IETF Logo Mail Archive

[Rats] Re: New Version Notification for draft-sardar-rats-sec-cons-03.txt

camilo ayerbe <cayerbe@gmail.com> Sun, 10 May 2026 16:38 UTC

Return-Path: <cayerbe@gmail.com>
X-Original-To: rats@mail2.ietf.org
Delivered-To: rats@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id AFAD9EC1ADF6 for <rats@mail2.ietf.org>; Sun, 10 May 2026 09:38:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1778431113; bh=+KK4eq7I0hhyY98rQmfpoTqtCp5zBz3ULKcNOhhBnYQ=; h=References:In-Reply-To:Reply-To:From:Date:Subject:To:Cc; b=nKM/27PUhJGosIh0GGPI55RMnA1kXY6lGbOKUu26Kanznj2jFAZp+ZnjBRXlcVTN7 E9TzHehqgPa9WpFMm3DnHf0XNquAFTmNsJqJyXv6ip7vIqFyZ+iWmW/SEh5FmcNutu QdGQadpHMmEC4gbHnoe9GxYrFQdFl+DRzWHTObuY=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZYYNaF4lUctk for <rats@mail2.ietf.org>; Sun, 10 May 2026 09:38:29 -0700 (PDT)
Received: from mail-dy1-x132b.google.com (mail-dy1-x132b.google.com [IPv6:2607:f8b0:4864:20::132b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id C5BD7EC1ADE9 for <rats@ietf.org>; Sun, 10 May 2026 09:38:29 -0700 (PDT)
Received: by mail-dy1-x132b.google.com with SMTP id 5a478bee46e88-2f36da5c8fbso3415423eec.0 for <rats@ietf.org>; Sun, 10 May 2026 09:38:29 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1778431109; cv=none; d=google.com; s=arc-20240605; b=c+3+iSoDqPF5GMUVZLWTuF/A2tYISsBonDJoAWYPtYfaNfNnNyKzck286KD4IK4gsM bMnPX1ASnAVA085psmN74pYVIT6Qcjf9ow7oAyyeYE/X2SiBJkoeV0QeRu6kVxR/WfpJ 5ZHfVPc0qrbao4wCjVPWLRJCN+UZfNeFIhvFGiTyO2SF4tckeqsuMdWf7CIKvKcN059S 32qnZfem48tNXMfog+SO4YszwoR/7ABxf4QN9AGE0Tev45/tXzp9MS/m7p1bbSvLlyWh 3vxBOOysCbyATxDFRfQ4hZaFlmH7z8oXRlYnqHBfERCy7oDVb8uSn9hKe76jPjVva234 AmFw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:from:reply-to:in-reply-to:references :mime-version:dkim-signature; bh=L7KZljjO+gZpephlfgwQBwlMgXtuvo8fNE00znEazAU=; fh=eUjtu6S6goTFaPhC7AVqSM7b9CHcrIvxZChy64jDnsw=; b=ZjowIA+mys2gy7yrZmG9QHJfEMv7BBBBHQpgHKwXXtVHJ6/5zZD2iKxKjunPl9PW4C /o3VkIyGKPmZDoBLAKSkBSQw7REae6pCP4SzHU2Ho4xagJVUh4WYzr3pxGBblOT8mZjf 49hfKMKaNiY9x3zok+/4YJJc6OBhyqqiSmpd1TFfCflaBRSoMV/0dkTjFtGqR99PeWVk kwfWEwLy83Moq//cBXvKU038runk6YY0IJ8z/0DQTiV0R+Of4LFx7KItQID/sJnC9F/d QKaJrHJG2XZI/dMtaoe9OLC5vCSk0la36LAJ7hrKpsAXhkrScdCG+G97ak3XGGusAVuv r6hQ==; darn=ietf.org
ARC-Authentication-Results: i=1; mx.google.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1778431109; x=1779035909; darn=ietf.org; h=cc:to:subject:message-id:date:from:reply-to:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=L7KZljjO+gZpephlfgwQBwlMgXtuvo8fNE00znEazAU=; b=c/mGxKLcsSof/FLfShjy9h+8cYrvWAmOT1wXCMgOXXsaO+oxINMinoDFdTd+DYrQbS vP1gSWEiex/Z2Bb0L3qLk4EN8bJfFktj6cSaCc/h7WC99b7kuBiMxQtAbZJsj9wbaGNc mpy8oHsmk5uF6oIXr1ZiQxLZ1Pl7nlO49Z94Ed8sJyNQqzC2qoD737eU4xl435zEqlUM K+ACe2t6QlfljU7gPOfEJJk5sxf4UtxUhkE3sxyTSVWCW4flDaqxSnUawM6200rV7zY3 ZHxbAF83mnL5+OYqE+YdHbQjYs+7+nTBYhGZI0BDQmOg8Q3xPp2SqYHzeKEsDc2Y4ufF MT/A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1778431109; x=1779035909; h=cc:to:subject:message-id:date:from:reply-to:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=L7KZljjO+gZpephlfgwQBwlMgXtuvo8fNE00znEazAU=; b=N/Pp2L/6l9M7OvgDnk8buWDb3Rvuwg7ytpHWOfcCXEhVx9u/305PUpS+U+oSDBeiiC RQESf89VWrhKo1AKBF9QObosWucI91ZyESFxiOAg2AaK5y8VM9f4ib4kAMSnVy9q+dij NpvQB+27Suc9NxM0UNK5EYx+UP1OkHCR5bu8IpLazztfXnhz6JZUUYWRUTQW9m8FaaA+ 62JgAvdWnVHV5Fe2Oaee967JWBuoW0tjOjUnF59J+K6NkgswYzJ8dShRhuhRKvV3SWyF utTIN10lfSp0KU3rqDxcsGLKdgyemG9xM2WQB24C0kT133P00cgdrXRecgczpwvrxZ/k sgsA==
X-Forwarded-Encrypted: i=1; AFNElJ9iV+ZCUJLqojz41s5diyv5Ao6aJxvR7dtCGNygURF+gA5rRn30h23gkiHIZzqcR8I+hMpK@ietf.org
X-Gm-Message-State: AOJu0YwYh6uRuyPtpTz7jsUhTQnLTRHjKRjyY2I34tIUyuKPIvPvi5NE SoeuXdeyuOWGPEABArdgntzLuB7W/qy86IpDDe7c0/nNXyNY3lqhN80fJZk+sfaRa9okIZW54S5 LvYRCPmND0Rc+OIPDBKfOxfLO9bnuVuc=
X-Gm-Gg: Acq92OGzEJ5Up/n+utja4605GMvwpzs4+1TFRJMcXA8MBZ8ulKARhARin/bdG/LAx8Z Lq8+Zc53LW8758Ki39Z60lW989YbpNIUZ4hJdbKsULDeYquA6PBt8yyI47SKHNb6dbHxfpWTMA2 0hshjDBymWEKNGMSmTq4E0zxbDAy4y2VRo0ia2o9uj6wz/WCJzM1mlb+bQyMiua1drxTF1hb2KP yyOlPnoh8ggi7ONq9B3CcCbEK6pp5UJDHkPc/u2do7Bzj/Ww34dGOxo+ApHievNWWezERz6jDMP hUp6kyiHHnetKD/yTypHGPgEoVyDhmEvdcEjjg==
X-Received: by 2002:a05:7300:724b:b0:2f8:1f2b:bb5d with SMTP id 5a478bee46e88-2fb4dc64acfmr2268704eec.25.1778431108612; Sun, 10 May 2026 09:38:28 -0700 (PDT)
MIME-Version: 1.0
References: <177750265590.432348.3146191093263172762@dt-datatracker-b45949c58-t72jx> <0388f4fe-54e0-41b2-a520-3a2eb27f642a@tu-dresden.de> <D5D9352B-E4DD-4596-B4A3-F2F88EE75275@writerslogic.com>
In-Reply-To: <D5D9352B-E4DD-4596-B4A3-F2F88EE75275@writerslogic.com>
From: camilo ayerbe <cayerbe@gmail.com>
Date: Sun, 10 May 2026 18:38:11 +0200
X-Gm-Features: AVHnY4IcfNSqML-piVDm0Bid9lO-8qJfgjPOSCXTQ10yt_zpUtRzzpcgsXZcJLs
Message-ID: <CAEB7O7aRG+4F+xnmkp5SL_rhvUAqEos=9+k+ch72OAYCi3t37Q@mail.gmail.com>
To: David Condrey <david=40writerslogic.com@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="0000000000007c861e065179424c"
Message-ID-Hash: XHLQEQWSNJWQT2U5MDHC23S3QT5NBB7V
X-Message-ID-Hash: XHLQEQWSNJWQT2U5MDHC23S3QT5NBB7V
X-MailFrom: cayerbe@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-rats.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "draft-deshpande-rats-multi-verifier@ietf.org" <draft-deshpande-rats-multi-verifier@ietf.org>, "rats@ietf.org" <rats@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Reply-To: cayerbe@gmail.com
Subject: [Rats] Re: New Version Notification for draft-sardar-rats-sec-cons-03.txt
List-Id: Remote ATtestation procedureS <rats.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/rPDFZL6Ral2DfI6C4zEw4YsImMQ>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Owner: <mailto:rats-owner@ietf.org>
List-Post: <mailto:rats@ietf.org>
List-Subscribe: <mailto:rats-join@ietf.org>
List-Unsubscribe: <mailto:rats-leave@ietf.org>

Hi Usama, Yogesh, Jun, Houda, Henk, and the RATS WG,

I support adding Usama's proposed §8.1.1 [1] and §8.1.2 [2] to the deshpande
multi-verifier draft.

RATS has historically been built around the single-verifier model — RFC 9334
and the bulk of subsequent RATS work assume one Verifier per appraisal. The
multi-verifier topology in this draft is a meaningful departure from that
baseline.

The current §7 and §8 of the deshpande draft acknowledge TCB expansion and
information leakage as facts within the multi-verifier architecture, but the
proposed additions are necessary to surface the comparison against the
single-verifier baseline at the top of each section — making the security/
privacy trade-off explicit relative to the standard readers are already
familiar with from RATS.

Thanks,
Camilo

[1]
https://www.ietf.org/archive/id/draft-sardar-rats-sec-cons-03.html#section-8.1.1-3
[2]
https://www.ietf.org/archive/id/draft-sardar-rats-sec-cons-03.html#section-8.1.2-3

On Fri, May 8, 2026 at 1:06 AM David Condrey <david=
40writerslogic.com@dmarc.ietf.org> wrote:

> Hi Usama, Yogesh, Jun, Houda, Henk, and the RATS WG,
>
> I am replying to voice my strong support for Usama's request to include
> the security and privacy considerations from draft-sardar-rats-sec-cons-03
> (Sections 8.1.1 and 8.1.2) into the multi-verifier draft.
>
> From the perspective of other active work in this space, preserving the
> security and privacy guarantees of TLS Exported Authenticators (expat) is
> critical. As the author of drafts utilizing the Proof of Process (PoP)
> framework and related cryptographic proofs (such as
> draft-condrey-cfrg-posme and draft-condrey-rats-pop), my proposed
> architectures fundamentally rely on those expat guarantees remaining intact.
>
> If the multi-verifier architecture breaks the expat guarantees, it creates
> a cascading issue that undermines the threat models of downstream drafts
> that depend on them.
>
> David Condrey
>
> On Apr 29, 2026, at 4:08 PM, Muhammad Usama Sardar <
> muhammad_usama.sardar@tu-dresden.de> wrote:
>
> Hi Yogesh, Jun, Houda, and Henk,
>
> We are doing research on the security and privacy of multi-verifiers, and
> we will share any solution that we will have from our analysis.
>
> For now, we have revised the proposal for security considerations
> statement [0] based on the adoption call discussion that we would like to
> be added in the draft until you or we find some reasonable solution.
>
> Privacy statement is unchanged [1] and we would like that to be added in
> the draft as well.
>
> Thank you.
>
> Best regards,
>
> -Usama
>
> [0]
> https://www.ietf.org/archive/id/draft-sardar-rats-sec-cons-03.html#section-8.1.1-3
>
> [1]
> https://www.ietf.org/archive/id/draft-sardar-rats-sec-cons-03.html#section-8.1.2-3
>
>
>
>
> -------- Forwarded Message --------
> Subject: New Version Notification for draft-sardar-rats-sec-cons-03.txt
> Date: Wed, 29 Apr 2026 15:44:15 -0700
> From: internet-drafts@ietf.org
> To: Muhammad Sardar <muhammad_usama.sardar@tu-dresden.de>
> <muhammad_usama.sardar@tu-dresden.de>, Muhammad Usama Sardar
> <muhammad_usama.sardar@tu-dresden.de>
> <muhammad_usama.sardar@tu-dresden.de>
>
> A new version of Internet-Draft draft-sardar-rats-sec-cons-03.txt has been
> successfully submitted by Muhammad Usama Sardar and posted to the
> IETF repository.
>
> Name: draft-sardar-rats-sec-cons
> Revision: 03
> Title: Guidelines for Security Considerations of RATS
> Date: 2026-04-29
> Group: Individual Submission
> Pages: 14
> URL: https://www.ietf.org/archive/id/draft-sardar-rats-sec-cons-03.txt
> Status: https://datatracker.ietf.org/doc/draft-sardar-rats-sec-cons/
> HTML: https://www.ietf.org/archive/id/draft-sardar-rats-sec-cons-03.html
> HTMLized: https://datatracker.ietf.org/doc/html/draft-sardar-rats-sec-cons
> Diff:
> https://author-tools.ietf.org/iddiff?url2=draft-sardar-rats-sec-cons-03
>
> Abstract:
>
> This document aims to provide guidelines and best practices for
> writing security considerations for technical specifications for RATS
> targeting the needs of implementers, researchers, and protocol
> designers. This is a work-in-progress, and the current version
> mainly presents an outline of the topics that future versions will
> cover in more detail.
>
> * Corrections in published RATS RFCs
>
> * Security concerns in two RATS drafts
>
> * General security guidelines, baseline, or template for RATS
>
>
>
> The IETF Secretariat
>
>
> _______________________________________________
> RATS mailing list -- rats@ietf.org
> To unsubscribe send an email to rats-leave@ietf.org
>
>
> _______________________________________________
> RATS mailing list -- rats@ietf.org
> To unsubscribe send an email to rats-leave@ietf.org
>

v2.43.4 | Report a Bug | By Email | System Status