IETF Logo Mail Archive

[saag] IETF 114 RATS report

"Smith, Ned" <ned.smith@intel.com> Mon, 25 July 2022 21:20 UTC

Return-Path: <ned.smith@intel.com>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A8E3AC13CCEC for <saag@ietfa.amsl.com>; Mon, 25 Jul 2022 14:20:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.686
X-Spam-Level:
X-Spam-Status: No, score=-2.686 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.582, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=intel.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iupRpexutwhR for <saag@ietfa.amsl.com>; Mon, 25 Jul 2022 14:20:08 -0700 (PDT)
Received: from mga14.intel.com (mga14.intel.com [192.55.52.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D2D46C13CCC2 for <saag@ietf.org>; Mon, 25 Jul 2022 14:20:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=intel.com; i=@intel.com; q=dns/txt; s=Intel; t=1658784008; x=1690320008; h=from:to:subject:date:message-id:mime-version; bh=YWVVTkAwvunn5jBhGxMih1t1j9AkGVvvknSMGbHWiqM=; b=m7j3/9W5FktouInvvrwQpGDdGEt/HgAYD4HpuZAL7omtT+uy4gwLWXhq RfUeQpMolLWCZIyl1C53HdpjmoiEI3UTzNQLR1rgwFDHLql8x3KfkTNMQ BeqbiIb86eIIhHvOThx03Fa1B4qpv7kU5lG0iQqDjzgmwAg9Olm3+x+xn 1O2co5AmXvAS/TfsXsMlOCyXVHFC40hjutM+HRTzJA7sv9LJaYKamHuSf lm8OSe+hdnSl0F1uYSInidm2fFN4T1wBcQJ4GwqvFjeysGfFc2kHKyy6E zHBNs9+BIZhcpIbBGOReihsnxhmqwlUvqoxcCgm73sbNTR5C6QDphn/j9 w==;
X-IronPort-AV: E=McAfee;i="6400,9594,10419"; a="287810021"
X-IronPort-AV: E=Sophos;i="5.93,193,1654585200"; d="scan'208,217";a="287810021"
Received: from fmsmga006.fm.intel.com ([10.253.24.20]) by fmsmga103.fm.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 25 Jul 2022 14:20:06 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.93,193,1654585200"; d="scan'208,217";a="845640854"
Received: from orsmsx601.amr.corp.intel.com ([10.22.229.14]) by fmsmga006.fm.intel.com with ESMTP; 25 Jul 2022 14:20:06 -0700
Received: from orsmsx607.amr.corp.intel.com (10.22.229.20) by ORSMSX601.amr.corp.intel.com (10.22.229.14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.28; Mon, 25 Jul 2022 14:20:05 -0700
Received: from ORSEDG601.ED.cps.intel.com (10.7.248.6) by orsmsx607.amr.corp.intel.com (10.22.229.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2375.28 via Frontend Transport; Mon, 25 Jul 2022 14:20:05 -0700
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (104.47.57.170) by edgegateway.intel.com (134.134.137.102) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2308.27; Mon, 25 Jul 2022 14:20:05 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=DP637TaOVqzUtAsFbpp1FL9DNxvp5bUdMmvTCUlameqm6YsZaBksZm26fGtSKfdZkbVjxtKCsGJF5lurQpoFeUm479Ps7FCGGcQk8y2BH0aAgzVC4q1EfwkH84Yg0gNV+L8cSztDtWlPhJ2NXdAL+z9rC8t77a/1IwuaG9AMEwCGJbvqFItcChp+KfDE0RrKrlwkpJs7aqJDS8mIamINYJYEun0gMOYg7HbWiutPWbNdVMoAflm9pw7/B3Ozw3pKE1IAjasKr8Szc2CWbguTz+0c3HIUBlSP9WrLH8MQpHS4pMW88vcy0M5DgFj17a8vxMeAp2ep0TdhtlBwIjDoTg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=YWVVTkAwvunn5jBhGxMih1t1j9AkGVvvknSMGbHWiqM=; b=HQBJ69lxc/eDNwyaAuJi0SfWuWHvuFH7cTRkOvVJJ+tIHLHoONiHnJXjNu3FJsb39pQL4alvDkmTTQKudzA36OjHrHyEQYZUH3IRXte/BY00ol2J42K0g8ic5fSpPcWR76FcT9hlHRVJPM+15BaW02rFIT+WnFKvPNHoLeXjw7PbrK3WXAjZSVqt/AmfZ6uGZ/96WPPS5q8iIaxxVvq/bBZWMVaTL7khs0AqZRYQ9SFgvgGs9O2RUDJWMkxoUWcH1KBLV5FxCGts2oCcS8PkYKQzE0pOQ6IMBTcQxHN0AZ6hmNChappmWhIBqkn2ZLItSKimdcZ2p2pl0+Dqgle+1w==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com; dkim=pass header.d=intel.com; arc=none
Received: from CO1PR11MB5169.namprd11.prod.outlook.com (2603:10b6:303:95::19) by MW3PR11MB4714.namprd11.prod.outlook.com (2603:10b6:303:5d::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5458.18; Mon, 25 Jul 2022 21:20:03 +0000
Received: from CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::f9bc:3db2:a299:972c]) by CO1PR11MB5169.namprd11.prod.outlook.com ([fe80::f9bc:3db2:a299:972c%4]) with mapi id 15.20.5458.024; Mon, 25 Jul 2022 21:20:03 +0000
From: "Smith, Ned" <ned.smith@intel.com>
To: IETF SAAG <saag@ietf.org>
Thread-Topic: IETF 114 RATS report
Thread-Index: AQHYoGxOew4NtP2k6EGOC4QT5Ee3cA==
Date: Mon, 25 Jul 2022 21:20:03 +0000
Message-ID: <515008C7-B508-4D34-A41C-02BF165F21A3@intel.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.63.22070801
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 76a7c291-9090-4009-73c9-08da6e8370d1
x-ms-traffictypediagnostic: MW3PR11MB4714:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR11MB5169.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(346002)(39860400002)(136003)(376002)(366004)(396003)(5660300002)(2616005)(26005)(478600001)(6512007)(66476007)(316002)(6486002)(36756003)(8936002)(7116003)(86362001)(186003)(41300700001)(82960400001)(71200400001)(83380400001)(6506007)(66446008)(66556008)(33656002)(2906002)(91956017)(8676002)(64756008)(6916009)(122000001)(38100700002)(76116006)(38070700005)(66946007)(45980500001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_515008C7B5084D34A41C02BF165F21A3intelcom_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CO1PR11MB5169.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 76a7c291-9090-4009-73c9-08da6e8370d1
X-MS-Exchange-CrossTenant-originalarrivaltime: 25 Jul 2022 21:20:03.8267 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: V8IuBEQNJ0W3Y0OgG6TNvmda4UzZyh5h/BFZe0D5ktbOlyopTP5NkQ1IpWV5rXpLC7eKMj/B7P1IxKhvpDftHg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW3PR11MB4714
X-OriginatorOrg: intel.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/_KBmy0cr9670c8ZAezA2wjDbTZ4>
Subject: [saag] IETF 114 RATS report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Jul 2022 21:20:12 -0000

The RATS workgroup met Monday. Several adopted drafts including the RATS architecture, EAT, Event Stream Subscription (ESS) and Attestation Results for Secure Interactions (AR4SI) were reviewed. The subscription draft anticipates WGLC in the coming months. AR4SI has several overlapping concepts with EAT that need to be combed out. Some terminology differences with the Confidential Computing Consortium (CCC) also need to be revisited. The RATS Arch addressed AD comments. The EAT draft added an SBOM claim, replaced the UCCS definition with a CDDL socket and security considerations section updated.
A new draft detailing EAT media types was discussed that defines media types for attestation information in the form of CBOR/JSON tokens, unsigned CBOR/JSON and Debian packages. There is a TEEP dependency on this definition. Authors are interested in quick adoption. The concise RIM (CoRIM) made a formal call for adoption as the RATS charter v2 now makes it in scope for consideration. The Concise Trust Anchor Stores draft was discussed as a possible extension to CoRIM as a way to constrain trust anchors in terms of the type of claims that could be asserted by various entities. It wasn’t clear if RATS or LAMPS would be the right place for the draft as it sits at the crossroads between the two. Finally, a presentation on EAT Collection Type that addresses top-level signer sets where various attestation objects may share the same logical hierarchy I a device or internally defined object set. The chairs suggested a virtual interim meeting might be needed to address some of the remaining issues for the EAT draft and to better understand charter scope as it relates to trust anchors.

v2.23.0 | Report a Bug | By Email