IETF Logo Mail Archive

Re: [Suit] New Version Notification for draft-moran-suit-mti-00.txt

Laurence Lundblade <lgl@island-resort.com> Fri, 29 July 2022 15:21 UTC

Return-Path: <lgl@island-resort.com>
X-Original-To: suit@ietfa.amsl.com
Delivered-To: suit@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9BA7BC157B5A for <suit@ietfa.amsl.com>; Fri, 29 Jul 2022 08:21:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.907
X-Spam-Level:
X-Spam-Status: No, score=-1.907 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u4rWtV0huy3T for <suit@ietfa.amsl.com>; Fri, 29 Jul 2022 08:21:31 -0700 (PDT)
Received: from NAM04-BN8-obe.outbound.protection.outlook.com (mail-bn8nam04on2093.outbound.protection.outlook.com [40.107.100.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 215F0C157B36 for <suit@ietf.org>; Fri, 29 Jul 2022 08:21:30 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=HWe26nLQEwRO1tV0y/tNKluBnLTKdRIaPWWNqF+N1hgfznpo0mBa3FXCdDzX8/Nih8DfzuZLoZD6WgGa/vOYSF/+FIf7baLSaM+wXizV6Iww7ozS/rdj/YMLHCzoNN8TSGOVx7zecqm0okjrGI94uz0FzZBhs5zGoT4IrOYFsO+G2sC3ay29ghTgqGJQNxbFvaEmbqkM1reKUR7K6vDw8/cWzVSnNKoxXnxF5MgEyz0/+CKnVVM5PgAAhH9yf0gk94yDOVtYWhrz1puwrKU/jKJlGwAVu+iac+vZ2Gb34SnVjSrXubkNDMQa0dvsUKiCsyv677xAmighgvVsY3bf5Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=15va1ZjUOqzB5d0UHpS4YPk1w7xdg3T8vntnl1lb6ls=; b=f9eaEJbrDWQgAc+W8nHqq9yG9XDVfKGFIu6Am3QgywEv+oxsMiKbSwnU7Ccbzs8jfiwL9QU1XOY3tRuZQUY43vK9qlAV/ErYaYyIW4/ZteXk1FFkED+HQ/TAu/27YlaqnWBbB3gbEoeMe/JHA7xAOiEdtmKae8nwhymK0PIzfXGfUzPKeBTbkEBrBR362Z58XtUTdWoD6X8g47ONR3WxRX7/n2zTNQYPwyltVUaWNp5YIGbeUb3nrr+3w2exYIV3GLrVCy4qUaZmogVuIS5PLM2GJkgKMQgwRPuQ5dAkB22cyAom+lkgiBKD1tFk5/24w1Etb2K94YtpJSuorV3mLw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=island-resort.com; dmarc=pass action=none header.from=island-resort.com; dkim=pass header.d=island-resort.com; arc=none
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=island-resort.com;
Received: from PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8) by SJ0PR22MB3168.namprd22.prod.outlook.com (2603:10b6:a03:3ee::5) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5482.11; Fri, 29 Jul 2022 15:21:25 +0000
Received: from PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::ac41:5a17:42c0:16dd]) by PH7PR22MB3092.namprd22.prod.outlook.com ([fe80::ac41:5a17:42c0:16dd%9]) with mapi id 15.20.5482.012; Fri, 29 Jul 2022 15:21:25 +0000
From: Laurence Lundblade <lgl@island-resort.com>
Message-Id: <CC0C3627-9238-44A1-A3B2-4028736CB301@island-resort.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_DD6D575E-A7BF-4157-8424-5ECC54A71882"
Date: Fri, 29 Jul 2022 11:21:22 -0400
In-Reply-To: <BA67DDDE-FEE1-4180-94C6-5597EBCDB024@arm.com>
Cc: suit <suit@ietf.org>
To: Brendan Moran <Brendan.Moran@arm.com>
References: <165756925632.5725.931709287060945912@ietfa.amsl.com> <FBD0078C-A372-44D2-938F-ED3F0FD1E26E@arm.com> <ABB96E4E-2958-4053-B4B1-0AE3A4998E74@island-resort.com> <22437388-09E1-468C-B381-B962AFEB88DB@arm.com> <BA67DDDE-FEE1-4180-94C6-5597EBCDB024@arm.com>
X-Mailer: Apple Mail (2.3608.120.23.2.4)
X-ClientProxiedBy: BL1PR13CA0119.namprd13.prod.outlook.com (2603:10b6:208:2b9::34) To PH7PR22MB3092.namprd22.prod.outlook.com (2603:10b6:510:13b::8)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 0c7ab618-efc3-4b44-143d-08da71760037
X-MS-TrafficTypeDiagnostic: SJ0PR22MB3168:EE_
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:PH7PR22MB3092.namprd22.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(366004)(136003)(396003)(39830400003)(376002)(346002)(86362001)(38100700002)(83380400001)(166002)(6916009)(66946007)(8676002)(316002)(66556008)(4326008)(66476007)(15650500001)(2906002)(186003)(6506007)(33964004)(30864003)(5660300002)(6512007)(53546011)(6666004)(66574015)(8936002)(52116002)(2616005)(41300700001)(478600001)(33656002)(6486002)(966005)(36756003)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: E6P3Gare6a/cxUdJCDUJMPpHIawN2y10CqN4fknPBN/obRCnUvglO3JzIAqmfYjL3J2QOEiIsiMR5VsrCBmxcWUR0Bg9M6gSuAIICdZ/KcVTiu6ioZ3167vDNJE5ebl0SQ1xLIN9MkLjCVAnxpBrF492OYK1wqegEoB0f0WOlsXEQsqenuVUVwREQmbYU7gWyUCEsb06sEKRtZqBMtGSDbAfVmbOdSw64/rYmdnTQGAnI55KUyQzyF2grXM2fP2hBRVs6pzQ41PhBLxQLSRCzgK7ZF1mqeHv/v2oQq3g+tm1gfzoNHMwBBFJu28mmeN5Jv+0h52+Er3ei2XEtZ6kYKHYbRZQJyOmsFbgTSByZzw5WntK5WqvBosi01gNgF3BCYfrWwywRx+knvwyUCtFOHOdTXACU3BsFBcFydK2aj8szjlyVhWJD9NkbMx8w6mKL4rlmXy+nYKAdmVZc2gDEHY7HsZS9MsWQuxWncwIxdYErssv6u6oNqFLM70lrpuCUKklCnXl2bEfxquVpBtsgRnTsSnyXEO9dvdJ2I709+LGFpKPLIos+RoIU65NExXPz+LSLABEPE44x+pD7QOrPXja+2EY+cXMxDvMZuuVJMfi1LVx9UhXlBTkLn0wpmXZyFxnHcZ0okQ8/4QR3JRjiIUfah1AYvrAgWRbjASBlWhx7zF6v0mskJgpZPj0gU5jGrGxCYKXooAthryw3pHvTYEAYYV/nP5ZYTE3jDTxH3f6JiPnYA8zMVmS1bv/sQbNX8jCtvEL7sY6tsYEn+qSdhv1cGvKdoRsMxm9k+ovelCjaqx8LnCT2peDcTxHlQxt7WKVZFkQlzb1xWmLLCylX+d+rSXqG5GxPwq6hCPE9D4QXmM3MmvFEmcIMMOtSdysWU6lwx6vQ77PsBYXElyK6+xgSUHDiaYUe+sRz8ufc1bNRHdXXq9BhBeD1rmBmkLwBEIRuV+fquVoYJLXu0MJp2g1edN19KG7m5wIatNSuMYyW3eMTlVyAIxdi/uHY3dll/DUAWzWn+xNdfjH3bxU3/irl840Wqo87zV0dxfCPGuiBCBE6cdDcYV0+XvR04g4HRb4tS3o9G/b/IskzQAxalQt+tuyrlye7wemuutNVcXeMHix19/rO1tvH+T14kTxLMewV5OPQlSkU/OdSMt9EvUtT2u5QF3shLWDlup92aIqBSCM/SSmjGRyGPRrnMMSJSEngivdIpYyNcz5cb3qyn4BCMOYzjsDx4vvLqC0wBGEIeIZfuyC1mGoA0OKAb1qXpg0dHl2o7/vrvnfBOq28eFU8HwXiMYHQeZAemNTJ/Hq7XAcDUA8pp32ajN9X8zPo6b1vI0OFtbFgst7+YdL2P2+DDrJB2Y5TiFI4X6AvB2NqOj2AENauB3dzVz14wpsSAZBoVKD9WKcz2Tf1BGlgBIPSVXuaeqFIlqaQCoRUGtmlFGCYr1ODELh8LsBbnWhLPY/xgklZ/P8mU8rC0vSYuL8di5WSiSLBd4R72oENCB/hFufXs650/UCJ4WvHI0jP3TK9aRrbisgdHVNiXl9EUZIaNTRaf7KUmkT5By1T3EZNwcpRQOMeoSsM5RPqRtXZNzN8M4j2xPECIqceR5eddhma/WinsBNOeUH034ebRkCzp5pQMRaTwP+d4E6yDrd5juDWZnVmaU9HbwMLozneA==
X-OriginatorOrg: island-resort.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 0c7ab618-efc3-4b44-143d-08da71760037
X-MS-Exchange-CrossTenant-AuthSource: PH7PR22MB3092.namprd22.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 29 Jul 2022 15:21:25.1776 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: ad4b5b91-a549-4435-8c42-a30bf94d14a8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: /bTA2AwMdO6xN4vKpzIQSY85Euqy4YI6WK5GzMl3A9xgLG59J8cDzdSf9Oze99NQ9qZOvM7iEZXLTpIaKGIw/w==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR22MB3168
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/gTSUuQ0FvfcZdE8kQpHsE0kQhDk>
Subject: Re: [Suit] New Version Notification for draft-moran-suit-mti-00.txt
X-BeenThere: suit@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Software Updates for Internet of Things <suit.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/suit>, <mailto:suit-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit/>
List-Post: <mailto:suit@ietf.org>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/suit>, <mailto:suit-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Jul 2022 15:21:33 -0000

Another comment here after the SUIT meeting discussion yesterday and a side conversation with Russ. I’m interested in this because I want to understand better the IETF approach to algorithm interop (for selfish reasons related to EAT).

Basically, I’m pretty unsure that it is good to have MTI in a broad standard like SUIT (or COSE, PKIX, CWT, or EAT). It seems it would be bad for constrained devices that only can implement one algorithm.

If you say every device must implement one of these three

3.1. Symmetric MTI profile: suit-sha256-hmac-a128-ccm
3.2. Current Asymmetric MTI Profile: suit-sha256-es256-hpke-a128gcm
3.3. Future Asymmetric MTI Profile: suit-sha256-hsslms-hpke-a128gcm

it means that someone that wants to do Chinese crypto or EdDSA or Falcon-512 has to implement two algorithms. For example, they'd have to implement es256 along side EdDSA. 


It seems like the best you can do in a broad building-block IETF standard is define some good solid profiles that implementors can choose if they want. Then maybe go one step further with a negotiation mechanism (like TLS) or a profile mechanism (like EAT).

FIDO does have MTI, but the FIDO Alliance is structured differently. They have a strong interop and compliance certification program which is required to use the FIDO logo. FIDO members pay to belong, wield influence and gain benefits like joint marketing and access to compliance testing. Also and important — FIDO is more of an end-product protocol rather than a building-block protocol.

SUIT seems like it is a broad building-block protocol like COSE or CWT rather than an end-product protocol like FIDO. That probably means it doesn’t make sense to define an MTI, just some good profiles/cipher-suites.

Note also that there is no compliance program in the IETF, so even if SUIT had MIT, there wouldn’t be any enforcement making it a bit of an overreach.

LL

. 


> On Jul 27, 2022, at 6:00 PM, Brendan Moran <Brendan.Moran@arm.com> wrote:
> 
> I’ve now uploaded a new version of the draft that should be a better structure.
> 
> Best Regards,
> Brendan
> 
>> On 21 Jul 2022, at 13:07, Brendan Moran <Brendan.Moran@arm.com <mailto:Brendan.Moran@arm.com>> wrote:
>> 
>> Hi Lawrence,
>> 
>> Sorry I’ve been silent: I’ve been laid up with Covid for over a week.
>> 
>> 
>> You’re right. It turns out I published the wrong version of my draft. Oops.
>> 
>> The right version is here: https://github.com/bremoran/suit-mti/blob/main/draft-moran-suit-mti-algorithms.md <https://github.com/bremoran/suit-mti/blob/main/draft-moran-suit-mti-algorithms.md>
>> 
>> Unfortunately, I can’t submit it until next week due to the draft publication blackout.
>> 
>> Essentially, I see this as a one-of-three choice. You, as an implementor, can choose to implement one of three MTI profiles:
>> * A classical asymmetric profile
>> * A PQC asymmetric profile
>> * A symmetric profile
>> 
>> You are welcome to implement other profiles as needed.
>> 
>> I think that the 1-of-3 choice is going to be necessary because, otherwise, there’s no way we’re going to have many compliant implementations.
>> 
>> Best Regards,
>> Brendan
>> 
>>> On 14 Jul 2022, at 19:35, Laurence Lundblade <lgl@island-resort.com <mailto:lgl@island-resort.com>> wrote:
>>> 
>>> Hi,
>>> 
>>> Not being a SUIT implementor, I’m kind of peanut gallery here so maybe my comments don’t have a lot of weight.
>>> 
>>> My first reaction is that is lot of algorithms to be mandatory. For example, I’m not even close to supporting all those in t_cose. I didn’t check, but I doubt commonly deployed versions of OpenSSL and Mbedtls support all the algorithms.
>>> 
>>> Then for a given implementation/deployment you might want to support only one single algorithm on a constrained device to have minimum object code. A tactic might be to require the receiver to support many algorithms and the sender just one.
>>> 
>>> Is this trying to guarantee interoperability? It seems not since it doesn’t mention it. 
>>> 
>>> I’m not sure about IETF tactics for guaranteeing interoperability. Seems they are kind of loose to me. Maybe that’s OK.
>>> 
>>> By contrast, FIDO is very specific about algorithms to implement so there is guaranteed interop. This is also because FIDO has a compliance program that tests implementations.
>>> 
>>> In the recent EAT draft, I defined a constrained device profile that does guarantee algorithm interoperability by requiring the receiver to support ES256, ES384 and ES 512 and the sender to use one of these. There will never be an algorithm mismatch.
>>> 
>>> LL
>>> 
>>> 
>>> 
>>>> On Jul 11, 2022, at 12:57 PM, Brendan Moran <Brendan.Moran@arm.com <mailto:Brendan.Moran@arm.com>> wrote:
>>>> 
>>>> Dear SUIT,
>>>> 
>>>> I have submitted a draft profile document. It is very much a strawman. Please feel free to bash it/propose edits!
>>>> 
>>>> I will upload it too GitHub to make it easier to bash.
>>>> 
>>>> Best Regards,
>>>> Brendan
>>>> 
>>>>> On 11 Jul 2022, at 20:54, internet-drafts@ietf.org <mailto:internet-drafts@ietf.org> wrote:
>>>>> 
>>>>> 
>>>>> A new version of I-D, draft-moran-suit-mti-00.txt
>>>>> has been successfully submitted by Brendan Moran and posted to the
>>>>> IETF repository.
>>>>> 
>>>>> Name: draft-moran-suit-mti
>>>>> Revision: 00
>>>>> Title: Mandatory-to-Implement Algorithms for Creators and Consumers of Software Update for the Internet of Things manifests
>>>>> Document date: 2022-07-11
>>>>> Group: Individual Submission
>>>>> Pages: 7
>>>>> URL: https://www.ietf.org/archive/id/draft-moran-suit-mti-00.txt <https://www.ietf.org/archive/id/draft-moran-suit-mti-00.txt>
>>>>> Status: https://datatracker.ietf.org/doc/draft-moran-suit-mti/ <https://datatracker.ietf.org/doc/draft-moran-suit-mti/>
>>>>> Htmlized: https://datatracker.ietf.org/doc/html/draft-moran-suit-mti <https://datatracker.ietf.org/doc/html/draft-moran-suit-mti>
>>>>> 
>>>>> 
>>>>> Abstract:
>>>>> This document specifies algorithm profiles for SUIT manifest parsers
>>>>> and authors to ensure better interoperability.
>>>>> 
>>>>> 
>>>>> 
>>>>> 
>>>>> The IETF Secretariat
>>>>> 
>>>>> 
>>>> 
>>>> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
>>>> 
>>>> _______________________________________________
>>>> Suit mailing list
>>>> Suit@ietf.org <mailto:Suit@ietf.org>
>>>> https://www.ietf.org/mailman/listinfo/suit <https://www.ietf.org/mailman/listinfo/suit>
>>> 
>>> _______________________________________________
>>> Suit mailing list
>>> Suit@ietf.org <mailto:Suit@ietf.org>
>>> https://www.ietf.org/mailman/listinfo/suit <https://www.ietf.org/mailman/listinfo/suit>
>> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
>> _______________________________________________
>> Suit mailing list
>> Suit@ietf.org <mailto:Suit@ietf.org>
>> https://www.ietf.org/mailman/listinfo/suit
> 
> IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email