Re: [Rats] 答复: Another RATS message flow model for consideration:
"Smith, Ned" <ned.smith@intel.com> Mon, 18 November 2019 16:25 UTC
Return-Path: <ned.smith@intel.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1A55120111 for <rats@ietfa.amsl.com>; Mon, 18 Nov 2019 08:25:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KCWxEnpfv9xJ for <rats@ietfa.amsl.com>; Mon, 18 Nov 2019 08:25:35 -0800 (PST)
Received: from mga12.intel.com (mga12.intel.com [192.55.52.136]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1A43312007A for <rats@ietf.org>; Mon, 18 Nov 2019 08:25:35 -0800 (PST)
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from fmsmga006.fm.intel.com ([10.253.24.20]) by fmsmga106.fm.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 18 Nov 2019 08:25:34 -0800
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.68,320,1569308400"; d="scan'208,217";a="407442988"
Received: from orsmsx106.amr.corp.intel.com ([10.22.225.133]) by fmsmga006.fm.intel.com with ESMTP; 18 Nov 2019 08:25:34 -0800
Received: from orsmsx160.amr.corp.intel.com (10.22.226.43) by ORSMSX106.amr.corp.intel.com (10.22.225.133) with Microsoft SMTP Server (TLS) id 14.3.439.0; Mon, 18 Nov 2019 08:25:34 -0800
Received: from orsmsx109.amr.corp.intel.com ([169.254.11.161]) by ORSMSX160.amr.corp.intel.com ([169.254.13.204]) with mapi id 14.03.0439.000; Mon, 18 Nov 2019 08:25:33 -0800
From: "Smith, Ned" <ned.smith@intel.com>
To: "Xialiang (Frank, Network Standard & Patent Dept)" <frank.xialiang@huawei.com>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] 答复: Another RATS message flow model for consideration:
Thread-Index: AQHVnizNPQKKKNhUk0ik7vfZORuaAg==
Date: Mon, 18 Nov 2019 16:25:33 +0000
Message-ID: <AE350A78-D48C-4183-BDEC-82DA4EE8A49F@intel.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.1f.0.191110
x-originating-ip: [10.254.0.106]
Content-Type: multipart/alternative; boundary="_000_AE350A78D48C4183BDEC82DA4EE8A49Fintelcom_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/thKFpD6QdF75qJE_bqPXduzOC28>
Subject: Re: [Rats] 答复: Another RATS message flow model for consideration:
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Nov 2019 16:25:37 -0000
This “architectural model” parallels the roles message flow. I think it could be viewed as a third model something like a pub-sub broker where Relying Parties subscribe to Verifier (broker) to receive Attestation Results and Attesters publish to Verifier (broker) when a change to the Evidence is found. A pub-sub model might treat Claims as pub-sub Topics that can be subscribed to or published to. I get that some pub-sub architectures eliminate the broker as a distinct entity, but conceptually the model isn’t fundamentally different than if there were a central broker. -Ned From: RATS <rats-bounces@ietf.org> on behalf of "Xialiang (Frank, Network Standard & Patent Dept)" <frank.xialiang@huawei.com> Date: Saturday, November 16, 2019 at 2:17 AM To: "rats@ietf.org" <rats@ietf.org> Subject: [Rats] 答复: Another RATS message flow model for consideration: Oops, Some fixes of the below text: 发件人: RATS [mailto:rats-bounces@ietf.org] 代表 Xialiang (Frank, Network Standard & Patent Dept) 发送时间: 2019年11月16日 18:13 收件人: rats@ietf.org 主题: [Rats] Another RATS message flow model for consideration: Hi RATS architecture design team and all, In addition to the current passport model and background check model. I think there is a third message flow model possibly for us to consider: Attester < -------------------- > verifier < -------------------------------- > relying party Evidence attestation results The key point of the above model is that verifier has independent connection with attester and relying party respectively, and there are two independent message exchanges between the attester and verifier, between the verifier and the relying party. Of course, if needed, there can be some trigger condition and interaction between these two connections. The relative advantage of the above model is simple, and each role only see what he needs to see, like: evidence is not seen by the relying party, attestation results is not seen by the attester. I am wondering whether the architecture draft will consider it? B.R. Frank
- [Rats] Another RATS message flow model for consid… Xialiang (Frank, Network Standard & Patent Dept)
- [Rats] 答复: Another RATS message flow model for co… Xialiang (Frank, Network Standard & Patent Dept)
- Re: [Rats] 答复: Another RATS message flow model fo… Smith, Ned
- Re: [Rats] 答复: Another RATS message flow model fo… Smith, Ned
- [Rats] 答复: 答复: Another RATS message flow model fo… Xialiang (Frank, Network Standard & Patent Dept)
- Re: [Rats] 答复: 答复: Another RATS message flow mode… Smith, Ned
- [Rats] 答复: 答复: 答复: Another RATS message flow mode… Xialiang (Frank, Network Standard & Patent Dept)