Re: [Rats] I-D Action: draft-ietf-rats-eat-13.txt
Giridhar Mandyam <mandyam@qti.qualcomm.com> Fri, 20 May 2022 21:04 UTC
Return-Path: <mandyam@qti.qualcomm.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A799DC135DE5 for <rats@ietfa.amsl.com>; Fri, 20 May 2022 14:04:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=qti.qualcomm.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 756anTDli0Ih for <rats@ietfa.amsl.com>; Fri, 20 May 2022 14:04:21 -0700 (PDT)
Received: from esa.hc3962-90.iphmx.com (esa.hc3962-90.iphmx.com [216.71.140.77]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0FE0FC18D819 for <rats@ietf.org>; Fri, 20 May 2022 14:04:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=qti.qualcomm.com; i=@qti.qualcomm.com; q=dns/txt; s=qccesdkim1; t=1653080660; x=1653685460; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=rontqhQGGJ6Ol5LYs0T4lUtowc2cmEEygl+HR/t0WRE=; b=eYA1wWbnctfGl9uROc0aWNIeACBOj7LGgK282g0fFfAMSfJAqOeK5Abh Ov7Yk94qKA0Qlqs6ekiRREudsmEiL9VURmdVnLdotR1RRbCJBC+TBbln2 sH7BB4EmC/o2gOO1VdsEGN52LnHQtppkm9KZ8UzH0mfvY6+D0PNg2vkI1 k=;
Received: from mail-bn7nam10lp2105.outbound.protection.outlook.com (HELO NAM10-BN7-obe.outbound.protection.outlook.com) ([104.47.70.105]) by ob1.hc3962-90.iphmx.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 20 May 2022 21:04:19 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ArEPmun4+MSJ4MeKoSNKsDWndwdpyaeTI20b1V8Ssl3zyjNN3j0MOug2nUqZQiCB3vW9TlwwmVQrprHmF/pGD+jVXr+CBEuSIF4Ox4bvtNv0ikxnRQ5HN2eE6XIUJ9lrlMAO9WFpDng49GaGJFqbh9uvTRtiTVFht8Xx2lO0u4rypCcSzHxGTKsZHrN3jPAkRBUMrEMkSGBiAmR9q/ROk1RNlnmcZJ6xv0unjtURABw/Sbfz4d8vLrLQESscZwDMmmP5RNA2brzauAxAyJ95dB1ia/QX5Tp5jO1V219Ke41sMZNBpIpTiX4YYDzxa5IYmJ+01SEM9IldNLyvr8d+UA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=rontqhQGGJ6Ol5LYs0T4lUtowc2cmEEygl+HR/t0WRE=; b=iCmxDRhjQU3DQsH4Tkpo5+lY5EEGqiLbOg/CAfcg29VClBy23xUAaWeb4r7H/LHYhDwvslNLJEFKWVne4BVSyzyoDHgwUhMaPKSxzzfZxISI0WV+yUXHnGAVTS2hyyRai+IrDF/hQMRtzfAPvz9EgGrwTgu7TktsiWTbmIs0hXEdBKajWcKu6STPWVrEdqyxHPBXwUVqv2nCvKgz5dzdPQ+kttrn3jlsjzc0Q0Spqc5hI6SCYp0yvj1iJdI/vFzRjgzQoIA4Ph2iVocJ+nKzX7KSJHrgLvL4jH9rDXJAT92ZfowPFe/FJPs//EKZn3PDcGjxLjLe17Iu/1sv1AiQ1A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=qti.qualcomm.com; dmarc=pass action=none header.from=qti.qualcomm.com; dkim=pass header.d=qti.qualcomm.com; arc=none
Received: from SJ0PR02MB8353.namprd02.prod.outlook.com (2603:10b6:a03:3e4::7) by SN4PR0201MB8821.namprd02.prod.outlook.com (2603:10b6:806:201::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5250.13; Fri, 20 May 2022 21:04:16 +0000
Received: from SJ0PR02MB8353.namprd02.prod.outlook.com ([fe80::416:c75d:6a2a:9e19]) by SJ0PR02MB8353.namprd02.prod.outlook.com ([fe80::416:c75d:6a2a:9e19%5]) with mapi id 15.20.5273.016; Fri, 20 May 2022 21:04:16 +0000
From: Giridhar Mandyam <mandyam@qti.qualcomm.com>
To: "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] I-D Action: draft-ietf-rats-eat-13.txt
Thread-Index: AQHYbIzF6IOLP5JEF0ODd/evhjK3H60oQI+w
Date: Fri, 20 May 2022 21:04:16 +0000
Message-ID: <SJ0PR02MB8353596A52F232778F18B81A81D39@SJ0PR02MB8353.namprd02.prod.outlook.com>
References: <165308041592.8844.8300757068911716538@ietfa.amsl.com>
In-Reply-To: <165308041592.8844.8300757068911716538@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=qti.qualcomm.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: f31d160a-2bfa-4444-275e-08da3aa44d11
x-ms-traffictypediagnostic: SN4PR0201MB8821:EE_
x-microsoft-antispam-prvs: <SN4PR0201MB882122E1ECE821EA68D5055B81D39@SN4PR0201MB8821.namprd02.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:SJ0PR02MB8353.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(186003)(316002)(5660300002)(83380400001)(6506007)(66556008)(66476007)(508600001)(8936002)(52536014)(64756008)(8676002)(71200400001)(66446008)(76116006)(2906002)(7696005)(38070700005)(55016003)(38100700002)(53546011)(66946007)(9686003)(122000001)(33656002)(66574015)(26005)(966005)(6916009)(86362001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: /RaBdL/iRy99XRMUAX8XOQuBT8WvIVsiYzllT98sWrZK9sbNg0TfKLe8FAA9mD3RrIQadwjfZdwfITDtKCB5OlXZrRDhF1nJbcfkEUnWlLPW3O0tmxsOrN7UU/baEl69+lRg7mydN1CEyApYNeh5pGCf2q9PDFFuIj3hPsBQd6tT+MuTCYD3up8xmnZt21WdhcaGXHO65z3QrFqL9g8OGTq1fEjKmT6mnzn+PtBzWQDMcpbmxdfG0xYz9zDp3OdTTXmBJnIgM1xXkGXsfaHGFRsbC6d5IBARdZVnqhK0NQINvzfahIDYbaNwqXKLWIqBd/nriexaneJ90dWWvguq9HFJtn8qTMhbxuhFl28ary5cxCg7NXXzhdZwWfK3xDqQ05L6MuVLome2K2ODuDEtfr3dDe0KpIRjSfLUC/3PIzSclX273SyFrmqfU7Bd9KPs9iSz/lTdtvNK49NV+4mRjvVaVVJWaz5doF9uyIUPyhwDDWmHApw/3GKcnOMc5lP43uaL2L4BU4qgciS6SkIW1WE4Qr+LnoTRrJtFvTD6gJJM4urAS7Sy9XsIyd4Z6/sYSqQwujs9OHHbr+ZjJumTz/ZAzD1a41Zk0motnLYpVKKO12z1v1KipXAk2sIdvn0OkFPID0x08KjeuK0MZU+0PjPdzuTcnNfVCvKe5vBw8TBNdHlJQU2NMeMlRIeXHfHF3RekiWkfXq0fW7BuT2G6OWXF6Sb675CBC9frhmXde9SWmPNBX6ucP1ztWsKBJenHsMoq4z3M43QOUEXXFUQsPERFIYjlu0BSCfoW0vT7VL0ncn4WPv98iLMhbLGzdwesXfpKBz5sq43QbWNBnUCrXZFz6QigTHCzCxsrs8nVE5c4gK1LASV67D4c/t5Hq55y3Yws7lmmhf0AR+MfZComH0Ik8wtWCofSUkCfs5IXbi52tIEa5TxLy7DAYZG6PF4Daa+dtJPXAiJp9TGBnwf/Bkg7k/yilpyduimwgnUH11c5KjWlH1DvMrifn3fpmmIq5fievBFDTIPXDcBS3YKHY72rFvpS5xVyAsME+0vhEV2zC9PxPQZAQWJHm03cbX0l/LbDmGxmm2UEERBYLFFwkYuTQ+zoj8gfCjX6qLjKGeu8T9P1qvEOlBu2mYU8HvRWah2f/+yihvIKA+63Xeb4r6vONzgUPO+DB/6XUNUa33MZkfxkeH0u4bewPS8JX5tFmrCjfoXFeKZyJGRjvuwJhDi+cMdwyoQiuxzjqGOsFysAxMnBpmDjAponMzZYVvT74G3Zcx6U/ZKP/2JeX0o/NmZaS7js1UAKIgHuPjU0YXavba7bKTHKHh8iJmxclClrR9tpG38Zawpzwka6CTjk+x+SGX4t4KKpcIw4vPnapIZVNSQt2UZI/uaATZc3Uu7egJkzz3gDX/gvJAJMxh6ed9SkxdXMaR8sL84KoWZqrkp8ureARmMzuASRh7JlWx2A6RTj5F/GoMk/QQ+Z5O42FlvqtJh2cYjT+h+r6FKkVWT2KlyEu5riSCCDQwVoE7TQAsUINfMXBTjVtoZArQZnkhuvPOo3gTZX2fNaDtANh7ff0HT1iu9m01Tcs8krCQkH41OAGW2ZM351v1E7TjEFWazI7W/3vcq+zTzg1dj6bEapxNPhJqvVpxcRKGWl1dCGBzxDoLp3CC4fIKJGIpAKcBnECw59HVX2XK3948UfGePwKY8b0A+YKT3d7GCxx2ImNYGNJ0G2szdOZqUtpxxuNylSWl/8ryGBYI4tn1XNBXw=
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: qti.qualcomm.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR02MB8353.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f31d160a-2bfa-4444-275e-08da3aa44d11
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 May 2022 21:04:16.8051 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 98e9ba89-e1a1-4e38-9007-8bdabc25de1d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: wfKweETGTum0x5E4Vs2ysMbZe14KbHP8YXN0wIF3c7SumCqT1NIWQi3luXAdaSXkOzczqDOBf5GjyO3jKMQPQYjtRhS3KBtUJkW3M+E41E0=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN4PR0201MB8821
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/UZZdkS1_3KufKC3TOn3TrDvh2oM>
Subject: Re: [Rats] I-D Action: draft-ietf-rats-eat-13.txt
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 May 2022 21:04:24 -0000
Please note the publication of Draft 13 of the EAT document. This is the version that is intended to be distributed for IESG review, and the editors request the chairs to do so no later than May 25. Note the following changes: - Clarification on use of the eat-nonce rather than the currently registered JWT-nonce. The JWT-nonce has restrictions on use as defined and is not suitable for general use in attestation. - Revised text on the security level claim, including reduction to 3 levels - Grouping of claim definitions to those specific to the entity and those specific to the token - Removal of normative references to UCCS as per Working Group consensus direction provided at IETF 113 - Modification of measurement results claim Further discussion on changes can be found in Section E. -----Original Message----- From: RATS <rats-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org Sent: Friday, May 20, 2022 2:00 PM To: i-d-announce@ietf.org Cc: rats@ietf.org Subject: [Rats] I-D Action: draft-ietf-rats-eat-13.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Remote ATtestation ProcedureS WG of the IETF. Title : The Entity Attestation Token (EAT) Authors : Laurence Lundblade Giridhar Mandyam Jeremy O'Donoghue Filename : draft-ietf-rats-eat-13.txt Pages : 106 Date : 2022-05-20 Abstract: An Entity Attestation Token (EAT) provides an attested claims set that describes state and characteristics of an entity, a device like a phone, IoT device, network equipment or such. This claims set is used by a relying party, server or service to determine how much it wishes to trust the entity. An EAT is either a CBOR Web Token (CWT) or JSON Web Token (JWT) with attestation-oriented claims. To a large degree, all this document does is extend CWT and JWT. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-rats-eat/ There is also an htmlized version available at: https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-13 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-rats-eat-13 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts _______________________________________________ RATS mailing list RATS@ietf.org https://www.ietf.org/mailman/listinfo/rats
- [Rats] I-D Action: draft-ietf-rats-eat-13.txt internet-drafts
- Re: [Rats] I-D Action: draft-ietf-rats-eat-13.txt Giridhar Mandyam
- [Rats] Easier changes summary (was Re: I-D Action… Laurence Lundblade
- Re: [Rats] Easier changes summary (was Re: I-D Ac… Smith, Ned