IETF Logo Mail Archive

Re: [Suit] A few comments on draft-ietf-suit-manifest-02

Brendan Moran <Brendan.Moran@arm.com> Tue, 21 January 2020 11:52 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1AF41200F4 for <suit@ietfa.amsl.com>; Tue, 21 Jan 2020 03:52:14 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=uVVUC94O; dkim=fail (1024-bit key) reason="fail (body has been altered)" header.d=armh.onmicrosoft.com header.b=fHgsxPrK
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SaEl04g2xXlH for <suit@ietfa.amsl.com>; Tue, 21 Jan 2020 03:52:09 -0800 (PST)
Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2048.outbound.protection.outlook.com [40.107.22.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B1E51200F1 for <suit@ietf.org>; Tue, 21 Jan 2020 03:52:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=mILvhp6RCQp6Lln2M6b7RSXxhR4HJVVbmQPc1AFvdTk=; b=uVVUC94OC6teqDFycFysCZkk8eb6sdhr3QCVE77JR3DGUy9vIXaH75iOxxOSSoFV0tfZbKZM4aKMeNeoG+28rbLe6LBL/NGqCD7OAdG25RYDMwzd0AhCqOFh8MfQa0gCyd+tWQW/tVyrYt0mW0h5cPl1H6HGeh3Z+psQ21tkhVg=
Received: from VI1PR08CA0163.eurprd08.prod.outlook.com (2603:10a6:800:d1::17) by AM4PR08MB2691.eurprd08.prod.outlook.com (2603:10a6:205:a::23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2644.19; Tue, 21 Jan 2020 11:52:06 +0000
Received: from DB5EUR03FT030.eop-EUR03.prod.protection.outlook.com (2a01:111:f400:7e0a::208) by VI1PR08CA0163.outlook.office365.com (2603:10a6:800:d1::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2644.25 via Frontend Transport; Tue, 21 Jan 2020 11:52:06 +0000
Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=bestguesspass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by DB5EUR03FT030.mail.protection.outlook.com (10.152.20.144) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2644.23 via Frontend Transport; Tue, 21 Jan 2020 11:52:06 +0000
Received: ("Tessian outbound 121a58c8f9bf:v40"); Tue, 21 Jan 2020 11:52:06 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 794167a314ad6b8e
X-CR-MTA-TID: 64aa7808
Received: from 9f01f32acd54.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id E9FE7842-A661-4A2B-B1D0-F92D7BEBCD06.1; Tue, 21 Jan 2020 11:52:01 +0000
Received: from EUR04-VI1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 9f01f32acd54.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Tue, 21 Jan 2020 11:52:01 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=IDCAAksQB0nqoZQZQMcaGcV6zGYqfuPLsW9llW+SIpBQbMNj/khJcPa3VJieAqOjKZqWo9l7809DhHuEBRMTrDqM2DJIzcP7IQu2fv1OWFoBAwDQlzOcIEKvTEZ2v5sdHM18WEOgmQ/cuvE3oYkMzuc66JjyK4y4Z5vICFl+3HWSykva1TH5ZegeYgtuhp6waeGeWpcl1RAUrwXfi1Q0JRxzWnl7kwgukFlQt4bEHbjdqNHdrh1YNXkGe3wG0zWDQH18zdhnHeX4y0ucLUNeH9aCxGIPr5l6RAhEYr8aDwFJhrEfwC98iFkLMqfSZl3v152qxSVeCWQ7VhapVy7szA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=no8bbfeuYE6Xf1IAdFotmE0P8kqOaqoEKXd/tgQdmhQ=; b=hl5oj89ZtH3b7y7Iw3YumSOC7wrVNojfrzvaDWCn60D9OmhMrKdhX+UHpGU1xNY/O/xHeZxrFszCq9L09C8faty+WsPIWZ5I9QgBa9t9udb6sydC7cJrlWkbUD5OqR1vGTMMtRPRbTgcZTXZpLdpM715d0dq1Dzlc2mFRlxhA1aRTudkIqacqHFIWJSBPci+RY0Had25hJihku6YbfsWgb5OipWFAB34hpcLdt81Wfi3fY3hoX+kjbNdgrllyw7X5hJjzXcQ94hJ8dJ2RHUtTiO4Fhht8UfBd01eGVS2Yl8XZ37yjxAvVQO5039CjzYhiHJA4rvrAb2oJThn3vSzuQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=no8bbfeuYE6Xf1IAdFotmE0P8kqOaqoEKXd/tgQdmhQ=; b=fHgsxPrKKcJPhZHdIevkH8aM6xSgCrXf1/3pwXWpVDZMeL2O5r5boELtEL6ywg139PXiD+DSpxOR7L0R1IaYrduhhevCGhje0g58WRGU+KQD6Hg7sUxNeRKfRipx8azzzZqfCaUxAgY8GqhzJYHByLMbWN5RLBw6Wq+fTXiMLMY=
Received: from AM6PR08MB4738.eurprd08.prod.outlook.com (10.255.99.138) by AM6PR08MB5219.eurprd08.prod.outlook.com (10.255.99.86) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2644.19; Tue, 21 Jan 2020 11:51:59 +0000
Received: from AM6PR08MB4738.eurprd08.prod.outlook.com ([fe80::99bb:dd46:a0a0:562a]) by AM6PR08MB4738.eurprd08.prod.outlook.com ([fe80::99bb:dd46:a0a0:562a%7]) with mapi id 15.20.2644.026; Tue, 21 Jan 2020 11:51:59 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Russ Housley <housley@vigilsec.com>
CC: suit <suit@ietf.org>
Thread-Topic: [Suit] A few comments on draft-ietf-suit-manifest-02
Thread-Index: AQHVz9kz5u0XLw+rkEGsl5GfPYTlgqf1Aq2A
Date: Tue, 21 Jan 2020 11:51:59 +0000
Message-ID: <C4226BE6-6AEC-4876-A769-E3143CA7C212@arm.com>
References: <4AA317F5-5D50-4A28-8259-D054BD6D6435@vigilsec.com>
In-Reply-To: <4AA317F5-5D50-4A28-8259-D054BD6D6435@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3601.0.10)
Authentication-Results-Original: spf=none (sender IP is ) smtp.mailfrom=Brendan.Moran@arm.com;
x-originating-ip: [217.140.106.52]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 4a22e3f0-94de-4887-4380-08d79e6856b9
X-MS-TrafficTypeDiagnostic: AM6PR08MB5219:|AM4PR08MB2691:
X-Microsoft-Antispam-PRVS: <AM4PR08MB2691C519B32BF4473B713059EA0D0@AM4PR08MB2691.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
x-ms-oob-tlc-oobclassifiers: OLM:10000;OLM:10000;
x-forefront-prvs: 0289B6431E
X-Forefront-Antispam-Report-Untrusted: SFV:NSPM; SFS:(10009020)(4636009)(376002)(39860400002)(396003)(366004)(136003)(346002)(199004)(189003)(5660300002)(6486002)(966005)(478600001)(6916009)(36756003)(66446008)(81166006)(2616005)(66476007)(64756008)(66946007)(8676002)(81156014)(33656002)(66556008)(86362001)(8936002)(53546011)(6512007)(91956017)(2906002)(76116006)(4326008)(71200400001)(316002)(6506007)(26005)(186003); DIR:OUT; SFP:1101; SCL:1; SRVR:AM6PR08MB5219; H:AM6PR08MB4738.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <403BFFAF457D2F4C87BFC6D7D8C07CE0@eurprd08.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR08MB5219
Original-Authentication-Results: spf=none (sender IP is ) smtp.mailfrom=Brendan.Moran@arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: DB5EUR03FT030.eop-EUR03.prod.protection.outlook.com
X-Forefront-Antispam-Report: CIP:63.35.35.123; IPV:CAL; SCL:-1; CTRY:IE; EFV:NLI; SFV:NSPM; SFS:(10009020)(4636009)(396003)(346002)(376002)(39860400002)(136003)(199004)(189003)(81166006)(6486002)(81156014)(356004)(86362001)(8676002)(478600001)(26826003)(33656002)(8936002)(70586007)(70206006)(966005)(26005)(2616005)(36756003)(53546011)(6506007)(6512007)(186003)(4326008)(2906002)(316002)(336012)(6862004)(5660300002); DIR:OUT; SFP:1101; SCL:1; SRVR:AM4PR08MB2691; H:64aa7808-outbound-1.mta.getcheckrecipient.com; FPR:; SPF:Pass; LANG:en; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; A:1; MX:1;
X-MS-Office365-Filtering-Correlation-Id-Prvs: b5a86d90-d3f7-4c3e-9814-08d79e6852ca
X-Forefront-PRVS: 0289B6431E
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Jan 2020 11:52:06.4463 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 4a22e3f0-94de-4887-4380-08d79e6856b9
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM4PR08MB2691
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/MUkoxoX7tvJnM7i2_zX4u-IWd38>
Subject: Re: [Suit] A few comments on draft-ietf-suit-manifest-02
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Jan 2020 11:52:15 -0000

Hi Russ,

Thank you for your review. I’ll address these comments shortly.

Brendan

> On 20 Jan 2020, at 21:32, Russ Housley <housley@vigilsec.com> wrote:
>
> I have a few comment on draft-ietf-suit-manifest-02:
>
> General: The RFC Style Guide says to use American English spelling. Please change it now to avoid confusion later (e.g., Behaviour --> Behavior).
>
> Section 2: Please add a sentence before all fo the definitions.  Otherwise, the "as shown here" from the RFC 8174 citation is easy to read incorrectly.
>
> Section 2: The last 4 paragraphs are not really about conventions or terminology at the same level as the rest of the section.  They are CBOR specific, and I wonder if they would bit better toward the end of Section 4 or the beginning of Section 5 in a subsection of their own.
>
> Section 4: The bullets and numbered items in 4.1 end with periods, but the ones in 4.2 and 4.3 do not.  Please pick one style and use it everywhere.
>
> Section 4.2: In the five steps, is there a problem if an implementations swaps steps 1 and 2?  If so, please explain.  If not, the document should say that conforming implementations of this specification are not required to implement this algorithm, but MUST provide functionality equivalent to the external behavior resulting from this procedure. That is, any algorithm may be used by a particular implementation so long as it produces the correct result.
>
> Section 4.2 says: "If verification and running is implemented in bootloader, then the".  Please complete the thought.
>
> Section 4.4: I think that "specifies behaviours in a linearised form" can simply be "specifies linear behavior".
>
> Section 4.4: I wonder if "authenticated by the appropriate identity have access to operate" is the right concept.  I think the point is that the process will reject software that is not authenticated to an identity on the ACL.
>
> Section 5.1: RFC 4108 includes the concept of a "stale version".  Please see Section 1.2.3.2 of RFC 4108.  Do we want a capability to prevent roll-back to a previous version that has a disastrous flaw?
>
> Section 7: I find the numbering confusing.  the is a top-level "1" without a "2".  Perhaps typical outline numbering would be more clear.
>
> Section 7 and 11: We need to come up with a presentation that will keep the line length under 73 characters.  Maybe something like:
>
>   SUIT_Common = {
>       ? suit-dependencies
>             => bstr .cbor [ + SUIT_Dependency ],
>       ? suit-components
>             => bstr .cbor [ + SUIT_Component_Identifier ],
>       ? suit-dependency-components
>             => bstr .cbor [ + SUIT_Component_Reference ],
>       ? suit-common-sequence
>             => bstr .cbor SUIT_Command_Sequence,
>   }
>
>
> Section 12: Please say in the introduction what one-way hash function is used.
>
> Section 13: Please provide the rules for additions to each of the IANA registries that are identified.
>
> Russ
>
>
>
> _______________________________________________
> Suit mailing list
> Suit@ietf.org
> https://www.ietf.org/mailman/listinfo/suit

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email