Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)

Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> Thu, 02 June 2022 20:30 UTC

Return-Path: <kathleen.moriarty.ietf@gmail.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3CC52C1527AF for <rats@ietfa.amsl.com>; Thu, 2 Jun 2022 13:30:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.105
X-Spam-Level:
X-Spam-Status: No, score=-2.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tFIN_72tfdLZ for <rats@ietfa.amsl.com>; Thu, 2 Jun 2022 13:30:02 -0700 (PDT)
Received: from mail-qk1-x731.google.com (mail-qk1-x731.google.com [IPv6:2607:f8b0:4864:20::731]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1BCE3C14CF1F for <rats@ietf.org>; Thu, 2 Jun 2022 13:30:02 -0700 (PDT)
Received: by mail-qk1-x731.google.com with SMTP id b200so4522586qkc.7 for <rats@ietf.org>; Thu, 02 Jun 2022 13:30:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=from:content-transfer-encoding:mime-version:subject:date:message-id :references:cc:in-reply-to:to; bh=/KIY4q0wXLbdTVPTl+APFoitAegqiCCg2rRoKETbZXA=; b=oqBRg4h/0MfjM/km6cnxyssGZyWKna/5dQPbNHIUff3ayG+qUpAqpyvoPFeglicw6p bjoD2lQJ1Tbqilt3GZdL8jADxtopxYy14U0w2PNnaTFVU9fsKhISxSEbye+ziUCeMz8T 83unt5RhdDYW/iRfu4FjYKQlj8qIrLrMUeA9m6bB4NHAxextWN18d2imEgU9UrD5/VKF w7DGulQlFoHJnkHKXWT+u0JcesUJDuQFcptHR9WPslx9f7XqP6D2YJmkaBFnc3wuRByh yzAqNQxn5MnSv+JAaR83JuNoGmubYF6Hd9ItnnnyGXGc9wZ6imlju/QCFXqwKDxerTfU bsSA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:from:content-transfer-encoding:mime-version :subject:date:message-id:references:cc:in-reply-to:to; bh=/KIY4q0wXLbdTVPTl+APFoitAegqiCCg2rRoKETbZXA=; b=xTxcVS9b/cgOG1NHHyWyXVtqmXEjCXl+J/B/dHOyJXBGhonKw8CZiu5S/EQaSGuGyX Yb+Sx9kvvK7Poc8RSYRFcC1L1IDQMcvqGldVTgAE/RSrfWa4FgXqRigXTQGdn+NDYJko 3220XBpa7RDza6xanz2PUXPot1WnP3xCwKkY5zGuKn9kZIye8ROyhxx0nTZ8nZ0VA3bC d8QLCsQNH39GnO0JV3LbV8m7FchF1nTesmXk/SlUUhO8oNKfJzUr4VimoSk0Pwuym8d8 MUI7+EB9jZF9vgCvzFLmTYzGfFuuXfpPSHcF0q+O2eEGG2DqHfIz+AsGuP28VIVCldVI XTgw==
X-Gm-Message-State: AOAM5316N5q3Lt93RWXyMp/6sDPMMUO4dPN+FNnsVFqHamg0z7M58sR3 ZWTzyUr4NV8aEa8I76sCQVE=
X-Google-Smtp-Source: ABdhPJygJlOgR2fmlq9nGSJV9bGb/Tjjs9mv4mYHoIhz0u2UcSPzg3iBTLdzVyMJtSP+XmG0weldPQ==
X-Received: by 2002:a37:2fc4:0:b0:6a6:494e:4761 with SMTP id v187-20020a372fc4000000b006a6494e4761mr4565886qkh.4.1654201800745; Thu, 02 Jun 2022 13:30:00 -0700 (PDT)
Received: from smtpclient.apple ([2600:380:586b:32e8:549c:8ee5:1e07:442c]) by smtp.gmail.com with ESMTPSA id h2-20020ac87d42000000b002f9050bb622sm3700791qtb.69.2022.06.02.13.30.00 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 02 Jun 2022 13:30:00 -0700 (PDT)
From: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
X-Google-Original-From: Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail-F62AD820-AF56-4CF1-9871-237554A87A29"
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (1.0)
Date: Thu, 02 Jun 2022 16:29:58 -0400
Message-Id: <F594DE0E-23DA-4EB5-AF71-15C0C4AD8305@gmail.com>
References: <SJ0PR02MB835306432AD51285C0BE2ED581DE9@SJ0PR02MB8353.namprd02.prod.outlook.com>
Cc: Laurence Lundblade <lgl@island-resort.com>, "Smith, Ned" <ned.smith@intel.com>, Thomas Fossati <Thomas.Fossati@arm.com>, rats@ietf.org
In-Reply-To: <SJ0PR02MB835306432AD51285C0BE2ED581DE9@SJ0PR02MB8353.namprd02.prod.outlook.com>
To: Giridhar Mandyam <mandyam@qti.qualcomm.com>
X-Mailer: iPhone Mail (19F77)
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/kQneICy2-V-NKEK59ghQONplQ20>
Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 02 Jun 2022 20:30:03 -0000

One way forward on security levels is to have it be flexible. EAT could just leave the space for a security level to be specified. What gets entered could be individual to the use case and groups. While a draft might be helpful, there will likely be use cases that are private and never register security levels outside of the group.

Best regards,
Kathleen 

Sent from my mobile device

> On Jun 2, 2022, at 2:54 PM, Giridhar Mandyam <mandyam@qti.qualcomm.com> wrote:
> 
> 
> >To be very clear - I am opposed to any modifications to the EAT draft to include a profile registry in order to get done soon.
> 
> So am I. Note that I never suggested the above.   See below from my previous email.
> 
> >>Note that his registry was created completely separate from the underlying specification (https://www.w3.org/TR/webauthn-2/) – so we don’t need to hold up EAT while the issue of a profile registry is resolved based on this example as precedence
> 
> -Girj
> 
> From: RATS <rats-bounces@ietf.org> on behalf of Laurence Lundblade <lgl@island-resort.com>
> Sent: Thursday, June 2, 2022, 11:46 AM
> To: Giridhar Mandyam <mandyam@qti.qualcomm.com>
> Cc: Smith, Ned <ned.smith@intel.com>; Thomas Fossati <Thomas.Fossati@arm.com>; rats@ietf.org <rats@ietf.org>
> Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
> 
> To be very clear - I am opposed to any modifications to the EAT draft to include a profile registry in order to get done soon.
> 
> I’m personally neutral on an EAT profile registry in the long run. 
> 
> I would prefer to postpone the discussion of a profile registry until 1) someone publishes a draft proposal and 2) until after EAT is done so we don’t suck up oxygen here that can be used for getting EAT done.
> 
> LL
> 
> 
>> On Jun 2, 2022, at 11:05 AM, Giridhar Mandyam <mandyam@qti.qualcomm.com> wrote:
>> 
>> That covers identifiers – not whether a profile as specified is valid or not.  Registry expert review is meant to assess more than just uniqueness of the ID.
>>  
>> -Giri
>>  
>> From: Laurence Lundblade <lgl@island-resort.com> 
>> Sent: Thursday, June 2, 2022 11:00 AM
>> To: Giridhar Mandyam <mandyam@qti.qualcomm.com>
>> Cc: Smith, Ned <ned.smith@intel.com>; Thomas Fossati <Thomas.Fossati@arm.com>; rats@ietf.org
>> Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
>>  
>> WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros.
>> 
>> We picked URI and OID as identifier for profiles so we don’t need a registry for profiles. They are both globally unique (because they have their own registry-like system for uniqueness). 
>>  
>> LL
>>  
>> 
>> 
>> On Jun 2, 2022, at 10:27 AM, Giridhar Mandyam <mandyam@qti.qualcomm.com> wrote:
>>  
>> I have one experience with creating an IETF registry from scratch:  https://datatracker.ietf.org/doc/rfc8809/.  Note that his registry was created completely separate from the underlying specification (https://www.w3.org/TR/webauthn-2/) – so we don’t need to hold up EAT while the issue of a profile registry is resolved based on this example as precedence.
>>  
>> Regarding the above-referenced specification, before it was even proposed the following took place:
>>  
>> Well-established rules for what constitutes a valid extension/attestation were laid out in a specification (in this case RFC 8809, but derived from practices laid out in the W3C Webauthn Spec)
>> A team of individual expert reviewers were clearly identified
>> An AD was identified to shepherd the above draft to completion
>> There were a set of defined attestation/extensions to seed the registry (from the W3C spec)
>>  
>> We can follow the same approach, with the following:
>>  
>> If we feel the profile guidance is insufficient in EAT, it can be revisited in a separate registry doc.  This could govern certain minimum criteria (e.g. CBOR EAT’s should follow header/payload/sig format and are not extensible)
>> Expert reviewers at a minimum could be drawn from EAT editors/contributors
>> AD:  I assume we can get someone’s attention for this
>> Seeding:  Examples include PSA-Token or the FDO EAT profile 
>>  
>> -Giri
>>  
>> From: Smith, Ned <ned.smith@intel.com> 
>> Sent: Thursday, June 2, 2022 9:35 AM
>> To: Giridhar Mandyam <mandyam@qti.qualcomm.com>; Thomas Fossati <Thomas.Fossati@arm.com>; rats@ietf.org
>> Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
>>  
>> WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros.
>> >the profile definition addresses interop
>> Section 7 suggests that a profile can take on many forms. The EAT draft accommodates this by offering a way to reference the profile document (or whatever it happens to be). I interpret Thomas’s point that “the claims-set is governed by the CWT Claims registry, whilst the EAT type system has no
>> such mechanism (yet)” to mean there isn’t a profile yet defined that operates like a global registry.
>>  
>> It seems IANA is being used as the global registry for code point names/values currently. IANA CBOR registry could be used for CBOR top level EAT structures, but such equivalent exists for JSON structures. 
>>  
>> However, it seems some EAT CBOR structures that could be considered ‘top level’ don’t currently have IANA CBOR registry entries.
>>  
>> Is the way forward for EAT draft to create IANA CBOR tags for top level EAT structures?
>>  
>> Thx,
>> Ned
>>  
>> From: RATS <rats-bounces@ietf.org> on behalf of Giridhar Mandyam <mandyam@qti.qualcomm.com>
>> Date: Thursday, June 2, 2022 at 6:20 AM
>> To: Thomas Fossati <Thomas.Fossati@arm.com>, "rats@ietf.org" <rats@ietf.org>
>> Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
>>  
>> >> I think the underlying data structures make it extensible, independent of the CDDL notation.  However if an implementor chooses to extend EAT without an accompanying standard as a result, then interoperability may not be assured.  Therefore it is in an implementor’s interest to define a standard if they are seeking interop.
>>  
>> >The core difference is the extensibility story for the claims-set is governed by the CWT Claims registry, whilst the EAT type system has no such mechanism (yet).
>>  
>> I don’t agree:  the profile definition addresses interop – see https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat#section-7.  Up to this point, no-one has objected to the way profiles are defined in the specification, nor the lack of a registry.
>>  
>> -Giri
>>  
>> From: Thomas Fossati <Thomas.Fossati@arm.com> 
>> Sent: Thursday, June 2, 2022 6:13 AM
>> To: Giridhar Mandyam <mandyam@qti.qualcomm.com>; rats@ietf.org
>> Subject: Re: [Rats] Where does a EAT end? (was: Re: WGLC for https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat)
>>  
>> WARNING: This email originated from outside of Qualcomm. Please be wary of any links or attachments, and do not enable macros.
>> > Giridhar Mandyam <mandyam@qti.qualcomm.com> wrote:
>> > I think the underlying data structures make it extensible, independent
>> > of the CDDL notation.  However if an implementor chooses to extend EAT
>> > without an accompanying standard as a result, then interoperability
>> > may not be assured.  Therefore it is in an implementor’s interest to
>> > define a standard if they are seeking interop.
>>  
>> The core difference is the extensibility story for the claims-set is
>> governed by the CWT Claims registry, whilst the EAT type system has no
>> such mechanism (yet).
>>  
>>  
>>  
>>  
>> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
>> _______________________________________________
>> RATS mailing list
>> RATS@ietf.org
>> https://www.ietf.org/mailman/listinfo/rats
> 
> 
> _______________________________________________
> RATS mailing list
> RATS@ietf.org
> https://www.ietf.org/mailman/listinfo/rats