Re: [sacm] [Suit] [Rats] CoSWID and EAT and CWT

Brendan Moran <Brendan.Moran@arm.com> Mon, 02 December 2019 16:16 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: sacm@ietfa.amsl.com
Delivered-To: sacm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A09DB1208CB; Mon, 2 Dec 2019 08:16:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.299
X-Spam-Level:
X-Spam-Status: No, score=-1.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001, URIBL_SBL=0.5, URIBL_SBL_A=0.1] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=EuK36u7P; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=armh.onmicrosoft.com header.b=IcaaOCte
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1tqHq-1ucpVX; Mon, 2 Dec 2019 08:16:48 -0800 (PST)
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-ve1eur02on061b.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe06::61b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CD9EC1208C2; Mon, 2 Dec 2019 08:16:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=aw02cgu0h716fVmEYnnu4dHWtVyJs6d7FGGC48dkxG4=; b=EuK36u7PEuzdKQM19AuFw7DfmYOJoZKd8l5XFp8wB9xpezv6v6PTjdzPZuB4ovAMQx2ffNRZdQ0DAdbELsMMBsCmwrMgFO4W7WTCXwoVLY98kC2yHD0ebhHX/+4icwDkGZ0Zqqe4NGlxvkGGeNTWudsOo59tJ7f2+2wCDrP7wHw=
Received: from HE1PR08CA0076.eurprd08.prod.outlook.com (2603:10a6:7:2a::47) by HE1PR0801MB1979.eurprd08.prod.outlook.com (2603:10a6:3:4e::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2495.20; Mon, 2 Dec 2019 16:16:42 +0000
Received: from VE1EUR03FT028.eop-EUR03.prod.protection.outlook.com (2a01:111:f400:7e09::200) by HE1PR08CA0076.outlook.office365.com (2603:10a6:7:2a::47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2495.17 via Frontend Transport; Mon, 2 Dec 2019 16:16:41 +0000
Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=bestguesspass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by VE1EUR03FT028.mail.protection.outlook.com (10.152.18.88) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2495.18 via Frontend Transport; Mon, 2 Dec 2019 16:16:41 +0000
Received: ("Tessian outbound d55de055a19b:v37"); Mon, 02 Dec 2019 16:16:41 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 050dd12c16cf1145
X-CR-MTA-TID: 64aa7808
Received: from 136d8f781483.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 02650E09-DFA7-4AAC-B14F-FAB22356B258.1; Mon, 02 Dec 2019 16:16:35 +0000
Received: from EUR04-HE1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 136d8f781483.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Mon, 02 Dec 2019 16:16:35 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=X8NCSml1uSMGWqYVhE3CSNPCFL6nRlyTqSKxfwYxHqFR5vX/NxUqO6v60bLfEqvdmbLe8Hmbn8Yid3SQUD9I8wtDdvS0CuI7gDX1yMD2PpSu7/SpelkiV4cDQxxe0+TRcIpbd8EnMVUTzqYXwNTbouppf1DdhLwLlAfC/+n3LaahJ3n5NvyvHDknFS0jTNiyzKIA8QKgU7bCJGZ0IC6h6jT3Z17gCtZ4NqUJ+mnGpsEOpOY7r24k0UNx7QUKdFN+S5XNi2FNHtcV23Y+VeV5gfVp4MzwSj66ibh+6Fmm+0zfbRvJGQzDh3UcXsJljUv8XkwKXC616M+WA+SfL2ZM7g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1u5yEzfzjyJqDEW9qSs+HI9wO+kUPdZLGRiNuY44bYg=; b=XpTcj3njleFAbn7lf0S/0kXAq3zUwBEykgfu5eWeH0U7w7AQaPrDZ2jsGJgpcPuKR+8hwL0A+iIbX0CHgKkQu7Ug8Z0b48rPWn3hRShZ6ARL3HJ6gM/5DRMgTpfAF6lvmoFHBE41+zWkX1a7hnblQkdSP++KX7WBEJpOhqQ6QDVotYluJ/mUrKyjbw1eEnJYerVQjJxRjMlOkCFrt2L6KcpJKOZjo+HFINPUOjlhr/nLpNY4+YPxaErD1i5Rt/hYRocAuk/pwvV8qLMg1+DP2fUJU+LiPqkWfXGYuWjz4I6pFKzwnvvnuPL3XUsLyRXI6J3R3hVex8+IB3jRHm27YQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1u5yEzfzjyJqDEW9qSs+HI9wO+kUPdZLGRiNuY44bYg=; b=IcaaOCtehq/XY4jM2/4yRY2rcfcR3Wsi2oaaSvfTfYqV4Qs1I/5c18Nmgx+afd/e+zKqBNkeEzCpRFEVNnKQFQFJlf+bLxQmSSiHveWaaM46P8vXzGHtock74g01fOoqV7/p0MfqMl4+1gVPdv8OdscaGfJqHlyZqXDqqmF3+Rk=
Received: from DB6PR0801MB1879.eurprd08.prod.outlook.com (10.168.84.137) by DB6PR0801MB1942.eurprd08.prod.outlook.com (10.168.85.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2495.18; Mon, 2 Dec 2019 16:16:32 +0000
Received: from DB6PR0801MB1879.eurprd08.prod.outlook.com ([fe80::ac0d:8d0f:7729:da46]) by DB6PR0801MB1879.eurprd08.prod.outlook.com ([fe80::ac0d:8d0f:7729:da46%3]) with mapi id 15.20.2495.014; Mon, 2 Dec 2019 16:16:32 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, "Smith, Ned" <ned.smith@intel.com>, Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
CC: "suit@ietf.org" <suit@ietf.org>, sacm <sacm@ietf.org>, "rats@ietf.org" <rats@ietf.org>, Laurence Lundblade <lgl@island-resort.com>, Ira McDonald <blueroofmusic@gmail.com>, "Waltermire, David A. (Fed)" <david.waltermire@nist.gov>
Thread-Topic: [Suit] [Rats] [sacm] CoSWID and EAT and CWT
Thread-Index: AQHVqSvcZKKs7+iZjE6l9fxR1aMZOw==
Date: Mon, 02 Dec 2019 16:16:32 +0000
Message-ID: <F23B6DE1-3343-4553-AF1C-832EA7B7B238@arm.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Authentication-Results-Original: spf=none (sender IP is ) smtp.mailfrom=Brendan.Moran@arm.com;
x-originating-ip: [212.187.182.165]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 6441a3a2-fb82-4bc4-f9ec-08d777430479
X-MS-TrafficTypeDiagnostic: DB6PR0801MB1942:|HE1PR0801MB1979:
X-Microsoft-Antispam-PRVS: <HE1PR0801MB197923875CB88C9C2E49D730EA430@HE1PR0801MB1979.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
x-ms-oob-tlc-oobclassifiers: OLM:7691;OLM:7691;
x-forefront-prvs: 0239D46DB6
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(10009020)(4636009)(366004)(39860400002)(346002)(396003)(376002)(136003)(189003)(199004)(13464003)(54906003)(14444005)(25786009)(81166006)(6306002)(966005)(81156014)(26005)(86362001)(6506007)(36756003)(53546011)(8676002)(66476007)(64756008)(66446008)(66556008)(2616005)(91956017)(6436002)(6246003)(71200400001)(6512007)(66574012)(5660300002)(4326008)(66946007)(19273905006)(186003)(110136005)(2906002)(478600001)(71190400001)(14454004)(102836004)(229853002)(8936002)(6486002)(256004)(76116006)(7736002)(316002)(305945005)(3846002)(66066001)(6116002)(561944003)(33656002)(99286004)(563064011); DIR:OUT; SFP:1101; SCL:1; SRVR:DB6PR0801MB1942; H:DB6PR0801MB1879.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: wKJ44Ywzctg1LHODqP9TzlKh2nSgeS7iEuLWdPHu5oICW13RSJXScC6io6KdHY9HOeDdVE8jtBLsWXSr9qLJv2CIMRXP7nNMtM0Ln8kivnO2xBr4rak/F7cc5mvGCoUXDvGCY77y/IyaDvI2T2uEP2D3EFBbH9KjusXmO0OB+jua0ON8JFYWeKNuuUpYznOCwxd/5HpQ2L9GwddI67ei3pEf7uBsn+P0ab2KCQETOZXNVQzUlWz9MhfEOfF8Gi/9DhPXgSTcVQwjicaA4i1Ahyv3gTar9Vhunay4+sse/Zbs+DuTeyVY7/E6GVPmMmImPz1hfcpaCH9iL6lOJ8gBakCH9B6Re1M1rBEjpMOX01tf594wsJMoCZeB9jJ4IbTI0Ho4tDxycN3wsWTjr52KfjBWBKEHoCNnf8i01uzhwZFx4hf1Aocwbjy1BsjezlBV4y/at3h5XiMSv6SDTcBHjHiFO2cjsKPtzUxMAH5JfPY=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <256251DCA03C824BB81168223C5E218F@arm.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0801MB1942
Original-Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=Brendan.Moran@arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: VE1EUR03FT028.eop-EUR03.prod.protection.outlook.com
X-Forefront-Antispam-Report: CIP:63.35.35.123; IPV:CAL; SCL:-1; CTRY:IE; EFV:NLI; SFV:NSPM; SFS:(10009020)(4636009)(376002)(136003)(346002)(396003)(39860400002)(13464003)(199004)(40434004)(189003)(54906003)(106002)(99286004)(36756003)(107886003)(6486002)(2906002)(14454004)(2616005)(229853002)(8676002)(81166006)(25786009)(66066001)(102836004)(186003)(6512007)(6246003)(356004)(3846002)(26005)(19273905006)(436003)(47776003)(6506007)(966005)(478600001)(6306002)(26826003)(4326008)(53546011)(6116002)(66574012)(50466002)(450100002)(33656002)(86362001)(7736002)(2486003)(336012)(561944003)(110136005)(22756006)(76130400001)(305945005)(45080400002)(30864003)(14444005)(5024004)(23676004)(36906005)(5660300002)(81156014)(8936002)(70586007)(70206006)(316002)(563064011); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0801MB1979; H:64aa7808-outbound-1.mta.getcheckrecipient.com; FPR:; SPF:Pass; LANG:en; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; A:1; MX:1;
X-MS-Office365-Filtering-Correlation-Id-Prvs: f31e90b8-217d-4263-1bd5-08d77742ff17
X-Forefront-PRVS: 0239D46DB6
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: PHTaTGZjee3QVvVN/aPenwRPlcqHhH/wUwR6G9vzAEtYtLPM7vBUgzgjamn/RBsJdOvzS7qwbDbIzNvk1wbJAKBZC4ztnRUw5G1PCDF/DQJGDveu0p86muT/l4HxlZiuqaFiZduRs8N8+A6dmqZDx63UnFnUWggOlWyTmLIZeUg0YQqV6jicPEMM4g6nJV1RwLQ7jv7w4moZtBRdy6u4Dvpktp8eB2X2ZOEyS4q4scx6X9aJ3MVrYtt/+93tdFPu4O5Nnv1VQL52fs+kz2+J4KEn4q0mhSpZSTCMbiEDQDUPoSa0UrBu7gjIL8fgvNgnS81wQD3R1FaOB5onX/sawoFy9/m399oGV+zxjqO8ZV3SJgpLyEY+Ro4Pm0m4S8W5aBb1qdczJ9nD9Ajjj7epxqp3kfVljWfdLoHgz7X0JYLpII2bu30A3AZkjkirl35T/U0ZOAmSZJDeN7XvOTVwaZdWB0ydEUJFrlCAKMHvnhg=
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 02 Dec 2019 16:16:41.5689 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 6441a3a2-fb82-4bc4-f9ec-08d777430479
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0801MB1979
Archived-At: <https://mailarchive.ietf.org/arch/msg/sacm/yo99cJydemVa0lmY4hlNUGVT8qc>
Subject: Re: [sacm] [Suit] [Rats] CoSWID and EAT and CWT
X-BeenThere: sacm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SACM WG mail list <sacm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sacm>, <mailto:sacm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sacm/>
List-Post: <mailto:sacm@ietf.org>
List-Help: <mailto:sacm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sacm>, <mailto:sacm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Dec 2019 16:16:51 -0000

Hi Henk,

Thanks for bringing this to my attention. I'm not sure that I understand the goal of using a CWT for a CoSWID or a SUIT manifest. Would you be able to elaborate on why we should use CWT?

From a high level, my concern is that using CWT will introduce a substantial architectural change to the manifest specification: The manifest is structured as:
1. Outer Wrapper (map) {
   1.1 CWT Key Claims (list of CWT)
   1.2 Authentication wrappers (List of COSE Signatures/MACs)
   1.3 Manifest (map)
   1.4 Severable items

(Note that the placement of CWT key claims is new and not in the latest draft--it is a change that was brought in to make PQC handling more elegant)

Within the manifest, there is little overlap with the base set of CWT claims.

What would using CWT for the SUIT manifest accomplish?

Best Regards,
Brendan

-----Original Message-----
From: Suit <suit-bounces@ietf.org> On Behalf Of Henk Birkholz
Sent: 24 November 2019 15:44
To: Smith, Ned <ned.smith@intel.com>; Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Cc: suit@ietf.org; sacm <sacm@ietf.org>; rats@ietf.org; Laurence Lundblade <lgl@island-resort.com>; Ira McDonald <blueroofmusic@gmail.com>; Waltermire, David A. (Fed) <david.waltermire@nist.gov>
Subject: Re: [Suit] [Rats] [sacm] CoSWID and EAT and CWT

Hi Ned,

"Evidence" and "Payload" are two of the four pre-defined (and
extensible) types of resource-collection defined by ISO/IEC 19770-2:2015, CoSWID and NISTIR 8060:2016, respectively.

They are defined here:

> https://tools.ietf.org/html/draft-ietf-sacm-coswid-13#section-2.3

Fortunately, Evidence is semantically very well aligned with the meaning of Evidence in the context of RATS, it is effectively created by an Attesting Environment of an Attester as a measurement:

>   o  evidence-entry (index 3): This item can be used to record the
>      results of a software discovery process used to identify untagged
>      software on an endpoint or to represent indicators for why
>      software is believed to be installed on the endpoint.  In either
>      case, a CoSWID tag can be created by the tool performing an
>      analysis of the software components installed on the endpoint.
>      Described in Section 2.9.4.

In general, Payload lists the files that may be installed with a software product, and could be a superset of those files. Semantically, they are the equivalent to Appraisal Policies (formerly know as Reference Values). This differs from the use of Evidence, which is used to store results from a scan that indicate why the product is believed to be installed:

>   o  payload (index 6): This item represents a collection of software
>      artifacts (described by child items) that compose the target
>      software.  For example, these artifacts could be the files
>      included with an installer for a corpus tag or installed on an
>      endpoint when the software component is installed for a primary or
>      patch tag.  The artifacts listed in a payload may be a superset of
>      the software artifacts that are actually installed.  Based on user
>      selections at install time, an installation might not include
>      every artifact that could be created or executed on the endpoint
>      when the software component is installed or run.  Described in
>      Section 2.9.3.

Viele Grüße,

Henk

> On 22.11.19 20:39, Smith, Ned wrote:
> Regarding issue 46 (link below), the proposed (9) claims distinguish
> between Evidence, “Payload” and SUIT Manifest variations. Evidence is
> defined by RATS architecture, SUIT Manifest by SUIT WG, but not sure
> where “Payload” is defined and how it differs from Evidence. Possibly
> 8 claims can be collapsed into 4?
>
> *From: *RATS <rats-bounces@ietf.org> on behalf of Kathleen Moriarty
> <kathleen.moriarty.ietf@gmail.com>
> *Date: *Friday, November 22, 2019 at 10:27 AM
> *To: *Henk Berkholz <henk.birkholz@sit.fraunhofer.de>
> *Cc: *"suit@ietf.org" <suit@ietf.org>, sacm <sacm@ietf.org>,
> "rats@ietf.org" <rats@ietf.org>, Laurence Lundblade
> <lgl@island-resort.com>, Ira McDonald <blueroofmusic@gmail.com>,
> "david.waltermire@nist.gov" <david.waltermire@nist.gov>
> *Subject: *Re: [Rats] [sacm] CoSWID and EAT and CWT
>
> Hi Henk,
>
> I am not entirely following you, so I am not stating agreement yet.
>
> On Fri, Nov 22, 2019 at 12:06 PM Henk Birkholz
> <henk.birkholz@sit.fraunhofer.de
> <mailto:henk.birkholz@sit.fraunhofer.de>> wrote:
>
>    Hi Kathleen,
>    hi SACM, SUIT & RATS list,
>
>    the corresponding *SWID authors discussed this issue and are proposing:
>
>> https://github.com/ietf-rats-wg/eat/issues/46
>
>    This includes an extended scope to include the option of SUIT Manifest
>    related Claim values, next to various *SWID Claim values. We permutated
>    "signed" & "not-signed" as well as "payload tags" and "evidence tags"
>    for *SWID tags in this proposal. The authors are convinced that the
>    "not-signed" variants are of essence (as CWT does not allow "not-signed
>    CBOR items", but also do not imply any implications to the SUIT
>    Manifest
>    Claim definition (although there are strong similarities and there
>    could
>    be some).
>
> Can you write the above again?  Are you saying this in terms of a CWT?
> Wouldn't the claims and the text value in a CWT be represented as-is,
> then signed, so you'd get what you are saying is needed?
>
>
>    The current *SWID contributors prefer this contribution as a parallel
>    effort to the EAT I-D, SUIT Manifest I-D, the CoSWID I-D and existing
>    ISO XML SWID standard. This proposal includes the primitive to not
>    delay
>    corresponding IETG I-D in their respective WGs.
>
> Are you saying you don't want to add text stating the use of a CWT is
> a possible alternative, as that is what was requested.  I offered to
> write a separate document to put the CoSWID in a CWT in SACM as I
> think that's the right home, referencing EAT work.
>
>
>    Having said that, we would like to get feedback for the proposal
>    references above.
>
>    If there is no dissent or push-back on either the SUIT, SACM, and RATS
>    lists, our proposed way forward is a unified creation of EAT Claim Sets
>    in the RATS WG that enables the use of various *SWID variants & the
>    SUIT
>    Manifest as payloads for RATS via the RATS EAT I-D.
>
> I think this should be in SACM.  And I've offered to help.  I do think
> that a little text saying it's possible should be in the CoSWID draft
> and will provide that soon as not to delay progress of the CoSWID document.
>
> Best regards,
>
> Kathleen
>
>
>    In summary, we would like to create this interop I-D in concert and
>    welcome every joint effort in this domain.
>
>    Viele Grüße,
>
>    Henk
>
>>    On 21.11.19 12:37, Kathleen Moriarty wrote:
>> Sent from my mobile device
>>> On Nov 20, 2019, at 11:29 PM, Waltermire, David A. (Fed)
>>> <david.waltermire@nist.gov <mailto:david.waltermire@nist.gov>>
>    wrote:
>>> It sounds like having a CWT claim that contains an entire CoSWID
>    is a
>>> path forward. It may also make sense to do something similar for
>    ISO
>>> SWID tags.
>>> Am I right in thinking that this CWT work can be done in RATS,
>>> referencing CoSWID once it is published as a normative
>    reference? This
>>> would allow CoSWID to go forward to the IESG, while the CoSWID CWT
>>> claim is worked in parallel in RATS.
>>> Kathleen, if this is true, does this way forward address your
>>> CWT-related comments?
>> Hi Dave,
>> I think the signature may have to be on the CWT as opposed to on the
>> claim that is the CoSWID or SWID.  We can define it fully in another
>> draft, but should state it here so that option is understood.
>    It’s a
>> simple write up, I think.
>> Thank you,
>> Kathleen
>>> Regards,
>>> Dave
>    ------------------------------------------------------------------------
>>> *From:* sacm <sacm-bounces@ietf.org
>    <mailto:sacm-bounces@ietf.org>> on behalf of Kathleen Moriarty
>>> <kathleen.moriarty.ietf@gmail.com
>    <mailto:kathleen.moriarty.ietf@gmail.com>>
>>> *Sent:* Wednesday, November 20, 2019 9:10 PM
>>> *To:* Ira McDonald <blueroofmusic@gmail.com
>    <mailto:blueroofmusic@gmail.com>>
>>> *Cc:* rats@ietf..org <mailto:rats@ietf.org> <rats@ietf.org
>    <mailto:rats@ietf.org>>; sacm <sacm@ietf.org
>    <mailto:sacm@ietf.org>>; Laurence
>>> Lundblade <lgl@island-resort.com <mailto:lgl@island-resort.com>>
>>> *Subject:* Re: [sacm] [Rats] CoSWID and EAT and CWT
>>> Great, thanks Laurence.  If that's easier I think having the
>    CoSWID in
>>> one claim should be ok and would have the same result as the
>>> suggestion I made.  Changing the CoSWID format is a big enough
>    process
>>> that it shouldn't happen very often.
>>> Best regards,
>>> Kathleen
>>> On Wed, Nov 20, 2019 at 8:00 PM Ira McDonald
>    <blueroofmusic@gmail.com <mailto:blueroofmusic@gmail.com>
>>> <mailto:blueroofmusic@gmail.com
>    <mailto:blueroofmusic@gmail.com>>> wrote:
>>>      Hi Laurence,
>>>      That seems like a good suggestion for a simple way to integrate
>>>      CoSWID content
>>>      into EAT.
>>>      Cheers,
>>>      - Ira
>>>      Ira McDonald (Musician / Software Architect)
>>>      Co-Chair - TCG Trusted Mobility Solutions WG
>>>      Co-Chair - TCG Metadata Access Protocol SG
>>>      Chair - Linux Foundation Open Printing WG
>>>      Secretary - IEEE-ISTO Printer Working Group
>>>      Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG
>>>      IETF Designated Expert - IPP & Printer MIB
>>>      Blue Roof Music / High North Inc
>>> http://sites.google.com/site/blueroofmusic
>      <https://gcc01.safelinks.protection.outlook.com/?url=http%3A%2F%2Fsites.google.com%2Fsite%2Fblueroofmusic&data=02%7C01%7Cdavid.waltermire%40nist.gov%7C92a2dcbadd8d47661b9608d76e282847%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637098991070417006&sdata=GDIVVIesvqqXnuU6TtLbK7GJ4eI1b1EcYSPoXsHlj04%3D&reserved=0>
>>> http://sites.google.com/site/highnorthinc
>      <https://gcc01.safelinks.protection..outlook.com/?url=http%3A%2F%2Fsites.google.com%2Fsite%2Fhighnorthinc&data=02%7C01%7Cdavid.waltermire%40nist.gov%7C92a2dcbadd8d47661b9608d76e282847%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637098991070417006&sdata=7z%2BoMcYSSFD8hAYHmELqNoyGAxTBE9gknbV6kAzKWX8%3D&reserved=0 <http://outlook.com/?url=http%3A%2F%2Fsites.google.com%2Fsite%2Fhighnorthinc&data=02%7C01%7Cdavid.waltermire%40nist.gov%7C92a2dcbadd8d47661b9608d76e282847%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637098991070417006&sdata=7z%2BoMcYSSFD8hAYHmELqNoyGAxTBE9gknbV6kAzKWX8%3D&reserved=0>>
>>>      mailto: blueroofmusic@gmail.com
>    <mailto:blueroofmusic@gmail.com> <mailto:blueroofmusic@gmail.com
>    <mailto:blueroofmusic@gmail.com>>
>>>      PO Box 221  Grand Marais, MI 49839  906-494-2434
>>>      On Wed, Nov 20, 2019 at 7:35 PM Laurence Lundblade
>>>      <lgl@island-resort.com <mailto:lgl@island-resort.com>
>    <mailto:lgl@island-resort.com <mailto:lgl@island-resort.com>>> wrote:
>>>          Hi,
>>>          I’m not on the SACM list, but did look at the archive.
>>>          Hopefully I’m not out of sync.
>>>          My thought is to register one claim for CWT that is an
>    entire
>>>          CoSWID (in CDDL the concise-swid-tag).
>>>          That way CoSWID can grow and develop on its own without lots
>>>          of adds and subtracts to the CWT registry. It has its
>    own IANA
>>>          registry with its own experts and such. Seems like the
>>>          coupling / factoring is about right.
>>>          This would also be the way I’d like to have it in EAT
>>>          attestation. We’ve done a mini version of this with the
>>>          location claim
>      <https://gcc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-rats-eat-01%23section-3.8&data=02%7C01%7Cdavid.waltermire%40nist.gov%7C92a2dcbadd8d47661b9608d76e282847%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637098991070426961&sdata=%2Fhi008Am2dlY6tBQHdPVVGZzEcWNmqd5MvgPOM14jE8%3D&reserved=0>.
>>>          Then if you just want to sign a CoSWID CWT style, this works
>>>          pretty well too. It has a slight overhead compared to having
>>>          all the CoSWID data items as direct CWT claims in that
>    it will
>>>          have an additional map layer, but that is only about
>    three bytes.
>>>          LL
>>>          _______________________________________________
>>>          RATS mailing list
>>> RATS@ietf.org <mailto:RATS@ietf.org> <mailto:RATS@ietf.org
>    <mailto:RATS@ietf.org>>
>>> https://www.ietf..org/mailman/listinfo/rats
>    <https://www.ietf.org/mailman/listinfo/rats>
>      <https://gcc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Frats&data=02%7C01%7Cdavid.waltermire%40nist.gov%7C92a2dcbadd8d47661b9608d76e282847%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637098991070426961&sdata=fdpXMIU%2BNkMSn3RJ4X5AsSuMU7pbokHXltsX8ZYP9E0%3D&reserved=0>
>>>      _______________________________________________
>>>      sacm mailing list
>>> sacm@ietf.org <mailto:sacm@ietf.org> <mailto:sacm@ietf.org
>    <mailto:sacm@ietf.org>>
>>> https://www.ietf.org/mailman/listinfo/sacm
>      <https://gcc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fsacm&data=02%7C01%7Cdavid.waltermire%40nist.gov%7C92a2dcbadd8d47661b9608d76e282847%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637098991070436893&sdata=okSPAqVHj9KBxPtViQdnffsfhlMF4t0%2F87PXXY78fA0%3D&reserved=0>
>>> --
>>> Best regards,
>>> Kathleen
>> _______________________________________________
>> sacm mailing list
>> sacm@ietf.org <mailto:sacm@ietf.org>
>> https://www.ietf.org/mailman/listinfo/sacm
>
>
> --
>
> Best regards,
>
> Kathleen

_______________________________________________
Suit mailing list
Suit@ietf.org
https://www.ietf.org/mailman/listinfo/suit
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.