Re: [Suit] SUIT rechartering: proposed text
Dave Thaler <dthaler@microsoft.com> Sat, 24 July 2021 17:33 UTC
Return-Path: <dthaler@microsoft.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A56B33A4393 for <suit@ietfa.amsl.com>; Sat, 24 Jul 2021 10:33:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.553
X-Spam-Level:
X-Spam-Status: No, score=-2.553 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r3KSTELieMQp for <suit@ietfa.amsl.com>; Sat, 24 Jul 2021 10:33:26 -0700 (PDT)
Received: from NAM04-BN8-obe.outbound.protection.outlook.com (mail-bn8nam08on2125.outbound.protection.outlook.com [40.107.100.125]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CC8223A4391 for <suit@ietf.org>; Sat, 24 Jul 2021 10:33:25 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=gv+iiYmTooMInD29dkFsuJ58EKBQioVYCcy5scqX0pAp8Ryc/6PzqzObYXosB3SoMWep0KxvzdJ/Yj56+AD/A431IfWkQ8vfKGyBGXY9hNY5LFAXzWb6fIL7FpB84FhOynksZ2FuS7CXp0q/IhhmOjndVf23fgTyuXXEerCMhYrF9U7tFbi4iZdqjl5Gj3t7eXr2Y5J1i4vWmfaGO1hfi4o814WEL8I/QFr/ZcUQhuVwzZPQgkG58kvud+2ubqLQYcSwnL5rmqvhRdz6QysaOW6/J+ppuprI2EmAbshczjx3CY8ttff7fTRKF6UoVYB80T9GBG4WCWGkFyHFLpuc1w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=id3fmX9zbJ+sJ74UPg60lYkm/Q4FOnPhtTuWHgi3FoE=; b=U2G2EB2wobGGD8n/L9RCWWDYTuY74/6OpbzyayNJE6s7Cw72ZFW+rtHKlqYuBC8sImI+82CnBOBJdL3B21oQiXX9NEwGVlTX7h4xmsMbvSa+O35xf2ouMm8uMvi+fx4eis3inl4GzuhuK3xFnr27mPABN7X+sIl6/k7VKeKoWI9iVMp00KynUalu2iXTguNv4ZKSb+m37CICoYrFTShebz2qVCkD0M06KdnO23k2jq9ZSsUxaKc0nPSQV7xy6lzdYfGG2f7kcH2dx7QB8B+aoDCGd6M1TvGh5Saw1rmnQj3prLHmSGKnJD+CdhMkZaGEVaKGvlJ3n8tF6h6OdT9NMg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=id3fmX9zbJ+sJ74UPg60lYkm/Q4FOnPhtTuWHgi3FoE=; b=H3WZCwfPcgtnKj7md25I7a7b4g1E9KTNaCJrE15F9UTWFxjFBUqKm/jyiJqQSx+uIyelR40oBIteN+ETajQRBWAA+TReVZwqN2Bx0eDSj5u9PJQG4dKGJe/usm+anpCgIuCj/IPS5QY02aMpJ2ZhsKhHUK7Lq/sdim5CpAGOD3g=
Received: from MW2PR2101MB0938.namprd21.prod.outlook.com (2603:10b6:302:4::11) by MW2PR2101MB1820.namprd21.prod.outlook.com (2603:10b6:302:b::32) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.6; Sat, 24 Jul 2021 17:33:20 +0000
Received: from MW2PR2101MB0938.namprd21.prod.outlook.com ([fe80::eca0:5b8d:2e87:775f]) by MW2PR2101MB0938.namprd21.prod.outlook.com ([fe80::eca0:5b8d:2e87:775f%7]) with mapi id 15.20.4373.014; Sat, 24 Jul 2021 17:33:20 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: Michael Richardson <mcr@sandelman.ca>, Russ Housley <housley@vigilsec.com>, suit <suit@ietf.org>
Thread-Topic: [Suit] SUIT rechartering: proposed text
Thread-Index: AQHXBIFCYdPbq2i4MU2UU0mwBdcWBqpbCE+AgABX+ACA5UScAIAAD0qAgABJdoCABbIAYIAGOtmAgATJPsCAABq0AIABWa2AgAAx5tA=
Date: Sat, 24 Jul 2021 17:33:20 +0000
Message-ID: <MW2PR2101MB09383B94FA647B1867EF2C3DA3E69@MW2PR2101MB0938.namprd21.prod.outlook.com>
References: <66D84CE5-22E6-44F0-8239-8A5832326219@arm.com> <3E7D5E5B-03EE-4EDD-A951-FB119F72DDE8@arm.com> <16339.1613515194@localhost> <E4B87013-1498-463F-98C0-5FF13344C3EA@arm.com> <6FC3F38A-B067-4180-ACD9-A121162EA459@vigilsec.com> <26718.1626138395@localhost> <MN2PR09MB4841BA0A0CC978E70A09A509F0119@MN2PR09MB4841.namprd09.prod.outlook.com> <67F117E7-28F2-45F3-BC4C-AC8116BCB69F@vigilsec.com> <SN6PR2101MB0943178F1E627E78A1343AE8A3E59@SN6PR2101MB0943.namprd21.prod.outlook.com> <50B65F80-808D-4591-9D4D-2346796DA204@vigilsec.com> <8988.1627137075@localhost>
In-Reply-To: <8988.1627137075@localhost>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=711961e7-14ea-4004-9554-35103bf0c71a; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2021-07-24T17:29:50Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 22a23019-e3f2-467e-d4a9-08d94ec92148
x-ms-traffictypediagnostic: MW2PR2101MB1820:
x-microsoft-antispam-prvs: <MW2PR2101MB182023031EA85A9ADABCBE8BA3E69@MW2PR2101MB1820.namprd21.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: c1AzmFN/tuU8sobW2OLETloRLCtLAc42M34g6R/5+3M6OXkote+fBtwjBdOsCy036PWfWrT39NcWgIeO3mnSlNkkqFDmEsIM+Zjol1n32mcXhaLzIkHYG7x6O6HsmNrnIlSC6GZ7ztL+OEkKHvNVnzDc9GeJ1A+dto1byugBNJN+nFlWeagmicpxgCPS/nfiUvG6/l1ls6kqUE2NFp0gXuGfAA72gPxI602k2GankxMVeWGvWf+DXdV96eyPA7n4yhhDTJmGvtNMjt5mgvquRXhMD+AzWLkeLB5WphUIk+NfhT9bijKHrM9dE6ZrjNfEXFGsbsVptRFxC2j+xTZga8nsfLpC26FOLs7ra7RcDwkWLqBmRuoF2hidqyij+Ucs2SCPzTAxmVcJir8pMNURlW02jMIkr6Ad2b4qAa4755UqqYRbfi5cU+jwLNAB6wDdJhbCZrZZ6wK9iSzbmxrMJYgCihcY7JigvdPDbnzGRqKuv1G/34FJnbNK+UEeJi6YBFTsSI2AoVdfzozwQKae5AukRRdJBH3ibgnQY9UvP1czKi5h0bZXdznQ4QHwJO2gG/JFMmCnssB4tcznqC6pgQLiZybdX/Pog/P6cgNnqIFwZ7aXy/l7W8JNWKECEaXZ+/bar7Simuha8l2xNy0fA3MrqD5auoDDu8HlWLwtInBByZ86e412IRKvnzJol1HxZXq9py2OqE4OMFdKiWe0zA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MW2PR2101MB0938.namprd21.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(8990500004)(26005)(33656002)(508600001)(7696005)(10290500003)(38100700002)(76116006)(8676002)(110136005)(55016002)(8936002)(316002)(71200400001)(52536014)(9686003)(66946007)(66476007)(122000001)(66446008)(86362001)(66556008)(64756008)(83380400001)(5660300002)(186003)(4744005)(82960400001)(82950400001)(2906002)(6506007)(38070700004); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MW2PR2101MB0938.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 22a23019-e3f2-467e-d4a9-08d94ec92148
X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Jul 2021 17:33:20.2210 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: ornjX1NwhLu9LcXv2vZupDKqCozXn/uTS2A3y1O87doyDvfHV2ofOh267D2JAxeFNyzaRR/e5bhJq6MXm73poriiMyB+DTK43RphaqU3njc=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW2PR2101MB1820
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/1s1gvdEuLVOkXHCrdA9r7OR2Yk8>
Subject: Re: [Suit] SUIT rechartering: proposed text
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Jul 2021 17:33:31 -0000
Michael Richardson <mcr@sandelman.ca> wrote: > > ... > > * A secure method for an IoT device to report on firmware update > > status. > > That sounds like it would definitely solve the issues that Brendon has been worried about. > > > * A set of claims for attesting to firmware update status. > > So, how do the two points/goals differ? > > I can think of ways to securely report firmware update status that do not involve attesting, but if you do attesting (b), then you definitely do (a), right? You can attest to current state without attesting to the errors that happened the last time you tried to install something. (If the errors happened during boot then they may be reported, but post-boot install errors might not be.) And as you mentioned, you can report status (and errors) without attesting. So I think they're complementary items that will often but not always be used together. Dave
- [Suit] SUIT rechartering: proposed text Brendan Moran
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Brendan Moran
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Waltermire, David A. (Fed)
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Waltermire, David A. (Fed)
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Brendan Moran
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Ira McDonald
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Dave Thaler
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Roman Danyliw
- Re: [Suit] SUIT rechartering: proposed text Roman Danyliw
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Michael Richardson
- Re: [Suit] SUIT rechartering: proposed text Roman Danyliw
- Re: [Suit] SUIT rechartering: proposed text Roman Danyliw
- Re: [Suit] SUIT rechartering: proposed text Russ Housley
- Re: [Suit] SUIT rechartering: proposed text Roman Danyliw