IETF Logo Mail Archive

Re: [Suit] Packed CBOR

Brendan Moran <Brendan.Moran@arm.com> Thu, 30 July 2020 16:22 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D66FB3A0BD4 for <suit@ietfa.amsl.com>; Thu, 30 Jul 2020 09:22:49 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=cAKt1tHx; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=cAKt1tHx
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q7RWrZ-1VeXC for <suit@ietfa.amsl.com>; Thu, 30 Jul 2020 09:22:47 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50045.outbound.protection.outlook.com [40.107.5.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6408D3A0BCB for <suit@ietf.org>; Thu, 30 Jul 2020 09:22:41 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I8gT00lL20iHwYrO8zNO5KKp5VEGcarAve0ADUFVSX8=; b=cAKt1tHxqYJj6oi9kvYy70JfzNao+wQRlfm+DHvjV1Dy1V/SZTzURByt4gdh3bbvv9IXz/dQyUu6SWVCjgzqH+14MJJs+mkkpo6692zgUVVuafQ73AeOrPJJKxiFKzVWidYU/J1xTdwfUirnpzIgVtc233X7OBTYSGls8yi/nH0=
Received: from AM6P193CA0135.EURP193.PROD.OUTLOOK.COM (2603:10a6:209:85::40) by HE1PR0802MB2201.eurprd08.prod.outlook.com (2603:10a6:3:cc::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.17; Thu, 30 Jul 2020 16:22:38 +0000
Received: from AM5EUR03FT054.eop-EUR03.prod.protection.outlook.com (2603:10a6:209:85:cafe::7c) by AM6P193CA0135.outlook.office365.com (2603:10a6:209:85::40) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.17 via Frontend Transport; Thu, 30 Jul 2020 16:22:38 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=bestguesspass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by AM5EUR03FT054.mail.protection.outlook.com (10.152.16.212) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.17 via Frontend Transport; Thu, 30 Jul 2020 16:22:38 +0000
Received: ("Tessian outbound 7de93d801f24:v62"); Thu, 30 Jul 2020 16:22:38 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 70d19e87e39f2559
X-CR-MTA-TID: 64aa7808
Received: from 88db9690cb09.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id EA4F77CB-D583-4006-8816-F5ABD94BE95B.1; Thu, 30 Jul 2020 16:22:33 +0000
Received: from EUR04-HE1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 88db9690cb09.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Thu, 30 Jul 2020 16:22:33 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=OnSMjhtZi6w8OyZJUCTp337K7NjYTfEDIFPGFFpzjqNX6Q0wgugtaYpUxwUmi2m4/N/wIr3MzAqqXEGe6iSNgY5QnIwIiWPZrLZyWdXqzCGh2pRwBd1x5JhcfARb9ars+rMS3Tc6UsJ0ReNWpmuJm+dAdv3SRrS43/r6S8ElXAXEjwzRqe4oi7RNUoUcns3K0853SkZQ/bbFKFMZrkatvmMV7JTVCXDPsdu1MpBWUhfqu/ElfszNanygrD/ihwvDNDaq8eYYizz65UwUoaJQVLA7fxr31WnKJd2grpCfBmC6O0Hpz0iVS/EojCU/IDdXQmT+O9L4KnqO/LojXUxVvw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I8gT00lL20iHwYrO8zNO5KKp5VEGcarAve0ADUFVSX8=; b=LpCP6OBpLbRrFpHmZY3+c4EZ5nOHvmlzLNPxm1SanhpONzATTv1ZMFdkgBTuBgJFFm7Kgi/mVF+mbbP775ZDMCRrC9Fye/06v9kB80tjb4wuWK7F5BBAAEhOH7fzvoiiCldlK1pTot5d/xn+AUmc5KYL2VxnMAlHWvvraVeDqc2pboFjhvQMcWj76lV/uHVxFL7BM9QtR8ZQ5+RXEXhl9Gy1d1IKwM6aitJ732lrYuI7SzJ2p0wku5Hvu5E1CzjsRnQbAaAblnV5DhrlF2+goCeGyPOL6yawpfOAUmNNVsUnw8/5r5EF7aMTMEFkIkgoMvi+YwkWubxhbp+vyiDpZw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=I8gT00lL20iHwYrO8zNO5KKp5VEGcarAve0ADUFVSX8=; b=cAKt1tHxqYJj6oi9kvYy70JfzNao+wQRlfm+DHvjV1Dy1V/SZTzURByt4gdh3bbvv9IXz/dQyUu6SWVCjgzqH+14MJJs+mkkpo6692zgUVVuafQ73AeOrPJJKxiFKzVWidYU/J1xTdwfUirnpzIgVtc233X7OBTYSGls8yi/nH0=
Received: from AM6PR08MB4738.eurprd08.prod.outlook.com (2603:10a6:20b:cf::10) by AM6PR08MB4659.eurprd08.prod.outlook.com (2603:10a6:20b:ca::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.20; Thu, 30 Jul 2020 16:22:32 +0000
Received: from AM6PR08MB4738.eurprd08.prod.outlook.com ([fe80::a98d:5ebe:dc1d:ea56]) by AM6PR08MB4738.eurprd08.prod.outlook.com ([fe80::a98d:5ebe:dc1d:ea56%3]) with mapi id 15.20.3239.019; Thu, 30 Jul 2020 16:22:31 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Russ Housley <housley@vigilsec.com>
CC: suit <suit@ietf.org>
Thread-Topic: [Suit] Packed CBOR
Thread-Index: AQHWZoiO2IezD+kKR0iv+w6UW9kVfqkgSLSAgAAFeoA=
Date: Thu, 30 Jul 2020 16:22:31 +0000
Message-ID: <8F44F248-5181-487F-85BF-A1DCB5037428@arm.com>
References: <7C066E44-8C55-4229-993A-28FD0572992B@arm.com> <7A2CA643-5784-428A-8771-08BAC9CA7D0E@vigilsec.com>
In-Reply-To: <7A2CA643-5784-428A-8771-08BAC9CA7D0E@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3608.80.23.2.2)
Authentication-Results-Original: vigilsec.com; dkim=none (message not signed) header.d=none; vigilsec.com; dmarc=none action=none header.from=arm.com;
x-originating-ip: [82.20.19.206]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 6f4f7c52-bb0e-4de2-14b2-08d834a4c698
x-ms-traffictypediagnostic: AM6PR08MB4659:|HE1PR0802MB2201:
X-Microsoft-Antispam-PRVS: <HE1PR0802MB2201E7E601751C8EA32D984EEA710@HE1PR0802MB2201.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:10000;OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: CSgEJPy4eHd6Ll0qbFKJ6M+U25kgUnYHT+C8Yt9dRt9B0bXg8dliyVjgn4DPYiRUCz5trUfqsowfp6s0M0/7LioUFOSdA87Ol5tekHC/SmpDroNp0wDG6nN1n/PDp5mSRtYppr4h3E5sOBd4FnoY+p411wvt3emH2RVYT849kCw0Jmqk2A1gItZCFtmxpbn2NOfXqVAwbLPQYaxh0rF/JpvUsso/eNbH/0+ctaw/aorEvxeBGKXMd7+Dw8kSPqd3v7RF/JIJ3fqLfxF0IoT+vqgMz2tYxO2gOvh/YxbuibhNCEuCch00WTiHxa2LIzOubyMa5qQ0lrdfjK551b5dOnJzJsXA0oBETSanVluFQEXL2f12LmSAXEYncGAlhj0kwB7XhK8+UuyU3csQzS3iXQ==
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM6PR08MB4738.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(366004)(376002)(39860400002)(346002)(136003)(396003)(966005)(8936002)(5660300002)(478600001)(8676002)(71200400001)(4326008)(6512007)(66446008)(64756008)(83380400001)(66556008)(33656002)(76116006)(91956017)(86362001)(66946007)(186003)(2616005)(316002)(26005)(66476007)(53546011)(36756003)(2906002)(6506007)(6486002)(6916009); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: Kk/04qIC1wJzNdhYtCGD6mSePl3g3rXOhUfcha4CCQO1eG95g8mppGcmGxaSNOuE3zuwd45lbcvOy7iOUKgplBvvhu5TwtxbUX+4/eKWKMNL5PYKYhrnMMZfIvUrhdLEORXITsLoT4e8VR5k1nh9nCK1fHdbwQlQZhvi1AxQmbX/CHXBsBUq4bsOYR7d4rKDvBUu2JBiFjuNfItSn1fnbpdVFalXwcTMMuTRb0RBmgyo8RvUhhA43ElHiqnRI+sJ0lw7mchL5MHqM5DifnR88buG4RutgdGfYxJHVmsNjk6JcOGf7H+a3NDF14Rdn2RJYnq4OQsDvr4yun+1iGDUVBg1oPolSeJWl5edOlCUAx8qW/jO4nZeU4kmbSHtcFYOjKt09GRNzJ3OL51v5wrJ9enPlNWE6N/zJwNpCDs/d5IbxXh6LeGEAJT2aSxjigrNsuha1zFar6RO8/8EcE0iEBIFgs5tT7TCdvHS17DBu3iRR1aS2V0waYwtRTXPZBk7OAncgcWhMGHBmBSfSY1ZDKeyqQad9gkgtGWspuIHmrBzHJkkl+E87patP7WuxaeNhmGMYImKas5WQRJIjfoIqxXxib0CKYqnJ32i4wfEbXwWVvjo14/7nWPCO8HSCn+em6hMS+hpuyX7TqG1oJJ/6Q==
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <511DC5B848ADE1478A61EA0EA66E87F2@eurprd08.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR08MB4659
Original-Authentication-Results: vigilsec.com; dkim=none (message not signed) header.d=none; vigilsec.com; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM5EUR03FT054.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: 7a8d1202-ecd7-4572-34ec-08d834a4c2c5
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: r77qM2j3sy1qD3MIu/n4suZor1vcm3nwBDjZ/GxrUdqeMI2Epg2tK0SGXxvV4nJrIoK4+AhWyvigCWfKT9LKm9avBSTvNHUAvEjDV0g+Mwz6+Jk+uATlmYJOIQ0/PlL4Vgr39HpxhvuUR7BIuVN/B+T2dZLMcbBN8Ue25OuqLCkx0tlQDX0tnRG7xDTXAFGsc0WeJR0hxExxtJqCnjBPT9JJCefIU7kos/1WVjJKKJrvHZIMwmagu1NDEm8gZX2Yuse6rfbyne0drKqUKR6A5A/VmcKr/TSH8Fxw4HUurgBm3ZlHq0xWPXrdv2L0zcZRLTzMQQAzGlchdXh1o0Cts+Jz+tw6P99C6NInl5tPQsY5jCG73A+jwPkFcO4X3XM5cMUcl9c2eLBdt70/1c73AOJEBlN3rEBlsLplVGwg19a6W1Pxg3iIV0nRJtLmla6XvOCH+lrqWsYBh7TwGday50WHIzHQzpw/rmWocuZmQvs=
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFTY:; SFS:(4636009)(39860400002)(376002)(396003)(346002)(136003)(46966005)(316002)(5660300002)(6512007)(86362001)(4326008)(8936002)(33656002)(2616005)(356005)(83380400001)(53546011)(6506007)(478600001)(336012)(82740400003)(82310400002)(186003)(966005)(6862004)(8676002)(6486002)(36756003)(36906005)(70586007)(70206006)(2906002)(81166007)(26005)(47076004); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Jul 2020 16:22:38.3421 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 6f4f7c52-bb0e-4de2-14b2-08d834a4c698
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: AM5EUR03FT054.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0802MB2201
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/5cHrxfHi6gX7xBJCMevPaKw76jw>
Subject: Re: [Suit] Packed CBOR
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jul 2020 16:22:50 -0000

Hi Russ,

I really don’t know. I’m not sure if Carsten would have input on that point yet. Of course, if we adopt it, it will force me to support it in my pull parser!

Brendan

> On 30 Jul 2020, at 17:02, Russ Housley <housley@vigilsec.com> wrote:
>
> Brendan:
>
> Perhaps it is too early to say, but is this CBOR-based dictionary compression scheme likely to be widely supported in CBOR libraries?  To me, the answer to that question weighs heavily on the preferred way forward.
>
> Russ
>
>> On Jul 30, 2020, at 11:46 AM, Brendan Moran <Brendan.Moran@arm.com> wrote:
>>
>> On Monday, Carsten presented Packed CBOR (draft-bormann-cbor-packed-00) at the CBOR working group, which adopted it. This is an extension to the CBOR standard (RFC7049) that enables “packing” of CBOR objects using a CBOR-based dictionary compression scheme.
>>
>> If this had been in draft 18 months ago, the SUIT manifest would have used it instead of the “common” block. The common block is a de-facto packing mechanism that would be largely supplanted by packed CBOR. It simplifies many of the schemes that SUIT already uses and makes the manifest more compact besides.
>>
>> If we were to adopt it now, this would cause two substantial changes in SUIT:
>>
>> 1. Removing several existing SUIT deduplication mechanisms.
>> 2. Placing a dependency on draft-ietf-cbor-packed-00.
>>
>> Both of these would delay SUIT.
>>
>> It would have benefits:
>>
>> 1. Simplify the manifest structure (complexity moved to packed cbor)
>> 2. Make the manifest smaller
>>
>>
>> I see several options ahead of us:
>> 1. Make no change, apply packed CBOR as and when it makes sense.
>> 2. Make no change now, but plan for a v2 SUIT manifest draft
>> 3. Adopt packed CBOR & simplify manifest now.
>>
>> Option 1 is somewhat problematic in that it splits the ecosystem we’re trying to create. Option 2 does the same, but provides more benefits. 2 is arguably more detectable, since it’s easier to report manifest v2 support, than to report support for a specific CBOR tag within the SUIT Manifest Processor.
>>
>> Option 3 delays SUIT both for updates to SUIT itself, and for the dependency on draft-ietf-cbor-packed-00.
>>
>> If it weren’t for the delays, I’d go for Option 3. With the delays, I’m not sure what the right answer is. 1 & 2 fracture the ecosystem of updatable devices into “haves” and “have nots.”
>>
>> I plan to discuss this tomorrow at the SUIT meeting.
>>
>>
>> Best Regards,
>> Brendan
>> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
>> _______________________________________________
>> Suit mailing list
>> Suit@ietf.org
>> https://www.ietf.org/mailman/listinfo/suit
>

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email