Re: [Rats] challenges of building dependant specifications against Internet-Drafts -- a way forward for EAT

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Mon, 30 November 2020 17:28 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: rats@ietfa.amsl.com
Delivered-To: rats@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 969003A0F44 for <rats@ietfa.amsl.com>; Mon, 30 Nov 2020 09:28:17 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=GhjL/YeI; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=GhjL/YeI
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pDL7iUy16OT8 for <rats@ietfa.amsl.com>; Mon, 30 Nov 2020 09:28:15 -0800 (PST)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60065.outbound.protection.outlook.com [40.107.6.65]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E93A83A0FD7 for <rats@ietf.org>; Mon, 30 Nov 2020 09:28:14 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hLJ610DvgrGseZOdbrxwl0SatOxKxdiDCmGYijoP4O0=; b=GhjL/YeIP5ZNQFgLpPfKzwolRDD7yzhhulswCZ+/t8ouzti8f9JmYinSabE7iwL1IudWXGohlrFxVcOgf+Uk18kO9NdKDm1+Gscl2VQsl/040p9lB6tH7FwLVsvVqZNzedqHgklHMz98ZPHat0bXYptyBgcDV2SnTO6qBJI6nEE=
Received: from AM6P192CA0025.EURP192.PROD.OUTLOOK.COM (2603:10a6:209:83::38) by AM0PR08MB5009.eurprd08.prod.outlook.com (2603:10a6:208:160::29) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.25; Mon, 30 Nov 2020 17:28:11 +0000
Received: from VE1EUR03FT029.eop-EUR03.prod.protection.outlook.com (2603:10a6:209:83:cafe::13) by AM6P192CA0025.outlook.office365.com (2603:10a6:209:83::38) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.20 via Frontend Transport; Mon, 30 Nov 2020 17:28:10 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by VE1EUR03FT029.mail.protection.outlook.com (10.152.18.107) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.26 via Frontend Transport; Mon, 30 Nov 2020 17:28:10 +0000
Received: ("Tessian outbound e0cdfd2b0406:v71"); Mon, 30 Nov 2020 17:28:09 +0000
X-CR-MTA-TID: 64aa7808
Received: from 90fd1dcd977e.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 71379CA6-EC10-461D-97C6-4729ACDDE9FB.1; Mon, 30 Nov 2020 17:28:04 +0000
Received: from EUR05-AM6-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 90fd1dcd977e.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Mon, 30 Nov 2020 17:28:04 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IZaWFhzHO/m1NJExztom379sYjUEj8J/HIrJikYqQF6qRj8kTUp0Oh3ZmgJLjZL/HZo5pL5eOj2B5HV1sqREHbSgsaZw1lDicJ3onwkRZvZ9RBTWVuqO9lUoNFU4IycOUub+UaVyLedcvThcSlXvxzUixURvcOpRrwalS5l4EFQijeSUq/lTkqN40kwvqaKvnvTzXxOANu4cDTWipyS+pHDPfu/8UEtw37jYdB2+TVKKU7aAIP6rYcd3P7nBdXMJVzXPzrQin4FIKPkVh9FuO+RllOKLcm2H1g8UoFSYy1qk4EgXA/MXYXbgu6PpvIM5j2UR7MpHV2NfxpbJp3W53A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hLJ610DvgrGseZOdbrxwl0SatOxKxdiDCmGYijoP4O0=; b=cYaNvLR3NEG20OiIYjS48tvS7KjYE4WB8YOlYorCpWnPHSuCTf8yMV8nL3EuySxdGq1fYv1S7S8BTjXcgYqx4jHy8T9QUDgIJXUGefoo/gD8PWqsMvpc3VF72PlxiVVhAjv1Jzagmolkz86YJ4gHRdVS3HUZ2r48Rn8+FULdwqkjiUNEXlGX4R4ucb2i7u/ATUKbeYRKoBgLxYJ/frSIVKfDVhOEE3X7j0JHqdribmDKFF/J/qwqeZT7543i6iRV4EEOtNU+Muoy/tn1/zMklEkh3oA2FgqxtFwE9lqo+FglMnpa/WMNEobD+EjEj0TKYdKH2YbVcEhPNCgrBPuLcw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hLJ610DvgrGseZOdbrxwl0SatOxKxdiDCmGYijoP4O0=; b=GhjL/YeIP5ZNQFgLpPfKzwolRDD7yzhhulswCZ+/t8ouzti8f9JmYinSabE7iwL1IudWXGohlrFxVcOgf+Uk18kO9NdKDm1+Gscl2VQsl/040p9lB6tH7FwLVsvVqZNzedqHgklHMz98ZPHat0bXYptyBgcDV2SnTO6qBJI6nEE=
Received: from AM0PR08MB3716.eurprd08.prod.outlook.com (2603:10a6:208:106::13) by AM9PR08MB6305.eurprd08.prod.outlook.com (2603:10a6:20b:284::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3611.21; Mon, 30 Nov 2020 17:28:03 +0000
Received: from AM0PR08MB3716.eurprd08.prod.outlook.com ([fe80::a80c:38e:8da2:8b48]) by AM0PR08MB3716.eurprd08.prod.outlook.com ([fe80::a80c:38e:8da2:8b48%7]) with mapi id 15.20.3611.031; Mon, 30 Nov 2020 17:28:03 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>, Giri Mandyam <mandyam@qti.qualcomm.com>, "rats@ietf.org" <rats@ietf.org>
Thread-Topic: [Rats] challenges of building dependant specifications against Internet-Drafts -- a way forward for EAT
Thread-Index: AQHWxozX+iZ16pOalkWO5saguRJyBKngjOCQgAARBwCAAFBpwA==
Date: Mon, 30 Nov 2020 17:28:03 +0000
Message-ID: <AM0PR08MB3716FCF0301896DA8FBF05C6FAF50@AM0PR08MB3716.eurprd08.prod.outlook.com>
References: <24519.1606681083@localhost> <AM0PR08MB37160A782B8CDC941DCBC45CFAF50@AM0PR08MB3716.eurprd08.prod.outlook.com> <5038.1606739822@localhost>
In-Reply-To: <5038.1606739822@localhost>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ts-tracking-id: FD4FD6CA3E35AE40B8388F2DC69E2C9F.0
x-checkrecipientchecked: true
Authentication-Results-Original: sandelman.ca; dkim=none (message not signed) header.d=none; sandelman.ca; dmarc=none action=none header.from=arm.com;
x-originating-ip: [80.92.118.246]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 5be65e2e-dcbe-481e-2cce-08d895554f32
x-ms-traffictypediagnostic: AM9PR08MB6305:|AM0PR08MB5009:
X-Microsoft-Antispam-PRVS: <AM0PR08MB5009C385DFAA921BD9CC785CFAF50@AM0PR08MB5009.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:7691;OLM:9508;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: i2o48xlRb0l+37yXtk3uBOVLdepmDEecSkKot/6QCp2S5pjXsFCRFp2oqzZUgW1BMArwTC1YzpoqCSYa/A6Ti+j0ZYZ07zl7KIOqSC9FM8+ZEtcidiRWGbWlZqAu/ALUIoL7Ck3oSas12Q8w/TsZ0pn6BAunyyuIgoMkArQGLpkoyijegB978ehB7RYHifQCRq7tkJnidBlf8aPGe30XeBRoMC/HJEElq2/EoZT7lkYPdstUn9+WWzqP8WtlNVJdIc3qP9HHxNwrvQ3eGb/Bj+d3PGRFh5UfDlDuXT9CJaedTNc+WoWPnIRJiVM8n0+MHW0AwI5UhL5CJ0QgSsoXyg==
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR08MB3716.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(39860400002)(366004)(376002)(346002)(136003)(396003)(316002)(26005)(86362001)(33656002)(8936002)(71200400001)(76116006)(66574015)(110136005)(53546011)(66556008)(66476007)(6506007)(64756008)(7696005)(66446008)(83380400001)(66946007)(186003)(5660300002)(2906002)(478600001)(9686003)(8676002)(55016002)(52536014); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?utf-8?B?UmtYbTAvUGlJKzBHU3ZUSDA5aDJMbHR1eHNUNGRhSkg0cGdUNUhTOWgzVHVx?= =?utf-8?B?NjNraHhFUVczQmMxYVp6enA2TE9nVVJoKzhtVFhENFlTdFNJVXRpcVB4MXFr?= =?utf-8?B?UUhtVlNHNlBndzgrMldmYUl1bUVBYXB4ZU8yd05PMjh5NjE0Z1gwc3F2SGRn?= =?utf-8?B?YkpHWGZIVHEvcWRUQ2lsM29CYU1qU0JFa2VDR1ZBQVpPSmNSc2hHNUxCaStS?= =?utf-8?B?MnpCbXZqQWRNZUdHcWZwcVZ3d2VCSW40TTRPUjVXOFhvY1V2VkYrWnE5QTJy?= =?utf-8?B?cEI2bkxjZkhPakloMzBpUFJjMU14ZjNQNVcxT2hhR0ZkcW1JNW13TWh6RG5L?= =?utf-8?B?dnVHdk5kR2FlcDNraXVwc3hudnJpVG43NU11RXhxWmZzU0tmUU5mdUQ3MUpt?= =?utf-8?B?ZnUvTUVHQ21pdmZTRSt6aEtBNlNnTGlkOGFMdnRhUm1jU2UwTzUyUVdVQ0JY?= =?utf-8?B?ME0welNLaE0vU1JwZlZTZ0h4VWhiWUo5OTVwRlkvaEVmdzMxNXpBTEFuRFhi?= =?utf-8?B?WTgrMHJvaERtdFVmMk1NNzU1M2VnQXJOS3B5ajdFdWF2OWJQNjhWU3liSDhG?= =?utf-8?B?anluMXBVYlNyS1hDbUY5ZThRMTZjR3ZtanB6dUVPcG9FKzU1c3BrM1oyelhv?= =?utf-8?B?UHd6QkdPTGdRYzhsVktGYlc1SFdlUWN1dUwxOW9GbUxzKzdzUms3RFNUNmxp?= =?utf-8?B?RnhmejY5dngzbzgveklWSnVUSFkyR1VKelpRaWRlb012Qk1hRmhpZkwwWUtN?= =?utf-8?B?bmVUS3QraUVzQ3Q5SHhqN3ZrVHNBZVEzM0xpWmxTUVNZSGRDbEh5V2RPQWJS?= =?utf-8?B?OFhUWFJKSXo4dWdDL3ZCYzhuQWhFcFpmTXRwbUdZRGhYV2ZyK1VsQkZkalJL?= =?utf-8?B?RnY0SE5Mc3hUSDVxaWlMdEN4aDJHZW0rS1JPckNaWFdxMWpUOWpQUDdDdHJI?= =?utf-8?B?bEpwbSthQ1lvNGl6KzYramJIdkk5NXZ5ckU1b0UwSXkwUEtwejJ0Z25NQmlW?= =?utf-8?B?ZFFpUHJUVC95UTh2anJqdjd1K2x0YTZjQ1p1Y3Rua3BqaEgvVWtlUk80MnBx?= =?utf-8?B?NVFMdDl2SnViQ2VjUlJSNVBVYkJOUzFieURVUXduUVAwa05iWWpDVE5rS2Jq?= =?utf-8?B?NHk1OVN3dSt4QUlibWM2Y1lXbDFLSE13dE04TTI2THlXS3VMdUZzZGFPUWlX?= =?utf-8?B?RU1zZDNsY1lIQzBEcEJwNmFwbmtIM0hkcVFpaHU2Q2w5ekUxT1ZwUWdqVU1t?= =?utf-8?B?Qm5KandIVWJoeXFGVEd3MVJnOEsvUlBoRUxwY0ltMUFJUU5UOHVLYnVFbnlC?= =?utf-8?Q?Fl/IoyGHmsHDc=3D?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR08MB6305
Original-Authentication-Results: sandelman.ca; dkim=none (message not signed) header.d=none; sandelman.ca; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: VE1EUR03FT029.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: 8b516db9-e0a1-4a5a-ffb7-08d895554af6
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: XJTM+/nA2sYWFCEvpUTPuxneKFMoCgBTjOCenod7lGbCoemQGSSr4Q7BGhQ7FLf6J7Ru7/c8RfH9IoSunOpI7qABsjW+Qlkyw7ZThyUa1qJxEiuzc+c3FaP0vFlWMF4BkCpqv/CmC+y27i5tIPvDGFuvFNukE1I/VukDFlJyCKCMqIE97aYWyXMs1SpNOxbk8pvCA8Q6HwWCx6z6tEAWCnLvJodTP267MNPPI32x8GpIUGELjtZ252GZ9C2o+mjx1uN5TMQZEED9ZwHGaRipmD1/9bgU4MpNHcyDwY0/IcSDCICwW2SW7DQnAu0F/cjy3k/9wRh2thKMtDoLvDb5ueASqEMrfJiFHspeIPN9PJ/z4Q0umNyaexQIubSbN8YaCGHUk8s4SImzgnk+TWKr0g==
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(4636009)(396003)(39860400002)(136003)(346002)(376002)(46966005)(478600001)(47076004)(86362001)(82740400003)(81166007)(356005)(33656002)(5660300002)(52536014)(8676002)(70586007)(8936002)(70206006)(55016002)(53546011)(9686003)(6506007)(83380400001)(66574015)(316002)(186003)(7696005)(26005)(82310400003)(110136005)(2906002)(336012); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Nov 2020 17:28:10.5072 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 5be65e2e-dcbe-481e-2cce-08d895554f32
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: VE1EUR03FT029.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR08MB5009
Archived-At: <https://mailarchive.ietf.org/arch/msg/rats/KIGtCbRMa4vIX0zJ_-Qp6H-6qck>
Subject: Re: [Rats] challenges of building dependant specifications against Internet-Drafts -- a way forward for EAT
X-BeenThere: rats@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Remote ATtestation procedureS <rats.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rats>, <mailto:rats-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rats/>
List-Post: <mailto:rats@ietf.org>
List-Help: <mailto:rats-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rats>, <mailto:rats-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 30 Nov 2020 17:28:25 -0000

Hi Michael,

I know that the IETF does not work on deadlines. Giri wanted to make the group aware of dependencies.

I have suggested FIDO to request registration of claims in the CWT IANA registry, in a style similar to what you suggest below. I guess there are not many other options given of where we are.

Ciao
Hannes

-----Original Message-----
From: Michael Richardson <mcr+ietf@sandelman.ca>
Sent: Monday, November 30, 2020 1:37 PM
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>om>; Giri Mandyam <mandyam@qti.qualcomm.com>om>; rats@ietf.org
Subject: Re: [Rats] challenges of building dependant specifications against Internet-Drafts -- a way forward for EAT


Hannes Tschofenig <Hannes.Tschofenig@arm.com> wrote:
    > In his presentation Giri pointed out that companies and industry groups
    > want to see progress on the EAT specification.

Right, and yet, the WG can't really guarantee a schedule.
If you read to end, you'll see that I propose a way in which the various industry groups can receive official EAT claim #s from the not-yet-created IANA registry.
That allows them to do interop while EAT specification progresses.
Whether they wish to "release" before EAT has an RFC# or not, is up to them.

    > In this specific case, Giri was talking about EAT being used by the
    > FIDO device onboard specification. But the same is actually true for us
    > (at Arm) and for Qualcomm, who are using EAT today.

    > A discussion about the FIDO device onboarding spec is IMHO distinct
    > from the EAT topic.

Distinct, and yet they are related because FIDO's voucher specification seems to be an EAT rather than a constrained-voucher.

--
Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
           Sandelman Software Works Inc, Ottawa and Worldwide

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.