IETF Logo Mail Archive

[Teep] My implementation status (libteep & libcsuit)

Ken Takayama <ken.takayama.ietf@gmail.com> Fri, 08 September 2023 12:51 UTC

Return-Path: <ken.takayama.ietf@gmail.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1656C15106F; Fri, 8 Sep 2023 05:51:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e2VLsFrjABsP; Fri, 8 Sep 2023 05:51:20 -0700 (PDT)
Received: from mail-oa1-x30.google.com (mail-oa1-x30.google.com [IPv6:2001:4860:4864:20::30]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C6A9C14CE4D; Fri, 8 Sep 2023 05:51:20 -0700 (PDT)
Received: by mail-oa1-x30.google.com with SMTP id 586e51a60fabf-1d544a4a315so1517698fac.3; Fri, 08 Sep 2023 05:51:20 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20221208; t=1694177479; x=1694782279; darn=ietf.org; h=to:subject:message-id:date:from:mime-version:from:to:cc:subject :date:message-id:reply-to; bh=2O0jBhbGn/3WCUPUAP8CVw6FCuUBQTjWlch965exqUE=; b=Xgc0yx29H7f33byBWRK9TMvyWg5EB1fsExhd85hbESZFlnKHUw4a8D7lNf/GqV/8zT 6YEHfbwuC/JIwcCBLdySnLj6FKW0YNXvS+XFatK1Z+1xrJ+8Nmuu0Fs8n5hL0ram++CF 00bgO6ba/6EsVV7RcrLtVKPPQae8C0LuMfLgMMGuA4bIgczRj2WHh+9FDESo9wBIlIgM EEc3Z/kjne1tWcQSgdNSCja5/tH5hm2nQvJLOlVoahpB5Iscd5Wf9k0y20qOxuukcPRx KHnTZis8o2sArwDi8PWxLiqOs0ZJOl8xo4KqnEas2ZnbuKtxVDnGAu5VYTd2FywwOUdB 29DQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1694177479; x=1694782279; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=2O0jBhbGn/3WCUPUAP8CVw6FCuUBQTjWlch965exqUE=; b=fAEldoJd4V4udfseNOp0VVou4sAQ7nj6fU+oHaxwshsdvxDYDf1m60ymZs2rPbmhGp n+Cvw6i16rOgbbLeyeGJ/zoILNgfG0pmUaQOL1KW2FmMe9XhH5xza1+ODSZ9wjMnaucC ZezVScKHw8mvjwBi6FLqjo0sIxanQqVciqu2dpk9hMzfHaesk7N2waB4k61IwdR561i8 hvA4elPoPO8ExK44VNFqQJd7LRTVwXzIQyL++WXlPDMm/JUYylgnQBdwclhcpVvHb21o lBQ7bsRErq98nQGRi17eC1ga4VUv6edHkYr+VnPxbQI5dtmSCHhjZfZd3lj1m2Ik7dYf g6bA==
X-Gm-Message-State: AOJu0Yx57tk9vUM4RCOHVfHgw0F/IdiELSxICeye6fOkEYF1ism+KYx5 H4Z93i6cfhq9w6neLpdYio6qB0maKCko6xMfmEt07PFAnNo=
X-Google-Smtp-Source: AGHT+IHxEAx/GhRsxIMrIR88/M/0E3l5pmY3a1wtqynvh7i0JyWoqKf6R0VNhJPBnubA0DGMcqMJ7VwXkBBmSxj4Rlc=
X-Received: by 2002:a05:6870:3127:b0:1b0:12d7:1ef6 with SMTP id v39-20020a056870312700b001b012d71ef6mr2385789oaa.25.1694177479088; Fri, 08 Sep 2023 05:51:19 -0700 (PDT)
MIME-Version: 1.0
From: Ken Takayama <ken.takayama.ietf@gmail.com>
Date: Fri, 08 Sep 2023 21:51:08 +0900
Message-ID: <CAOZByRBnCqkp_2F0pH6461Gq+02ZGAtdHQC9FzApE8jwTV68=Q@mail.gmail.com>
To: suit@ietf.org, "TEEP@ietf.org" <teep@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000d3de6a0604d86e83"
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/PRh56vUniUosZWDgbkRiEHRgGKU>
Subject: [Teep] My implementation status (libteep & libcsuit)
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Sep 2023 12:51:22 -0000

TEEP WG and SUIT WG,

I've updated my implementations, and couldn't find any critical issues.

I can provide some updated example messages to the documents.
To authors, do you need them before the upcoming interim?

Completed works and TODOes:

   - TEEP Protocol
      - [implementation] Add COSE_Key Thumbprint kid
         - deterministically calculate the thumbprint of a COSE_Key
         - code:
         https://github.com/kentakayama/libteep/blob/f12b8782f1e93f529118ed07d607410ddd3f0bd1/src/teep_cose.c#L752
         - sample:
         https://github.com/kentakayama/libteep/blob/master/testfiles/teep_success.md#cose_sign-protected-success-message-in-diag
      - checked calculated values with my python implementation:
         https://github.com/kentakayama/cose-key-thumbprint
      - [implementation] COSE_Sign on QueryRequest
         - multiple signatures using deterministic ECDSA and EdDSA
         - sample:
         https://github.com/kentakayama/libteep/blob/master/testfiles/query_request.md#cose_sign-protected-queryrequest-message-in-diag
         - TODO: insert them into appendix or create message repository?
         currently there is no signed messages in the document
         - [implementation] Reflect draft v16 message type update
         - QueryRequest: + attestation-payload-format, +
         attestation-payload, + suit-reports
         - Update: + err-code, + err-msg
         - Error: + challenge
      - [implementation] Update suit-cose-profile
         - e.g. suit-sha256-es256-ecdh-a128gcm =>
         suit-sha256-es256-ecdh-a128ctr
         - reported an issue:
         https://github.com/ietf-teep/teep-protocol/issues/356
         - TODO: create a PR (Updating CDDL and example message)
         - [document] Raised Issues around Evidence and Attestation Results
      - Evidence/Attestation Results from TAM:
         https://github.com/ietf-teep/teep-protocol/issues/354
         - Referring SUIT Report as Normative or Informative:
         https://github.com/ietf-teep/teep-protocol/issues/355
      - SUIT Encrypted Payloads
      - [implementation] Add COSE_Mac0 support for AES-KW symmetric example
         - Hannes is checking this example
         - TODO: create a PR
         - code: https://github.com/kentakayama/libcsuit/pull/32
      - [implementation] Set KDF context for ES-ECDH asymmetric example
      - code: https://github.com/kentakayama/libcsuit/pull/33
         - TODO: create a PR

Best,
Ken

v2.23.0 | Report a Bug | By Email