IETF Logo Mail Archive

Re: [Rats] Call for charter consensus

Laurence Lundblade <lgl@island-resort.com> Sat, 19 January 2019 20:30 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 56647130E93 for <rats@ietfa.amsl.com>; Sat, 19 Jan 2019 12:30:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1SYXi5a8yEas for <rats@ietfa.amsl.com>; Sat, 19 Jan 2019 12:30:41 -0800 (PST)
Received: from p3plsmtpa12-09.prod.phx3.secureserver.net (p3plsmtpa12-09.prod.phx3.secureserver.net [68.178.252.238]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2F9BF130E96 for <rats@ietf.org>; Sat, 19 Jan 2019 12:30:41 -0800 (PST)
Received: from [192.168.1.82] ([76.192.164.238]) by :SMTPAUTH: with ESMTPSA id kxGIgtxwNZa9RkxGJgw0z6; Sat, 19 Jan 2019 13:30:40 -0700
From: Laurence Lundblade <lgl@island-resort.com>
Message-Id: <8B7EFC21-8827-4789-9879-A83D3C16C851@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_448F3046-689E-44E3-B4A8-E5D5C7254ABC"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Sat, 19 Jan 2019 12:30:38 -0800
In-Reply-To: <D8687BF3.D0B91%carl@redhoundsoftware.com>
Cc: Benjamin Kaduk <kaduk@mit.edu>, "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>, "rats@ietf.org" <rats@ietf.org>
To: Carl Wallace <carl@redhoundsoftware.com>
References: <D86754B8.D099E%carl@redhoundsoftware.com> <C79C7D38-3544-4CDB-94C5-2F49FF0D7BE2@cisco.com> <AD9A3A3C-42FD-48A0-8B5B-A1F6644573DB@redhoundsoftware.com> <20190119012335.GT81907@kduck.mit.edu> <D8687BF3.D0B91%carl@redhoundsoftware.com>
X-Mailer: Apple Mail (2.3445.9.1)
X-CMAE-Envelope: MS4wfGIrhnANWCUjohT6co8hlPreOdCnoQ7U97NYvX7H2Z1QtWRl5iyp8l8abyAUVtfYqc7Zbem64yuVsJ7dJqeKYUBuNU9zNdqemQVy1n1HyZiIcqegT2Ba egC+T2ebTSn27IMekjkzCWnKtGWHBbaUcqy0ta01IZ1RqHNd87obF3whteFFGbsz+aGI0qYp+nWp3gubWdvLwnpRN4Ql9Ybdu/gcQ+2PjX+KEXIu62r4/oIS UKYyGXltIk21n1CQfDVBeA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/vFxEGXfh_TKZkRxrapXL4R_xGz0>
Subject: Re: [Rats] Call for charter consensus
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote Attestation Procedures <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 19 Jan 2019 20:30:43 -0000

> On Jan 19, 2019, at 4:29 AM, Carl Wallace <carl@redhoundsoftware.com> wrote:
> 
> [CW] Depending on where you are drawing the "decision" line, I don't
> disagree with any of this. However, as a relying party of several
> currently available attestation types, I can say that all I have
> encountered are broken in one or more ways related to verification,
> including: misapplication of security specifications, poor definition of
> trust establishment practices, misuse of structures relevant to trust
> establishment, misencoding of structures relevant for assessment of
> attestation contents, unstable structure definitions, "interesting" use of
> extensibility mechanisms. Each complicates interoperability and code reuse
> without even considering that each is different. Most of these issues are
> at the intersection of proprietary attestation structures and standard
> security layers, i.e., the procedures that appear to be missing in the
> charter goals.

Nice list! :-)

I suspect it is going to take a long while to get to the level of interop you have in mind, but I think it is a good goal. I hope you can stay involved and continue to point out things from this perspective.

I also think we’ll end up keeping comparison to KGV in mind for lots of claim definition work even though it is out of scope. 

LL

v2.23.0 | Report a Bug | By Email