IETF Logo Mail Archive

Re: [Rats] Entity vs. role

"Eric Voit (evoit)" <evoit@cisco.com> Wed, 23 March 2022 12:54 UTC

Return-Path: <evoit@cisco.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC92E3A10BE for <rats@ietfa.amsl.com>; Wed, 23 Mar 2022 05:54:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.605
X-Spam-Level:
X-Spam-Status: No, score=-9.605 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=mLx3MvM1; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=cisco.onmicrosoft.com header.b=kg150Njn
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MAHbAv94et7y for <rats@ietfa.amsl.com>; Wed, 23 Mar 2022 05:54:22 -0700 (PDT)
Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4825D3A1051 for <rats@ietf.org>; Wed, 23 Mar 2022 05:54:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=17126; q=dns/txt; s=iport; t=1648040062; x=1649249662; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=jnfgqrEoZgWrMWyNL9vC+H0cFQkUAK2Nf0bz5iCkwZA=; b=mLx3MvM1Y87ngDMsXkKgv4VAq8IIqTK6HWUbPeCaUDcOD8wdsBwo4f3x MJ5a98bK2MJi4Kt/DHKBuN9AkB83f3YInCQlZHlupIzQXLo8joOWLuJUj EzeB/hW/UMOjjZO7mWi1pkoXYQwftCRLB8er1D6EtLh+P4d16zCqEuGTD w=;
X-Files: smime.p7s : 3975
IronPort-PHdr: A9a23:RFE6OxHob7l25PbJo8ju751GfiYY04WdBeZdwpYkircbdKOl8tyiOUHE/vxigRfPWpmT8PNLjefa8sWCEWwN6JqMqjYOJZpLURJWhcAfhQd1BsmDBAXyJ+LraCpvGsNEWRdl8ni3PFITFtz5YgjZo2a56ngZHRCsXTc=
IronPort-Data: A9a23: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
IronPort-HdrOrdr: A9a23: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
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0CPBwCeFzti/4YNJK1aHgEBCxIMgg8LgSExVgd3LC43RIRUg0oDhTmFEIMFlh+FFoEugSUDVAQHAQEBCgMBAUMEAQGFBwKERQIlNQgOAQIEAQEBEgEBBQEBAQIBBwSBCROFaA2GQgEBAQEDEhEKEwEBKwwBDwIBCA4EAyoDAgICMBQDDgIEDgUIBhSCY4IOVwMeEAGgVQGBOgKBDokReoExgQGCCAEBBgQEhQsYgjAHCYE8gVSBPYQlAQGHEhcQHIFJRIEVQ4JnPoRHNIJkN4Iul0FbaoF2Zjgikh+DEUeKIqArCoNJgTyEMoMglwMVqECWW6ZZAgQCBAUCDgEBBoFiATqBWXAVgyRRGQ+OIINyil51OAIGAQoBAQMJkFIBAQ
X-IronPort-AV: E=Sophos;i="5.90,204,1643673600"; d="p7s'?scan'208,217";a="996263918"
Received: from alln-core-12.cisco.com ([173.36.13.134]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 23 Mar 2022 12:54:20 +0000
Received: from mail.cisco.com (xfe-rtp-005.cisco.com [64.101.210.235]) by alln-core-12.cisco.com (8.15.2/8.15.2) with ESMTPS id 22NCsKcY022514 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Wed, 23 Mar 2022 12:54:20 GMT
Received: from xfe-rtp-003.cisco.com (64.101.210.233) by xfe-rtp-005.cisco.com (64.101.210.235) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14; Wed, 23 Mar 2022 08:54:19 -0400
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (64.101.32.56) by xfe-rtp-003.cisco.com (64.101.210.233) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.986.14 via Frontend Transport; Wed, 23 Mar 2022 08:54:19 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=LJ2oZchA/jR/DBimR40tbv+QC83BY1KWp9XXw+x+PR8jXbQtqFEv3ahGIqBvdFwQFPAMM9kGQB8cvboi7hQmdaQHdRh1t2h5XQjETR3gc8fRVqtm2eFAWlbSbu3BHwOUv2WUwuLH7Yqv6TyP1m7lwNHo9RPHbNPHV93pE3vxJ4kJ7pKP6XBy3ZTQl0k21bSOGpgQF3ndXK+imcumYFqksj4Ue811CLzGWzJ0l6ktRBniFSUlYpoZhSOdxf+aXxcTvk2YBFtQjgwJ1sx3kuNGVTv3GljAD/+ObCj3o4xWUtzCzjZoYGM4JpLwXzEzH4r8ZHPgVkMNKL/0WaZYWn496Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=rxTquUSwjgxjXeOsUL+F+asIvzEAJz5bkwdtoyypUQw=; b=AUqlHDArisTbzye8nee1Rd9WuoRTzselqiFN3rqeHd+hNP9p9ORQRK/hUtiB4BCH1KspIkukhcBgGnmes+FUB1lZb1r6CxFdwyVbKzbvrWUUglVIGfDxdOtQl/1swo21yQ7WAGGMRuqan42RXpkRKjXujjBhHQQGy3l6eQMiUDQXv6OiA1RU8eA12WVN/xR+f92R27GOfDpaTdUBIS5XwFwucEaL8ZQABVEkgh7zLjHRmc+2SoafGfj5PvTLpHO3tqMuzjdvu9RQEIa9CwniPanrqqVK5RNl77NzVdsYuH/BC5UD0NumvDEyRWWY4GrQlFPgG9xJFR/xIlXLiRU+qg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=rxTquUSwjgxjXeOsUL+F+asIvzEAJz5bkwdtoyypUQw=; b=kg150NjnHyw4ymzN6vh3UD5cLajD+uiOMFQ2wNe8tiGRfVO62jtPCMxiL2UcsTWkeRBZbykrF4xJsXw2C+qZXqw3p58myStZoWJLwMFLN2MRmFGlvVJ3Mwg1GR6wwjbCOm3vmUND7XLO/GQ8r/TpgMHUALdNk5bG6R8xYxzEMt8=
Received: from SN6PR11MB3135.namprd11.prod.outlook.com (2603:10b6:805:d5::20) by SN6PR11MB3230.namprd11.prod.outlook.com (2603:10b6:805:b8::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5081.18; Wed, 23 Mar 2022 12:54:17 +0000
Received: from SN6PR11MB3135.namprd11.prod.outlook.com ([fe80::cd2f:e3f:19e3:6409]) by SN6PR11MB3135.namprd11.prod.outlook.com ([fe80::cd2f:e3f:19e3:6409%4]) with mapi id 15.20.5081.022; Wed, 23 Mar 2022 12:54:17 +0000
From: "Eric Voit (evoit)" <evoit@cisco.com>
To: Laurence Lundblade <lgl@island-resort.com>
CC: Thomas Fossati <tho.ietf@gmail.com>, "rats@ietf.org" <rats@ietf.org>, "Smith, Ned" <ned.smith@intel.com>
Thread-Topic: [Rats] Entity vs. role
Thread-Index: AQHYPivMgQWbu8zDYE+F8zzrq4lIsazL5rMggAC1voCAAEulcA==
Date: Wed, 23 Mar 2022 12:54:16 +0000
Message-ID: <SN6PR11MB3135EBAF7783D637C7BBA04AA1189@SN6PR11MB3135.namprd11.prod.outlook.com>
References: <3407CFB9-B713-4E13-BDA3-08EC7B5A905E@intel.com> <CAObGJnOxU0vfxzzZ9tv1J64KHDigxLcEMrgx0gDy97bE7NQJcA@mail.gmail.com> <E20F61DD-8775-4E68-8E56-E6EC92682A18@island-resort.com> <CAObGJnOv8ePE=R6vvdg5uib3Y9=WS8A5vcOdpWY0sREXA98aPQ@mail.gmail.com> <2BC14C43-80D0-4611-BEA0-9D9B9948BE0C@island-resort.com> <BYAPR11MB31255F64BDB773DB93A0C6CCA1179@BYAPR11MB3125.namprd11.prod.outlook.com> <9BFD1E45-569D-4E2F-BCD7-5DA6FF5A1BDF@island-resort.com>
In-Reply-To: <9BFD1E45-569D-4E2F-BCD7-5DA6FF5A1BDF@island-resort.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cisco.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 3376c8f4-a2d3-4d53-75f4-08da0ccc3d84
x-ms-traffictypediagnostic: SN6PR11MB3230:EE_
x-microsoft-antispam-prvs: <SN6PR11MB32308A0A95F93BBEA10DA787A1189@SN6PR11MB3230.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: jCCNzvfK1Kq36i+uTvLuAXt3hU4umMsNFaYfGF6B4TAiRMLogszXXDgh7snO5p2W2pHscDdlHq/6yry2kVL1m7o2d8DC1uvZgrgO2U17wFiwSlRpLF0uOWkROUPnwnGZXYdAz6dkZh8W4xKZ1lsqWeUEoztwgd6jU8SWJAXMMI9oW9hIG6Nh8Al+Ya59xw5UT+cO/AD7kTCvAah35gsCOl6fFOpQQPfOIcWS1xWPPWjKdgxNxWiTEV6LndBmUT6yb/p/qSW9pZj5Pjn4tdn1PhtbCaIO2FZqhxEw0koYYH8jqyT8acZEca4AMA9G/xQ5bjrvcNO35UXyJ5YMh8HgccO3UG2NeVhEK+XbIRVjCdQDfvz1Dq1L9rCBFGzP5IhzX3xQEUcY7HgoFn/poBPjRUiunubEuJjzhpZ4GMgNmEWLPcutFJhoQdlM3XxGZuXeh/kTd0vN7jFh561FpDBvI+Y4k5OqKyZv0TgdPyqegNTnkRQ9mgAmczZs223f80PtrrpMrTiH/vEQUuyGIFqheiKay36KQp8pfKkjJdRKGKyH/FhwmSDwQwmMP9VZwG6ehO8x9HXvWnsRVjFceb3pup/zqKh1Sq8u4h5EtvXupPAsZqNRqZW6J58lsSkwR8BHk5hYhZ6xRw7HFNavERDKrhADU0OcAycufM4lZHqlA4F4PSUhNJyv+X757CkhCHavduUJl4N4KcU9EeTFFSREiQ==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SN6PR11MB3135.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(186003)(26005)(4326008)(5660300002)(8676002)(316002)(86362001)(54906003)(38070700005)(6916009)(83380400001)(38100700002)(55016003)(508600001)(99936003)(71200400001)(122000001)(52536014)(2906002)(66446008)(76116006)(33656002)(7696005)(64756008)(6506007)(66476007)(66556008)(66946007)(53546011)(9686003)(8936002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_002F_01D83E93.4A409250"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SN6PR11MB3135.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3376c8f4-a2d3-4d53-75f4-08da0ccc3d84
X-MS-Exchange-CrossTenant-originalarrivaltime: 23 Mar 2022 12:54:17.0049 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: PeoKl4BdaZVPB9s5GL9uqf/33RuvjyowzfYHBSju4ZfJhenEZ32T6QKDbDBntwE6
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR11MB3230
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 64.101.210.235, xfe-rtp-005.cisco.com
X-Outbound-Node: alln-core-12.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/pY66yPDnETRD1amQHJIhHV6nkK8>
Subject: Re: [Rats] Entity vs. role
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Mar 2022 12:54:27 -0000

From: Laurence Lundblade, March 23, 2022 4:03 AM



On Mar 22, 2022, at 10:37 PM, Eric Voit (evoit) <evoit@cisco.com <mailto:evoit@cisco.com> > wrote:

 

Yes, we can depict it like that conceptually, but in reality it could be one big machine learning engine or similar where you can’t separate it (you could even put unverified measurements in AR so they can be fed into a machine learning engine).

 

<eric> Ar4si uses the term "AR-Augmented Evidence" to show what flows into the unified Verifier + Relying Party roles.  Ar4si makes no assertions on what the full set of Evidence might include.

 

And RATS architecture doesn’t care about what’s in AP for AR and shouldn’t care about it. We’re only mentioning AP for AR for the sake of completeness. We’re not going to put any requirements on it or say anything more about it than it exists, right? Hope that right. 

 

<eric> The RATS architecture doesn't name specific objects.  But where AR flows between devices (e.g., in the passport model), this WG needs to understand how reusable Verifier generated objects/definitions might be consumed.  I.e., the ultimate consumer of RATS is the RP.

 

Eric

 

Yes, went backed and looked at your slides again. Makes sense. Definitely a use case to support.

 

When talking in terms of roles, I definitely think that Verifier B is just co-located with the RP, not part of the RP.

 

I’m not sure if we should consider Verifier A + Verifier B a composite Verifier or not. In my comments above I clearly asserted that all the verifiers (in a composite verifier) must have run before there is any AR. By that criteria it is definitely not, but maybe that definition is too strict? 

 

<eric>  There is no term "Composite Verifier" in the architecture.  And if there was, I wouldn't consider Verifier A + Verifier B composite because: 

* Verifier A will often not even know about Verifier B.

* Verifier A & Verifier B will often be managed by different organizations.

 

I’m also not sure what we should call the intermediate results between Verifier in a composite verifier. By my criteria above it can’t be AR-Augmented Evidence, but again, maybe that criteria is too strict.

 

<eric> Verifier A does not know that it is creating "intermediate results".  It is delivering exactly the evaluation promised.  This is why what is coming from the Verifier A must be known as Attestation Results.  

 

It is up to the end-to-end use case as understood by the Verifier B + RP to determine how to handle the full set of Evidence receives.

 

Ironic in a way — I want to forward/passthrough Evidence in Results, you are forwarding/passingthrough Results in Evidence :-)

 

<eric> It is not me that puts Results in Evidence.  It is the definitions in the architecture document which requires it *must* be specified this way.

 

Others should chime in on whether they agree with my interpretation of the architecture document.  To me it is perfectly clear.

 

Eric

 

LL

v2.23.0 | Report a Bug | By Email