[Rats] Re: reworking draft-ietf-rats-ar4si (and EAR)

Michael Richardson <mcr+ietf@sandelman.ca> Wed, 03 December 2025 20:07 UTC

Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: rats@mail2.ietf.org
Delivered-To: rats@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 9795994D6E03 for <rats@mail2.ietf.org>; Wed, 3 Dec 2025 12:07:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.8
X-Spam-Level:
X-Spam-Status: No, score=-2.8 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=sandelman.ca
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZDdgQiuRt_fh for <rats@mail2.ietf.org>; Wed, 3 Dec 2025 12:07:24 -0800 (PST)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256)) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 647F694D6CB9 for <rats@ietf.org>; Wed, 3 Dec 2025 12:07:12 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id E7BBD18011; Wed, 03 Dec 2025 15:07:11 -0500 (EST)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavis, port 10024) with LMTP id hlcY43cTF5Ep; Wed, 3 Dec 2025 15:07:09 -0500 (EST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sandelman.ca; s=mail; t=1764792429; bh=jBa7Ob6uxb3NLWVq9fvm+sdRdoDKBgzgRfMw7fTE/FY=; h=From:To:cc:Subject:In-Reply-To:References:Date:From; b=Pr2gk64RQ6SgQJooWeN0PnpNRx758OKxW7qBs8lvHiGxTOzNztjJz3CeHitKfo0bO XG53NG3MW1qrS2VCM8LJeGOSbfhROSeJYZnmyoai5zUn5UFsRnykCxWx/geCFxdApJ NT5hnuRoGwldV/EALob9FQHlLKwNRwtg/xUK3W83mSiiOgcmvfQkY91Tyr3dWXzBcB TXbyUFxjKPZUHQWN6ZZfsb1FLwImAkxd2S1RCNB7ZfD+RHY+JCH5Q1pjWqxRGeD9VX wo1zQa6JnG0wF/jROXd35YViBhgz2VBC9s7RWVADmIqCCtRF+5Ijd7W4BqbbYnQtea MLh25IpNu7NjA==
Received: from sandelman.ca (obiwan.sandelman.ca [IPv6:2607:f0b0:f:2::247]) by tuna.sandelman.ca (Postfix) with ESMTP id 908C218010; Wed, 03 Dec 2025 15:07:09 -0500 (EST)
Received: from obiwan.sandelman.ca (obiwan.sandelman.ca [127.0.0.1]) by sandelman.ca (Postfix) with ESMTP id 8889F17E; Wed, 03 Dec 2025 15:07:09 -0500 (EST)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "ned.smith.ietf@gmail.com" <ned.smith.ietf@gmail.com>
In-Reply-To: <E4F1447A-4A94-CD4F-89A5-D8432BB8C2E2@hxcore.ol>
References: <E4F1447A-4A94-CD4F-89A5-D8432BB8C2E2@hxcore.ol>
X-Mailer: MH-E 8.6+git; nmh 1.8+dev; Emacs 30.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0;<'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Wed, 03 Dec 2025 15:07:09 -0500
Message-ID: <25224.1764792429@obiwan.sandelman.ca>
Message-ID-Hash: XZ65I2HTWKBGHPSOZ2COVXIZLEZAN2A4
X-Message-ID-Hash: XZ65I2HTWKBGHPSOZ2COVXIZLEZAN2A4
X-MailFrom: mcr+ietf@sandelman.ca
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "rats@ietf.org" <rats@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Rats] Re: reworking draft-ietf-rats-ar4si (and EAR)
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/p1twm86-558H3q4AKDiCOiwMv4k>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>

(Ned, you are still sending text/html only, but at least it's not dark-text
on dark-background. However, I can't really tell what text you are writing.
I hope that I get the attributions here right)

ned.smith.ietf@gmail.com <ned.smith.ietf@gmail.com> wrote:
    Ned> (not as chair)

    mcr> I point to RFC761: it defines the TCP header, and the concept of the window
    mcr> but is almost completely mute about congestion control.  The word
    mcr> "congestion" occurs only twice, and no algorithm is provided!!!
    mcr> RFC896,2001(1997!), 2309,2581,2914,... tell one how to actually *do* TCP.
    mcr> This is the model we want.   Okay, it's messy.  But, it survived over 40+ years.
    mcr> I think that EAR should be our RFC761 (structures, meanings of bits).
    mcr> I think that AR4SI should *A* "congestion control" document equivalent.

    Ned> I’m not sure I get the analogy, but I think I get the idea.

Common (extensible) syntax, evolving semantics to suit the situation.

    mcr> I think it should stop trying to be general purpose, and instead it should be

    Ned> It = AR4SI?

Yes.

    mcr> Or (b): "When working with consumer mobile devices, the RP will often be
    mcr> interested in what jurisdiction the device currently is in, and possibly
    mcr> whether or not the end-user is of age.   However, the details of
    mcr> this are private to the device.  This is best done as a passport
    mcr> check, with an Attestation Result that makes use of Selective
    mcr> Disclosure mechanisms."

    Ned> The use of SD / encryption as well as whether audit level
    Ned> information of Verifier’s internal state (which is supported by EAR)
    Ned> would be tied to an
    Ned> appropriate use case. Possibly, EAR profiles would need to be use case specific?

Does EAR have profiles?
I don't see that word in the document.

    mcr> My goal is not to design any single interaction here, but very small classes
    mcr> of specific ones.

    Ned> For example, when selling to US Gov, it is common to have FIPS
    Ned> certifications and to know at what level a system was
    Ned> certified. However, AR4SI doesn’t comprehend FIPS claims and it
    Ned> isn’t a substitute for FIPS either. Hence, a use case context that
    Ned> requires FIPS as attestation results might need to be included with an AR4SI claim

FIPS certification results in an Endorsement, I think.

    Ned> But I’m not clear on how you plan to proceed with AR4SI on a small
    Ned> bytes first approach that is use case specific and still have it
    Ned> make progress toward RFC status as the next nibble will update it
    Ned> before it makes it all the way through the IETF process.

As long as the next "nibbles" does not need to change existing use cases,
then the next nibble is a new document.

    ned> (chair hat on) Is this a
    ned> recipe for an eternally unfinished draft?

No.  Exactly the opposite.
I want to constrain use to real, concrete things that we know how to do.

Write that down, and continue.

To make a different analogy:
      I want a recipe for _chocolate lava birthday cake_ (supporting up to
                                           n-candles, for 0 <= n < 24)

      I don't want a recipe for "round sweet baked items with uniform colour
                                 and specific flavour"

      and then an endless bikeshed that some people want their *bread* square,
      and does this recipe allow for raisins or nuts to included?
      While other people argue that bread is not included because it's
      not always sweet.


{Personally, I prefer dry brownies}

--
Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
           Sandelman Software Works Inc, Ottawa and Worldwide