[saag] Fwd: IETF 102 Remote Attestation Procedures (RATS) Bar BoF Invite

Carsten Bormann <cabo@tzi.org> Fri, 06 July 2018 14:18 UTC

From: Carsten Bormann <cabo@tzi.org>
Content-Type: multipart/alternative; boundary="Apple-Mail=_81CFF35F-F8B4-4860-A80A-CB95142E9E68"
Mime-Version: 1.0 (Mac OS X Mail 11.4 \(3445.8.2\))
Date: Fri, 06 Jul 2018 16:18:00 +0200
Message-Id: <35392A32-6538-4E1F-A911-0B9F5C8E7000@tzi.org>
References: <c6f25230-df46-7cd3-9225-e9f70ed634f1@sit.fraunhofer.de>
To: saag@ietf.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/vtww-wRmtkXZcXInlnYAi6MTvp8>
Subject: [saag] Fwd: IETF 102 Remote Attestation Procedures (RATS) Bar BoF Invite
Precedence: list

So, just for completeness and to minimize confusion about Bar BoFs in Montreal:
There will be a Bar BoF about remote attestation work at IETF on Thursday (19th) evening.
This is different from, and in addition to, the EAT-shaped one on Monday (16th).
See buried in the thread below.

Grüße, Carsten

> Begin forwarded message:
> 
> From: Henk Birkholz <henk.birkholz@sit.fraunhofer.de <mailto:henk.birkholz@sit.fraunhofer.de>>
> Subject: Re: IETF 102 Remote Attestation Procedures (RATS) Bar BoF Invite
> Date: July 6, 2018 at 15:52:01 GMT+2
> To: [trimmed], “rats@ietf.org <mailto:rats@ietf.org>” <rats@ietf.org <mailto:rats@ietf.org>>
> 
> Hi Hannes,
> 
> thank you for forwarding that invitation!
> 
> From my point of view, attestation really works as a flow. The EAT token may play a role in such a flow (after a number of technical issues have been resolved), but there is more to attestation than a token data format (it wouldn't even be totally wrong to say that there is no actual attestation in EAT).
> 
> We are going to take a look at the bigger picture of remote attestation at the Bar BoF on Thursday evening.
> 
> Viele Grüße,
> 
> Henk
> 
> 
> On 07/06/2018 07:17 AM, Hannes Tschofenig wrote:
>> Hi Henk,
>> I fear you missed that Lawrence and I already reserved a room for a meeting about the attestation work we proposed. Here is the mail:
>> https://www.ietf.org/mail-archive/web/eat/current/msg00005.html <https://www.ietf.org/mail-archive/web/eat/current/msg00005.html>
>> Ciao
>> Hannes
>> -----Original Message-----
>> From: Henk Birkholz [mailto:henk.birkholz@sit.fraunhofer.de]
>> Sent: 05 July 2018 23:52
>> To: DIEGO LOPEZ GARCIA; Xialiang (Frank); Hannes Tschofenig; Jessica Fitzgerald-McKay; Dave Waltermire; Banghart, Stephen A. (Fed); Shwetha Bhandari (shwethab); Bill Sulzen (bsulzen); Eric Voit (evoit); Giridhar Mandyam; Laurence Lundblade; ANTONIO AGUSTIN PASTOR PERALES; Mr. Ned Smith
>> Cc: Laffey, Tom (HPE Networking ATG); Guy Fedorkow; 'Wiseman, Monty (GE Global Research, US)'; Nancy Cam-Winget (ncamwing); Michael Eckel; rats@ietf.org
>> Subject: IETF 102 Remote Attestation Procedures (RATS) Bar BoF Invite
>> Hi *,
>> Diego and I are planning to find (or create) an appropriate place for
>> remote attestation related work in the IETF with a Bar BoF as a first step.
>> Some context:
>> In essence, remote attestation procedures are a tool-set that is
>> intended to increase the confidence that an entity other entities
>> interact with is a trusted system.
>> Remote attestation typically is tied to a type of trust anchor or
>> shielded secret, which is - in a sense - a tad bit exotic in the scope
>> of protocols developed in the IETF as those exist and operate "inside
>> the box". In contrast, most IETF solutions operate "between boxes".
>> While remote attestation procedures require both parts in order to
>> provide a value, appropriate network protocols to convey corresponding
>> information between boxes are still very much work in progress.
>> The Plan:
>> To create appropriate protocols and architectures, unfortunately, is not
>> a trivial task. In order to find out how this "non-trivial" thing can be
>> talked about and how to do that constructively in the IETF, we would
>> like to invite you to a Bar BoF.
>> The minimum goal is to talk about what remote attestation means
>> (semantic), what parts of it would belong in the IETF (scope), how to
>> align existing work and how to provide a basis for future work
>> (solution). Even better, if we would be able to agree in some of these
>> areas and flock together.
>> As a first proposal, we are planning the Bar BoF for:
>> *Thursday July 17th, in the evening*
>> (exact time TBD, but we think at or after dinner)
>> There is a fine Bar at the Venue. So, the current plan is to meet there,
>> in order to make it easier to attend. But we will also scout for an
>> appropriate bar when we are on-site. Also, we would like to encourage
>> you to "bring a +1" in case you know other individuals, who would be
>> interested in this topic.
>> Some references of the work in this space that is scattered all over the
>> IETF:
>>> https://datatracker.ietf.org/doc/draft-pastor-i2nsf-nsf-remote-attestation/
>>> https://datatracker.ietf.org/doc/draft-birkholz-i2nsf-tuda/
>>> https://datatracker.ietf.org/doc/draft-mandyam-eat/
>>> https://datatracker.ietf.org/doc/draft-mandyam-tokbind-attest/
>>> https://datatracker.ietf.org/doc/draft-birkholz-reference-ra-interaction-model/
>>> https://datatracker.ietf.org/doc/draft-birkholz-yang-basic-remote-attestation/
>>> https://datatracker.ietf.org/doc/draft-birkholz-attestation-terminology/
>> There also is the rats@ietf.org list (as you can see in the email
>> header) and a place at github (https://github.com/ietf-rats).
>> All that said, we would welcome you to drop by and are looking forward
>> to a lively discussion.
>> Best regards,
>> Diego & Henk
>> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
>

[saag] Fwd: IETF 102 Remote Attestation Procedure… Carsten Bormann