[Teep] TEEP Architecture Draft Updated
Hannes Tschofenig <Hannes.Tschofenig@arm.com> Tue, 12 March 2019 08:48 UTC
Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9276D130EFE for <teep@ietfa.amsl.com>; Tue, 12 Mar 2019 01:48:04 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ju88ysuHbcEQ for <teep@ietfa.amsl.com>; Tue, 12 Mar 2019 01:48:01 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60063.outbound.protection.outlook.com [40.107.6.63]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5CA32130E64 for <teep@ietf.org>; Tue, 12 Mar 2019 01:48:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xm5b6li2ABCXiFHCjlrr30nliPoMan4Kfw7LCajrVrM=; b=OSa9yeqDOK8In1WwrpqUK0ayqN5E19INRfTxoBbrS4KH4k33qALhDpqkxQV4XvUWT6pu8txYcZGB193BZ0aFfid+4/L4NiIHViuK2D9mFWPI4+VwHU1HZP0tFYWER0GvEC7ftF58wO6UB6jP2eZP+W0yr/apfOTOfx9YgJbmFcQ=
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com (10.173.75.16) by VI1PR0801MB1919.eurprd08.prod.outlook.com (10.173.73.145) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1686.19; Tue, 12 Mar 2019 08:47:58 +0000
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::dd0a:bfcc:b6ce:8d65]) by VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::dd0a:bfcc:b6ce:8d65%11]) with mapi id 15.20.1686.021; Tue, 12 Mar 2019 08:47:58 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: "teep@ietf.org" <teep@ietf.org>
Thread-Topic: TEEP Architecture Draft Updated
Thread-Index: AdTYru9OeFRefs2ETS6AQqiYeyX2XA==
Date: Tue, 12 Mar 2019 08:47:57 +0000
Message-ID: <VI1PR0801MB211236E412BC9FAB7C2A0177FA490@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [80.92.123.154]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 74c0dc0c-0da3-4085-2afa-08d6a6c76d39
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600127)(711020)(4605104)(4618075)(2017052603328)(7153060)(7193020); SRVR:VI1PR0801MB1919;
x-ms-traffictypediagnostic: VI1PR0801MB1919:
x-ms-exchange-purlcount: 2
x-microsoft-exchange-diagnostics: 1; VI1PR0801MB1919; 20:W2hCLngJNx1aqKtFP+6Coh9YSkz6UlVYIIW4jRvJe8YAH6Rez0KCfR+xswQoo+xHXbWoB42xt3Tz9eveT971D2WusvnLNu4ThZ7bJ6K/FHkfFfPZAe/eidQt1KF86YrAfO/Vr6eKmCp8hVLsDnzGL3cn7NdDatJOGSlPXvQ/v+4=
x-microsoft-antispam-prvs: <VI1PR0801MB19199279530D5A1A6CE3739EFA490@VI1PR0801MB1919.eurprd08.prod.outlook.com>
x-forefront-prvs: 09749A275C
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(366004)(396003)(346002)(376002)(136003)(40434004)(199004)(189003)(53754006)(25786009)(6506007)(3846002)(74316002)(15650500001)(2420400007)(6116002)(7736002)(2906002)(10710500007)(1730700003)(8676002)(81166006)(790700001)(81156014)(99286004)(7110500001)(71190400001)(68736007)(6436002)(2501003)(86362001)(8936002)(53936002)(55016002)(236005)(71200400001)(5640700003)(6306002)(66066001)(3480700005)(966005)(14454004)(478600001)(102836004)(72206003)(105586002)(97736004)(5660300002)(54896002)(26005)(316002)(52536013)(6916009)(33656002)(7696005)(606006)(2351001)(9686003)(186003)(106356001)(5024004)(476003)(256004)(14444005)(486006); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR0801MB1919; H:VI1PR0801MB2112.eurprd08.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: qDgWdgDLstEJjoofi5b0E5q+T/huHeAMCWhmPczmAYzSnDLQYCJY9pJ3YNndwy+mqfQoiEhAszD8jpkc9BphOAr1bG/Ud2K7RjlM3QMjfhp7BWs1vHL5yvCavpFmEfEa4fKfM70nSdGhiEnc9AFP1eRJsyzRm4aP+knSEeTs//uvJTZfXyMnusIZ5irW3A7GJgSv7W7MoY6Qsunj1azFt+993IrSte3TNEH5Xuz//xUsNUiI/ZGswJQQAC7SwO1Z50GpB+aHVopDFfcSPuz9M1ctGVGNncug/GVXtorazdGdnFNFhHtO3CXnzFUCup8Ul/BjaAyPqoj5MkEpb/Mwzs4WVLAHwkVkcDi7cybm32j8Af+CvgcRIAhh/0wwKxv76WoDhqUWOKStFXytZB+DfU5PuDP9zGu87lRi+bOyyj0=
Content-Type: multipart/alternative; boundary="_000_VI1PR0801MB211236E412BC9FAB7C2A0177FA490VI1PR0801MB2112_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 74c0dc0c-0da3-4085-2afa-08d6a6c76d39
X-MS-Exchange-CrossTenant-originalarrivaltime: 12 Mar 2019 08:47:57.9668 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0801MB1919
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/R-73ERpLHEzmlaHwc6VXbWYDUAE>
Subject: [Teep] TEEP Architecture Draft Updated
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Mar 2019 08:48:04 -0000
Hi all, In time for the deadline we submitted an updated version of the TEEP architecture document. It was a snapshot of what we had on the TEEP WG Github repo (see https://github.com/ietf-teep/architecture). Last year we collected a list of open issues and, as you can see, there are still a number of issues open, see https://github.com/ietf-teep/architecture/issues. We plan to discuss some of them at the f2f meeting Prague. Since the last IETF meeting in Bangkok we have tried to address some of the issues and from the diff you can see that we have addressed some of them: https://tools.ietf.org/rfcdiff?url2=draft-ietf-teep-architecture-02.txt Here is a short list of what has been changed in the document: * Terminology: We added the device user, and the device owner term. We clarified trust anchor and device administrator. * Shorted the list of assumptions * Added text about multiple TEEs and multiple TAMs * Added text about the client app / trusted app interaction * Updated text about trust anchors * Improved the example flow * Added text about attestation and made lots of other editorial improvements here and there. Take a look at the document and let us know what you think. We also welcome your thoughts about the open issues. Ciao Hannes (on behalf of the authors) IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
- [Teep] TEEP Architecture Draft Updated Hannes Tschofenig