length – see https://datatracker.ietf.org/doc/html/rfc7049#section-2.2.1.
  3.  In addition, as per https://datatracker.ietf.org/doc/html/rfc7049#section-2.1 an array can contain entries from multiple data types.  An array could contain UCCS’s, EAT’s, and standard (RFC 7049-defined) CBOR data types for example.

Is the suggestion for the EAT document prohibit (or at least limit) the above?  If so, what would be the justification for such a limitation?

-Giri

From: RATS <rats-bounces@ietf.org> On Behalf Of Laurence Lundblade
Sent: Tuesday, May 31, 2022 9:54 AM
To: Thomas Fossati <Thomas.Fossati@arm.com>
Cc: Nancy Cam-Winget (ncamwing) <ncamwing=40cisco.com@dmarc.ietf.org>; rats@ietf.org
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

I am definitely not a fan of unconstrained fan out here. Probably the right thing to do is require any additional token type be an IETF standard.

One reason I made these sockets is so that UCCS/UJCS will plug in and be part of a submod Nested-Token and part of a DEB. It is important that UCCS and UJCS be brought into EAT this way.

Personally, I think it would probably be good if this never went beyond UJCS/UCCS.

I’m still digesting Simon’s collection proposal…

Thanks for point that out, Thomas.

LL



On May 31, 2022, at 3:00 AM, Thomas Fossati <Thomas.Fossati@arm.com<mailto:Thomas.Fossati@arm.com>> wrote:

{Lemaître hat on}

"where does a EAT end?"

The CDDL has:

$$EAT-{CBOR,JSON}-{Unt,T}agged-Token /= ...

which says it is theoretically possible to extend a EAT to cover
anything, as long as it looks like a CBOR or JSON stream.

The EAT I-D defines the CWT, JWT and DEB types.

But UCCS will have to plug into the same CDDL socket soon.

And Simon's proposal to add the "EAT collection" type [1] uses the same
mechanism to extend the semantics of a EAT in the same direction as DEB
- i.e., by providing an aggregation primitive.

My observation is that unless the EAT I-D contains clear criteria for
scoping its type system its governance can become quite tricky down the
line.

cheers, thanks

[1] https://datatracker.ietf.org/doc/draft-frost-rats-eat-collection/



IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you. _______________________________________________
RATS mailing list
RATS@ietf.org<mailto:RATS@ietf.org>
https://www.ietf.org/mailman/listinfo/rats

v2.23.0 | Report a Bug | By Email