IETF Logo Mail Archive

Re: [Suit] suit-firmware-encryption-00

Brendan Moran <Brendan.Moran@arm.com> Wed, 02 June 2021 13:54 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6785B3A43B8 for <suit@ietfa.amsl.com>; Wed, 2 Jun 2021 06:54:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=D6kvVR7c; dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com header.b=D6kvVR7c
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9dfltWzClKMo for <suit@ietfa.amsl.com>; Wed, 2 Jun 2021 06:54:31 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60061.outbound.protection.outlook.com [40.107.6.61]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BAB43A43B9 for <suit@ietf.org>; Wed, 2 Jun 2021 06:54:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=iKsya/YIwXfxNgrU4b7hsJIE8O+fBNuJuO/niyZdTcE=; b=D6kvVR7cBx7zjIOMQnigI9O55z5PEwbu5gYTMnzeKR6XjWWMG1xyV13k8Tv1+MADsH64TB8meVoN9TQ1neaC/6UZK4CAe0Ooiv5MOngyKn+2bnY/Ja1t8XmqC/MWi5h0qVrG++41Oat9yTtvsoeXLJ51DvrkP5Nsv3Lh98Xlj8s=
Received: from DB6PR0301CA0041.eurprd03.prod.outlook.com (2603:10a6:4:3e::51) by AM9PR08MB6900.eurprd08.prod.outlook.com (2603:10a6:20b:302::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4173.20; Wed, 2 Jun 2021 13:54:26 +0000
Received: from DB5EUR03FT064.eop-EUR03.prod.protection.outlook.com (2603:10a6:4:3e:cafe::c1) by DB6PR0301CA0041.outlook.office365.com (2603:10a6:4:3e::51) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4195.20 via Frontend Transport; Wed, 2 Jun 2021 13:54:26 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 63.35.35.123) smtp.mailfrom=arm.com; ietf.org; dkim=pass (signature was verified) header.d=armh.onmicrosoft.com;ietf.org; dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 63.35.35.123 as permitted sender) receiver=protection.outlook.com; client-ip=63.35.35.123; helo=64aa7808-outbound-1.mta.getcheckrecipient.com;
Received: from 64aa7808-outbound-1.mta.getcheckrecipient.com (63.35.35.123) by DB5EUR03FT064.mail.protection.outlook.com (10.152.21.199) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4150.30 via Frontend Transport; Wed, 2 Jun 2021 13:54:24 +0000
Received: ("Tessian outbound cce4cc55b7ee:v93"); Wed, 02 Jun 2021 13:54:24 +0000
X-CheckRecipientChecked: true
X-CR-MTA-CID: 3c084034deac2fef
X-CR-MTA-TID: 64aa7808
Received: from b9320655716c.2 by 64aa7808-outbound-1.mta.getcheckrecipient.com id 0810F68C-00D0-48A6-B0AD-E24E05003FE7.1; Wed, 02 Jun 2021 13:54:06 +0000
Received: from EUR05-VI1-obe.outbound.protection.outlook.com by 64aa7808-outbound-1.mta.getcheckrecipient.com with ESMTPS id b9320655716c.2 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384); Wed, 02 Jun 2021 13:54:06 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=abYezdAgniuSw74LtDFZ+/cNS0caH3oVg0T8qJUrF0RgVPew1EsRcr4JtDOq0NM46N2ulawo4k7GQHg0JGy0pMMu5i4QXTcbEJUjY2+xo1dlecB98MNdbrv7UR7UhnyWdwwZeTgoSAxqGlKFawzoJHaqf9eXOIdBwis1M3yUxKuKupeXvZmb4D9PWhIshOnE4VaqRrxxzEt+50cvCbsGNJ/LFNzTp2+t6FjrMPVw1oTvR8ykSrUWAm9JQ6dlnJ89ki8DA9r7zUTdey9L8IrKzp1/fuiL+3PrAK33RQMTs2xeP2Mw2gpNc8LCpwrsN5vNTeNojyEDyWY7AZX6sbDU+w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=iKsya/YIwXfxNgrU4b7hsJIE8O+fBNuJuO/niyZdTcE=; b=CD5TonTSaqmLPpdCKMTSREiVsG13uHeVgfRHvZHh+hwi1KwwDHrAj+PllVK9ZE22OY+YXvVuvyfLUbwWsT+6aVKywVmx7KKRREJGlRN8NXCJTb5P+f+CmmW3SeJuBcbXaspUc4u4c+aKC8gYxUkzeBfOiSYOZVPB3BfGV5llGVgPnYOr/FuZg7+gCovAJpV1sGSUhFGbc94UoaQ1dkToA2aoSI5MVLi+cnfwR2nBUhY+G0IB0/31mAlhFWwpOKFS3ZOITDH27UOG0d2I5elUumzSyetecvSlsbSGEZk4JqUPMcsoZ2uo6wF6lEljEzUu2ZbKF53lPn4Huk2Y9Ke0ow==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector2-armh-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=iKsya/YIwXfxNgrU4b7hsJIE8O+fBNuJuO/niyZdTcE=; b=D6kvVR7cBx7zjIOMQnigI9O55z5PEwbu5gYTMnzeKR6XjWWMG1xyV13k8Tv1+MADsH64TB8meVoN9TQ1neaC/6UZK4CAe0Ooiv5MOngyKn+2bnY/Ja1t8XmqC/MWi5h0qVrG++41Oat9yTtvsoeXLJ51DvrkP5Nsv3Lh98Xlj8s=
Received: from DBAPR08MB5576.eurprd08.prod.outlook.com (2603:10a6:10:1ae::11) by DB6PR0802MB2453.eurprd08.prod.outlook.com (2603:10a6:4:9e::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4173.22; Wed, 2 Jun 2021 13:54:04 +0000
Received: from DBAPR08MB5576.eurprd08.prod.outlook.com ([fe80::488c:be63:d9fe:b0e0]) by DBAPR08MB5576.eurprd08.prod.outlook.com ([fe80::488c:be63:d9fe:b0e0%7]) with mapi id 15.20.4173.030; Wed, 2 Jun 2021 13:54:03 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Dick Brooks <dick@reliableenergyanalytics.com>
CC: Hannes Tschofenig <Hannes.Tschofenig@arm.com>, Russ Housley <housley@vigilsec.com>, Michael Richardson <mcr+ietf@sandelman.ca>, suit <suit@ietf.org>
Thread-Topic: [Suit] suit-firmware-encryption-00
Thread-Index: AQHXUy5zvx3nHIfq0kuzjZIH4a2amqr9uSuAgAAS7gCAAAUmgIAAAfoAgAABRQCAAADUAIAAAxaAgAAvdwCAAADOgIAA9f8AgAAOUACAABoAgIAABCqAgAAty4CAABcQAIABRg2AgAAC+gCAAAK3gIAABCCAgAAHQoA=
Date: Wed, 02 Jun 2021 13:54:03 +0000
Message-ID: <B1D2DACA-3015-4036-841F-EAE6087CCB30@arm.com>
References: <19586.1622075797@localhost> <DBBPR08MB5915CEC125579D78C108D540FA3F9@DBBPR08MB5915.eurprd08.prod.outlook.com> <F6C86CC2-3AF8-4CC5-BB47-AC6579DAA0C4@vigilsec.com> <13894.1622479289@localhost> <64BDF7A0-4B70-4EB3-A764-2BD6CAA3921A@vigilsec.com> <132601d7563d$7097f680$51c7e380$@reliableenergyanalytics.com> <E2D893E5-8462-4F69-88D0-29167B6DB1B3@vigilsec.com> <140a01d7563f$65d2a130$3177e390$@reliableenergyanalytics.com> <DBBPR08MB591549CB964EA7E18C8640C2FA3F9@DBBPR08MB5915.eurprd08.prod.outlook.com> <18b401d75657$880bfef0$9823fcd0$@reliableenergyanalytics.com> <DBBPR08MB59158723623695EB0473637FFA3E9@DBBPR08MB5915.eurprd08.prod.outlook.com> <223201d756d9$af8bddb0$0ea39910$@reliableenergyanalytics.com> <DBBPR08MB5915C1F5529E8801DF5AFD09FA3E9@DBBPR08MB5915.eurprd08.prod.outlook.com> <272401d756e8$c446ba90$4cd42fb0$@reliableenergyanalytics.com> <DBBPR08MB59159E70B7ED1575EF82A745FA3E9@DBBPR08MB5915.eurprd08.prod.outlook.com> <32f301d7570b$316490d0$942db270$@reliableenergyanalytics.com> <010627E5 -A66D-48D5-8F89-B1BC11F2714D@arm.com> <031a01d757af$b5bdb100$21391300$@reliableenergyanalytics.com> <C5221278-D5BB-4F71-B3B3-8EB654B6984B@arm.com> <047901d757b3$20be8bc0$623ba340$@reliableenergyanalytics.com>
In-Reply-To: <047901d757b3$20be8bc0$623ba340$@reliableenergyanalytics.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3654.100.0.2.22)
Authentication-Results-Original: reliableenergyanalytics.com; dkim=none (message not signed) header.d=none;reliableenergyanalytics.com; dmarc=none action=none header.from=arm.com;
x-originating-ip: [80.7.184.196]
x-ms-publictraffictype: Email
X-MS-Office365-Filtering-Correlation-Id: eb73baa1-6931-40ae-ea5d-08d925cdee57
x-ms-traffictypediagnostic: DB6PR0802MB2453:|AM9PR08MB6900:
x-ms-exchange-transport-forked: True
X-Microsoft-Antispam-PRVS: <AM9PR08MB690054D5D9EE3F61AC6F56BFEA3D9@AM9PR08MB6900.eurprd08.prod.outlook.com>
x-checkrecipientrouted: true
nodisclaimer: true
x-ms-oob-tlc-oobclassifiers: OLM:4941;OLM:4941;
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Untrusted: BCL:0;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DBAPR08MB5576.eurprd08.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(376002)(39860400002)(346002)(136003)(366004)(396003)(122000001)(166002)(38100700002)(83380400001)(30864003)(316002)(66946007)(2616005)(45080400002)(4326008)(33656002)(6506007)(66574015)(36756003)(64756008)(76116006)(91956017)(26005)(6916009)(478600001)(71200400001)(2906002)(53546011)(186003)(6486002)(8936002)(8676002)(966005)(6512007)(66556008)(66476007)(66446008)(5660300002)(86362001)(54906003)(45980500001)(559001)(579004); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: qYqIFVlfj7jfdPuWmQcTOXbEbD2uTht/RjZiDnzfbc+ngM5AwTLhJBx3c2m76QvRkrkr2SDyOmfxzY9ke1b2IyjaUMCL/txNAzt8V9SgEhz0gpSnXvGKc8f4c8nbkLrXB2w2bXRiF73OBl+Byw8wSYLzkBBjKwbnVLySqaRSiCIySmg7IKJL50Jlqr/JxdR+QrAhelUzGFcu58yVFDKK/8UOSrZyJZwoxenlaVG+4s8CulsoJYZmf6f+bK8shBkkIwao+vLJhtGrZQnDeUi97b626P1UFq2D0tcymotxjtVFyZ463YcAwW2i8uoiufRGIspojEPXvtqL+RiLL6RxB39PqLXZcb9UvyrbaOMKCC9IuioYuvFKQd8TqZUW8bHrFjL2TUC0dNhWn6rHQjow+1ET3xgnOjLxHoOnGrwc57XOlCiOeU6NREeD3AysTYC2vTk9zytrcPB30cnGRMf15Px6hrZerilfefLAo6mzFRq9VLy7hMiAmLlTbcZeUc8OQ7NSw5/V6JwVgwdOrtd25XBKwKnlUh+CpP3wUuuDHVxK0BnOv+jrGUm5Qut2TvxmEgnZfpvluZQHXqWTXzBxEzE7pbyufI7strmjRx6n4N3e5yqz2IV+dNYhoZMCkrei/dcFkt3EE2Neouin0XyyowRsm0HaP86GkEDJThVGLWvTr6uLm9gBieFzU8Sk4ZlU0JBONKjlUJBDiCLYPtrWSWbxBFw+zUKYfBi2dw5MRNvd//Kk5WSdtwc/5wggfIYKa5qdwALPn95pvrqQ1Qp2UDj5UHdelYsqMky+TPQeI4+md/7nUx0/ZfW/S7zBc4JpkXeqEoUruhKqNBbCJ76uE5Ou525NgkwlWIxXm+vvJRBwSxUsivxRrVJIY0fZwyJz3X9qFiTnTE8pWIHFpdb8Ap86GxRpXKyR3PgLDA1vS5y52Bb6FiIZ0yGAqPLWeVodRCG0g8CxoN9CbpNVFhJQPrbV97dMKI1aoxRSatdC1pCcUig4+FhlFuZsB0mxFoaAK9cM5IKlb6I+AIo6iSj2WxZS9hse7LV4ZFz/DFe/we1uCBo9c3S0YJq4vXn/NGB0T7KQJuwV/Yyt/e/vz9lRnI1PInot3nqYJIaSfYOWJQjjZj3wjI/xpcn+7sc/a7mnalvQLpDUN9i9WPRbCAZUISKeq/3T1wXiLyG1Us7agm7ge3ZxKMcBsj1nS9wn9vDhQ2GuLmEeZ06Zg6//Tn5WQujhnvxK49lRJKroCYZV/9Fa09+ddym9IRX0cIe7KreFsn3gFB2ncMOmJlK+sdf4yembMQZdK7gwRo48ozHO9jslPZ/nxiozhlO9Hr5mC2pR
Content-Type: multipart/alternative; boundary="_000_B1D2DACA30154036841FEAE6087CCB30armcom_"
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0802MB2453
Original-Authentication-Results: reliableenergyanalytics.com; dkim=none (message not signed) header.d=none;reliableenergyanalytics.com; dmarc=none action=none header.from=arm.com;
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: DB5EUR03FT064.eop-EUR03.prod.protection.outlook.com
X-MS-Office365-Filtering-Correlation-Id-Prvs: d0428b3f-bbae-4646-2426-08d925cde1f6
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:63.35.35.123; CTRY:IE; LANG:en; SCL:1; SRV:; IPV:CAL; SFV:NSPM; H:64aa7808-outbound-1.mta.getcheckrecipient.com; PTR:ec2-63-35-35-123.eu-west-1.compute.amazonaws.com; CAT:NONE; SFS:(4636009)(136003)(376002)(346002)(39860400002)(396003)(36840700001)(46966006)(36756003)(53546011)(478600001)(6862004)(33964004)(6506007)(30864003)(6486002)(81166007)(4326008)(54906003)(186003)(70206006)(356005)(70586007)(33656002)(82310400003)(966005)(8676002)(2616005)(26005)(336012)(6512007)(8936002)(82740400003)(66574015)(316002)(83380400001)(47076005)(45080400002)(5660300002)(36860700001)(86362001)(2906002)(166002)(559001)(579004); DIR:OUT; SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 02 Jun 2021 13:54:24.6798 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: eb73baa1-6931-40ae-ea5d-08d925cdee57
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d; Ip=[63.35.35.123]; Helo=[64aa7808-outbound-1.mta.getcheckrecipient.com]
X-MS-Exchange-CrossTenant-AuthSource: DB5EUR03FT064.eop-EUR03.prod.protection.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM9PR08MB6900
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/_gvclKkOv0BL_I0KH7E3sXKb6IE>
Subject: Re: [Suit] suit-firmware-encryption-00
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Jun 2021 13:54:37 -0000

Hi Dick

Brendan,

You make an excellent point that the devices themselves have built in trust relationships that the device is capable of verifying.

The scenario I'm describing goes like this:

A SW vendor announces that a new security patch is available for download.

End use customer downloads the SW per vendor instructions.

Customer wants to perform a SCRM  software supply chain risk assessment before installing the SW patch on a device.

What standard/formal process is available to the SW customer to verify that the signer of the SW patch was authorized to sign the package by the original software supplier?
I have not found any specific standard or formal practices that prescribe a method to verify the trust relationship between a software supplier and an authorized software code signer.

Really, this is just an extension of the device use-case. If the device reports to its management system (the SW Customer) what public keys it trusts, then the SW customer can verify a manifest prior to distribution. Regardless, if the device receives a manifest signed by an untrusted source, it can identify that when it checks the `kid` header in the signature. That means it can reject the manifest before even validating the signature. This means the device only pays the cost of receiving the manifest.

In any case, device operators (SW Customers) should have access to the public keys of any trust anchors so that they can do pre-distribution checks. (https://datatracker.ietf.org/doc/html/draft-ietf-suit-information-model-12#section-4.3.19)


Current code signing and verification practices allow any party to sign software and an "unauthorized signature" will be reported as verified by tools such as Microsoft's signtool. This is the security gap that needs to be plugged.

I don’t think we should take the policies used by signtool as an indication of how IoT devices built with SUIT will work. I think it’s more important to consider the SUIT threat model and security requirements.

A SW customer MUST be able to perform a SCRM risk assessment to ascertain some level of assurance that a SW package is trustworthy before any attempt to install. This is a current requirement of NERC CIP-010-3 software verification requirements.

Best Regards,
Brendan

Thanks,

Dick Brooks

Never trust software, always verify and report! ™
http://www.reliableenergyanalytics.com<http://www.reliableenergyanalytics.com/>
Email: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>
Tel: +1 978-696-1788

-----Original Message-----
From: Brendan Moran <Brendan.Moran@arm.com<mailto:Brendan.Moran@arm.com>>
Sent: Wednesday, June 2, 2021 9:13 AM
To: Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>>
Cc: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; Russ Housley <housley@vigilsec.com<mailto:housley@vigilsec.com>>; Michael Richardson <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: Re: [Suit] suit-firmware-encryption-00

Hi Dick,

To verify any signature, you have to get a public key from somewhere. If the recipient device doesn’t have the relevant public key, then the signature isn’t valid. The flaw that you describe is based entirely on a system that’s overeager to deliver public keys to devices without applying any ACL.

This is why we explicitly call out ACLs in the information model: https://datatracker.ietf.org/doc/html/draft-ietf-suit-information-model-12#section-4.3.13

Constrained devices have access to a constrained set of public keys. They have one trust anchor, sometimes two or three. However those trust anchors have specific duties. For example, one might be the trust anchor for firmware updates, a second might be for the remote management system, and a third might be for data reporting. If you have the ability to dynamically install new trust anchors, then you create a problem. This needs to be carefully considered.

But whatever the case, this is a security consideration. Manifests MUST be signed by known public keys. Public keys MUST have endorsements for specific capabilities on the target device. That mechanism is not in-scope for the manifest itself, but it is certainly in-scope for the manifest security considerations. The manifest security considerations are covered int he information model, which contains the section about ACLs.

Is that adequate coverage?

Best Regards,
Brendan

On 2 Jun 2021, at 14:03, Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>> wrote:

Brendan,

I agree that a trust anchor is specified in SUIT, however when you
look at the basis for this trust anchor (COSE) you find this
information

https://datatracker.ietf.org/doc/html/rfc8152#section-4.4
COSE's Signing and Verification process contains the following guidance:

In addition to performing the signature verification, the application
 may also perform the appropriate checks to ensure that the key is
 correctly paired with the signing identity and that the signing
 identity is authorized before performing actions.

The problem seems to be that there is no formal/standard define method
for a SW consumer to verify that a signer has been authorized by the
original source supplier to sign software on their behalf. Anyone can
sign anyone's software package, and it is verified as successful by Microsoft's signtool.
This is a problem for the SCRM community.

Thanks,

Dick Brooks

Never trust software, always verify and report! T
http://www.reliableenergyanalytics.com
Email: dick@reliableenergyanalytics.com
Tel: +1 978-696-1788

-----Original Message-----
From: Brendan Moran <Brendan.Moran@arm.com>
Sent: Wednesday, June 2, 2021 8:53 AM
To: Dick Brooks <dick@reliableenergyanalytics.com>
Cc: Hannes Tschofenig <Hannes.Tschofenig@arm.com>; Russ Housley
<housley@vigilsec.com>; Michael Richardson <mcr+ietf@sandelman.ca>;
suit@ietf.org
Subject: Re: [Suit] suit-firmware-encryption-00



DB>> Currently software consumers do not have a standard method to
DB>> verify
that a signing party has been authorized to sign on behalf of a
software source supplier, when performing digital signature
verification on a software package. Many people "assume" that the
signing party is the software source supplier.  A digital signature
alone is insufficient at identifying the software source supplier
because anyone with a code signing key can sign any software package,
as
demonstrated in this article:
https://energycentral.com/c/ec/who-ya-gonna-trust

This may well be true in the general case, but this is not true for SUIT.
SUIT manifests must be verified all the way back to a trust anchor.

https://datatracker.ietf.org/doc/html/draft-ietf-suit-manifest-13#section-5.
2

 Delegation Chains allow a Recipient to establish a chain of trust
 from a Trust Anchor to the signer of a manifest by validating
 delegation claims.  Each delegation claim is a [RFC8392] CBOR Web
 Tokens (CWTs).  The first claim in each list is signed by a Trust
 Anchor.  Each subsequent claim in a list is signed by the public key
 claimed in the preceding list element.  The last element in each list
 claims a public key that can be used to verify a signature in the
 Authentication Block (
Section 5.3).
See also
https://datatracker.ietf.org/doc/html/draft-ietf-suit-manifest-13#section-8.
3

This is also described in the information model:
https://datatracker.ietf.org/doc/html/draft-ietf-suit-information-mode
l-12#s
ection-3.25

See also REQ.SEC.ACCESS_CONTROL:
https://datatracker.ietf.org/doc/html/draft-ietf-suit-information-mode
l-12#s
ection-4.3.13

 If a device grants different rights to different actors, then an
 exercise of those rights MUST be validated against a list of rights
 for the actor.  This typically takes the form of an Access Control
 List (ACL).  ACLs are applied to two scenarios:

 1.  An ACL decides which elements of the manifest may be overridden
     and by which actors.

 2.  An ACL decides which component identifier/storage identifier
     pairs can be written by which actors.

 Mitigates: THREAT.MFST.OVERRIDE (Section 4.2.13),
 THREAT.UPD.UNAPPROVED (Section 4.2.11)

Best Regards,
Brendan


DB>> I plan to raise the need for a formal method to verify
DB>> authorized code
signing parties on behalf a software source supplier during digital
signature validation as a topic during NIST's EO workshop in 6/2-3.

(It is not unlikely that the delegation mechanism would benefit from
more
details...)

Ciao
Hannes

-----Original Message-----
From: Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>>
Sent: Tuesday, June 1, 2021 3:20 PM
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; 'Russ Housley'
<housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

Hannes,

Will the SUIT manifest contain an attestation of a clean malware scan
that can be verifiably validated for the encrypted software in hand?
That would help, if a malware scan is not an option.

The other issue that needs to be addressed is the ability for a
software consumer to verify that the signing party of a software
object has been given authorization to sign code on behalf of a
software source supplier (VENDOR ID) in the manifest, using a
standard method - something similar to DNS CAA records, but for
digital signatures,
e.g. maybe DNS DSA records.

Ref: "Vendor ID is not intended to be a human-readable element.  It
is intended for binary match/mismatch comparison only."

Thanks,

Dick Brooks

Never trust software, always verify and report! T
http://www.reliableenergyanalytics.com<http://www.reliableenergyanalytics.com/>
Email: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>
Tel: +1 978-696-1788

-----Original Message-----
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>
Sent: Tuesday, June 1, 2021 9:05 AM
To: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>; 'Russ Housley'
<housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

It is a challenge.

The SUIT manifest provides the capabilities to give authorized
parties extra information (via the manifest meta-data and software
description*) while providing less info to adversaries.

(*): I am assuming that the info offered via MUD, COSWID, and the
textual description is of any help to you. If it is not, then you
need to let us know what other pieces of information will have to be
included in the manifest to become valuable to make the risk assessment.

Ciao
Hannes

-----Original Message-----
From: Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>>
Sent: Tuesday, June 1, 2021 1:32 PM
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; 'Russ Housley'
<housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

Hannes,

I definitely see your point, it seems the real problem to solve is:
- How do we (1) prevent the bad guys from discovering SW details
(source
code) from binaries while simultaneously (2) providing end use
customers the ability to conduct malware scans, and other risk
management
functions?

If we encrypt a binary distribution we achieve 1 but not 2 If we do
not encrypt we achieve 2, but not 1

Are we really looking at a mutually exclusive choice?

Both of these objectives are trying to achieve the same thing: Keep
the bad guys from causing harm.

Thanks,

Dick Brooks

Never trust software, always verify and report! T
http://www.reliableenergyanalytics.com<http://www.reliableenergyanalytics.com/>
Email: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>
Tel: +1 978-696-1788

-----Original Message-----
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>
Sent: Tuesday, June 1, 2021 6:40 AM
To: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>; 'Russ Housley'
<housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

Dick, I understand your line of argument.

At the same time I want to create awareness for the attacker point of
view.
They need to get access to plaintext firmware of an embedded device
(unless the attacker already knows what the source was used). This is
why there are advanced disassemblers available (such as IDA Pro,
Binary Ninja, and Ghidra
-- to name a few).

As a way forward I am proposing to use the additional data carried in
the manifest for doing the SCRM risk assessment step. I believe that
this should work.

Ciao
Hannes

-----Original Message-----
From: Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>>
Sent: Monday, May 31, 2021 10:00 PM
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; 'Russ Housley'
<housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

Thanks, Hannes. I just submitted a concern regarding the problem
encryption creates for malware scanning, which is one of the SCRM
risk assessment steps, performed before installation

Thanks,

Dick Brooks

Never trust software, always verify and report! T
http://www.reliableenergyanalytics.com<http://www.reliableenergyanalytics.com/>
Email: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>
Tel: +1 978-696-1788

-----Original Message-----
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>
Sent: Monday, May 31, 2021 3:57 PM
To: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>; 'Russ Housley'
<housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

Hi Dick,

with the SUIT manifest format I hope we can make information
available to trusted third parties (MUD, COSWID and alike) and at the
same time use encrypted binaries. Having access to the plaintext
binary is essential for adversaries to mount attacks. (Happy to give
a tutorial about how this
works.)

Like-wise differential updates may make it difficult for SCRM vendors
to make their analysis but the information in the manifest can help them.

Severable fields allows to remove information from the manifest
before it is sent to the device. This reduces overhead and prevents
untrusted parties from gathering information from the manifest.

Ciao
Hannes

-----Original Message-----
From: Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>>
Sent: Monday, May 31, 2021 7:07 PM
To: 'Russ Housley' <housley@vigilsec.com<mailto:housley@vigilsec.com>>
Cc: 'Michael Richardson' <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; Hannes Tschofenig
<Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: RE: [Suit] suit-firmware-encryption-00

I agree, Russ.

Parties subject to the 5/12 Executive Order
(https://www.whitehouse.gov/briefing-room/presidential-actions/2021/0
5
/12/ex
ecutive-order-on-improving-the-nations-cybersecurity/) will likely
want to perform a proactive SCRM risk assessment prior to
installation, if my interpretation of the EO is accurate.

Thanks,

Dick Brooks

Never trust software, always verify and report! T
http://www.reliableenergyanalytics.com<http://www.reliableenergyanalytics.com/>
Email: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>
Tel: +1 978-696-1788

-----Original Message-----
From: Russ Housley <housley@vigilsec.com<mailto:housley@vigilsec.com>>
Sent: Monday, May 31, 2021 12:56 PM
To: Dick Brooks <dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>>
Cc: Michael Richardson <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>; Hannes Tschofenig
<Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: Re: [Suit] suit-firmware-encryption-00

Dick:

Yes, and there are other use cases that require encryption.

Russ


On May 31, 2021, at 12:53 PM, Dick Brooks
<dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>> wrote:

" If a trustworthy party in the middle of the distribution path is
able to detect a problem with cleartext (but signed) firmware, they
can report a vulnerability and refuse to pass the update along."

This is precisely the function SCRM vendors are performing today.
Encrypting a binary object would be an impediment to software supply
chain risk assessment functions in place today.

Thanks,

Dick Brooks

Never trust software, always verify and report! T
http://www.reliableenergyanalytics.com<http://www.reliableenergyanalytics.com/>
Email: dick@reliableenergyanalytics.com<mailto:dick@reliableenergyanalytics.com>
Tel: +1 978-696-1788

-----Original Message-----
From: Suit <suit-bounces@ietf.org<mailto:suit-bounces@ietf.org>> On Behalf Of Russ Housley
Sent: Monday, May 31, 2021 12:49 PM
To: Michael Richardson <mcr+ietf@sandelman.ca<mailto:mcr+ietf@sandelman.ca>>
Cc: Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>>; suit@ietf.org<mailto:suit@ietf.org>
Subject: Re: [Suit] suit-firmware-encryption-00

Michael:

I agree that there are also challenges with certification schemes
that prevent developers from seeing the source code (or from
publishing the source code). That's yet another issue.

SUIT is using signature for the authentication and integrity of
the firmware.  If the signature remains in place, a party in the
middle of the distribution cannot insert any malware.

The encryption of the firmware keeps third parties from auditing
the software updates to determine if malware has been inserted at
the
"factory"
Both white and black hats are currently using binary diff systems
to look at patches.  Black hats use this to develop exploits in the
gap between 9am EST and 9am PST!
I am suggesting that this is a "Security Consideration"

Yes, this is a reasonable thing to add to the Security Considerations.

If a trustworthy party in the middle of the distribution path is
able to detect a problem with cleartext (but signed) firmware, they
can report a vulnerability and refuse to pass the update along.

Russ
_______________________________________________
Suit mailing list
Suit@ietf.org<mailto:Suit@ietf.org>
https://www.ietf.org/mailman/listinfo/suit



IMPORTANT NOTICE: The contents of this email and any attachments are
confidential and may also be privileged. If you are not the intended
recipient, please notify the sender immediately and do not disclose
the contents to any other person, use it for any purpose, or store or
copy the information in any medium. Thank you.

IMPORTANT NOTICE: The contents of this email and any attachments are
confidential and may also be privileged. If you are not the intended
recipient, please notify the sender immediately and do not disclose
the contents to any other person, use it for any purpose, or store or
copy the information in any medium. Thank you.

IMPORTANT NOTICE: The contents of this email and any attachments are
confidential and may also be privileged. If you are not the intended
recipient, please notify the sender immediately and do not disclose
the contents to any other person, use it for any purpose, or store or
copy the information in any medium. Thank you.

IMPORTANT NOTICE: The contents of this email and any attachments are
confidential and may also be privileged. If you are not the intended
recipient, please notify the sender immediately and do not disclose
the contents to any other person, use it for any purpose, or store or
copy the information in any medium. Thank you.

_______________________________________________
Suit mailing list
Suit@ietf.org
https://www.ietf.org/mailman/listinfo/suit

IMPORTANT NOTICE: The contents of this email and any attachments are
confidential and may also be privileged. If you are not the intended
recipient, please notify the sender immediately and do not disclose
the contents to any other person, use it for any purpose, or store or
copy the information in any medium. Thank you.

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email