Re: [Rats] Use case -> architecture document

Dave Thaler <dthaler@microsoft.com> Tue, 08 October 2019 14:14 UTC

Return-Path: <dthaler@microsoft.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 050C5120052 for <rats@ietfa.amsl.com>; Tue, 8 Oct 2019 07:14:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id whLMTVCREkaz for <rats@ietfa.amsl.com>; Tue, 8 Oct 2019 07:14:02 -0700 (PDT)
Received: from NAM03-DM3-obe.outbound.protection.outlook.com (mail-eopbgr800124.outbound.protection.outlook.com [40.107.80.124]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7C7A312007C for <rats@ietf.org>; Tue, 8 Oct 2019 07:14:02 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=GQ+QVFtKHSX9ATo0yU31eY8IdWWRuqNEgVmWz3vKC1GLj1JiY6tKOVKRPjN4Z8EVXVC/RPlgTENBRP+KVf7EE/lx6BzpnvoJ6diySwDHXzgmxAnPs1evt4UFXnBnnEMKh7ChSubLlH3+fCHSNW/25pka/BUhtVrVrW5C5KvuEjddIoFs1EJTxJdfT6UBsQmDQCrgkU7oivOtwHOmLVRqwyEBJ3U/4gM0eR2/z1bwXw7dNjvchFiIDpSGJPD2YbWEt0UK/ONcGTgAjF2NfSQ+C8HRAdfJkdNpgiQskBFzOGoNDLJgAM8JRSPHoyYpBsdhvVNUwC/s6PzfXFn4mpsYUg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SlCita9o6Uwmj0NLg4QWgfppVZjT0v21soFzABFTLlI=; b=cuwG4P/XIQ+Df6eoA8/uYO8vzLbygzJ2elcHM/cjkDADwcA70kJXu1aviVWVpvKwVL6hiWlPeVRAkms22FsDAar4SMUB371AqoJV+sMCqLgRvWK638maIpNh04h11hrHCg/AtdZD2RVk7KyXEeCCSxpQJRpzLL0fne9MBBB+KYYC3HrhBAzd1KqAf07dJsHGNHCsUnaLiYll2PPvbk6zOWCc9AKDcKGCx/iTOZUqC8ovHZRhNU30x7lRajn/O/z9iGg28hppmgi//Ppuw9VrZYwXsjAjFB6GuoaurCBDJAk7MDfM5D77HgogG+HC083aXLAXqquEOs909jUBxz2mOA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SlCita9o6Uwmj0NLg4QWgfppVZjT0v21soFzABFTLlI=; b=SaSXpwmgcGL/zHKjRmNzwoNiWhWCZrEF/EjQK/VN+umbZaS6Up5t+c9nOfel1jiWBGgEfUxgKyruNEQ1MQ+MXQH4TVM3JDs6u1btzYBBQ1MdYkUCfB7d+pH43xLA2u6kQ7oBc4h3WkbItxzt4PuRgl+pMprgRDoapE8Vcwfajek=
Received: from MWHPR21MB0784.namprd21.prod.outlook.com (10.173.51.150) by MWHPR21MB0288.namprd21.prod.outlook.com (10.173.53.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2367.2; Tue, 8 Oct 2019 14:14:00 +0000
Received: from MWHPR21MB0784.namprd21.prod.outlook.com ([fe80::5d43:ff3f:d4e9:c39c]) by MWHPR21MB0784.namprd21.prod.outlook.com ([fe80::5d43:ff3f:d4e9:c39c%11]) with mapi id 15.20.2367.000; Tue, 8 Oct 2019 14:14:00 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] Use case -> architecture document
Thread-Index: AQHVfcsbRzVnmNCx+ki42UJKCiHm26dQyW+A
Date: Tue, 8 Oct 2019 14:14:00 +0000
Message-ID: <MWHPR21MB078480EE080783EB8E65E77CA39A0@MWHPR21MB0784.namprd21.prod.outlook.com>
References: <CAHbuEH7f0jjquR=iZDgof4DkgpZKgxEP86NcQ0A1NQ=SP+_FHA@mail.gmail.com>
In-Reply-To: <CAHbuEH7f0jjquR=iZDgof4DkgpZKgxEP86NcQ0A1NQ=SP+_FHA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Owner=dthaler@ntdev.microsoft.com; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-10-08T14:14:00.6910770Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=General; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Application=Microsoft Azure Information Protection; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=656d7286-99af-4752-9b10-ff900182cf01; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Extended_MSFT_Method=Automatic
authentication-results: spf=none (sender IP is ) smtp.mailfrom=dthaler@microsoft.com;
x-originating-ip: [73.59.106.235]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 48881669-fbf0-4705-8743-08d74bf9c432
x-ms-office365-filtering-ht: Tenant
x-ms-traffictypediagnostic: MWHPR21MB0288:
x-microsoft-antispam-prvs: <MWHPR21MB0288BC832BF250F51970602DA39A0@MWHPR21MB0288.namprd21.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6430;
x-forefront-prvs: 01842C458A
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(376002)(136003)(396003)(366004)(346002)(39860400002)(189003)(199004)(66476007)(446003)(11346002)(486006)(476003)(14444005)(256004)(81166006)(66066001)(55016002)(86362001)(9686003)(54896002)(6306002)(6246003)(8936002)(8676002)(81156014)(478600001)(76116006)(25786009)(10290500003)(71190400001)(71200400001)(6436002)(229853002)(66556008)(66946007)(66446008)(64756008)(52536014)(5660300002)(14454004)(7736002)(8990500004)(6506007)(10090500001)(74316002)(110136005)(316002)(22452003)(53546011)(186003)(26005)(102836004)(76176011)(99286004)(2501003)(3846002)(2906002)(33656002)(7696005)(6116002)(790700001); DIR:OUT; SFP:1102; SCL:1; SRVR:MWHPR21MB0288; H:MWHPR21MB0784.namprd21.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: GLl3nwz7z7pwZMum5Xfd+Diz7WfsZVsixQy0BAkW9Ka52miMWgfNMPCL6yhnwimqU9bFu7FricClNhAFNKBoOqcHfKPcMYQqA7ZY0BA7hLwwe3pm7sbhlyI3l887Cpq1Es41XNeTW/+qS7UkMPSW8L1K5awoJRh/dqZav1vxBgIPZFgxmcNvvLGrONuPSnRIrGJMyKI850TA5ZhOYuiMe6q/Y85pdIQ0kELduzmhL8R2N8tkMdRC23gPUhYm9xU1qLjqG7PGKW1VhNxEjkhr1sXSAYFWrdE8SbuW8uLH9Xxk3Vvu5f3sS1jSTioTA1j/y0urQzhp1l9xqmg4Q50DGtmkmjFLBhW/Qgqo5AKIBkUTCWi5NbR7eOi2LZYBmHWM5JiwbnJB/KuKqI+aDSFSCeL4DyoIQInI6AXinySjlso=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_MWHPR21MB078480EE080783EB8E65E77CA39A0MWHPR21MB0784namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 48881669-fbf0-4705-8743-08d74bf9c432
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Oct 2019 14:14:00.4221 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: pus5gG1R/NHtUGeTYJ+TOucGFP86eVbbU//lgFEWvPNMVWiRF2Xs5l0f2jLMHhEKTDDrupZAOxADn2o2UigZK//pCTKYXTP6C1JOf74OM4s=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR21MB0288
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/pQXceWMPSbjSM9J3Y6Prh0uX8tQ>
Subject: Re: [Rats] Use case -> architecture document
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Oct 2019 14:14:05 -0000

Personally, I like that idea and would be happy to help if the WG goes in that direction.

Dave

From: RATS <rats-bounces@ietf.org> On Behalf Of Kathleen Moriarty
Sent: Tuesday, October 8, 2019 4:25 AM
To: rats@ietf.org
Subject: [Rats] Use case -> architecture document

Hello!

I read through the latest version of the ‘use case’ document yesterday and found it very easy to read and understand, meaning I think it is written well and could be easily understood by many without having to climb up a learning curve.

First, this could be a very useful document to register claims for the use cases.

Second, if the workflow for the passport and background check were added and put in terms of the open trust protocol v2 from TEEP, we have a fairly nice architecture document that’s easy to read and may gain adoption.  The workflows cover the various interactions between roles and TEEP has actively broken up OTrP in v2 to accommodate using EAT tokens, this would help create that link and make it very clear.

The other thing I like about the use case document and think we should expand on is the references to other work items.  This makes it an architecture document that maps out the full plan of the WG.  One like that was extremely well received by all the ADs that don’t like informational/helpful documents.

I’m a bit nervous with the terminology being defined and would love to see something like this that’s simplified and more easily adoptable.

I appreciate the work done to improve the architecture document, but I do think the structure changes to the use case document as suggested could result in an easier to understand (and therefore easier to adopt) document.

While the architecture document is more readable, I think we can do better.  Adoption is important and our timeliness matters a lot for this work.  EATs can be used for may use cases with OTrPv2, so let's keep it as simple as we can.

Thoughts are appreciated.

Best regards,
Kathleen--

Best regards,
Kathleen