IETF Logo Mail Archive

Re: [Suit] suit-firmware-encryption-00

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Mon, 31 May 2021 19:47 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E30F3A2439 for <suit@ietfa.amsl.com>; Mon, 31 May 2021 12:47:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=CPsBBVkl; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=CPsBBVkl
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sWK9l-JYijwH for <suit@ietfa.amsl.com>; Mon, 31 May 2021 12:47:31 -0700 (PDT)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140058.outbound.protection.outlook.com [40.107.14.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D73EF3A2419 for <suit@ietf.org>; Mon, 31 May 2021 12:47:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xxiH3Ej48oZY63U//u/Vhy5SsI6d/SVpygySyTi7nhc=; b=CPsBBVklHbOQepKzTmSAw/acfNSvWmQMyahTG/dxS31zOTdyO5SvKGeOZgRGKuE+Omx3r6UW0uZs+soH5pGBQ5yz4CFRi+8PFiIgy63re71/lkjlygZligdEDqdTohfUuhdbjQHcdd35FfoO22Xt3EL01Qrkc2ROBmVAcfYn6y4=
Received: from DB6PR07CA0056.eurprd07.prod.outlook.com (2603:10a6:6:2a::18) by AS8PR08MB6694.eurprd08.prod.outlook.com (2603:10a6:20b:39e::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4173.26; Mon, 31 May 2021 19:47:27 +0000
Received: from DB5EUR03FT003.eop-EUR03.prod.protection.outlook.com (2603:10a6:6:2a:cafe::5c) by DB6PR07CA0056.outlook.office365.com (2603:10a6:6:2a::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4195.9 via Frontend Transport; Mon, 31 May 2021 19:47:27 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by DB5EUR03FT003.mail.protection.outlook.com (10.152.20.157) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4150.30 via Frontend Transport; Mon, 31 May 2021 19:47:27 +0000
Received: ("Tessian outbound f02dc08cb398:v93"); Mon, 31 May 2021 19:47:27 +0000
X-CR-MTA-TID: 64aa7808
Received: from 4b63c7103316.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id FF70727C-B671-4723-965B-795FD989F7D9.1; Mon, 31 May 2021 19:47:21 +0000
Received: from EUR01-DB5-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 4b63c7103316.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Mon, 31 May 2021 19:47:21 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jLTnX9HaXR1PAaG6d/ZNj+WSzbskqPjnSHSAkc1JGdN4VLy/EWkS96y7/qLmJIffKztNvZA4vttoZ7o6AkFr6ODDRSns6kwWyujsSZ0ixoLGlfe7O4MnToU79ISI6Ivb1Iwku+hmbIlcKq7oOCNr6ZWHr8oHyndA0Gj8x7ZiD+cNncBKDxfEZyblYVafFHghRqMfrowp5KmZoO0NzIJK1n8SAqdlIBchvaYv2x8MFAEsNsL42oJ09h4uA6Qce4fVzHcDCwT27FzjXbxDl+OkiCHL8+e8mM8wxHR82Z1QmQuorJ727vkEBrF0Dp8y9QoSiROw+PHXGb4EHRI8ssY2eg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xxiH3Ej48oZY63U//u/Vhy5SsI6d/SVpygySyTi7nhc=; b=NiZmrSGv4SsJyl/cspAPcirFfFokTlmczsJ7lvBrZdLInFw4oy88NTx+/jmDL+LDCku9L8KCeXRnjhOgUbPO6m4EyEm3tpl6hG5jqHTa0PIeXILcntoPx8j9OVzkwsNqmSMA22J24BXGoaOVJHpvd2Tg15lVbo8frLFo9a1sbCGMCbgwuk/7Hf8B3Xm+aqpzw9uKOlNxCRFruf2BsRhaYX2jdDjzb+VPMhzt6ozPxHdbjsYAGpEpFyg/x0nhmBClGGoBmjDX43NVhCQ7hu+tcp1VpNyAvFJvdu4ns5VzKQphDuAQUklqol9cjrNMBP7HrCmoc0vrysbFQABlHlouQA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xxiH3Ej48oZY63U//u/Vhy5SsI6d/SVpygySyTi7nhc=; b=CPsBBVklHbOQepKzTmSAw/acfNSvWmQMyahTG/dxS31zOTdyO5SvKGeOZgRGKuE+Omx3r6UW0uZs+soH5pGBQ5yz4CFRi+8PFiIgy63re71/lkjlygZligdEDqdTohfUuhdbjQHcdd35FfoO22Xt3EL01Qrkc2ROBmVAcfYn6y4=
Received: from DBBPR08MB5915.eurprd08.prod.outlook.com (2603:10a6:10:20d::17) by DB7PR08MB3228.eurprd08.prod.outlook.com (2603:10a6:5:19::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4173.22; Mon, 31 May 2021 19:47:21 +0000
Received: from DBBPR08MB5915.eurprd08.prod.outlook.com ([fe80::3405:8699:991d:b2e9]) by DBBPR08MB5915.eurprd08.prod.outlook.com ([fe80::3405:8699:991d:b2e9%9]) with mapi id 15.20.4173.030; Mon, 31 May 2021 19:47:21 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>, Russ Housley <housley@vigilsec.com>, "suit@ietf.org" <suit@ietf.org>
Thread-Topic: [Suit] suit-firmware-encryption-00
Thread-Index: AQHXUy5z1Ad5u0DPwEu0kJVAnV+BYar9qIzwgAAjjQCAAAUmgIAAMkLA
Date: Mon, 31 May 2021 19:47:20 +0000
Message-ID: <DBBPR08MB59153D31EE75D565A64B4F79FA3F9@DBBPR08MB5915.eurprd08.prod.outlook.com>
References: <19586.1622075797@localhost> <DBBPR08MB5915CEC125579D78C108D540FA3F9@DBBPR08MB5915.eurprd08.prod.outlook.com> <F6C86CC2-3AF8-4CC5-BB47-AC6579DAA0C4@vigilsec.com> <13894.1622479289@localhost>
In-Reply-To: <13894.1622479289@localhost>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ts-tracking-id: DBE2DCB45538314E8A0E5BAA2035C06C.0
x-checkrecipientchecked: true
Authentication-Results-Original: sandelman.ca; dkim=none (message not signed) header.d=none; sandelman.ca; dmarc=none action=none header.from=arm.com;
x-originating-ip: [80.92.119.239]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-Correlation-Id: 87b8435a-c462-4aa1-ea70-08d9246ceb71
x-ms-traffictypediagnostic: DB7PR08MB3228:|AS8PR08MB6694:
X-Microsoft-Antispam-PRVS: <AS8PR08MB66940EF788A4D75D6215C3BDFA3F9@AS8PR08MB6694.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:9508;OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: LR2cu0s/Fe3BmUZxZ0kpaltMF8aVrWcIMekd7CRKAlA8IJAuJHq+Qsts6q4VmKjq092cn024XRMYru1gePpWJcZAKwNEghOgzWR40HPX6ESo+PM+HZ/5ii/F8qsOJ24ZjA0h9ncg/j/5ygOu+48rLiI5/JDFrOW3soQEv2eM8vFtaf9d9Qf53AIjRV49LuozgKn6atpzAv59x2WI1RTgqP5c65I+92/uzrHdNKCYbVNBNuHfd960CvTc3oQutsA4VBKmRHSYwvEFG52B9f9cOdIs6zlFnq55tcM09YTRgxPW7NPn0iEgXuQaibo6sVDAIf4fNNO3GaWl9cnRl4Qp+czXoM0nqHasveeWk6hkr1xWh1nZzFTDiZghGB1qKKhHT2AUIDiz7JLPNRC/VLKEGPCfLjLGbNhuAU2zTbnMVicayqpXqVKDYmF1rlIm/IA94BKI7SEs6osajtEbbRvcqf3hV6mrCH7jaggQAB5KVHMkVTc54lgMHUR/6VRiv+XG19R1+JXZYRRVDX1xmh5y9dmbvywADCE+L66Sl/DNrjuL9G+mCXqWHk+ddT80vALz+6ayqIYe5T4h/5nupKrY3pzT3FzlIoupV8UFYjoW3tQvT7mP5x+1wxHP5KgbTTw4XDK7k9xZSQEmm1SlgypefEivVmbGtWUuz4coGV4oBzo2kA+KKH2qW6eyF6k5DL6rSTIjBL/IKeiv5ONp0ovi4Q==
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DBBPR08MB5915.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(39840400004)(346002)(366004)(136003)(396003)(7696005)(52536014)(26005)(8936002)(5660300002)(110136005)(316002)(2906002)(66946007)(55016002)(64756008)(66446008)(186003)(66476007)(66556008)(76116006)(86362001)(71200400001)(38100700002)(122000001)(83380400001)(966005)(478600001)(66574015)(6506007)(8676002)(33656002)(9686003); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB7PR08MB3228
Original-Authentication-Results: sandelman.ca; dkim=none (message not signed) header.d=none; sandelman.ca; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: DB5EUR03FT003.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: 0db89936-b2c5-4e1f-9e52-08d9246ce7ab
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(4636009)(346002)(39840400004)(396003)(376002)(136003)(46966006)(36840700001)(316002)(83380400001)(6506007)(26005)(66574015)(7696005)(86362001)(8676002)(110136005)(8936002)(186003)(336012)(82310400003)(2906002)(356005)(36860700001)(9686003)(52536014)(5660300002)(966005)(478600001)(81166007)(70586007)(33656002)(70206006)(55016002)(47076005); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 31 May 2021 19:47:27.4755 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 87b8435a-c462-4aa1-ea70-08d9246ceb71
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: DB5EUR03FT003.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS8PR08MB6694
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/C_H_7MWaTX8mHkY4vHt4jS9dZVs>
Subject: Re: [Suit] suit-firmware-encryption-00
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 May 2021 19:47:35 -0000

Hi Michael,

   > > SUIT is using signature for the authentication and integrity of the
   > > firmware.  If the signature remains in place, a party in the middle of
   > > the distribution cannot insert any malware.

> The encryption of the firmware keeps third parties from auditing the software updates to determine if malware has been inserted at the "factory"
> Both white and black hats are currently using binary diff systems to look at patches.  Black hats use this to develop exploits in the gap between 9am EST and 9am PST!
> I am suggesting that this is a "Security Consideration"

A description of the software is contained in the COSWID and, as Brendan suggests, in a MUD file that is included with the manifest (see https://datatracker.ietf.org/doc/html/draft-moran-suit-mud).
Furthermore, I can imagine that those authorized to audit the software can do so either based on the source code or by giving them access to the binary.

Ciao
Hannes

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email