IETF Logo Mail Archive

[saag] IETF 113 RATS WG Report

"Smith, Ned" <ned.smith@intel.com> Thu, 24 March 2022 08:42 UTC

Return-Path: <ned.smith@intel.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 83D333A154D for <saag@ietfa.amsl.com>; Thu, 24 Mar 2022 01:42:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KgX6HqHaoWOH for <saag@ietfa.amsl.com>; Thu, 24 Mar 2022 01:42:05 -0700 (PDT)
Received: from mga17.intel.com (mga17.intel.com [192.55.52.151]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0E10B3A1548 for <saag@ietf.org>; Thu, 24 Mar 2022 01:42:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1648111325; x=1679647325; h=from:to:subject:date:message-id:mime-version; bh=KwH+/rAGIGHCfJKd9MrHGAIiq7HMel9bLHpmwLrZE5c=; b=JpCIXx7u2cAxB5NDohsCj0APj1Xy7Kc1nBnWc2d8Yf4/3l+G4vMlnooD 43MlVvdPYYLoI+LJBY9Z0nS1qk1vBdjk1phGpp6rlnPAAwqIIb7xt6v+a 6d8OJUBuUfCHBOWfwJYkOYnRh8o3Xy+K9GElWbqbumjbgalELrwTxfUkd nNNRsahb8n2OddhRvMhiGtqMy6ljsXZ6XGCMuPqFx2MSZbV7v86no4fqJ S5nY7+x+K8l4/W0roL2Lqx0Art0St7R3t8vBCP+jo441b1ofyiWrJ/ec3 pWFMsPtVSeyRX00QKZXHkYaqMN53HseQG5C8W2l/yL8eRE7CoDIrL3que A==;
X-IronPort-AV: E=McAfee;i="6200,9189,10295"; a="238921637"
X-IronPort-AV: E=Sophos;i="5.90,206,1643702400"; d="scan'208,217";a="238921637"
Received: from orsmga004.jf.intel.com ([10.7.209.38]) by fmsmga107.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 24 Mar 2022 01:42:02 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.90,206,1643702400"; d="scan'208,217";a="649770455"
Received: from fmsmsx601.amr.corp.intel.com ([10.18.126.81]) by orsmga004.jf.intel.com with ESMTP; 24 Mar 2022 01:42:02 -0700
Received: from fmsmsx607.amr.corp.intel.com (10.18.126.87) by fmsmsx601.amr.corp.intel.com (10.18.126.81) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27; Thu, 24 Mar 2022 01:42:01 -0700
Received: from fmsmsx607.amr.corp.intel.com (10.18.126.87) by fmsmsx607.amr.corp.intel.com (10.18.126.87) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27; Thu, 24 Mar 2022 01:42:01 -0700
Received: from fmsedg602.ED.cps.intel.com (10.1.192.136) by fmsmsx607.amr.corp.intel.com (10.18.126.87) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.27 via Frontend Transport; Thu, 24 Mar 2022 01:42:01 -0700
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (104.47.59.170) by edgegateway.intel.com (192.55.55.71) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2308.21; Thu, 24 Mar 2022 01:42:01 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Wij/ZH4deShvg/DF8jGjje7auutQTtUU10AKVTdApoEX6Rcl2u+bkf+4aSqhNWarM4b8Ng9gfRidXaqKYj4ltSBvu1d73580qC4iblI9fkW/4hk8vMETZDsysShMN/4wnep7UVgDZxpazz1X2uzTBfZdJ1mnx3ti3M9zYU0Ot2Zg/6kUKhh4wVC5KivwWDWOG+yHH7rstjiLjqsBAFOkX9EOkglWzoH5aT5hC1xPpkZawe+9Mqo2lnSR7qdvAQAKlfOHhypsLSDUDqge3TNZJI8y6tP5MbDZAZ08dCJClmw5XBalRdhkIeDYxODCU9BtUIF+XOhd5VSx53F1MQ4Xbg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=KwH+/rAGIGHCfJKd9MrHGAIiq7HMel9bLHpmwLrZE5c=; b=Vn/VGpzL5ybEJ61AC4CCye3tPLJ9railb6vN80Q23setwrrxE1Oq47LU4qLheadg6VEO87+hRrMWR3Brq+Yfdr4/lHtJQ2pAcRSCzXcC5peJRpFDjkAw17JiZjOEvnoxl3QyVsIzxm6+raC40Fh3lf/dxSyECZD3GcnR2BA9x+dCYnCBcA+K9XBvcozC9xWuvEdNEF3SZ5xdQHu1XTgCFBcXaKPXGjkDp8bafT7FVcczUwObdf1msGhMDhUqwXtBlSrHAOikcgZwC7cgDZQENl0Gd3ft5K9vabt3qzosq8hjscvQZ9/b7Wl5oALcorHiUTEfJqDQ4Bci37L0h8HHbQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by SN6PR11MB3070.namprd11.prod.outlook.com (2603:10b6:805:d4::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5102.18; Thu, 24 Mar 2022 08:41:58 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::4818:ff2c:ac59:8bc4]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::4818:ff2c:ac59:8bc4%3]) with mapi id 15.20.5102.019; Thu, 24 Mar 2022 08:41:58 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: IETF 113 RATS WG Report
Thread-Index: AQHYP1sFnFo9Yt5qRUi8FqhffdF2dw==
Date: Thu, 24 Mar 2022 08:41:58 +0000
Message-ID: <ACD36392-B9D5-4CEA-B1B8-4CA574C7C9A3@intel.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.59.22031300
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: a1644a14-1bfd-4e16-9880-08da0d722872
x-ms-traffictypediagnostic: SN6PR11MB3070:EE_
x-microsoft-antispam-prvs: <SN6PR11MB3070AAF4219BA16EF160EEBAE5199@SN6PR11MB3070.namprd11.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB5169.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(366004)(186003)(26005)(83380400001)(316002)(36756003)(6916009)(66556008)(66446008)(91956017)(76116006)(66476007)(64756008)(38070700005)(71200400001)(66946007)(8676002)(6486002)(508600001)(2616005)(86362001)(5660300002)(8936002)(33656002)(82960400001)(122000001)(38100700002)(6512007)(6506007)(2906002)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_ACD36392B9D54CEAB1B84CA574C7C9A3intelcom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a1644a14-1bfd-4e16-9880-08da0d722872
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Mar 2022 08:41:58.1909 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: /1A2j8NQvAzStjFi2h0t0MAHa7N+KIoSrNFE1JLxM+DAsaJg3g1osIolKKjJAAsets8qW36TT4idBUwF1+8LcA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR11MB3070
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/5VJzfa0hm99kAF_UnHE4BT8YFRA>
Subject: [saag] IETF 113 RATS WG Report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 24 Mar 2022 08:42:11 -0000

[saag] RATS @ IETF 113



RATS WG met March 22nd and 23rd.



* The “RIV” draft (draft-ietf-rats-tpm-based-network-device-attest) successfully passed IETF reviews and is pending assignment of an RFC number.



* The “CHARRA” draft (draft-ietf-rats-yang-tpm-charra) has completed most of the IETF reviews except has a few outstanding YANG doctor issues to clean up. It is expected to be clear of these soon and will be ready for RFC status.



* The device subscription draft (draft-ietf-rats-network-device-subscription) is nearing completion having updated the security considerations section. More socialization of that section is needed before moving to WGLC.



* The AR4SI draft (draft-ietf-rats-ar4si) has clarifying text for certain trustworthiness claims. There has been mailing list threads related to EAT ‘security-level’ and ‘swresults’ claims in EAT. The authors are awaiting additional meaningful market uptake before requesting WGLC.



* The RATS Architecture draft (draft-ietf-rats-architecture) has been submitted to IESG for publication. There are pending IESG reviews.



* The EAT draft (draft-ietf-rats-eat) requested and received pre-allocation code points added to the IANA registry (https://www.iana.org/assignments/cwt/cwt.xhtml#claims-registry). There were a number of editing and cleanup changes applied as well as the addition of 3 new claims and additional clarification in the privacy considerations section. A new issue was raised relating to apparent dependency on the UCCS draft (draft-ietf-rats-uccs) where use of EAT may require normative content found in the UCCS draft. This issue is being discussed on the RATS mailing list.



* The DAA (draft-ietf-rats-daa), UCCS and Reference Interaction Models (draft-ietf-rats-reference-interaction-models) drafts continue to make progress but not significantly closer to WGLC.



* Concise Reference Integrity Manifest (CoRIM) draft was discussed that defines a schema for capturing attestation reference values and endorsed values. The draft authors invite others to review and comment.



* The working group has proposed changing the charter to include aspects of the RATS Architecture that was not defined at the time of initial chartering - Endorsers and Reference Value Providers. The final decision to approve the new charter text will commence on the RATS mailing list.

v2.23.0 | Report a Bug | By Email