IETF Logo Mail Archive

Re: [Rats] Call for Adoption: EAT draft

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Sat, 01 June 2019 06:45 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68646120182 for <rats@ietfa.amsl.com>; Fri, 31 May 2019 23:45:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QVYTfhEyc6i6 for <rats@ietfa.amsl.com>; Fri, 31 May 2019 23:45:28 -0700 (PDT)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (mail-eopbgr40040.outbound.protection.outlook.com [40.107.4.40]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A70F312011C for <rats@ietf.org>; Fri, 31 May 2019 23:45:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4fZ9rN8h3N6E5WaWvsyrxUOOQR6oUuUkPl/WWw/0DGg=; b=uxH2YgM07Bbo3SmyO73vIOt6+uNIS0T0l8qd5t/vJUZqyzcxfLFJYULwxZ5pmRnTCY9PK0D0a7wpkpf1YfLGW1lU7bs2W5YrHm5e7pVASBxjU3fFLqSPboO+0fH7wW5smvogypTLwg2ZAEvXWK9uwhsEActemMWGpBG1VqpVV4I=
Received: from VI1PR08MB5360.eurprd08.prod.outlook.com (52.133.244.88) by VI1PR08MB3151.eurprd08.prod.outlook.com (52.133.15.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1943.17; Sat, 1 Jun 2019 06:45:23 +0000
Received: from VI1PR08MB5360.eurprd08.prod.outlook.com ([fe80::f426:1919:2252:5df5]) by VI1PR08MB5360.eurprd08.prod.outlook.com ([fe80::f426:1919:2252:5df5%5]) with mapi id 15.20.1922.024; Sat, 1 Jun 2019 06:45:23 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, Laurence Lundblade <lgl@island-resort.com>, "Eric Voit (evoit)" <evoit@cisco.com>
CC: "rats@ietf.org" <rats@ietf.org>, Giridhar Mandyam <mandyam@qti.qualcomm.com>
Thread-Topic: [Rats] Call for Adoption: EAT draft
Thread-Index: AQHVB0Ih4Xja5WRZnUanrv/uEd79H6Z3f+WAgAkvdwCAAAQPAIAAQeOAgAAaP4CAAAwUgIAADicAgAAZOwCAAAfHAIACt1gAgAAFvJCAACLdgIAAQCKAgACNrwCAAGwbkIAAk6mAgACCnoA=
Date: Sat, 01 Jun 2019 06:45:23 +0000
Message-ID: <VI1PR08MB5360AF76CDC586F02ECF8186FA1A0@VI1PR08MB5360.eurprd08.prod.outlook.com>
References: <CAHbuEH6Mdwp+neWbcecA-pMYZoXKiNda2A0EnMh-8WX=W9_edA@mail.gmail.com> <DM6PR11MB408939CC9EA79D479B76586DA11E0@DM6PR11MB4089.namprd11.prod.outlook.com> <E09EB1B2-ED56-4F1B-8D80-BF0D227199A3@island-resort.com> <82b0a75e5b5645d1a43d240373bca6dc@NASANEXM01C.na.qualcomm.com> <DM6PR11MB4089DAD248EEAAF9F92F2C0AA11E0@DM6PR11MB4089.namprd11.prod.outlook.com> <50ddca72a9074e229976ca88f78e340a@NASANEXM01C.na.qualcomm.com> <DM6PR11MB4089BF4C3F319894DAE8722AA11E0@DM6PR11MB4089.namprd11.prod.outlook.com> <175ea22d1a1948d48f8180424cc89ec0@NASANEXM01C.na.qualcomm.com> <VI1PR08MB5360CE8EFA93515A140D30F2FA180@VI1PR08MB5360.eurprd08.prod.outlook.com> <DM6PR11MB408967D6E5EF0A355CF0D60BA1180@DM6PR11MB4089.namprd11.prod.outlook.com> <D53ECF26-E2F5-4BD5-A81F-BBE1AEEB4541@island-resort.com> <VI1PR08MB5360919E4669734878D75F6EFA190@VI1PR08MB5360.eurprd08.prod.outlook.com> <VI1PR08MB53608BBD4BC156012237D3C6FA190@VI1PR08MB5360.eurprd08.prod.outlook.com> <a811aa42-edee-a3c1-0a73-284f088dca6a@sit.fraunhofer.de>
In-Reply-To: <a811aa42-edee-a3c1-0a73-284f088dca6a@sit.fraunhofer.de>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ts-tracking-id: 93bff816-a61c-4168-a9e6-bac2649fad4f.0
x-checkrecipientchecked: true
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.123.119]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 1b04a7ef-35d6-4c0a-7c9f-08d6e65cb923
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:VI1PR08MB3151;
x-ms-traffictypediagnostic: VI1PR08MB3151:
x-ms-exchange-purlcount: 2
x-microsoft-antispam-prvs: <VI1PR08MB3151D081692812B096C8E310FA1A0@VI1PR08MB3151.eurprd08.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 00550ABE1F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(366004)(346002)(376002)(396003)(39860400002)(13464003)(189003)(40434004)(199004)(446003)(8676002)(81166006)(966005)(81156014)(14444005)(2906002)(478600001)(256004)(5024004)(6306002)(561944003)(9686003)(71200400001)(5660300002)(6246003)(25786009)(4326008)(71190400001)(33656002)(8936002)(72206003)(52536014)(476003)(53936002)(229853002)(30864003)(76176011)(186003)(55016002)(486006)(66066001)(26005)(99286004)(14454004)(110136005)(66946007)(305945005)(102836004)(64756008)(7696005)(7736002)(316002)(53546011)(6506007)(74316002)(6436002)(3846002)(6116002)(11346002)(54906003)(86362001)(66446008)(68736007)(66556008)(73956011)(66476007)(76116006); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR08MB3151; H:VI1PR08MB5360.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: YiZfxV+g6ewX9ZuRVNr6hDySxBsAwP8GZQ6Zih2uhsbzksKZQb5vLGXywr1gpl32T4seFLZBLnKvqFgiWJKfGQbnc2ZYJnwWvcM2PA4KU17fuMykjIVRnIx4+eYdEJAlr+LKhi2lZVFQPZFTXW3o0YZXcSuzjCP0Pk1xTC4M6Q0fuvSkW36KRvyOheUTxFcnBBnluErEbZ63Nl7kuHYA7LjOgPa8if9jKAbkJMtyJXYQyJlhPnmbbeCKjlP3QN581Pl3jCrh3E7HgYXBvkx4YVC1IzfBErQPkRyr+m/JZAtW341oLhVq0qO8ob/VDHfBd8Sdb6CZFSsO523kF6y3y4IP0aujDKY40FkYWppPa5YBjMplVcuu4/N2yCk2jb6WJMwddeXNXTVQHONA54zmD9EagiKCaTorGkThpnSArdY=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 1b04a7ef-35d6-4c0a-7c9f-08d6e65cb923
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Jun 2019 06:45:23.4702 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Hannes.Tschofenig@arm.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR08MB3151
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/XhRF1Btbq_M_WGs0ifcrDKpY8W0>
Subject: Re: [Rats] Call for Adoption: EAT draft
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Jun 2019 06:45:31 -0000

Hi Henk,

A quick response below.

-----Original Message-----
From: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>
Sent: Samstag, 1. Juni 2019 00:52
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>; Laurence Lundblade <lgl@island-resort.com>; Eric Voit (evoit) <evoit@cisco.com>
Cc: rats@ietf.org; Giridhar Mandyam <mandyam@qti.qualcomm.com>
Subject: Re: [Rats] Call for Adoption: EAT draft

Hi Hannes,

just thoughts from the top of my head:

1.) Expert review of course is helpful (feasibility, no overlap in claim semantics, etc.) and a quite straight forward procedure, but the qualifying criteria for CWT claims for EAT review might be defined in the EAT draft?

[Hannes] Yes, we have been talking about what those qualifying criteria for CWT claims in the EAT draft could look like. As mentioned, I don't have an answer for it. Still thinking...

2.) in order to not make this a shopping list, I like the SUIT approach Hannes proposed, I think (not sure, if it is entirely applicable). In a nutshell, going from user story, to requirement, to claims.

[Hannes] I don't think I suggested a specific approach here. The downside of the SUIT approach was/is that it takes very long and it is sometimes hard to decide what content goes where because everything is somewhat interrelated.

But maybe that is on the information model level and should not burden the EAT I-D which is at a nice scope right now?

3.) Additionally, the semantics of a new CWT claim for EAT should be checked against existing YANG statement semantics. If there is semantic equivalence (or superset) defined in YANG already, the claim must reference that one.

[Hannes] If I understand you correctly, then you are given the Yang registry a high priority in the process of defining EAT claims. Is that what you mean? How would this work for someone like Arm interested in the IoT space with the work we have been doing for Arm Trusted Firmware-M?

I though this can be done via

> https://yangcatalog.org/yang-search/

But it seem not work for me right now...


That said, this would probably mitigate the issue, I assume. I might be missing something important here, of course.

[Hannes] No, I don't think so. I think we are just a bit head of the discussion while doing a call for adoption.

Ciao
Hannes


Viele Grüße,

Henk



On 5/31/19 4:10 PM, Hannes Tschofenig wrote:
> Hi Eric, Hi Laurence,
>
> I thought about this a bit more.
>
> If I understand it correctly then your main concern is that we duplicate information in the CWT claims registry that is already available in other registries. Is my understanding correct?
> I also hear a second concern, which is more about whether the existing CWT / JWT registry contains claims that are not suitable for use in an EAT token.
>
> Underlying both concerns is the question about what makes for a good claim for use within an EAT token. Do we know the answer?
>
> Ciao
> Hannes
>
> -----Original Message-----
> From: Hannes Tschofenig
> Sent: Freitag, 31. Mai 2019 09:55
> To: 'Laurence Lundblade' <lgl@island-resort.com>; Eric Voit (evoit)
> <evoit@cisco.com>
> Cc: rats@ietf.org; Giridhar Mandyam <mandyam@qti.qualcomm.com>
> Subject: RE: [Rats] Call for Adoption: EAT draft
>
> Hi Laurence, Hi Eric,
>
>> So if an EAT is a CWT, then the proposal is to change the IANA registry rules for CWT in the EAT draft. Is that allowed? This is really a change to CWT and even JWT. Seems like it is saying that if a YANG-defined claim exists for a possible CWT or JWT claim, the YANG-based claim MUST be used.
>
> IMHO everything can be changed.
>
>> I think Eric’s thought about harmonizing is a good one. Learn from past efforts. Improve interop.
>
> Learning from past efforts sounds always good. Let me pick on the example from below about draft-ietf-netmod-geo-location-01. It appears to me that the netmod group has either not looked at the work from the IETF GEOPRIV working group or ignored it. (I have not been involved in the netmod group and so I cannot say.) GEOPRIV published a number of RFCs that provide details about how to encode different geodetic location shapes (based on a mapping from GML), civic location, relative location, talks about uncertainty and confidence, how to encode moving objects, etc. While there is no need to use the info 1:1 there is a lot that can be learned from the work in that group. Of course, the content for the location encoding in draft-mandyam-eat-01 isn't much better.
>
> For me the biggest question is whether location is actually a good source of information conveyed in an EAT token.
>
> Eric, I understand that you do not want to duplicate information. I don’t want to do that either. I have been wondering about this aspect myself (particularly when I read the location claim). For example, in the LwM2M context we have a (pretty naive) location object as part of the data model as well. The data model we use with LwM2M is different to how data is modelled in the EAT token. Is this unavoidable? In some sense the situation is similar to the Yang-defined data model. The source of information comes from a different part of the system and is conveyed differently. Maybe you could call it a different layering where a device with Yang objects has to treat the EAT token as opaque (particularly since it is digitally signed and potentially encrypted). I am currently leaning towards seeing it that way from a LwM2M perspective.
>
> Ciao
> Hannes
>
> ~ snip ~
>
> However, IANA registry rules revising aside, making it a MUST seems too much. I think the YANG-defined claims should be very much seriously considered, just like any other previous data structure definition, but that there be no blanket requirement.
>
> To go a little further and to be clear. When a YANG-defined claim is used the CBOR encoding of it will be used with CWT and the JSON encoding of it will be used with JWT. This hinges on draft-ietf-core-yang-cbor-10 producing satisfying, compact and sensible CBOR encodings (binary data is really CBOR binary, claim keys are small integers…).
>
> LL
>
>
>> On May 30, 2019, at 12:19 PM, Eric Voit (evoit) <evoit@cisco.com> wrote:
>>
>> Hi Hannes,
>>
>> I do like EAT.  I am hoping that it gets adopted.
>>
>> At the same time, I am trying to avoid unnecessary mapping of claims from a chipmakers domain into system integrator /network operator domains.  I believe much pain can be avoided with a little planning up front.  That is what I am trying to facilitate with this discussion.
>>
>> Specific details/examples in-line...
>>
>>> From: Hannes Tschofenig, May 30, 2019 1:18 PM
>>>
>>> Hi Giri, Hi Eric,
>>>
>>> (a) some principles/guidance to CWT claims registry people on
>>> avoiding the mass registration of lightly-used or unused claims
>>>
>>> Why is this a requirement? When a claim is registered then it is most likely done with the anticipation that it will be used. I have not seen other IETF registries that have raised the bar to a similar level, at least the JWT claims registry does not work that way. Furthermore, what is the harm in registering claims that later turn out to be less frequently used?
>>
>> Let me provide a *best* case example.  In the NETMOD WG, there is a draft-ietf-netmod-geo-location.  Both that draft and this have definitions of latitude, longitude, altitude, accuracy, etc.   The *good* news is that both drafts are based on WGS84.  So at least our experts have lucked in to using a consistent resource.  But are these the same objects?  How does a reader know?   In one of the documents the latitude/longitude attributes are "FloatOrNumber", in the other they are "decimal64 {fraction-digits 16}".
>>
>> It of course gets harder for other objects.   The velocity objects in draft-mandyam-rats-eat are "heading" and "speed".  And draft-ietf-netmod-geo-location has this information "v-north", " v-east", and " v-up".  Here we have different formats, the first of which cannot be easily upgraded to serve three dimensions.
>>
>> And then we get into other harder objects where we will have timestamping, explicit domains of allowed entries, etc.  And is there is no boundaries on what might be claimed as an EAT, in theory we could create a parallel domain of objects without description on how to map between the two, placing the heavy lifting onto the implementer.
>>
>> Now I am not trying to solve world hunger in this thread.  I am just trying to have the draft consider minimizing inter-ecosystem friction where we can see it coming.  I believe with a little foresight we can ensure a consistent population and data typing for a subset of claims.   Without foresight, I see that people will create new CWT to avoid some later mapping.  And more/redundant CWT tags will harm interoperability.
>>
>>> (b) a requirement to map claims to existing YANG objects, if these
>>> YANG objects exist
>>>
>>> I also don’t understand this requirement. Is there some design rational why this would be needed/useful?
>>
>> Per above, EAT claim instances need to be integrated with other work/ecosystems in the IETF after the information comes off of a hardware chip.  A claim registry shouldn't create redundant info/formats to other work/ecosystems when it can be avoided, at least without broad discussion and consensus.   (I.e., lets avoid unconscious object definition and object domain overlaps wherever possible.)
>>
>> Eric
>>
>>> Cia
>>> Hannes
>> _______________________________________________
>> RATS mailing list
>> RATS@ietf.org
>> https://www.ietf.org/mailman/listinfo/rats
>
> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
> _______________________________________________
> RATS mailing list
> RATS@ietf.org
> https://www.ietf.org/mailman/listinfo/rats
>
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email