Re: [Suit] Surprising push back on the need for a customer to verify the trust relationship between a software supplier and software signer during digital signature validation on signed code
Hannes Tschofenig <Hannes.Tschofenig@arm.com> Fri, 11 June 2021 06:34 UTC
Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B81243A2B4C for <suit@ietfa.amsl.com>; Thu, 10 Jun 2021 23:34:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=J1EMjpKZ; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=J1EMjpKZ
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xRQU8bRBXfzA for <suit@ietfa.amsl.com>; Thu, 10 Jun 2021 23:34:31 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80085.outbound.protection.outlook.com [40.107.8.85]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34C673A2B4F for <suit@ietf.org>; Thu, 10 Jun 2021 23:34:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R/ZqPt7SeJYATONvdYBbE6aKn3NzCKjW+Ep+zQ/p/n0=; b=J1EMjpKZdPD4tTtuGsRJ4qcAf9BL1gxDY31jHFZSK5mdSGycOuUIcvS3aGgWvobB+pLPZI4ZzUUgfDBRHQooPA3C9y6hmrPPg5owROqTFqyUhhFiE9UZ7XOVUjUyTxMlKIUco2iq8tIQrQ6uTB5oVvX/L4bm7Xav6KQU5fCwg1s=
Received: from AM6P191CA0070.EURP191.PROD.OUTLOOK.COM (2603:10a6:209:7f::47) by AM0PR08MB3620.eurprd08.prod.outlook.com (2603:10a6:208:d9::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4195.24; Fri, 11 Jun 2021 06:34:21 +0000
Received: from VE1EUR03FT044.eop-EUR03.prod.protection.outlook.com (2603:10a6:209:7f:cafe::2c) by AM6P191CA0070.outlook.office365.com (2603:10a6:209:7f::47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4219.21 via Frontend Transport; Fri, 11 Jun 2021 06:34:21 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by VE1EUR03FT044.mail.protection.outlook.com (10.152.19.106) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4219.21 via Frontend Transport; Fri, 11 Jun 2021 06:34:20 +0000
Received: ("Tessian outbound a5ae8c02e74f:v93"); Fri, 11 Jun 2021 06:34:20 +0000
X-CR-MTA-TID: 64aa7808
Received: from 3ceb36bebcb3.2 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 0C80ECBE-8086-4BE9-9756-F0F66630CB52.1; Fri, 11 Jun 2021 06:34:09 +0000
Received: from EUR03-VE1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id 3ceb36bebcb3.2 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Fri, 11 Jun 2021 06:34:09 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=mS3hkSICouWKuWpWbtP9z+9OFJjhFt6YFxck+xc0kqGRAg1FqTAzD8eiqjjsJttNEbGPK1GvGsS0VSHni+FzMld4YtfzjL6Ia266dsdnj3Bs13CVTO2A7e7SkOXvWMU6vf+SNKXYDHVxTaDMVNlZ1ElFZ8JnXNIglnoNYnOfIkS3dj8fNivj3BkluTgu+BA5eT88X6/vgRnGRWENlTjux2YHw/HBQ9c/1NeyEBRSXBrcgKyR+vBhq+OZSF8QR1AoEzpEVpGKeUxg4sA2mmEPp4o/V9Mhi/HXhb92zrv4xbec8u55YW89QwtMyiBZQOEwODpcjupze2Uo8xgBWcmrDQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R/ZqPt7SeJYATONvdYBbE6aKn3NzCKjW+Ep+zQ/p/n0=; b=OGSx1dz/2jWD87ZZPkhHMR09qA+WtJ+rDjK7c6qX6iXDLeMlZDreQsPzPHpUrLLBfe8z1YehnDUaFVAHnjfX2/2Q2XEuwpYpWrY8W2LPL81Mp68qG4ZX8jEKAHOooy4wqx0IH7j1qZSS2k2ttkFGiP/ITghT5bacGzWj4bgPF6BCDG8S4g2J3A3U0j1qXdIImHi2Y5VVchMcjRA+i/zJCiLE/gevTRvWK/5EtxeCsgX6SW+Ht4/YvRV3OpntSzjmV/49CozMkHNel0nEwa3ZWjlSR28az+AorpdX27BiGN5+sHIe/i8J8hLpLzyxsib1ZUT6oPFP5zNGJEV2IqdKHg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=R/ZqPt7SeJYATONvdYBbE6aKn3NzCKjW+Ep+zQ/p/n0=; b=J1EMjpKZdPD4tTtuGsRJ4qcAf9BL1gxDY31jHFZSK5mdSGycOuUIcvS3aGgWvobB+pLPZI4ZzUUgfDBRHQooPA3C9y6hmrPPg5owROqTFqyUhhFiE9UZ7XOVUjUyTxMlKIUco2iq8tIQrQ6uTB5oVvX/L4bm7Xav6KQU5fCwg1s=
Received: from DBBPR08MB5915.eurprd08.prod.outlook.com (2603:10a6:10:20d::17) by DB8PR08MB5018.eurprd08.prod.outlook.com (2603:10a6:10:e2::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4195.24; Fri, 11 Jun 2021 06:34:04 +0000
Received: from DBBPR08MB5915.eurprd08.prod.outlook.com ([fe80::3405:8699:991d:b2e9]) by DBBPR08MB5915.eurprd08.prod.outlook.com ([fe80::3405:8699:991d:b2e9%7]) with mapi id 15.20.4195.030; Fri, 11 Jun 2021 06:34:04 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: Phillip Hallam-Baker <phill@hallambaker.com>
CC: "dick@reliableenergyanalytics.com" <dick@reliableenergyanalytics.com>, Brendan Moran <Brendan.Moran@arm.com>, suit <suit@ietf.org>, Russ Housley <housley@vigilsec.com>
Thread-Topic: [Suit] Surprising push back on the need for a customer to verify the trust relationship between a software supplier and software signer during digital signature validation on signed code
Thread-Index: Adda3wwhpia1tcX5Scy9mXv4bSDfXwC7UJtwAB6wJAAAEP6zMA==
Date: Fri, 11 Jun 2021 06:34:04 +0000
Message-ID: <DBBPR08MB5915A4EAB8B59778AD9DCAD9FA349@DBBPR08MB5915.eurprd08.prod.outlook.com>
References: <0f9601d75adf$5856cf50$09046df0$@reliableenergyanalytics.com> <DBBPR08MB59155DB5DBE123F55B25894BFA359@DBBPR08MB5915.eurprd08.prod.outlook.com> <CAMm+Lwg36Y-tpB+XTwYYpC3psCNEj3O33BzrnzzC8gtMjgkD3Q@mail.gmail.com>
In-Reply-To: <CAMm+Lwg36Y-tpB+XTwYYpC3psCNEj3O33BzrnzzC8gtMjgkD3Q@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ts-tracking-id: E7D110217368FD4AB09AA943779E1315.0
x-checkrecipientchecked: true
Authentication-Results-Original: hallambaker.com; dkim=none (message not signed) header.d=none;hallambaker.com; dmarc=none action=none header.from=arm.com;
x-originating-ip: [80.92.119.239]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-Correlation-Id: 955434bf-c74d-4ecc-b753-08d92ca2f202
x-ms-traffictypediagnostic: DB8PR08MB5018:|AM0PR08MB3620:
x-ms-exchange-transport-forked: True
X-Microsoft-Antispam-PRVS: <AM0PR08MB3620F16E2D73FE8945553E31FA349@AM0PR08MB3620.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:133;OLM:326;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DBBPR08MB5915.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(366004)(396003)(376002)(136003)(346002)(39850400004)(7696005)(478600001)(8936002)(6506007)(186003)(83380400001)(15650500001)(6916009)(66446008)(64756008)(66556008)(9326002)(52536014)(53546011)(26005)(316002)(8676002)(5660300002)(71200400001)(66476007)(86362001)(2906002)(76116006)(9686003)(66946007)(122000001)(38100700002)(33656002)(55016002)(54906003)(4326008)(85893002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DBBPR08MB5915A4EAB8B59778AD9DCAD9FA349DBBPR08MB5915eurp_"
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR08MB5018
Original-Authentication-Results: hallambaker.com; dkim=none (message not signed) header.d=none;hallambaker.com; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: VE1EUR03FT044.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: 4635c385-efa0-4a36-1c37-08d92ca2e85b
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(4636009)(136003)(376002)(396003)(39850400004)(346002)(46966006)(36840700001)(9686003)(9326002)(316002)(8936002)(478600001)(54906003)(55016002)(4326008)(82310400003)(47076005)(82740400003)(107886003)(2906002)(356005)(81166007)(36860700001)(33656002)(6862004)(336012)(15650500001)(86362001)(8676002)(53546011)(83380400001)(70206006)(70586007)(6506007)(33964004)(52536014)(186003)(7696005)(26005)(5660300002)(85893002); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 Jun 2021 06:34:20.4525 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 955434bf-c74d-4ecc-b753-08d92ca2f202
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: VE1EUR03FT044.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR08MB3620
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/WxhdXH0Ojq8Xah7ClQkfoyV9f80>
Subject: Re: [Suit] Surprising push back on the need for a customer to verify the trust relationship between a software supplier and software signer during digital signature validation on signed code
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 11 Jun 2021 06:34:37 -0000
Hi Phil, a few clarifying questions. * What is a “trustworthy credential” for you? * Who is the “provider” here? * What do you mean by “Must identify such machines”? Are you saying that the software / firmware update must identity the machine it applies to? * When you say “Every software distribution MUST be signed without exception” are you trying to distinguish between the signing the software vs. securing the distribution? With regards to the exception you are not talking about what happens during manufacturing. Ciao Hannes From: Phillip Hallam-Baker <phill@hallambaker.com> Sent: Friday, June 11, 2021 12:22 AM To: Hannes Tschofenig <Hannes.Tschofenig@arm.com> Cc: dick@reliableenergyanalytics.com; Brendan Moran <Brendan.Moran@arm.com>; suit <suit@ietf.org>; Russ Housley <housley@vigilsec.com> Subject: Re: [Suit] Surprising push back on the need for a customer to verify the trust relationship between a software supplier and software signer during digital signature validation on signed code I strongly disagree. Given my history of involvement in the WebPKI, I am certainly not biased against CAs. My concern is different. I see multiple concerns: 1) Every software distribution MUST be signed without exception 2) All software executables and data installed on a machine MUST be signed by the provider. 3) All signatures MUST be under keys that have a trustworthy credential. The reason I reject (3) is because I insist on (1) and (2). I want every piece of software to be signed on every machine without any exception whatsoever. That includes every development build, every open source project, every script written by the user. And that should apply to every desktop, laptop, tablet, mobile etc. Thing is that I can't have the strong signing model I want if I also insist that every credential be an EV signature. It is one or the other. I choose everything signed. For critical infrastructure devices, I suggest the following: 0) Must identify such machines and label them prominently 1) Software must be signed under trustworthy credential 2) Platform must verify signature before executable is launched. IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [Suit] Surprising push back on the need for a cus… Dick Brooks
- Re: [Suit] Surprising push back on the need for a… Hannes Tschofenig
- Re: [Suit] Surprising push back on the need for a… Dick Brooks
- Re: [Suit] Surprising push back on the need for a… Hannes Tschofenig
- Re: [Suit] Surprising push back on the need for a… Dick Brooks
- Re: [Suit] Surprising push back on the need for a… Russ Housley
- Re: [Suit] Surprising push back on the need for a… Phillip Hallam-Baker
- Re: [Suit] Surprising push back on the need for a… Hannes Tschofenig
- Re: [Suit] Surprising push back on the need for a… Dick Brooks
- Re: [Suit] Surprising push back on the need for a… Dick Brooks
- Re: [Suit] Surprising push back on the need for a… Phillip Hallam-Baker
- Re: [Suit] Surprising push back on the need for a… Laurence Lundblade
- Re: [Suit] Surprising push back on the need for a… Michael Richardson
- Re: [Suit] Surprising push back on the need for a… Michael Richardson
- Re: [Suit] Surprising push back on the need for a… Toerless Eckert
- Re: [Suit] Surprising push back on the need for a… Phillip Hallam-Baker
- Re: [Suit] Surprising push back on the need for a… Phillip Hallam-Baker
- Re: [Suit] Surprising push back on the need for a… Dick Brooks