[Rats] Some Feedback on CHARRA
William Bellingrath <wbellingrath@juniper.net> Thu, 17 September 2020 00:38 UTC
Return-Path: <wbellingrath@juniper.net>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2719D3A048D; Wed, 16 Sep 2020 17:38:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.804
X-Spam-Level:
X-Spam-Status: No, score=-4.804 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.695, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=juniper.net header.b=O+jKL77Y; dkim=pass (1024-bit key) header.d=juniper.net header.b=SR6lIod2
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y3hpssJLAuH1; Wed, 16 Sep 2020 17:38:49 -0700 (PDT)
Received: from mx0b-00273201.pphosted.com (mx0b-00273201.pphosted.com [67.231.152.164]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 02A6A3A044A; Wed, 16 Sep 2020 17:38:48 -0700 (PDT)
Received: from pps.filterd (m0108160.ppops.net [127.0.0.1]) by mx0b-00273201.pphosted.com (8.16.0.42/8.16.0.42) with SMTP id 08H0bU9e024481; Wed, 16 Sep 2020 17:38:40 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; h=from : to : cc : subject : date : message-id : content-type : content-id : content-transfer-encoding : mime-version; s=PPS1017; bh=MZxPoCCVbtlvdu+rw9Z6yFJ1/ESxoDX/5foWhNTQn6o=; b=O+jKL77Y9jwl4bGwC7GMB25ufuafo0C9TClH4JbGPB9suEPBPV4WuNjW2X1lzsR3yh3e YGSvAmEvLi0GpYU5jf2WgyqP4HJbBL7L5zOIVB6kKgiNR0GwmDn/6lTANeelVZeprDV4 GskieiMdXZypQAy0c6+tgfkES5HLN7hYtY7s395EFaHsh1rY8xeujGo18GNYPAXNrjnb NrdJCfy1YlFs0FW8NpPxqJculmyaV9DmeGES0NYi7tBUBSwzjp6ND0ai8GZcaUogVhtS djHqR/fpQU8sjTADIxSM4MUwW65V8rRIHf26M2fvKSHGG5XJrQ7SffBGm3sMeNZbozNj 0w==
Received: from nam12-dm6-obe.outbound.protection.outlook.com (mail-dm6nam12lp2176.outbound.protection.outlook.com [104.47.59.176]) by mx0b-00273201.pphosted.com with ESMTP id 33k5q2ta62-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 16 Sep 2020 17:38:40 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=HnZ4yTtq+XzADpUyqqsIlQZoerLsL/gLMCWHW1naGxNLfrVNK/MND/Bx7wN84IQdAeyrbg6p79n3RtMrNhCg2M0TPqJj3J9d57VqavDERscVkFgbrVkqqaZZSO8/5xZHOl1JNZgD+8plaFWRuEjU3qqDJeTR6dBig61BL13kCVkszoflmNeSt3rRFdZWlc6rn9GsAyL9JlRew8SssSM1unxNWA8tqxwMz3tM3plC2fmh1aEYlIfwAMwVK/lIc1ECndxJZ945NcZYg41vFaeM2BX80F6Ca2v845EBhqoiPekxDMCtQKlt8AL2PRjoNesU1tTwZlKdENoGy676Aa9CnQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=MZxPoCCVbtlvdu+rw9Z6yFJ1/ESxoDX/5foWhNTQn6o=; b=hUMbaT3A2A7Fc9dlt03ZHbKIneRscQ4xdvNxc99qDCT4KiY0QQK0tH2d8V1PrOJFJ5Usz5fwYhN3g4+WO6j76LHmMsqB1BjKlVjzEcn28Swa0/36Taw6oRADi2cF/egMaj+HPSjnF6qN2G+0q2dS2WtiF9yhWxx3tVLWf7I9UtzTBzSE3uDs6gGwYsQh6oRW5bK68gANvaFl2qFs/6dHGQtd+I6pgRAFPNByvjXsYDLLNRYTdUUG7vxoxY30DG59ON/C/rEWcNT6MB3BDtSwpPrBxYQ++1r1SYorf0Kk9MBHrL/RhTBGfpPXzXvVj2EY1TNnraw3Y3CycR7INi98XQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=juniper.net; dmarc=pass action=none header.from=juniper.net; dkim=pass header.d=juniper.net; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=juniper.net; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=MZxPoCCVbtlvdu+rw9Z6yFJ1/ESxoDX/5foWhNTQn6o=; b=SR6lIod28tzTU3f4RF6YytuUUSyDpt+YBhGYXspHELWQf9m6HzdC21WXnZ9Jyl+AqMinzcfVrmDS9+c3E3ain18KxAMMfF8DF2mGkipHDpl9ndbmIsQCcHnyUrebBbsjsI/YkIDpk+TccLxTeYPa/zZ8vOiAHn6bFSz6+J3Metk=
Received: from BN7PR05MB4131.namprd05.prod.outlook.com (2603:10b6:406:8b::18) by BN7PR05MB3940.namprd05.prod.outlook.com (2603:10b6:406:89::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3391.4; Thu, 17 Sep 2020 00:38:38 +0000
Received: from BN7PR05MB4131.namprd05.prod.outlook.com ([fe80::5cf1:cf30:7fe6:1490]) by BN7PR05MB4131.namprd05.prod.outlook.com ([fe80::5cf1:cf30:7fe6:1490%3]) with mapi id 15.20.3391.009; Thu, 17 Sep 2020 00:38:38 +0000
From: William Bellingrath <wbellingrath@juniper.net>
To: "Eric Voit (evoit)" <evoit@cisco.com>, "Panwei (William)" <william.panwei@huawei.com>, "draft-ietf-rats-yang-tpm-charra@ietf.org" <draft-ietf-rats-yang-tpm-charra@ietf.org>
CC: "rats@ietf.org" <rats@ietf.org>, Guy Fedorkow <gfedorkow@juniper.net>
Thread-Topic: Some Feedback on CHARRA
Thread-Index: AQHWjIriKmzfPwcJPUWXromKK8WsGg==
Date: Thu, 17 Sep 2020 00:38:37 +0000
Message-ID: <310DFF58-AF27-421D-8A2E-B168419FD155@juniper.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=true; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ContentBits=0; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SiteId=bea78b3c-4cdb-4130-854a-1d193232e5f4; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_ActionId=b18da99a-7536-4773-9c7f-130cb86a020e; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_SetDate=2020-09-16T23:57:48Z; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Method=Standard; MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Name=Juniper Business Use Only;MSIP_Label_0633b888-ae0d-4341-a75f-06e04137d755_Enabled=true;
user-agent: Microsoft-MacOutlook/16.41.20091302
authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=juniper.net;
x-originating-ip: [66.129.242.11]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 0c71a580-f801-443b-8750-08d85aa204da
x-ms-traffictypediagnostic: BN7PR05MB3940:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <BN7PR05MB39404506E64116B76B6554ABCB3E0@BN7PR05MB3940.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 2fFhNgpM2TcvF2V5WHkEPclD51tWHnMii62hoFFKGsrih70roafutkCMwa99J9/tDW+Z3K1OQZEIS3DUkvTOvf8rQhuRNt9JemwFc/jdV8VgbgnAyv7mcJ+KkkTsZSbBI+sn/4dQWJFLylhtnLsbXnG8GPBCoCJv69niT5us9RLgHe6cWFXPLxy+RizRIuFPKFj7sRKjbt3Eb5Q+6jNfn4Zo1Wss/CLz+mIONLZzakIbfysa8b1bS6PoG5B3WLastGitRyCd5ZDkyzqqjIhG2wSGbYq/FJDLKKRhQMGqOmH/5fEZkZes/EaXimnn3ItyafIGUrSFrlIshcE617zeMIWr8XCH87/h6THeOPOg/H4i8Ox28CD0PKxTckmuJeG6
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BN7PR05MB4131.namprd05.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(136003)(346002)(396003)(366004)(39860400002)(478600001)(8936002)(76116006)(66446008)(36756003)(66556008)(86362001)(64756008)(66946007)(66476007)(4326008)(6486002)(186003)(5660300002)(8676002)(3480700007)(33656002)(26005)(91956017)(71200400001)(2616005)(110136005)(6512007)(54906003)(2906002)(107886003)(316002)(83380400001)(6506007); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <05CF4FAD6283894A8CA9A2FD3A758BCA@namprd05.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: juniper.net
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: BN7PR05MB4131.namprd05.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0c71a580-f801-443b-8750-08d85aa204da
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Sep 2020 00:38:38.3628 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bea78b3c-4cdb-4130-854a-1d193232e5f4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: mRtqmebTAoUxuCL6FQBlVkIwXudWGpeW1hIw+IgKQXgDlRCKtxOZ+eQL3Rsw1cchMWn2mVND0EXX4dgwj/XQaMrVNvRTOzC69Jdm3quV624=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN7PR05MB3940
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:6.0.235, 18.0.687 definitions=2020-09-16_13:2020-09-16, 2020-09-16 signatures=0
X-Proofpoint-Spam-Details: rule=outbound_spam_notspam policy=outbound_spam score=0 spamscore=0 clxscore=1011 mlxscore=0 lowpriorityscore=0 priorityscore=1501 phishscore=0 bulkscore=0 adultscore=0 malwarescore=0 mlxlogscore=695 impostorscore=0 suspectscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2006250000 definitions=main-2009170001
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/pLgexkcJ1bHVQ08i7cQ6PnqmLqw>
Subject: [Rats] Some Feedback on CHARRA
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Sep 2020 00:38:50 -0000
Hi all,
We have been discussing the CHARRA yang module, and I would like to float back some feedback and recommendations from my colleagues.
Comments are predominantly aimed at naming conventions, or ease of reading, and are just suggestions.
1.
module ietf-tpm-remote-attestation {
namespace "urn:ietf:params:xml:ns:yang:ietf-tpm-remote-attestation";
prefix "tpm";
import ietf-yang-types {
prefix yang;
}
import ietf-hardware {
prefix ietfhw;
}
import ietf-keystore {
prefix ks;
}
import ietf-tcg-algs {
prefix taa;
}
Recommend these prefix names changed to something easier to read.
2.
...
must "/tpm:rats-support-structures/tpm:attester-supported-algos"
+ "/tpm:tpm20-asymmetric-signing";
...
Recommend adding an error message or description with the “must” statements.
3. For all identity naming, recommend using '-' instead of '_'.
E.x. grouping TPM2_Algo, grouping TPM12_Algo, etc
4.
leaf revMajor {
…
leaf revMinor {
…
Recommend renaming these to ‘rev-major’ and ‘rev-minor’
Thanks,
William Bellingrath
Juniper Business Use Only
- [Rats] Some Feedback on CHARRA William Bellingrath
- Re: [Rats] Some Feedback on CHARRA Eric Voit (evoit)