[saag] RATS report to SAAG

"Smith, Ned" <ned.smith@intel.com> Wed, 18 November 2020 19:38 UTC

Return-Path: <ned.smith@intel.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19DAB3A0ADD for <saag@ietfa.amsl.com>; Wed, 18 Nov 2020 11:38:40 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=intel.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LQmCPOIiY_Nr for <saag@ietfa.amsl.com>; Wed, 18 Nov 2020 11:38:35 -0800 (PST)
Received: from mga11.intel.com (mga11.intel.com [192.55.52.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B0AAC3A0AD5 for <saag@ietf.org>; Wed, 18 Nov 2020 11:38:35 -0800 (PST)
IronPort-SDR: 9NuLy9CeEQDsphWYXKqnsit8w+fpHAyEyHyQQsRh83hmXakumRCwBU2AqzeTsoMN7VMHw7IHey Gs2r/JWv93oA==
X-IronPort-AV: E=McAfee;i="6000,8403,9809"; a="167664531"
X-IronPort-AV: E=Sophos;i="5.77,488,1596524400"; d="txt'?scan'208";a="167664531"
X-Amp-Result: UNKNOWN
X-Amp-Original-Verdict: FILE UNKNOWN
X-Amp-File-Uploaded: False
Received: from orsmga005.jf.intel.com ([10.7.209.41]) by fmsmga102.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 18 Nov 2020 11:38:34 -0800
IronPort-SDR: SCfnntipKYFYpxGqk0O5CqMvk9MCZTg0z8ZVnLxtZ2VDJf4fECg/lyMdX2tPbe4CYpSayk4Lc2 s76pNxn3lN7w==
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.77,488,1596524400"; d="txt'?scan'208";a="544680046"
Received: from orsmsx603.amr.corp.intel.com ([10.22.229.16]) by orsmga005.jf.intel.com with ESMTP; 18 Nov 2020 11:38:34 -0800
Received: from orsmsx602.amr.corp.intel.com (10.22.229.15) by ORSMSX603.amr.corp.intel.com (10.22.229.16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1713.5; Wed, 18 Nov 2020 11:38:33 -0800
Received: from orsedg603.ED.cps.intel.com (10.7.248.4) by orsmsx602.amr.corp.intel.com (10.22.229.15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.1713.5 via Frontend Transport; Wed, 18 Nov 2020 11:38:33 -0800
Received: from NAM12-DM6-obe.outbound.protection.outlook.com (104.47.59.170) by edgegateway.intel.com (134.134.137.100) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.1713.5; Wed, 18 Nov 2020 11:38:33 -0800
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=B1PFzY+3B1y+chTWjL0SLTTPpCnI/nFNvrdFHcOqhG3ur1bejtwTD4EmEBq1KBFRjtMRWQkRR4V2SwZuyB5dbeYwCCxiFA6oBaSOKXi41kTbC48VZ4Nwiwtwvfra+np44Uvr8+TCZFHEnuv9GQN3jayvlK/0/UCIny/cT67BSebpy/blNcMjX9NH6FD+FKO6NpMDlVgsFg3HJnKKIiBowiueSR7H8Hpi3vXlhgG3diJ6wUDDlGpnXr+qRLhLi/mu7+83906a94YdKqK2kjCh/gLb9rMDLlwIpItYd/mU4flys5QpqIIeSH7DO+JlkGe2/iOiCFylehARN6KOvUwKIA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=yuzRLmgbOkYUYJK9kTS98fGu41uFSNH0U6xyr/azEZw=; b=Z2j+inU0VxJAOuXoSvD5TCYpL/eVn1iZLhfAIEat24FA4HfkXdFFdlPVgP+kTf/as/Sq5oSc2Krc7qMkCyj0PyPi2KiCNencF/2F6J+iCPiCAZey+a0Ph7OCPezl1aVCVp1Vzxa7E5xgVXbv1TP4jdEaMBtLvvckVEpt7xjLmTESxxJa9TibzqIXZ7XWQeAS6qBqiS4bSC6b4EIdG49ts5/KsThgAaOOOaFldakhMUvpWjSiWlhX+tUalVhLq0ZSrG1058i+oTcqj2OF34m6DraMnp+ndHTe/o/kWI3pKrTFVdRLupJ/rupw/ICwC6AYm4VeRHvHGHXDEk77VSsNSA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=intel.onmicrosoft.com; s=selector2-intel-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=yuzRLmgbOkYUYJK9kTS98fGu41uFSNH0U6xyr/azEZw=; b=Ls4jJE3B8bkX6lfhWbKz2+bKwjmoZYH/l82DpWGw2EkRquJPrnK5ZFIga6g6Zem6RFFl40+Ips093dLwErcq0j5ScvR0NO9GQF3x4POb2i6GkMxRnS4Dg0gSIYRHpvEo/YHTVRjksmR+bDfZpbY8qGVGN7x3gEVPoneSI5FFG2E=
Received: from MWHPR11MB1439.namprd11.prod.outlook.com (2603:10b6:301:9::20) by MWHPR1101MB2111.namprd11.prod.outlook.com (2603:10b6:301:4d::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3564.28; Wed, 18 Nov 2020 19:38:28 +0000
Received: from MWHPR11MB1439.namprd11.prod.outlook.com ([fe80::a0cb:8831:8812:5d0f]) by MWHPR11MB1439.namprd11.prod.outlook.com ([fe80::a0cb:8831:8812:5d0f%3]) with mapi id 15.20.3564.028; Wed, 18 Nov 2020 19:38:28 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: saag <saag@ietf.org>
Thread-Topic: RATS report to SAAG
Thread-Index: AQHWveJjDLFyMzv5mEeWJHwsEk2Isw==
Date: Wed, 18 Nov 2020 19:38:28 +0000
Message-ID: <45518785-35F2-400A-A8C5-0ED85204E171@intel.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.43.20110804
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=intel.com;
x-originating-ip: [50.53.43.22]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: ad5510a3-6a1b-41cc-e8a5-08d88bf985fe
x-ms-traffictypediagnostic: MWHPR1101MB2111:
x-microsoft-antispam-prvs: <MWHPR1101MB211175D7B061EF5ABD83BF4CE5E10@MWHPR1101MB2111.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:4303;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 9S/sVmz0Qj/Kcf2bfqfnkqT4vmFSVDzFi3FseF15Hequ8ie1RvbRG+dsQVq2iZbH3lx7S9pFbwAptLFdSXEVWq/2T0h7EEDTQevF5yfk5CoRic3OSM4tshmOuPG6AUtini9JIDUUFwcmZIvdsILcTrNDO45eQ1tCYH3xzMJrtxFHRyh4b1EyX0S2dNa3FunsAR+x0oZjNlUgiTZgt7gIrhV/EGRR2+V7LVBOSORYBx1dOBaYwC4fmw4kgGgbk1APUd9/p6N6CWCWbm7VwRbKw8q2o+rbngi6JYtAXmgw2JFUxoZI0K6GCnI1dFYL1keJGZ+f6L0DjYVHqxE1EH0nkg5OW3YKAcX5lAr9A5bHXsMnYPaHTWO4tCNB2ySK0RU3i4BKY8KgOzfZJwn/nN7hDw==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MWHPR11MB1439.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(346002)(39860400002)(136003)(366004)(396003)(66446008)(966005)(2616005)(316002)(66616009)(36756003)(478600001)(8676002)(66946007)(2906002)(186003)(6916009)(8936002)(6512007)(6506007)(86362001)(6486002)(26005)(64756008)(76116006)(5660300002)(33656002)(3480700007)(66556008)(66476007)(99936003)(71200400001)(83380400001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: multipart/mixed; boundary="_002_4551878535F2400AA8C50ED85204E171intelcom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MWHPR11MB1439.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: ad5510a3-6a1b-41cc-e8a5-08d88bf985fe
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Nov 2020 19:38:28.2209 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: W1gbFginQsfk/XIAvFuq5nP8kmA+TDzT5Jz3Nd+Lw9JQwU8EmPHuFWgwjEnUVGzhTYkag+ObbLQU5cTb2Oh3fg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MWHPR1101MB2111
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/LaBfnRQj9kSxijrZvRj1Cc27rDI>
Subject: [saag] RATS report to SAAG
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Nov 2020 19:38:40 -0000

IETF 109 SAAG Report for RATS WG

The Remote Attestation Procedures (RATS) WG met Tuesday November 17. An overflow session was scheduled for Thursday, but was cancelled due to lack of overflow topics. In session 1, four of the five adopted drafts were discussed along with a topic on “FIDO and EAT Dependencies”.

RATS Architecture https://datatracker.ietf.org/doc/draft-ietf-rats-architecture/
	The arch draft is nearly ready for WGLC. About half the room has reviewed the draft thus far. The chairs are looking for 2 or 3 volunteers to do a top to bottom review.

CHARRA https://datatracker.ietf.org/doc/draft-ietf-rats-yang-tpm-charra/
	This draft contains a lot of YANG definition that requires YANG doctor review; which is in progress and expected to be complete soon. However, review by someone with TPM v1.2 and v2.0 expertise is needed - preferably someone who is familiar with YANG. Once reviews are complete it is expected CHARRA will be ready for WGLC.

Interaction Models https://datatracker.ietf.org/doc/draft-ietf-rats-reference-interaction-models/
	No new changes since the last virtual interim. Review of sections 6 and 7 needed to move this forward. It hasn’t been decided if this draft will pursue standards or informational track. Two people suggested it should remain informational since implementors do not directly conform to its content.

EAT https://datatracker.ietf.org/doc/draft-ietf-rats-eat/ 
	A list of topics was presented that are determined to be blockers for WGLC. Each topic was discussed and in some cases resolutions were identified. See meeting notes for additional details https://codimd.ietf.org/notes-ietf-109-rats?view 
“FIDO and EAT Dependencies”

	The FIDO Alliance is working on a specification for IoT onboarding that would include RATS attestation capabilities. However, the FIDO specs may be ready sooner than RATS WG reaches final publication that would nail down IANA namespace reservations. The WG asked for a short list of identifiers that FIDO specs would need and to evaluate if each of these are well defined enough to authorize IANA namespace reservation in advance of an official publication.