IETF Logo Mail Archive

[Suit] Mapping draft-birkholz-rats-suit-claims system properties

Dave Thaler <dthaler@microsoft.com> Wed, 26 January 2022 19:31 UTC

Return-Path: <dthaler@microsoft.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0A0753A1D2A; Wed, 26 Jan 2022 11:31:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.883
X-Spam-Level:
X-Spam-Status: No, score=-1.883 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.576, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RDNS_NONE=0.793, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id O4JFpqSN7sMm; Wed, 26 Jan 2022 11:31:25 -0800 (PST)
Received: from na01-obe.outbound.protection.outlook.com (unknown [IPv6:2a01:111:f403:c110::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 13E0C3A1D28; Wed, 26 Jan 2022 11:31:25 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=bXkLlHX5nEmM1B6GqCJIUT75M3NihZUpECf4CV70q+MdxoEB1hVwYktUy4joGCA4ZIyHWlcoroFoAijfxYiC3HbCSJ50S1B3LIMbrNcARYIDj1Sp/s/ABptbKkICzzJZzZLRtOG0PeHxR7vw5WaUEPywpRUgfG46AE+fZ2Pevvg2BcWS6j8+9h8tuNWKY13AgHUYS2TRz10KygJ73hL8Z+fQ932vSu4I8+rf2nyoE7g/MfVTb8XiOsLGdu1h53ke+dloyy+lSQ2Gi1/s0debJQiQrU0eY2daNkJq8U6/zPsoIktuCpRGoN9AsOUzmcx2byzOYqUIkJH4hBFqgKtjsw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=Uwt3SOqt6XWtQZXMOcJN97w6EWMLBiQrGRa4Oj1PjoE=; b=eejEItEY3Dkkh7jqd6MtupRl++VUjNbgSF6FXEFH+OE6cDhjyYKnB6tPyF1riBU+3M1nrJDSbZjkbOjYUFD33DB5oTv4pXKdgWH1NEWSPVGWUpXPHeU9rlV+kKKWquPEmh+NGZXOLcqx5CXWSVBWaEcF4wdgsLLFePdh6v8gbu9zQWVDa6CUE2hklE8z9N8UJbHiliCdpSdWjexC4VCqFl3DRXqB/UWUOwGWD0LHWxv+I376p2uizx8z/8YmQqsJd6E0n5jRMBSWMBoHcboJFgu1z+1eD8p6JZVc/BqULqKQtHfE3dy1Ylt27TtrGRybFg143dUyK9Q6qOR09y/dHA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Uwt3SOqt6XWtQZXMOcJN97w6EWMLBiQrGRa4Oj1PjoE=; b=Fk/X+MgShAchxbPfX1mgov/hwYcyayybofQuR/FPchp4OtnydOUMNhutUYbNtCMEgG4RF9XJC2k7t6+hqg+ktdMX53IrSCkbqR/UkFekuXbzTTgBF9qG8k0GiHvzZdB8qIjLHt74/9muBVqicWyp3DQKSdjfp1g2PfPywk3Q4IY=
Received: from CH2PR21MB1464.namprd21.prod.outlook.com (2603:10b6:610:89::16) by SJ0PR21MB1886.namprd21.prod.outlook.com (2603:10b6:a03:299::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4930.4; Wed, 26 Jan 2022 19:31:19 +0000
Received: from CH2PR21MB1464.namprd21.prod.outlook.com ([fe80::ad0c:429c:ba5d:5ba4]) by CH2PR21MB1464.namprd21.prod.outlook.com ([fe80::ad0c:429c:ba5d:5ba4%3]) with mapi id 15.20.4951.005; Wed, 26 Jan 2022 19:31:19 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: "rats@ietf.org" <rats@ietf.org>, "suit@ietf.org" <suit@ietf.org>
CC: "TEEP@ietf.org" <teep@ietf.org>
Thread-Topic: Mapping draft-birkholz-rats-suit-claims system properties
Thread-Index: AdgS6XITWPT6B91jRuKmpGOYYHzbsA==
Date: Wed, 26 Jan 2022 19:31:19 +0000
Message-ID: <CH2PR21MB146449C0E2DFD38D79BB338BA3209@CH2PR21MB1464.namprd21.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=176bce1d-8d58-47bf-968f-eefc9da14b38; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2022-01-26T19:17:26Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 65d1c276-f97e-462d-4783-08d9e1026dc9
x-ms-traffictypediagnostic: SJ0PR21MB1886:EE_
x-ms-exchange-atpmessageproperties: SA|SL
x-microsoft-antispam-prvs: <SJ0PR21MB188678FA6091C36678042FF0A3209@SJ0PR21MB1886.namprd21.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:2733;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR21MB1464.namprd21.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(5660300002)(55016003)(33656002)(110136005)(83380400001)(52536014)(10290500003)(82950400001)(508600001)(82960400001)(71200400001)(122000001)(66556008)(64756008)(66476007)(76116006)(186003)(8990500004)(66946007)(7696005)(38100700002)(316002)(2906002)(6506007)(86362001)(450100002)(9686003)(4326008)(66446008)(38070700005)(8936002)(8676002)(20210929001); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_CH2PR21MB146449C0E2DFD38D79BB338BA3209CH2PR21MB1464namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH2PR21MB1464.namprd21.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 65d1c276-f97e-462d-4783-08d9e1026dc9
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Jan 2022 19:31:19.6978 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: BPfBItI2ULPACAI5DJhoWMPTiYBpgB/f7lXEjFNiyEid4InhNiu/XMxbgtx1smNO4LIEYafSokx+AsRe6cQ32OCzXn7qQnOb/Wq3ZcB3C2Y=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR21MB1886
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/ZJDRKB76klmdmVUeGYrx-TtgYes>
Subject: [Suit] Mapping draft-birkholz-rats-suit-claims system properties
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Jan 2022 19:31:27 -0000

As requested at the end of the joint interim meeting, below is my (now updated with the latest section numbers) table mapping properties between draft-birkholz-rats-suit-claims and draft-ietf-rats-eat, and by extension draft-ietf-sacm-coswid which EAT references for format within some claims like swevidence.

The mapping isn't exactly 1:1 but my reading is things do map.  For example,
EAT separates hw and sw properties into separate claim ids in hw vs sw claimsets, whereas draft-birkholz-rats-suit-claims combines them by proposing the same claim id in both claimsets.

SUIT                EAT             CoSWID
=====               ===             ======
3.1.1               3.6 (hw)
vendor-identifier   oemid
                    3.21 (sw)       2.6
                    swevidence      reg-id
3.1.2
class-identifier    (no mapping)

3.1.3               3.4
device-identifier   ueid

3.1.4               3.21            2.6
image-digest        swevidence      thumbprint

3.1.5               3.21            2.9.2
image-size          swevidence      size

3.1.6               3.7 (hw)
version             hardware-version-claims
                    3.9 (sw)
                    sw-version-type

Please check my work, as I believe all of above except
class-identifier can be deleted from the SUIT document
and just use the corresponding claims in the EAT document.

Dave

v2.23.0 | Report a Bug | By Email