Re: [Teep] JSON/JOSE vs. CBOR/COSE
Anders Rundgren <anders.rundgren.net@gmail.com> Thu, 20 February 2020 14:22 UTC
Return-Path: <anders.rundgren.net@gmail.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 73D7B12004F for <teep@ietfa.amsl.com>; Thu, 20 Feb 2020 06:22:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UKNjb0-xJXeh for <teep@ietfa.amsl.com>; Thu, 20 Feb 2020 06:22:40 -0800 (PST)
Received: from mail-wm1-x32b.google.com (mail-wm1-x32b.google.com [IPv6:2a00:1450:4864:20::32b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8B3212003E for <teep@ietf.org>; Thu, 20 Feb 2020 06:22:39 -0800 (PST)
Received: by mail-wm1-x32b.google.com with SMTP id t23so2203644wmi.1 for <teep@ietf.org>; Thu, 20 Feb 2020 06:22:39 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language:content-transfer-encoding; bh=Lo93MbrAcWkGoG8j/O/DKHGG288n1ZuORAcWWxcldE4=; b=S7X+GSjqO9IT3t0RlmzUx1UCxTbDsNbXY5K0se/7ZHjRgBY00giGpA06QeHcERUApX qua1YFZLC48Jlstd3i3WAFph86tE4rZSxK2qF0JnvsUpOmOS0rwBRWG2liJf3u+1H6HG V6iHl2yI9vDBH4eimCLsdbJMvqM9CcZKNnbmzfcObeTHkeQ+EtEKknZtHBDFauXigZ0R oJMUiaRikEnCtOCB81mv6S4nCmhdXNKrgJML498Wo/uWTP9KdodFDAhhdoNISkQSZ22E MPJ8z1RYr8V8dvGZshQK4oSvpSmLR/slqW6GHAPuxd7FJkpYE7OXDSK9OFoE3gqLymtg aVVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=Lo93MbrAcWkGoG8j/O/DKHGG288n1ZuORAcWWxcldE4=; b=bLRxCo2keuGOeZEW/30ZekgcRwm7r8ulCsW3VTqOjXnAmipycvW2EJffPXn+AkeP0s 3aNn4cjM9hGk5CJJahgJwIloTLyvpO4FWuPjG1eD7A9zzUHdP7Z3gmMbIGzXQ4D5KPmI bvHV/WBBf+hFASGNzIGEijhyDWPdVQ6POvk4GPowuLktoI7GRs8POnp9IYm1TTPgRjix 9BHzqK8R98ERdORQLcEMGPluk2ESuGpxj/Mlp2r88vIocfat9QmXQIB5D+hfqJkiAH+u cQsXOa8zKvNrmQkJCTuOnNdxazic8/pCV6n7UzDP55hlDL9nyt3yTyrZY7iDyctyZ0rM aH0w==
X-Gm-Message-State: APjAAAWV1oMe/X2feKtxVrwzRzRU3Et3pY4N0TrDAv1yfgufOuMwn+Hq +39TbzDSL1nwnffOmBrXLmrCjKz5
X-Google-Smtp-Source: APXvYqzGrJY6mfuKn+w7rjm9zkneB9zyk+aHy6eDL3c+kvPC87RxGKeKHTUXQpvnOoGBh+c88wNZGQ==
X-Received: by 2002:a1c:9e13:: with SMTP id h19mr4910041wme.21.1582208557921; Thu, 20 Feb 2020 06:22:37 -0800 (PST)
Received: from [192.168.1.97] ([176.160.13.251]) by smtp.googlemail.com with ESMTPSA id c74sm5141997wmd.26.2020.02.20.06.22.37 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 20 Feb 2020 06:22:37 -0800 (PST)
To: Henk Birkholz <henk.birkholz@sit.fraunhofer.de>, Hannes Tschofenig <Hannes.Tschofenig@arm.com>, "teep@ietf.org" <teep@ietf.org>
References: <AM6PR08MB37181998F4E68A7F6BCC8110FA130@AM6PR08MB3718.eurprd08.prod.outlook.com> <c0127bbf-c3da-d0d8-2e3c-cd306e5d11cc@sit.fraunhofer.de>
From: Anders Rundgren <anders.rundgren.net@gmail.com>
Message-ID: <cf488722-a4bd-8074-0733-c261742b1e56@gmail.com>
Date: Thu, 20 Feb 2020 15:22:35 +0100
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.5.0
MIME-Version: 1.0
In-Reply-To: <c0127bbf-c3da-d0d8-2e3c-cd306e5d11cc@sit.fraunhofer.de>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/DDjqitmkAaVXlwn0NhiRUvb8Xb4>
Subject: Re: [Teep] JSON/JOSE vs. CBOR/COSE
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Feb 2020 14:22:44 -0000
I believe I suggested exactly this a while ago... Anders On 2020-02-20 13:27, Henk Birkholz wrote: > Hi Hannes, > hi all, > > I agree with this statement wrt to teep and beyond. > > Viele Grüße, > > Henk > > On 20.02.20 05:16, Hannes Tschofenig wrote: >> Hi all, >> >> With the impression from the Hackathon in mind I am wondering whether we >> should make a decision about the encoding of the TEEP protocol messages. >> Today, the spec allows two types of encodings, namely JSON and CBOR >> (with their security mechanisms). >> >> It is obviously a pain to implement both encodings. The spec supports >> two encodings because the OTrP design was based on JSON / JOSE and it >> felt logical to “inherit” this encoding. Then, we added CBOR and COSE >> for use with constrained devices. >> >> I believe we should only have one encoding. >> >> CBOR and COSE appear to be the better choice (although I have been >> working on an implementation of JSON and JOSE at the Hackathon). While >> JSON/JOSE is easier to debug the TEEP protocol is actually quite simple. >> The use of CBOR/COSE will allow us to keep the trusted computing base >> smaller considering that SUIT manifests as well as EAT tokens are/can be >> encoded in CBOR and protected by COSE. >> >> With this email I wanted to kick-off a discussion. What do you think? >> >> Ciao >> >> Hannes >> >> IMPORTANT NOTICE: The contents of this email and any attachments are >> confidential and may also be privileged. If you are not the intended >> recipient, please notify the sender immediately and do not disclose the >> contents to any other person, use it for any purpose, or store or copy >> the information in any medium. Thank you. >> >> _______________________________________________ >> TEEP mailing list >> TEEP@ietf.org >> https://www.ietf.org/mailman/listinfo/teep >> > > _______________________________________________ > TEEP mailing list > TEEP@ietf.org > https://www.ietf.org/mailman/listinfo/teep >
- [Teep] JSON/JOSE vs. CBOR/COSE Hannes Tschofenig
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Emmanuel Baccelli
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Michael Richardson
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Henk Birkholz
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Anders Rundgren
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Nicolae Paladi
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Mingliang Pei
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Konda, Tirumaleswar Reddy
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Henk Birkholz
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Carsten Bormann
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Brendan Moran
- [Teep] Fwd: JSON/JOSE vs. CBOR/COSE Akira Tsukamoto
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Hannes Tschofenig
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Henk Birkholz
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Hannes Tschofenig
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Henk Birkholz
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Michael Richardson
- Re: [Teep] JSON/JOSE vs. CBOR/COSE 塚本明
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Carsten Bormann
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Hannes Tschofenig
- Re: [Teep] JSON/JOSE vs. CBOR/COSE 塚本明
- Re: [Teep] JSON/JOSE vs. CBOR/COSE Konda, Tirumaleswar Reddy