Re: [Suit] Review of draft-ietf-suit-manifest-09

Brendan Moran <Brendan.Moran@arm.com> Thu, 30 July 2020 17:46 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2557D3A0CDD for <suit@ietfa.amsl.com>; Thu, 30 Jul 2020 10:46:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=RaaKdU/0; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=RaaKdU/0
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id q_eNm4HY3cyx for <suit@ietfa.amsl.com>; Thu, 30 Jul 2020 10:46:51 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50078.outbound.protection.outlook.com [40.107.5.78]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 56B543A0CE3 for <suit@ietf.org>; Thu, 30 Jul 2020 10:46:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZW2SqS9qPBsXM3rPhsGmu/riC5NO0uGYEwOGeLIdJ7Y=; b=RaaKdU/0JktrDmemW/PEzjazpYwcCopEiCJ+Ux3NcNxlWMQO4G+nf2GFp4MPeUMYcE2uwFYB6wK01r/TPe2FBL7nok2F/phFB+qq/kPL/7Jmrz0JkyLNQ0z9znnGTHxG1kesEl0tyMyC7yiGF90WjuwIJfVxY9t1Jxn92H6lp+A=
Received: from AM6P191CA0060.EURP191.PROD.OUTLOOK.COM (2603:10a6:209:7f::37) by DBBPR08MB4281.eurprd08.prod.outlook.com (2603:10a6:10:c4::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3216.23; Thu, 30 Jul 2020 17:46:48 +0000
Received: from VE1EUR03FT055.eop-EUR03.prod.protection.outlook.com (2603:10a6:209:7f:cafe::eb) by AM6P191CA0060.outlook.office365.com (2603:10a6:209:7f::37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.17 via Frontend Transport; Thu, 30 Jul 2020 17:46:48 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=bestguesspass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by VE1EUR03FT055.mail.protection.outlook.com (10.152.19.158) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3239.20 via Frontend Transport; Thu, 30 Jul 2020 17:46:47 +0000
Received: ("Tessian outbound 7de93d801f24:v62"); Thu, 30 Jul 2020 17:46:47 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 7bfe41efd7bcdbaa
X-CR-MTA-TID: 64aa7808
Received: from 3b3a705c056d.1 by 64aa7808-outbound-1.mta.getcheckrecipient.com id AC650594-CEBD-4706-9455-BECF3222651A.1; Thu, 30 Jul 2020 17:46:42 +0000
Received: from EUR05-DB8-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 3b3a705c056d.1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Thu, 30 Jul 2020 17:46:42 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=TXAfsDZrVXVTxOp8jZ4IKuQdYeNBiduQqZhkSzFt5QynEbQ7k8XsyX7bwcFRqsw/usoCc19aibW1JV+4hBly2GyRD3ya/CfQ2u8RxIytlE7R4YIReSELDGkTTGOWIbYaAg2E0cg7n8ourHIeRWDX5MnFlj2a00OYxQ/RCO29SeEtCGwmART/3+0ENmmRQ/uxsYify1xFN0S5Pxr2L99Z3nN9IO9JdTXIknBO+1atVvhB0WtihOvL6zalPWPpmBu3gna79UmftYqjtuM35iTZgNQE6ahKf6IqYmQxyFtP2PzppOiXCKjS3mX/vZN7W4ZWPeUt/nOZcQ9qBai/TUtVag==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZW2SqS9qPBsXM3rPhsGmu/riC5NO0uGYEwOGeLIdJ7Y=; b=fbXfdeN+vdyVqYCsdU6MT+XlHWMJ3nrcIECNq6t7TOzbAiu7N0uxu2B/Jb2VobBFsJ8XSzv8d9Nlg6p92x2bZaXrIodHSBjTal3Tb13mI1/Xf7D9aCSdbDQexljCENWyFY6idicZNt+G/ZPTcbVfeoko5Zs7cWfLA5kHJXLBfcfhy1ayBu6y5qoNm/HkiUzRhQ5lzzgCaeMmo8rNtV6OvxUNVWu4jAw+S/Sc3BSpt2Mez1agnH8WU3pbln7vR9uwRd6WC/IRl1kI9l3CvA/jwMsqJfhW8hntGo4SJY3IBl8ciefqTtDjlm/qO5hTxliVhYoTHgnuwmSyYwEYXCDCyg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZW2SqS9qPBsXM3rPhsGmu/riC5NO0uGYEwOGeLIdJ7Y=; b=RaaKdU/0JktrDmemW/PEzjazpYwcCopEiCJ+Ux3NcNxlWMQO4G+nf2GFp4MPeUMYcE2uwFYB6wK01r/TPe2FBL7nok2F/phFB+qq/kPL/7Jmrz0JkyLNQ0z9znnGTHxG1kesEl0tyMyC7yiGF90WjuwIJfVxY9t1Jxn92H6lp+A=
Received: from AM6PR08MB4738.eurprd08.prod.outlook.com (2603:10a6:20b:cf::10) by AM6PR08MB4934.eurprd08.prod.outlook.com (2603:10a6:20b:ee::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3216.21; Thu, 30 Jul 2020 17:46:41 +0000
Received: from AM6PR08MB4738.eurprd08.prod.outlook.com ([fe80::a98d:5ebe:dc1d:ea56]) by AM6PR08MB4738.eurprd08.prod.outlook.com ([fe80::a98d:5ebe:dc1d:ea56%3]) with mapi id 15.20.3239.019; Thu, 30 Jul 2020 17:46:41 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Michael Richardson <mcr+ietf@sandelman.ca>
CC: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, Dave Thaler <dthaler=40microsoft.com@dmarc.ietf.org>, suit <suit@ietf.org>, "Waltermire, David A. (Fed)" <david.waltermire@nist.gov>
Thread-Topic: [Suit] Review of draft-ietf-suit-manifest-09
Thread-Index: AdZiCUkrB1qNrZ3lS5i4ApAjr2sBOQCGs7sAAAEnfoAAAPfFoAAAShiAAAAuWAAAmqT1gAAAFbrz
Date: Thu, 30 Jul 2020 17:46:40 +0000
Message-ID: <8D07DFE7-B73F-425E-B5CE-4A1D41F07F9A@arm.com>
References: <BL0PR2101MB1027152EC8DAD9B3847C3E89A3770@BL0PR2101MB1027.namprd21.prod.outlook.com> <70453005-8DFA-4DBE-8C04-9882839D5005@arm.com> <3ff3915e-c61c-2c00-f780-a77c9ab494cc@sit.fraunhofer.de> <CH2PR09MB425185528F6ECB5E00B4CB07F0720@CH2PR09MB4251.namprd09.prod.outlook.com> <4d3ed839-c495-0c47-fcbb-931944166090@sit.fraunhofer.de> <47ADA831-3033-4901-B652-749940E0EC7F@arm.com>,<13062.1596131055@localhost>
In-Reply-To: <13062.1596131055@localhost>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Authentication-Results-Original: sit.fraunhofer.de; dkim=none (message not signed) header.d=none;sit.fraunhofer.de; dmarc=none action=none header.from=arm.com;
x-originating-ip: [82.20.19.206]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-HT: Tenant
X-MS-Office365-Filtering-Correlation-Id: 5d32e170-e677-4a0b-b940-08d834b0886e
x-ms-traffictypediagnostic: AM6PR08MB4934:|DBBPR08MB4281:
X-Microsoft-Antispam-PRVS: <DBBPR08MB428154CE7A9AD36709253DD4EA710@DBBPR08MB4281.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:10000;OLM:10000;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: zJvnLgYweBe63iZR/ieSz9obEZNvxn6ggoKxWCUE4PpqWYrLeE2vbssFzbr5NngqcZWqpLtTCAZbDmCi2Ash8xpCR61hEBjr7BxVX5CqqhrdIvUscuXTbOoyh4+2jCnFkj4pTMIFdDrB3rEv6exGHL4rae0PZrcvOke9ZOIIxMFEblyTccohiUMDIkogoG145Mb3pVGJec22rHlVwAcqyOisMGhAtSg2WMMoPAr2UFdQiLIkC5lSGT5o95nWc7WJ0hulwB/JEKa1usSbYhIOEHVBFZncm99Xt4oLXhU+exMMUUB01q+AGmKTYRrrskt2dFF0NPSIsLUazBtD/a4Frw==
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM6PR08MB4738.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(366004)(376002)(346002)(39860400002)(136003)(396003)(6486002)(33656002)(54906003)(6506007)(316002)(71200400001)(8676002)(36756003)(26005)(66946007)(66476007)(53546011)(83380400001)(66446008)(186003)(76116006)(91956017)(64756008)(66556008)(478600001)(86362001)(6512007)(5660300002)(4326008)(2616005)(2906002)(8936002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: CKT45uJAoJmpGZkWc0P9Wpp2gZo8wnZyUha05Eo4dVu6YSSLC0nKeXawez72yceGuEqnlCGRWwHV4AOugiVUcm2jxIsB4rSHpyzWQ1dicztpYG4rptaGrZRFZYHmkGk8dyNrdb+hg6yE+qWeIfghZGmJPVQUO7QIM1CiKj6w3iD9Yz42beU0bl55k7Dh1lKk6H95+SfDUvRFNgfluqzSTqWePCBMGut6ZtnmrjOJNjev3aZRK87RbmOgUVBFX/AhY5jAI/co99jSRT9yTU9evfCXYMF8qkt+OhVz9VGoUuFcfUCCobJCyd7yYteGqaJNxn64Dh20tQHsyAIcyhVkLdQ+wjRJjRzyM/iWu+gkqik6QqXrHTKBYEF+zAvbcjChPzkCnN2/yqKwJHcOCxA/X2/sbRnmSvQQU6BlWcs2wZuodBLf7Yamx0f7PB0wpLNhbPbvejMBFBkRSMhJpYWeQ3kmXXSWVK4eH8DKShZAyvE=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR08MB4934
Original-Authentication-Results: sit.fraunhofer.de; dkim=none (message not signed) header.d=none;sit.fraunhofer.de; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: VE1EUR03FT055.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: d7a260f5-9b9e-415c-1930-08d834b0844e
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: kc59rASGyuL/IU446zd7q2r2unitUwEqh6tfGIXyNoz19MHZ7sYZ9Bw7wS/k63h5CMkgWFbH+bEDUTPxkDhNn+eEEtxfVsAzj+fxsF4jlgahRXdFFMR03ZmQT6g+tqMWv03CbAh8q9h5vRcvZQ9znRZ+JvNh2eYxSExt0Q//rldUwC5hWx40PTPGfa0B6sUvlgaEKojtKvLFiZTvz35KypXswHQB34F6QCEKFmMYI7uHZNZOeEzLWI0uPhlS5U7N2zpWfs2P4F454CCDDvyf2LYZ4vj3iO4FHOeeaYNgwEcN5pG99Phk0cnQXvZPUYSj+OzJae4Pj3BUe9z7tbLZecKTIn6Vb8BqOPu863DHYqOSWRki0bun53t3uKaa3vUGwHBeZpffngc1OPXiNreyZA==
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFTY:; SFS:(4636009)(376002)(136003)(346002)(39860400002)(396003)(46966005)(4326008)(316002)(53546011)(8936002)(86362001)(82310400002)(6486002)(6512007)(81166007)(107886003)(5660300002)(36906005)(8676002)(356005)(54906003)(6506007)(26005)(47076004)(6862004)(2616005)(33656002)(336012)(70586007)(70206006)(36756003)(83380400001)(2906002)(478600001)(186003)(82740400003); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Jul 2020 17:46:47.9623 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 5d32e170-e677-4a0b-b940-08d834b0886e
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: VE1EUR03FT055.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DBBPR08MB4281
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/WbY8Js21Ht8afmOfylbtUQ2L8Wk>
Subject: Re: [Suit] Review of draft-ietf-suit-manifest-09
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jul 2020 17:46:53 -0000

Yup. That’s the easy part. The hard part is: what’s the uuid Name Space Identifier of the Class ID?

Best Regards,
Brendan

> On 30 Jul 2020, at 18:44, Michael Richardson <mcr+ietf@sandelman.ca> wrote:
>
> 
> Brendan Moran <Brendan.Moran@arm.com> wrote:
>> 1.  Class IDs should be UUIDs.
>> 2.  UUIDs require a Name Space ID.
>> 3.  The Name Space ID should be unique per-vendor.
>> 4.  There must be a way to convert a vendor identifier to a Name Space ID in a consistent way.
>
>> OUI does not provide this.
>> PEN might provide this, but it would require a specification of the
>> correct encoding to use when creating a UUID from an OID. This is
>> missing in RFC4122, despite the inclusion of NAMESPACE_OID.
>
> I'm looking at section 8.7.5.1 to try to understand things.
> It seems that rather than have VendorID be hash of DNS_PREFIX,
> why not just have it be a PEN, encoded as a cbor integer?
> (Not an OID, just the PEN)
>
> You could permit a bstr or integer here, so for those that have some kind of
> concern about identifying the vendor, they can go with hash of something.
>
> --
> Michael Richardson <mcr+IETF@sandelman.ca>, Sandelman Software Works
> -= IPv6 IoT consulting =-
>
>
>
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.