IETF Logo Mail Archive

Re: [Rats] Initiating WGLC for draft-ietf-rats-msg-wrap-03

Carl Wallace <carl@redhoundsoftware.com> Thu, 08 February 2024 11:16 UTC

Return-Path: <carl@redhoundsoftware.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C765C1C64C0 for <rats@ietfa.amsl.com>; Thu, 8 Feb 2024 03:16:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.105
X-Spam-Level:
X-Spam-Status: No, score=-7.105 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=redhoundsoftware.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nd-mZYO9RUUW for <rats@ietfa.amsl.com>; Thu, 8 Feb 2024 03:16:36 -0800 (PST)
Received: from mail-yb1-xb31.google.com (mail-yb1-xb31.google.com [IPv6:2607:f8b0:4864:20::b31]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ACEEEC1C64CD for <rats@ietf.org>; Thu, 8 Feb 2024 03:16:36 -0800 (PST)
Received: by mail-yb1-xb31.google.com with SMTP id 3f1490d57ef6-dc6d8bd612dso1827283276.1 for <rats@ietf.org>; Thu, 08 Feb 2024 03:16:36 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=redhoundsoftware.com; s=google; t=1707390995; x=1707995795; darn=ietf.org; h=mime-version:thread-topic:message-id:to:from:subject:date :user-agent:from:to:cc:subject:date:message-id:reply-to; bh=vfpJzroUiZL4dV/+9z2fDuMOqwnJ6JCtXQZBMyUEdp8=; b=P/8pot4wDrxuE/Ky4CHb1LgYqS21hfWFMoGkfeg963mr3Zrv9VNksn30FStldnHPZl 9kFBg+ZbKo37IKDxDNweLfPWjfM6pwwUjVK73oHIyGb5Avt0YPhOpz3L5HlIjixegyss s9uPvAhgKfvbGUMXTXW28VzfVeItNOtAl+PCs=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1707390995; x=1707995795; h=mime-version:thread-topic:message-id:to:from:subject:date :user-agent:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=vfpJzroUiZL4dV/+9z2fDuMOqwnJ6JCtXQZBMyUEdp8=; b=aYGOHUXcEo7Wic/uop1hF8pvFeDaIq61dD2l4T7oTzeuJX9dW4V/5gldjh8LaHkaNp oCMBnmtjFh1DaRdpfGgSTVueoLSk1x7bqFpVHjQuA51cxZ83RwoY3oBTZC1z9pehOgvY WuFfQkYkmg/Df4xLb0lQ+3oH0+Q+8BR+B+nzFOZZ6qXFk/z88qAt+3k33dJ7Luj8hGlB uMK9nigUk0CbaKAzWePrDJmbrAnXx1aUT9a4t6OC4hcsqw5Aw3G4nzYI9+IPUSSzhVEj OECu4vgEURjyvUmW2tZ3G1AkZsXGOGF4YiITaI5EDxJ8er2KYqWhe5udV2QoACT8+x3a 17cA==
X-Gm-Message-State: AOJu0Yzpl/DRsGPJPIVoZsLOhrXKAm1S6Uc2grUGaWa7Xp6m0rxfLAOm 87dQPsshBp7JDG/8NCtopicubsn4aowh8JIncG733LSFX7LcUkL+XWLBDQS1nQ8Z0OcTRtRA5pH 6
X-Google-Smtp-Source: AGHT+IGx2mVxNXhJQTN7sM6YoSmQ29sCL21fWBQNqitgesZaMbGp4MuxJxhoEVlrUbl28vKirLjWCg==
X-Received: by 2002:a25:680a:0:b0:dc3:7305:549f with SMTP id d10-20020a25680a000000b00dc37305549fmr7537999ybc.16.1707390995258; Thu, 08 Feb 2024 03:16:35 -0800 (PST)
X-Forwarded-Encrypted: i=1; AJvYcCVASRtVsnET2nkise3T7J7zVNhZu+gw9je++uBp1N6stgJpN0u66emCTIpIDavqIX2x1bDGy74gdnTi6R8B
Received: from [10.110.1.55] (098-101-204-034.biz.spectrum.com. [98.101.204.34]) by smtp.gmail.com with ESMTPSA id 187-20020a2500c4000000b00dc6c179f536sm577372yba.20.2024.02.08.03.16.34 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Thu, 08 Feb 2024 03:16:34 -0800 (PST)
User-Agent: Microsoft-MacOutlook/16.81.24012814
Date: Thu, 08 Feb 2024 06:16:33 -0500
From: Carl Wallace <carl@redhoundsoftware.com>
To: "Nancy Cam-Winget (ncamwing)" <ncamwing=40cisco.com@dmarc.ietf.org>, "rats@ietf.org" <rats@ietf.org>
Message-ID: <30BF57B0-AAAE-422D-B9A1-C908E4792D44@redhoundsoftware.com>
Thread-Topic: [Rats] Initiating WGLC for draft-ietf-rats-msg-wrap-03
Mime-version: 1.0
Content-type: multipart/alternative; boundary="B_3790217794_1067981391"
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/xY2mwu790UOGnhFAUduGj5ddo3Y>
Subject: Re: [Rats] Initiating WGLC for draft-ietf-rats-msg-wrap-03
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Feb 2024 11:16:41 -0000

I have a few additional comments:

 
In section 5, it may be worth calling out that the encoded CMWCollection is encoded as an OCTET STRING as the extnValue field of this extension. Section 4.2 in RFC5280 makes this point but I’ve seen the outer OCTET STRING left out in a couple of attestation-related contexts. The pseudo code about removing “the ASN.1 OCTET STRING” in Section 3.3. could further this misimpression since there are two OCTET STRING layers wrapping a CBOR value. Maybe add something like: “The DER encoded CMWCollection is the value of the octet string for the extnValue field of the extension”.
The security considerations section says that “messages themselves and their encoding ensure security protection.” This is not true for UCCS, which is part of the referenced EAT media type spec.
I think this came up relative to the collections draft a while back but I forget how it was handled (and did not go looking just now). How would one encode artifacts that use different encoding types, i.e., a CBOR evidence and a JSON result? The collection concept is analogous to the submodules part of EAT, and that addresses the various nesting possibilities.
 

From: RATS <rats-bounces@ietf.org> on behalf of "Nancy Cam-Winget (ncamwing)" <ncamwing=40cisco.com@dmarc.ietf.org>
Date: Saturday, February 3, 2024 at 10:50 AM
To: "rats@ietf.org" <rats@ietf.org>
Subject: [Rats] Initiating WGLC for draft-ietf-rats-msg-wrap-03

 

Hello RATS participants,

 

There have been a few comments and several updates to draft-ietf-rats-msg-wrap-03.

We are going to initiate a first WGLC to assess its maturity for publication and get more feedback.

 

Thanks to Carl Wallace and Tom Jones for their prior feedback, can you please let us know if your

Comments are address in this latest draft and believe it is ready for publication?

 

We also need a few others to comment on the draft especially on maturity and readiness for

Publication.  The end of this WGLC is Feb. 23, 2024.

 

Best, Nancy

_______________________________________________ RATS mailing list RATS@ietf.org https://www.ietf.org/mailman/listinfo/rats

v2.23.0 | Report a Bug | By Email