IETF Logo Mail Archive

[Suit] Re: I-D Action: draft-ietf-suit-trust-domains-11.txt

Brendan Moran <Brendan.Moran@arm.com> Mon, 21 July 2025 15:00 UTC

Return-Path: <Brendan.Moran@arm.com>
X-Original-To: suit@mail2.ietf.org
Delivered-To: suit@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 0BB85478E1BA; Mon, 21 Jul 2025 08:00:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.095
X-Spam-Level:
X-Spam-Status: No, score=-2.095 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=arm.com header.b="iBfJH0Ju"; dkim=pass (1024-bit key) header.d=arm.com header.b="iBfJH0Ju"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lvi-m0UI5c-j; Mon, 21 Jul 2025 08:00:24 -0700 (PDT)
Received: from DU2PR03CU002.outbound.protection.outlook.com (mail-northeuropeazon11011049.outbound.protection.outlook.com [52.101.65.49]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-384) server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 766F2478E082; Mon, 21 Jul 2025 07:59:59 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=pass; b=meiH1napcwMKNX42XdzSgMWeApdrAvvuBtxircDAfuipHu6trqxvwfkZ+HcKmuXXZWC4e6NdOtdt6JCgQh+3SQr8IBDX6VvK3xnjg7NrUUYnhaOgTTEjBA9yGm603M5HhqBzJ0W+RDiinY30rUMq3VX7E2xTJnuQgFXxSIs41vq52SdSKiw28WnWTyw8iU5cJmH1ddjY6hmry17Laa/VfwOXKdZ39DnKYiN7PjDXPSLp8QEvreDHv2OSSY0pL32gWq9MSYhgK98BsrmdLnDYSiILHwq4bTf0RhKLHn5i901TwlwByJ3SU52Hoy++ZPYSbNzR/pigCJjYsfUVqcfg8Q==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=hhJ3h7Su19vC93lnbD0RDT3VYBspKsmgGM/kn8jMhM0=; b=UsnrERmNgh4SJ/NnmCps7uWVQtoPB/gwF85FlaZtkNG9LgzuV68+ts/5kFuuzFpsjfNPmhGfdzRx5Q0ws2Zo+04eyMm+bL1GqYam3C4ky+W44BwciymWpXoztuMgPChsZupS1IONyG+37IfTpBv4BmUs+CInYTyL2M5cMx2NzNHRNWwKrJdKlstjtzZAPVmR9pUYiDKiJzqkwPTP2dIpjcxfA/QFJ6T/QC6ZZFzNFxRcFWg5lKr5I05iBgTqCktQ0Wos0P8PNy7mQyp2q0O6WdbEu99g+81PxUtP+mWUPO/GHsRh2cbfUT2pJQxKL/joidTeV8EERLH+JFCIBfeicg==
ARC-Authentication-Results: i=2; mx.microsoft.com 1; spf=pass (sender ip is 4.158.2.129) smtp.rcpttodomain=gmail.com smtp.mailfrom=arm.com; dmarc=pass (p=none sp=none pct=100) action=none header.from=arm.com; dkim=pass (signature was verified) header.d=arm.com; arc=pass (0 oda=1 ltdi=1 spf=[1,1,smtp.mailfrom=arm.com] dkim=[1,1,header.d=arm.com] dmarc=[1,1,header.from=arm.com])
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=arm.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hhJ3h7Su19vC93lnbD0RDT3VYBspKsmgGM/kn8jMhM0=; b=iBfJH0JuPohyr+5ya95pN8f+V2C3YyduGivx6OVDARDIhDC+OSAplDEy9W5evsStGaLN6VK+LqedvtvZ+xytfKJBV8V3XcavbuMnS5ZngC26ukT+XXJwxXn9M3iWBo6Y27CVQ/ZOqbBIF3LnldhdG1xCksfgIIlMSPQAVmkMdhY=
Received: from AS8PR04CA0118.eurprd04.prod.outlook.com (2603:10a6:20b:31e::33) by DB8PR08MB5404.eurprd08.prod.outlook.com (2603:10a6:10:117::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8943.30; Mon, 21 Jul 2025 14:59:57 +0000
Received: from AM3PEPF00009BA0.eurprd04.prod.outlook.com (2603:10a6:20b:31e:cafe::c8) by AS8PR04CA0118.outlook.office365.com (2603:10a6:20b:31e::33) with Microsoft SMTP Server (version=TLS1_3, cipher=TLS_AES_256_GCM_SHA384) id 15.20.8943.29 via Frontend Transport; Mon, 21 Jul 2025 14:59:57 +0000
X-MS-Exchange-Authentication-Results: spf=pass (sender IP is 4.158.2.129) smtp.mailfrom=arm.com; dkim=pass (signature was verified) header.d=arm.com;dmarc=pass action=none header.from=arm.com;
Received-SPF: Pass (protection.outlook.com: domain of arm.com designates 4.158.2.129 as permitted sender) receiver=protection.outlook.com; client-ip=4.158.2.129; helo=outbound-uk1.az.dlp.m.darktrace.com; pr=C
Received: from outbound-uk1.az.dlp.m.darktrace.com (4.158.2.129) by AM3PEPF00009BA0.mail.protection.outlook.com (10.167.16.25) with Microsoft SMTP Server (version=TLS1_3, cipher=TLS_AES_256_GCM_SHA384) id 15.20.8964.20 via Frontend Transport; Mon, 21 Jul 2025 14:59:55 +0000
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none; b=pV6sJbUJyr8uOWwkBjC98MU3CbwaWihvLp6TrkbRB5mqMvNPalHSVi6GHb9icnOtEGGkkCNmASf4+XpX1eXOY4WAjLT5CrOvxqsogCkcD6Om6Yx2fKrkXWxqo14jBozpgZfG8WCD926JQLelL40w4K9JNJVzj7XTuHvS171GgKy3+AtxKrHLzlDi88zaWdX1102rcm/YEi2DBXiweFd65MOz9h5gNIUbWU9S/uX2/q+aIHcY8RjfHG/CsJmpyMz69JrCnv+HJRAB6vo76/CN19pgsAbevs2I4hpxT+XeeWORZgOtiKK2FUxESAmD5nHrcLhqmjfJYgLVeF8ERaBNhA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector10001; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=hhJ3h7Su19vC93lnbD0RDT3VYBspKsmgGM/kn8jMhM0=; b=LE3G7lvIr8CGDJk75dE78AnS/ZLmPAOODOamXozpLo6YMmmKNYPKHkwVbBiNjhXp7655yArNKCO1T2tu+2AVDzhk/aJ+w+uJScLbi/PB4STq5dOCc3B240jeA+zkRfQ/PpXeJPG0c7ejaYp7DMTBP8V4+xM/2KOS1iW1wmkIRybitklBGWygDdNEcaVw3fdgf3uDLFqCNVTm5q9GvGBjvA+E8C/mbQ7hDr6iBbCDNLvqgCY/EUpO1nF6DL6ergE18mLk6qRdpeciF8MiSxeQgKsXfpqvBjMO862FQWROkPcO1Pbd4rVrxd32dEcJn8kc+JvbIiT/rt51lV57Y7SuKQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=arm.com; dmarc=pass action=none header.from=arm.com; dkim=pass header.d=arm.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=arm.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hhJ3h7Su19vC93lnbD0RDT3VYBspKsmgGM/kn8jMhM0=; b=iBfJH0JuPohyr+5ya95pN8f+V2C3YyduGivx6OVDARDIhDC+OSAplDEy9W5evsStGaLN6VK+LqedvtvZ+xytfKJBV8V3XcavbuMnS5ZngC26ukT+XXJwxXn9M3iWBo6Y27CVQ/ZOqbBIF3LnldhdG1xCksfgIIlMSPQAVmkMdhY=
Received: from DBAPR08MB5576.eurprd08.prod.outlook.com (2603:10a6:10:1ae::11) by DB8PR08MB5403.eurprd08.prod.outlook.com (2603:10a6:10:116::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.8943.30; Mon, 21 Jul 2025 14:59:19 +0000
Received: from DBAPR08MB5576.eurprd08.prod.outlook.com ([fe80::5b1c:4abd:e778:dc9b]) by DBAPR08MB5576.eurprd08.prod.outlook.com ([fe80::5b1c:4abd:e778:dc9b%4]) with mapi id 15.20.8943.029; Mon, 21 Jul 2025 14:59:19 +0000
From: Brendan Moran <Brendan.Moran@arm.com>
To: Brendan Moran <brendan.moran.ietf@gmail.com>, Deb Cooley <debcooley1@gmail.com>
Thread-Topic: [Suit] Re: I-D Action: draft-ietf-suit-trust-domains-11.txt
Thread-Index: AQHb81TvpZcKiCOdKkasv0w1vRLXnLQwGooAgAAuSQCAADxDgIAAC0EAgAuymYCAAGcW8IAADt5u
Date: Mon, 21 Jul 2025 14:59:18 +0000
Message-ID: <DBAPR08MB55764A148F868001B381AD30EA5DA@DBAPR08MB5576.eurprd08.prod.outlook.com>
References: <175195695500.1952754.18220346047216016152@dt-datatracker-6fcb845cd4-p6tkq> <CAGgd1Oe7AQEeT4KsLxafOwrDRPSiO=aWJmTsN6nA392yegEDxg@mail.gmail.com> <AS8PR10MB7427F9A76349B64106C6815FEE55A@AS8PR10MB7427.EURPRD10.PROD.OUTLOOK.COM> <CAGgd1Of=r6y0q5pr7VYMWT=oiSB2KBkuFyyGRqb0W0nEMWhGpA@mail.gmail.com> <CAPmVn1MeFgCpwxPVmoN6nf_beyZCW9gLsdmyNOcXmXJjMUMZAg@mail.gmail.com> <CAGgd1Od7odWtg96nTh=z-WBcQju72cN5agUxv1_3S+Zazcc1kQ@mail.gmail.com> <CAPmVn1N+UZ4BAPxE3t2mH=4yj39C19EgKPZdQz9peojb5B-HtA@mail.gmail.com> <DBAPR08MB5576BBAAD66A45720A767F7EEA5DA@DBAPR08MB5576.eurprd08.prod.outlook.com>
In-Reply-To: <DBAPR08MB5576BBAAD66A45720A767F7EEA5DA@DBAPR08MB5576.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-reactions: allow
Authentication-Results-Original: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=arm.com;
x-ms-traffictypediagnostic: DBAPR08MB5576:EE_|DB8PR08MB5403:EE_|AM3PEPF00009BA0:EE_|DB8PR08MB5404:EE_
X-MS-Office365-Filtering-Correlation-Id: 8ee9cb0f-c1bd-48f5-08e9-08ddc8674140
x-checkrecipientrouted: true
nodisclaimer: true
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam-Untrusted: BCL:0;ARA:13230040|376014|1800799024|366016|4022899009|8096899003|13003099007|7053199007|38070700018;
X-Microsoft-Antispam-Message-Info-Original: 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
X-Forefront-Antispam-Report-Untrusted: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DBAPR08MB5576.eurprd08.prod.outlook.com;PTR:;CAT:NONE;SFS:(13230040)(376014)(1800799024)(366016)(4022899009)(8096899003)(13003099007)(7053199007)(38070700018);DIR:OUT;SFP:1101;
Content-Type: multipart/alternative; boundary="_000_DBAPR08MB55764A148F868001B381AD30EA5DADBAPR08MB5576eurp_"
MIME-Version: 1.0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR08MB5403
X-EOPAttributedMessage: 0
X-MS-Exchange-Transport-CrossTenantHeadersStripped: AM3PEPF00009BA0.eurprd04.prod.outlook.com
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id-Prvs: 8e107b73-30c3-4edd-3788-08ddc8672b44
X-Microsoft-Antispam: BCL:0;ARA:13230040|376014|14060799003|1800799024|36860700013|82310400026|35042699022|4022899009|8096899003|13003099007|7053199007;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:4.158.2.129;CTRY:GB;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:outbound-uk1.az.dlp.m.darktrace.com;PTR:InfoDomainNonexistent;CAT:NONE;SFS:(13230040)(376014)(14060799003)(1800799024)(36860700013)(82310400026)(35042699022)(4022899009)(8096899003)(13003099007)(7053199007);DIR:OUT;SFP:1101;
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Jul 2025 14:59:55.7323 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 8ee9cb0f-c1bd-48f5-08e9-08ddc8674140
X-MS-Exchange-CrossTenant-Id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=f34e5979-57d9-4aaa-ad4d-b122a662184d;Ip=[4.158.2.129];Helo=[outbound-uk1.az.dlp.m.darktrace.com]
X-MS-Exchange-CrossTenant-AuthSource: AM3PEPF00009BA0.eurprd04.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Anonymous
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR08MB5404
Message-ID-Hash: F5LNQ3UQFMGHQCSOMQBQRPDEIAXNFH4S
X-Message-ID-Hash: F5LNQ3UQFMGHQCSOMQBQRPDEIAXNFH4S
X-MailFrom: Brendan.Moran@arm.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-suit.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "Tschofenig, Hannes" <hannes.tschofenig@siemens.com>, "draft-ietf-suit-trust-domains.authors@ietf.org" <draft-ietf-suit-trust-domains.authors@ietf.org>, Ken Takayama <ken.takayama.ietf@gmail.com>, "suit@ietf.org" <suit@ietf.org>, "suit-chairs@ietf.org" <suit-chairs@ietf.org>, Dave Thaler <dthaler1968@gmail.com>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Suit] Re: I-D Action: draft-ietf-suit-trust-domains-11.txt
List-Id: Software Updates for Internet of Things <suit.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/suit/vbjFQQKKoZ_dt0H2qchNa97q38Q>
List-Archive: <https://mailarchive.ietf.org/arch/browse/suit>
List-Help: <mailto:suit-request@ietf.org?subject=help>
List-Owner: <mailto:suit-owner@ietf.org>
List-Post: <mailto:suit@ietf.org>
List-Subscribe: <mailto:suit-join@ietf.org>
List-Unsubscribe: <mailto:suit-leave@ietf.org>

FWIW, I have responses to all the remaining ballot positions with comments queued up to send as soon as we publish the next version that includes https://github.com/suit-wg/suit-multiple-trust-domains/pull/75

Brendan

From: Brendan Moran <Brendan.Moran@arm.com>
Date: Monday, 21 July 2025 at 15:06
To: Brendan Moran <brendan.moran.ietf@gmail.com>, Deb Cooley <debcooley1@gmail.com>
Cc: Tschofenig, Hannes <hannes.tschofenig@siemens.com>, draft-ietf-suit-trust-domains.authors@ietf.org <draft-ietf-suit-trust-domains.authors@ietf.org>, Ken Takayama <ken.takayama.ietf@gmail.com>, suit@ietf.org <suit@ietf.org>, suit-chairs@ietf.org <suit-chairs@ietf.org>, Dave Thaler <dthaler1968@gmail.com>
Subject: [Suit] Re: I-D Action: draft-ietf-suit-trust-domains-11.txt
Hi Hannes,

Thank you for your latest set of changes. I think these look much better.

@Deb Cooley<mailto:debcooley1@gmail.com> what do you think?

Brendan

From: Brendan Moran <brendan.moran.ietf@gmail.com>
Date: Monday, 21 July 2025 at 08:56
To: Deb Cooley <debcooley1@gmail.com>
Cc: Tschofenig, Hannes <hannes.tschofenig@siemens.com>, draft-ietf-suit-trust-domains.authors@ietf.org <draft-ietf-suit-trust-domains.authors@ietf.org>, Ken Takayama <ken.takayama.ietf@gmail.com>, suit@ietf.org <suit@ietf.org>, suit-chairs@ietf.org <suit-chairs@ietf.org>, Dave Thaler <dthaler1968@gmail.com>
Subject: [Suit] Re: I-D Action: draft-ietf-suit-trust-domains-11.txt
I have all the changes ready to go in a PR. We just need to decide
what to do about the introduction. I would welcome any feedback on
that.

On Sun, Jul 13, 2025 at 10:17 PM Deb Cooley <debcooley1@gmail.com> wrote:
>
> Obviously this has already sat around for some time, a little longer won't hurt.  The publication window opens on 21 July.  If you get these issues resolved, and discuss Hannes' ideas about the intro, then you can nudge me (I'll be in meeting mode) and I'll approve the announcement.
>
> Deb
>
> On Sun, Jul 13, 2025 at 4:37 PM Brendan Moran <brendan.moran.ietf@gmail.com> wrote:
>>
>> Thank you for all the support. I’m afraid that I won’t be able to post updates before the 17th; I am away from my computer until then. I’m happy to address Gorry, Gunther, Paul and Roman’s concerns then.
>>
>> Hannes, if you were interested in helping some, that would be very much appreciated.
>>
>> Best Regards,
>> Brendan
>>
>> On Sun, 13 Jul 2025 at 19:01, Deb Cooley <debcooley1@gmail.com> wrote:
>>>
>>> I'm all about 'getting it right'. vs 'doing it over'.  But aren't the dependencies a result of different trust domains? In other words, dependencies are signed by different authorities, which in my mind translates to different trust domains.
>>>
>>> I don't mind an addition to the introduction to stitch all these ideas together. We already had comments that showed some disconnects in how it all fits together.   But I'd be careful to touch this lightly, otherwise we will have to put it back through the IESG.
>>>
>>> Deb
>>>
>>> On Sun, Jul 13, 2025 at 10:15 AM Tschofenig, Hannes <hannes.tschofenig@siemens.com> wrote:
>>>>
>>>> Hi Deb, Brendan, Ken,
>>>>
>>>>
>>>>
>>>> I have reviewed the document as well and I have a suggestion for improvement: I would recommend changing the title of the document to “Software Update for the Internet of Things (SUIT) Manifest Extensions for Dependency Handling”. The reason is that the entire document is about dependency management – not about trust domains.
>>>>
>>>>
>>>>
>>>> This also means that the introduction needs to be re-written. Currently the introduction does not match the content of the rest of the document.
>>>>
>>>>
>>>>
>>>> I am happy to write a proposal, if the group believes this is the right approach for the document.
>>>>
>>>>
>>>>
>>>> Ciao
>>>> Hannes
>>>>
>>>>
>>>>
>>>> PS: The examples in the appendix also need a description since otherwise nobody will understand what is going on.
>>>>
>>>>
>>>>
>>>> From: Deb Cooley <debcooley1@gmail.com>
>>>> Sent: Saturday, July 12, 2025 7:46 PM
>>>> To: draft-ietf-suit-trust-domains.authors@ietf.org; Brendan Moran <brendan.moran.ietf@gmail.com>; Ken Takayama <ken.takayama.ietf@gmail.com>
>>>> Cc: suit@ietf.org; suit-chairs@ietf.org; Dave Thaler <dthaler1968@gmail.com>
>>>> Subject: [Suit] Re: I-D Action: draft-ietf-suit-trust-domains-11.txt
>>>>
>>>>
>>>>
>>>> This is soooo close.  Just a couple of things that need to be fixed.
>>>>
>>>>
>>>>
>>>> Gorry, Gunter, Paul and Roman all made comments on this draft, and while it appears that the authors have addressed most of their concerns, I don't see replies to their comments.  In some cases, you may just be explaining what something means, without a change to the draft.  For example, there are some specific technologies used as examples - Arm TrustZone and Intel's  SGX, which may have been confusing to some.
>>>>
>>>>
>>>>
>>>> (Gunter) Section 1, bullets:  There is a mix of first word uppercase letters, and first word lowercase letters.  Pick one.  If you choose uppercase letters, I suspect that a '.' at the end would be appropriate.
>>>>
>>>>
>>>>
>>>> (Gunter) Section 2:  Add Dependency Manifest and/or Dependent Manifest.
>>>>
>>>>
>>>>
>>>> Section 2, second bullet:  Nit:  Mani/Manifest?
>>>>
>>>>
>>>>
>>>> (Gunter with my spin) Section 3, last paragraph:  Your use of 'lockstep' appears to be different than what I think of (two processors move from instruction to instruction in 'lockstep').  Consider adding this to the definitions, and I believe the process is described in Section 5.3 (at least there is no occurrence of the word 'lockstep' in Section 5.4).
>>>>
>>>>
>>>>
>>>> (Gorry) Section 5.6, table 1:  This would be better with a caption.  Something like 'added or modified commands'.
>>>>
>>>>
>>>>
>>>> Section 10:  RFC 9124 should be Normative, no?
>>>>
>>>>
>>>>
>>>> In general, the use of uppercase vice lowercase is confusing to me.  Enough that I'm happy to leave it to the Editor to sort out.  Be prepared for those questions....  Examples:  Software, Recipient, Components, Payload.
>>>>
>>>>
>>>>
>>>> Let me know what the plan is.  We are currently in the I-D submission blackout window, so when you are ready to push a new version, you will have to send it to me and I'll send it to the Secretariat for publication.  [also, I leave on Wed, 16 July for Madrid, so it all gets more complicated from that day.]
>>>>
>>>>
>>>>
>>>> Deb
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> On Tue, Jul 8, 2025 at 2:42 AM <internet-drafts@ietf.org> wrote:
>>>>
>>>> Internet-Draft draft-ietf-suit-trust-domains-11.txt is now available. It is a
>>>> work item of the Software Updates for Internet of Things (SUIT) WG of the
>>>> IETF.
>>>>
>>>>    Title:   Software Update for the Internet of Things (SUIT) Manifest Extensions for Multiple Trust Domain
>>>>    Authors: Brendan Moran
>>>>             Ken Takayama
>>>>    Name:    draft-ietf-suit-trust-domains-11.txt
>>>>    Pages:   38
>>>>    Dates:   2025-07-07
>>>>
>>>> Abstract:
>>>>
>>>>    A device has more than one trust domain when it enables delegation of
>>>>    different rights to mutually distrusting entities for use for
>>>>    different purposes or Components in the context of firmware or
>>>>    software update.  This specification describes extensions to the
>>>>    Software Update for the Internet of Things (SUIT) Manifest format for
>>>>    use in deployments with multiple trust domains.
>>>>
>>>> The IETF datatracker status page for this Internet-Draft is:
>>>> https://datatracker.ietf.org/doc/draft-ietf-suit-trust-domains/
>>>>
>>>> There is also an HTMLized version available at:
>>>> https://datatracker.ietf.org/doc/html/draft-ietf-suit-trust-domains-11
>>>>
>>>> A diff from the previous version is available at:
>>>> https://author-tools.ietf.org/iddiff?url2=draft-ietf-suit-trust-domains-11
>>>>
>>>> Internet-Drafts are also available by rsync at:
>>>> rsync.ietf.org::internet-drafts
>>>>
>>>>
>>>> _______________________________________________
>>>> Suit mailing list -- suit@ietf.org
>>>> To unsubscribe send an email to suit-leave@ietf.org

_______________________________________________
Suit mailing list -- suit@ietf.org
To unsubscribe send an email to suit-leave@ietf.org
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.37.1 | Report a Bug | By Email | System Status