[Seat] Re: draft-fossati-seat-early-attestation and the charter
Yaron Sheffer <yaronf.ietf@gmail.com> Sat, 10 January 2026 10:56 UTC
Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: seat@mail2.ietf.org
Delivered-To: seat@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id EF83BA5C4785 for <seat@mail2.ietf.org>; Sat, 10 Jan 2026 02:56:59 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id P5L7XslzcdsP for <seat@mail2.ietf.org>; Sat, 10 Jan 2026 02:56:59 -0800 (PST)
Received: from mail-ej1-x62e.google.com (mail-ej1-x62e.google.com [IPv6:2a00:1450:4864:20::62e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 5BE7AA5C477E for <seat@ietf.org>; Sat, 10 Jan 2026 02:56:59 -0800 (PST)
Received: by mail-ej1-x62e.google.com with SMTP id a640c23a62f3a-b73161849e1so997740866b.2 for <seat@ietf.org>; Sat, 10 Jan 2026 02:56:59 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1768042618; x=1768647418; darn=ietf.org; h=mime-version:content-language:accept-language:in-reply-to :references:message-id:date:thread-index:thread-topic:subject:to :from:from:to:cc:subject:date:message-id:reply-to; bh=S+R7FgsOSKxgoz+gxqsJ5O6yeZ6NdkFJ/0U4fO2lRD4=; b=To2CNiEiYRqVtdJH/OWhDoFgmbaaopSOwXK34U+vbwUIvwrk+Aofzd+sJnleAkHU9b FJ7Gu+Hv9jaPAOD/6pH2ouB2QBM9ETiwIMkgoy1ytbfmKscIxTbO0Y98Y4gBAtTHFt7N egaP7v9xJN58xoFo3GsMoYkFeX3S8mBzBjFSqJKwpuCSs2iE1hNbuCJ9Z4kDSGTa8cXp HoIjWgTUuWAapTa1fKTTsJEBvztgW52hPkUMRhYWh5MwQDsHE2wKt31/jKkjLzpTs9/q XFpJTB5qa/uOsM2oCE20fOGStFxYBj5k2IXOdsjAf0bw9H3AXav/yrZm5nAeyHQkm1r5 i69w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1768042618; x=1768647418; h=mime-version:content-language:accept-language:in-reply-to :references:message-id:date:thread-index:thread-topic:subject:to :from:x-gm-gg:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=S+R7FgsOSKxgoz+gxqsJ5O6yeZ6NdkFJ/0U4fO2lRD4=; b=hnj325xJmlBsecCDSx4LC2oiYM85tXR58cTTYqQMJCHui2qZCivjO714XQT46SxDx+ K4NIt6J495jd6dGwC4t2Akut5JYAy0mB7byCqMMcASRiMXr3yYRrvOUCukeQ0VIEIfRp gb9l+nZYYkKrGg3axTa024zXrG882CCZaNNaeahGJYMQ7RzHp2EGAPtIr+ueCyIZz5E+ 6v/S/xfVL4FQlkwQ2lyhzJL3o4ltfDN39xRVs7rtDchCUDnq6sJ20DKa2/hxTL4Phl5o +axcnO+5JJTTPDk2OtufmQfnge+qQhthNten7D9676WvSXtL94Xj0n6Erll2J59je0hz uyOg==
X-Forwarded-Encrypted: i=1; AJvYcCXOS+e31M1ZmIiSRCz/G5QQmhhqpSNnc4bmPSh71GTlGmI+EXfpEfoYvaO7x+jFx31sPFsi@ietf.org
X-Gm-Message-State: AOJu0YxybPRgCo9XAjJOwwrDpLzhjrwESZwOUkOQVm7NnFlYKKx3xkWW jjb6bEwprjmRvtaSjFxaCzheBNadH3GWWsYUUnXUUkDHIp7uiHlya/z1T8uu6w==
X-Gm-Gg: AY/fxX6GqCQ1Hji+XNIayxmWcMcf9V/EpfvKlHw2d/DwzaXnnMMnkg6etBc+KNb9cfk SSOAr+SatULgfneIGm21Cen5RVZfPBN0OPmJndEfbIqDkuo6Va7+Gs1eEIOdHM1JLn6MmbH8Ib+ tZi7Zed8UzoPKXPswbyb63HYv41ERFYi5eS2CF+erDMbd0P0q9TyMvWnTPbvhLUxMT35SsVTNpE 5jBvF4IEmwainQY+sCwj1YcAzQ993biwbcFvbB7pdXVlvUtRqryD5F03EB1CVkRYpgm06sSNp9W 2hJQiiofRnhNbBMJn+uAt8Ngo0BvliwrCOmT4XxPHDGEheq35Gun9llJLgvjVVTCvetNzJgd2Vs 5EnZl/YyI56fPSFf7tPu5LLHuZgTxjCCHGml0qBPCO3u1Ho2JAar7lOmVe0ZOelUQRXfxs7/Axg zc+OKbvogqJGlhRfA0CjHOJL/CUxyOHRCTV04PNIbJ6DaX+Z7Id1uc/qMDaB+WTOtoOFwvP+5Ic way
X-Google-Smtp-Source: AGHT+IFcARH8zp893Wa5wuPeXrIAFRrL/bca4+rKa7E2S9hP0WsPiRjws3y7bzNWjQQFglUTzq0U6g==
X-Received: by 2002:a17:907:3e82:b0:b80:3738:2f11 with SMTP id a640c23a62f3a-b8445179ec3mr1262073866b.13.1768042617934; Sat, 10 Jan 2026 02:56:57 -0800 (PST)
Received: from FRWP195MB2764.EURP195.PROD.OUTLOOK.COM ([2603:1026:c0d:142f::5]) by smtp.gmail.com with ESMTPSA id a640c23a62f3a-b8701e1d467sm23031866b.70.2026.01.10.02.56.57 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Sat, 10 Jan 2026 02:56:57 -0800 (PST)
From: Yaron Sheffer <yaronf.ietf@gmail.com>
To: Eric Rescorla <ekr@rtfm.com>, "seat@ietf.org" <seat@ietf.org>
Thread-Topic: [Seat] draft-fossati-seat-early-attestation and the charter
Thread-Index: AUE5NDRfxNtvnvwUcfRIonS/VGf5qraR0miN
X-MS-Exchange-MessageSentRepresentingType: 1
Date: Sat, 10 Jan 2026 10:56:56 +0000
Message-ID: <FRWP195MB27644B41AA34B85158D6BEC1A983A@FRWP195MB2764.EURP195.PROD.OUTLOOK.COM>
References: <CABcZeBOrn_6_-2XB9e=48G0kq92-M4UAkPTsxOT9S2hVL452JA@mail.gmail.com>
In-Reply-To: <CABcZeBOrn_6_-2XB9e=48G0kq92-M4UAkPTsxOT9S2hVL452JA@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-Exchange-Organization-SCL: -1
X-MS-TNEF-Correlator:
X-MS-Exchange-Organization-RecordReviewCfmType: 0
x-ms-reactions: allow
Content-Type: multipart/alternative; boundary="_000_FRWP195MB27644B41AA34B85158D6BEC1A983AFRWP195MB2764EURP_"
MIME-Version: 1.0
Message-ID-Hash: JH36BIYMBA6VBZYSQ7XRJSD43DOIZFDE
X-Message-ID-Hash: JH36BIYMBA6VBZYSQ7XRJSD43DOIZFDE
X-MailFrom: yaronf.ietf@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Seat] Re: draft-fossati-seat-early-attestation and the charter
List-Id: "Secure Evidence and Attestation Transport (SEAT) WG" <seat.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/seat/i0lMvu6HIO3-2V6012Ix8NkifwI>
List-Archive: <https://mailarchive.ietf.org/arch/browse/seat>
List-Help: <mailto:seat-request@ietf.org?subject=help>
List-Owner: <mailto:seat-owner@ietf.org>
List-Post: <mailto:seat@ietf.org>
List-Subscribe: <mailto:seat-join@ietf.org>
List-Unsubscribe: <mailto:seat-leave@ietf.org>
Hi Eric, I fully agree with your specific point and the broader point you are raising: the charter was crafted specifically to preclude this kind of solution. Having said that, I believe a post-handshake solution for the SEAT use cases would require a re-development at the application level of both the TLS handshake message structure (which arguably is what RFC 9261 is doing), as well as the TLS record protocol. The latter IMO is needed if we are to provide freshness/re-attestation for long running connections. So even if a post-handshake solution can be made to work, I don’t think it’s the better option from either an engineering or a security perspective. Lastly, please read Sec. 3.2 of the draft [1] which tries to clarify why this proposal is logically an overlay on top of the TLS handshake rather than a change to it. In other words, even if the protocol fails to deliver on attestation, at worst our security reduces to a plain TLS handshake. Thanks, Yaron [1] https://www.ietf.org/archive/id/draft-fossati-seat-early-attestation-00.html#name-integration-into-the-tls-ha From: Eric Rescorla <ekr@rtfm.com> Date: Saturday, 10 January 2026 at 3:24 To: seat@ietf.org <seat@ietf.org> Subject: [Seat] draft-fossati-seat-early-attestation and the charter Hi folks, I took a quick look at this draft. I don't have an opinion about the security of the mechanisms defined in this draft, but it plainly violates the following clause in the charter: The attested (D)TLS protocol extension will not modify the (D)TLS protocol itself. It may define (D)TLS extensions to support its goals but will not modify, add, or remove any existing protocol messages or modify the key schedule. This draft adds a new message (Attestation) and extends the key schedule. More broadly, the point of this text in the charter was to draw a clear boundary between this WG and TLS proper, which means that you need to restrict yourself to the normal TLS boundaries, in this case extensions and exporters. -Ekr
- [Seat] draft-fossati-seat-early-attestation and t… Eric Rescorla
- [Seat] Re: draft-fossati-seat-early-attestation a… Yaron Sheffer
- [Seat] Re: draft-fossati-seat-early-attestation a… Eric Rescorla
- [Seat] Re: draft-fossati-seat-early-attestation a… Muhammad Usama Sardar
- [Seat] Re: draft-fossati-seat-early-attestation a… Michael Richardson
- [Seat] Re: draft-fossati-seat-early-attestation a… Muhammad Usama Sardar
- [Seat] Re: draft-fossati-seat-early-attestation a… Eric Rescorla