[Rats] Missing CDDL in UCCS (was Re: Working Group Last Call for UCCF draft)

"lgl island-resort.com" <lgl@island-resort.com> Tue, 29 August 2023 19:30 UTC

From: "lgl island-resort.com" <lgl@island-resort.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
CC: rats <rats@ietf.org>, cose <cose@ietf.org>
Thread-Topic: Missing CDDL in UCCS (was Re: [Rats] Working Group Last Call for UCCF draft)
Thread-Index: AQHZ2q86uO69gpQ4L0uLWbn9bExJsw==
Date: Tue, 29 Aug 2023 19:30:11 +0000
Message-ID: <667233FC-03D4-401B-804B-31904A8256F6@island-resort.com>
References: <CAHbuEH7Kj821CZJxbbs_5WW+XhK3xzePmWXjc878k=r2Gs=nJA@mail.gmail.com>
In-Reply-To: <CAHbuEH7Kj821CZJxbbs_5WW+XhK3xzePmWXjc878k=r2Gs=nJA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="utf-8"
Content-ID: <D146846DFF047C44A52A5300DD666300@namprd22.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: d062d3d7-9008-4ff5-1f22-08dba8c65c84
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Aug 2023 19:30:11.2032 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: fqU1cQ0/XxguwMiHPwMQMUxgEAgj6nRiG2s7b5B2DZLaQF8A7SPQAxVghNDD8G+H+pSEYY4u3Y4y5VZyx0Y7BA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: LV8PR22MB4941
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/q2lY-Q9uk923jIQf_VT8ATpKglg>
Subject: [Rats] Missing CDDL in UCCS (was Re: Working Group Last Call for UCCF draft)
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 29 Aug 2023 19:30:18 -0000

From reviewing comments from Thomas, I noticed UCCS is missing some parts.

The UCCS draft doesn’t define the CDDL for the $EAT-CBOR-Tagged-Token, $JSON-Selector-Type and $JSON-Selector-Value sockets for inclusion of a UCCS in EAT.

The EAT document goes as far as it can to set up for UCCS, but can’t go all the way without normative reference. It leaves it up to the definer of other token formats (which UCCS is) to define how they plug into EAT as a nested token and into a detached EAT bundle.

This is primarily an issue for JSON-encoded EATs as CBOR-encoded EATs use the CBOR tag mechanism. JSON doesn’t haven an equivalent.

What’s needed is something like this:

    $JSON-Selector-Type /= “UCCS"
    $JSON-Selector-Value /= UCCS  
    $EAT-CBOR-Tagged-Token = UCCS

But, there’s a further problem.

The UCCS draft defines:

    UCCS = #6.601(Claims-Set)

It should be:

    UCCS = UCCS-Tagged  / UCCS-UnTagged 
    UCCS-Tagged = #6.601(Claims-Set)
    UCCS-UnTagged = Claims-Set

Then the CDDL to connect up to EAT is:

    $JSON-Selector-Type /= “UCCS"
    $JSON-Selector-Value /= UCCS-UnTagged
    $EAT-CBOR-Tagged-Token = UCCS-Tagged

This also makes the UCCS reference to EAT normative, but that is OK since EAT is ahead of UCCS.

I believe this very much needs to be fixed.

LL 

> On Aug 26, 2023, at 4:43 AM, Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com> wrote:
> 
> Greetings!
> 
> The working group last call for https://datatracker.ietf.org/doc/draft-ietf-rats-uccs/
> begins now and will run for 4 weeks per discussion at the IETF 117 meeting. Review requests are also requested from COSE working group members. Last call ends 9/23/2023.
> 
> There are a few remaining questions that I need assistance from authors on prior to IETF last call. Could each author and others with knowledge of IPR please disclose any at this time as well.
> 
> Thank you!
> 
> -- 
> 
> Best regards,
> Kathleen
> _______________________________________________
> RATS mailing list
> RATS@ietf.org
> https://www.ietf.org/mailman/listinfo/rats

[Rats] Working Group Last Call for UCCF draft Kathleen Moriarty
Re: [Rats] [COSE] Working Group Last Call for UCC… Carsten Bormann
Re: [Rats] [COSE] Working Group Last Call for UCC… Henk Birkholz
Re: [Rats] Working Group Last Call for UCCF draft Tschofenig, Hannes
Re: [Rats] Working Group Last Call for UCCF draft Thomas Fossati
Re: [Rats] Working Group Last Call for UCCF draft Smith, Ned
Re: [Rats] [COSE] Working Group Last Call for UCC… lgl island-resort.com
[Rats] Missing CDDL in UCCS (was Re: Working Grou… lgl island-resort.com
Re: [Rats] [COSE] Working Group Last Call for UCC… Michael Richardson
Re: [Rats] [COSE] Working Group Last Call for UCC… Thomas Fossati