Re: [lamps] Two comments on draft-ietf-lamps-key-attestation-ext
Thomas Fossati <Thomas.Fossati@arm.com> Sun, 08 January 2023 20:12 UTC
Return-Path: <Thomas.Fossati@arm.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 59AB6C14F746; Sun, 8 Jan 2023 12:12:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=VqV1F7kn; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=VqV1F7kn
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id U2LVzCKlAgWY; Sun, 8 Jan 2023 12:12:22 -0800 (PST)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2081.outbound.protection.outlook.com [40.107.22.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9766FC14F727; Sun, 8 Jan 2023 12:12:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=S54zi6N+qvvpLUDeAZ0YBJ3I2/YjFao8TNec3kEDaCA=; b=VqV1F7kn0bQ8f2ausXw9gP4IJ709AsEdfznDd7hPWhU5ZvE6LeH7UpwWVDTg6/6WJestdac1q7LBUgTIV1KCd7GJcG+itaLn/g6G70iqI4fxjJ0OihmHTlJQvn8HuSaSbOvHgHqHIxjg+06gw3wDYXAJyQi3dFj0mMfTp35JhRQ=
Received: from FR3P281CA0053.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:4a::6) by DB9PR08MB8578.eurprd08.prod.outlook.com (2603:10a6:10:3d5::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5986.18; Sun, 8 Jan 2023 20:12:17 +0000
Received: from VI1EUR03FT017.eop-EUR03.prod.protection.outlook.com (2603:10a6:d10:4a:cafe::f7) by FR3P281CA0053.outlook.office365.com (2603:10a6:d10:4a::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6002.11 via Frontend Transport; Sun, 8 Jan 2023 20:12:17 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com; pr=C
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by VI1EUR03FT017.mail.protection.outlook.com (100.127.145.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5986.18 via Frontend Transport; Sun, 8 Jan 2023 20:12:17 +0000
Received: ("Tessian outbound b1d3ffe56e73:v132"); Sun, 08 Jan 2023 20:12:17 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 8dd101220ca711e1
X-CR-MTA-TID: 64aa7808
Received: from 55d3bc674c99.2 by 64aa7808-outbound-1.mta.getcheckrecipient.com id F12120D2-3E72-4511-AEBA-8B7499BF1CD1.1; Sun, 08 Jan 2023 20:12:10 +0000
Received: from EUR04-DB3-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 55d3bc674c99.2 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Sun, 08 Jan 2023 20:12:10 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=hiINFTywdYndxoZxwVpsMURmssKX6wSHt5wcpw0rCyd4D3Ua/GWPU1aktUDF7T+OemnIJmi/7KAZs3i7/Q2NC4ePSQtivc76+JO5meEfIBN8E+X9WDcP7RG22k3SVCJzyv1lA+7skz4000BRRkfXRkf0pBjVeQavLwHJ1K62kSf4nj9sGeP6m93Tib3yyr9k8CJ+iC0D7uYapEA26GYaDLWsexh3w3N6WZWgJczyeLAhHaThoUxa/QRQdenwW59F1IG5SGPFCCfizMuMIiLWuib+lymeqYbwEyXPaIGVjXk88lv4EDXCeBN+LbUsKT4V/NOr/qAQAEzA5iIr1WQI1w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=S54zi6N+qvvpLUDeAZ0YBJ3I2/YjFao8TNec3kEDaCA=; b=dX08kx0C9QpNhTm+aMd6r5z6IiL/nPp0uLEo4znw4oycmem+ycCvTOy8B7B2LH/CgttMOHmer5gw4yM3NviSmtMCjOlEFDPvz50MQlI1G7asDu+Kte2YHN1ZfmlDgoj++q9JcGIECAafNv9ZtqSgZuCdv2GI40K8nSqvE5NyxAbBkS05kBc19COFa4dgeQMDrbTH1bJoN8VOgpaoxyd6SW4tFZDVyLVLj/hY9fRoamq/SxeseITAsq18gbeiloAx2VLFhxaQ0EwP41tGqnpZD5ZjNO56WUZBk9kmC7/2LpLDlUQgl50oXLzZKvcRUsc4GY69k+mQkd7yzxx9StJOPg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=S54zi6N+qvvpLUDeAZ0YBJ3I2/YjFao8TNec3kEDaCA=; b=VqV1F7kn0bQ8f2ausXw9gP4IJ709AsEdfznDd7hPWhU5ZvE6LeH7UpwWVDTg6/6WJestdac1q7LBUgTIV1KCd7GJcG+itaLn/g6G70iqI4fxjJ0OihmHTlJQvn8HuSaSbOvHgHqHIxjg+06gw3wDYXAJyQi3dFj0mMfTp35JhRQ=
Received: from DB9PR08MB6524.eurprd08.prod.outlook.com (2603:10a6:10:251::8) by PAVPR08MB9604.eurprd08.prod.outlook.com (2603:10a6:102:31b::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5986.18; Sun, 8 Jan 2023 20:11:59 +0000
Received: from DB9PR08MB6524.eurprd08.prod.outlook.com ([fe80::e715:bfac:5ba3:22ee]) by DB9PR08MB6524.eurprd08.prod.outlook.com ([fe80::e715:bfac:5ba3:22ee%3]) with mapi id 15.20.5986.018; Sun, 8 Jan 2023 20:11:59 +0000
From: Thomas Fossati <Thomas.Fossati@arm.com>
To: Russ Housley <housley@vigilsec.com>
CC: LAMPS <spasm@ietf.org>, "draft-ietf-lamps-key-attestation-ext@ietf.org" <draft-ietf-lamps-key-attestation-ext@ietf.org>
Thread-Topic: [lamps] Two comments on draft-ietf-lamps-key-attestation-ext
Thread-Index: AQHZFW2mv8XeWoZFtUKWFVmq7k+jN656UrOAgBqw9+s=
Date: Sun, 08 Jan 2023 20:11:37 +0000
Message-ID: <DB9PR08MB6524052D3EDB549F4B200AE49CF99@DB9PR08MB6524.eurprd08.prod.outlook.com>
References: <DB9PR08MB652423A4D0BA4C58C9A08ECD9CEB9@DB9PR08MB6524.eurprd08.prod.outlook.com> <8A6BE5AB-0FC4-4266-AC3F-45EE9C6CE8F9@vigilsec.com>
In-Reply-To: <8A6BE5AB-0FC4-4266-AC3F-45EE9C6CE8F9@vigilsec.com>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Authentication-Results-Original: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
x-ms-traffictypediagnostic: DB9PR08MB6524:EE_|PAVPR08MB9604:EE_|VI1EUR03FT017:EE_|DB9PR08MB8578:EE_
X-MS-Office365-Filtering-Correlation-Id: 7c4c9a34-9cd6-4f37-f8fd-08daf1b4a419
x-checkrecipientrouted: true
nodisclaimer: true
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB9PR08MB6524.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230022)(4636009)(136003)(346002)(366004)(39850400004)(396003)(376002)(451199015)(5660300002)(4744005)(8936002)(52536014)(9326002)(41300700001)(6916009)(54906003)(2906002)(83380400001)(38070700005)(91956017)(8676002)(76116006)(66476007)(316002)(66556008)(66446008)(66946007)(64756008)(4326008)(33656002)(71200400001)(7696005)(26005)(9686003)(186003)(478600001)(6506007)(53546011)(6666004)(86362001)(55016003)(122000001)(38100700002); DIR:OUT; SFP:1101;
Content-Type: multipart/alternative; boundary="_000_DB9PR08MB6524052D3EDB549F4B200AE49CF99DB9PR08MB6524eurp_"
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAVPR08MB9604
Original-Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: VI1EUR03FT017.eop-EUR03.prod.protection.outlook.com
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id-Prvs: ce57fb20-0686-4872-83f1-08daf1b49961
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(13230022)(4636009)(136003)(346002)(396003)(39850400004)(376002)(451199015)(36840700001)(46966006)(53546011)(356005)(81166007)(41300700001)(6666004)(9686003)(186003)(9326002)(83380400001)(6862004)(82740400003)(8676002)(4326008)(52536014)(6506007)(70586007)(70206006)(8936002)(450100002)(478600001)(5660300002)(336012)(7696005)(47076005)(316002)(26005)(33656002)(54906003)(36860700001)(2906002)(82310400005)(55016003)(40480700001)(86362001); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 08 Jan 2023 20:12:17.4044 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 7c4c9a34-9cd6-4f37-f8fd-08daf1b4a419
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: VI1EUR03FT017.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9PR08MB8578
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/LKhbvNVCzsvkqTcOCGg41fts904>
Subject: Re: [lamps] Two comments on draft-ietf-lamps-key-attestation-ext
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This is a venue for discussion of doing Some Pkix And SMime \(spasm\) work." <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 08 Jan 2023 20:12:26 -0000
Hi Russ, thanks for the super quick reaction, and sorry for my sluggishness in coming back to you. On 22/12/2022, 19:52, "Russ Housley" <housley@vigilsec.com> wrote: > Thomas: > > I think you are asking for a CMS Content Type OID for Conceptual > Message Wrapper. I'm wondering if two OIDs would be better, one for > JSON encoding and one for CBOR encoding. I am not sure that adding an external discriminator in the form of an OID is necessary because the receiver can peek the first byte to decide the type of the received CMW: switch b[0] { case 0x82: return CBORArray case 0xda: return CBORTag case 0x5b: return JSONArray } cheers, thanks! -- IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [lamps] Two comments on draft-ietf-lamps-key-atte… Thomas Fossati
- Re: [lamps] Two comments on draft-ietf-lamps-key-… Carl Wallace
- Re: [lamps] Two comments on draft-ietf-lamps-key-… Russ Housley
- Re: [lamps] Two comments on draft-ietf-lamps-key-… Thomas Fossati
- Re: [lamps] Two comments on draft-ietf-lamps-key-… Thomas Fossati
- Re: [lamps] Two comments on draft-ietf-lamps-key-… Carl Wallace