Re: [Teep] [EXT] Re: Call for adoption
"Wheeler, David M" <david.m.wheeler@intel.com> Tue, 12 June 2018 00:23 UTC
Return-Path: <david.m.wheeler@intel.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 490BB130DC6 for <teep@ietfa.amsl.com>; Mon, 11 Jun 2018 17:23:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.21
X-Spam-Level:
X-Spam-Status: No, score=-2.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lsXmb9NQIVCq for <teep@ietfa.amsl.com>; Mon, 11 Jun 2018 17:22:59 -0700 (PDT)
Received: from mga02.intel.com (mga02.intel.com [134.134.136.20]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A4F7130DC7 for <teep@ietf.org>; Mon, 11 Jun 2018 17:22:59 -0700 (PDT)
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from orsmga001.jf.intel.com ([10.7.209.18]) by orsmga101.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 11 Jun 2018 17:22:58 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos; i="5.51,212,1526367600"; d="scan'208,217"; a="63748116"
Received: from fmsmsx107.amr.corp.intel.com ([10.18.124.205]) by orsmga001.jf.intel.com with ESMTP; 11 Jun 2018 17:22:58 -0700
Received: from FMSMSX109.amr.corp.intel.com (10.18.116.9) by fmsmsx107.amr.corp.intel.com (10.18.124.205) with Microsoft SMTP Server (TLS) id 14.3.319.2; Mon, 11 Jun 2018 17:22:58 -0700
Received: from crsmsx151.amr.corp.intel.com (172.18.7.86) by fmsmsx109.amr.corp.intel.com (10.18.116.9) with Microsoft SMTP Server (TLS) id 14.3.319.2; Mon, 11 Jun 2018 17:22:57 -0700
Received: from crsmsx101.amr.corp.intel.com ([169.254.1.79]) by CRSMSX151.amr.corp.intel.com ([169.254.3.85]) with mapi id 14.03.0319.002; Mon, 11 Jun 2018 18:22:55 -0600
From: "Wheeler, David M" <david.m.wheeler@intel.com>
To: Nicolae Paladi <n.paladi@gmail.com>, Mingliang Pei <Mingliang_Pei@symantec.com>
CC: "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>, "teep@ietf.org" <teep@ietf.org>, Dave Thaler <dthaler@microsoft.com>
Thread-Topic: [Teep] [EXT] Re: Call for adoption
Thread-Index: AQHTyq142RjpvyjwDU2wIosP54am7aQTJwQAgAC1LgCACM2bgIAAlxIAgAATjgCAApFBAIA8R8gQ
Date: Tue, 12 Jun 2018 00:22:54 +0000
Message-ID: <0627F5240443D2498FAA65332EE46C843B65150F@CRSMSX101.amr.corp.intel.com>
References: <E3320980-A44F-4429-A255-16E17EB572FD@cisco.com> <38924978-1EB8-4E25-A8EE-55F85A5FD173@cisco.com> <6F8051FA-C7F7-4E53-B8F8-5F45290F8D7F@symantec.com> <0627F5240443D2498FAA65332EE46C84367D27EF@CRSMSX102.amr.corp.intel.com> <CY4PR21MB07749A26B6D0DAFC15231CB1A3800@CY4PR21MB0774.namprd21.prod.outlook.com> <2F635C9F-199B-4118-9D80-CD35ADA74261@symantec.com> <6C77FC20-EB64-46B7-8D2D-69693E163D95@gmail.com>
In-Reply-To: <6C77FC20-EB64-46B7-8D2D-69693E163D95@gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-titus-metadata-40: eyJDYXRlZ29yeUxhYmVscyI6IiIsIk1ldGFkYXRhIjp7Im5zIjoiaHR0cDpcL1wvd3d3LnRpdHVzLmNvbVwvbnNcL0ludGVsMyIsImlkIjoiYzNjNmEwYjktMWMzMi00OWZhLTg4NzMtNTRkODBmZjBkZjgyIiwicHJvcHMiOlt7Im4iOiJDVFBDbGFzc2lmaWNhdGlvbiIsInZhbHMiOlt7InZhbHVlIjoiQ1RQX05UIn1dfV19LCJTdWJqZWN0TGFiZWxzIjpbXSwiVE1DVmVyc2lvbiI6IjE3LjEwLjE4MDQuNDkiLCJUcnVzdGVkTGFiZWxIYXNoIjoiNnYxUWlRSG81Z1FhUldPWU9NNkwyWFVCU3A0aFZrOVhEdEVvcjBwS0RCQnRaTlFQK0tMN0JVa1Q0RkFqdzFENiJ9
x-ctpclassification: CTP_NT
dlp-product: dlpe-windows
dlp-version: 11.0.200.100
dlp-reaction: no-action
x-originating-ip: [172.18.205.10]
Content-Type: multipart/alternative; boundary="_000_0627F5240443D2498FAA65332EE46C843B65150FCRSMSX101amrcor_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/VoANYuvV-KNDZHNqXZS1Le9zXbw>
Subject: Re: [Teep] [EXT] Re: Call for adoption
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Jun 2018 00:23:06 -0000
I am also a bit confused by 5.2.
“The protocol generates one key pair…”
Probably not the correct pronoun here – the protocol can’t generate a key pair, because it cannot hold a key.
Perhaps this should say “The TEE generates a new key pair…”
Because it appears the TEE is going to use this key pair for signing (correct?)
“The purpose of the key pair is to sign data by a TEE without using its TEE device key for anonymous attestation…”
My confusion arises as I try to understand when the TEE will use this key pair. At first I believe it is tied to a particular SP, and used by the TEE whenever the SP is contacted. But then the key pair seems tied to a Security Domain (SD) and only deleted when all the SD’s are deleted.
5.3 “Since a TAM may support multiple SPs, sharing the same SD name for different SPs creates a dependency in deleting an SD.”
This seems to create a problem in deletion of AIKs. AIKs should be able to be deleted when the SP does not want a relationship with a particular TEE/Device. Forcing the AIK to not be deleted until another structure (the SD) is deleted, which can be delayed infinitely due to a TAMs overuse of an SD, seems to create a privacy issue, IMHO.
I know we have discussed having more conversation around the security domains, and perhaps we should clear that up first, then tackle this issue. Possibly clarifying the intention around the AIK with linkage to the SD might help, though.
Thanks,
Dave Wheeler
From: TEEP [mailto:teep-bounces@ietf.org] On Behalf Of Nicolae Paladi
Sent: Friday, May 4, 2018 2:35 AM
To: Mingliang Pei <Mingliang_Pei@symantec.com>
Cc: Nancy Cam-Winget (ncamwing) <ncamwing@cisco.com>; teep@ietf.org; Wheeler, David M <david.m.wheeler@intel.com>; Dave Thaler <dthaler@microsoft.com>
Subject: Re: [Teep] [EXT] Re: Call for adoption
Hello,
I have read through the 06 OTrP document; besides a list of miscellaneous omissions and minor misses (that can be addressed later), several points caught my eye:
1. In §5.2 the acronym “AIK” from "TEE SP anonymous key (AIK)” reads very similar to the concept of an “Attestation Identity Key” (e.g. from [1]).
Is that the purpose? If yes, the key and its role should be introduced, otherwise a different acronym could be used.
2. In §6.3.1 the draft mentions that “It is important to ensure a legitimate OTrP Agent is installed”.
However, it is not clear what a “legitimate” agent is and how one can ensure that a “legitimate” agent installed.
Given that the agent runs in the REE where the applications are by definition un-trusted (as per 3.1), this paragraph leads to a dead end.
What is the relation between a “legitimate” application and a “trusted” application?
3. §6.3.2 states twice (duplication) that only one OTrP agent is expected.
However, given that “a user can dynamically download and install an OTrP Agent on demand” (as per §6.3.1), it is unclear what this expectation is based on.
Moreover, the interaction is multiple OTrP agents on the platform is not discussed.
Best regards,
Nicolae
====
[1] Ernie Brickell, Jan Camenisch, and Liqun Chen. 2004. Direct anonymous attestation. In Proceedings of the 11th ACM conference on Computer and communications security (CCS '04). ACM, New York, NY, USA, 132-145. DOI=http://dx.doi.org/10.1145/1030083.1030103
On 02 May 2018, at 20:23, Mingliang Pei <Mingliang_Pei@symantec.com<mailto:Mingliang_Pei@symantec.com>> wrote:
Thanks Dave T, that is correct.
Hi Dave W, yes, I can confirm that it is exactly the same version as v06 OTrP except a few typo fixes. The plan is to rename the “adopted” version v06 first to WG named draft, and we work on revision from there with full continuity.
Thanks,
Ming
From: Dave Thaler <dthaler@microsoft.com<mailto:dthaler@microsoft.com>>
Date: Wednesday, May 2, 2018 at 10:13 AM
To: "Wheeler, David M" <david.m.wheeler@intel.com<mailto:david.m.wheeler@intel.com>>, Mingliang Pei <Mingliang_Pei@symantec.com<mailto:Mingliang_Pei@symantec.com>>, "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com<mailto:ncamwing@cisco.com>>, "teep@ietf.org<mailto:teep@ietf.org>" <teep@ietf.org<mailto:teep@ietf.org>>
Subject: RE: [Teep] [EXT] Re: Call for adoption
You can see the diffs at
I see that a number of typos were fixed, but there were no substantial differences.
Dave
From: TEEP <teep-bounces@ietf.org<mailto:teep-bounces@ietf.org>> On Behalf Of Wheeler, David M
Sent: Wednesday, May 2, 2018 7:14 AM
To: Mingliang Pei <Mingliang_Pei@symantec.com<mailto:Mingliang_Pei@symantec.com>>; Nancy Cam-Winget (ncamwing) <ncamwing@cisco.com<mailto:ncamwing@cisco.com>>; teep@ietf.org<mailto:teep@ietf.org>
Subject: Re: [Teep] [EXT] Re: Call for adoption
Ming,
Can you just confirm that there are NO DIFFERENCES between the last released version and the 06 OTrP document?
If there are differences, can you give a short summary so I know where to look?
Much appreciated,
Dave Wheeler
From: TEEP [mailto:teep-bounces@ietf.org] On Behalf Of Mingliang Pei
Sent: Thursday, April 26, 2018 10:46 AM
To: Nancy Cam-Winget (ncamwing) <ncamwing@cisco.com<mailto:ncamwing@cisco.com>>; teep@ietf.org<mailto:teep@ietf.org>
Subject: Re: [Teep] [EXT] Re: Call for adoption
Thank you Nancy, Dave and all for your support, comments and suggestions.
Yes, I will rename the draft to “draft-ietf-teep-opentrustprotocol” and resubmit it very soon.
Thanks, again,
Ming
From: TEEP <teep-bounces@ietf.org<mailto:teep-bounces@ietf.org>> on behalf of "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com<mailto:ncamwing@cisco.com>>
Date: Thursday, April 26, 2018 at 8:58 AM
To: "teep@ietf.org<mailto:teep@ietf.org>" <teep@ietf.org<mailto:teep@ietf.org>>
Subject: [EXT] Re: [Teep] Call for adoption
Hearing (or reading) no strong objections, “draft-pei-opentrustprotocol” is adopted by the WG.
A few comments have already been provided that can be addressed in subsequent versions some can also be clarified in the architecture draft.
Ming: when you get a chance, please submit the draft with the name: draft-ietf-teep-opentrustprotocol
Your chairs, Dave and Nancy
From: "ncamwing@cisco.com<mailto:ncamwing@cisco.com>" <ncamwing@cisco.com<mailto:ncamwing@cisco.com>>
Date: Monday, April 2, 2018 at 11:07 AM
To: "teep@ietf.org<mailto:teep@ietf.org>" <teep@ietf.org<mailto:teep@ietf.org>>
Subject: Call for adoption
All,
There was strong interest and consensus at the TEEP f2f IETF 101 meeting in London for adopting
https://datatracker.ietf.org/doc/draft-pei-opentrustprotocol/<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fclicktime.symantec.com%2Fa%2F1%2FgRKJSsq7kQhfqIKwz5wHUYr68TvGP5gAqpJNYBP-b7k%3D%3Fd%3D8WYzqysvQkd-X_pG-TDgQWMOhCT_hZ1FSVct6-8Ei0YXDodJ-BlC1HRZVDivUH6gtXKkOaBplQ4cm5LXvKuOoc75nlsRDpZ0rTVUq3fI7jVSXjtiB2k5l62ztuPK_5u9S0O3mA7XFXurjMVspCv9uWGRny0TCxWJTwmktVrcQ-LZsoLDB69BN4KytF_Po_2Z2uln01QFKhgSZXUOR-YCo0fpFWZNBDKlXao5KGMKu-LMjD9wwhzQSXXsEgOk-r_0Vzw4CArYfYfPSqkGXkT1bJegLFfBHZZ6RGWMovT3TJ8Z2EohP6RQgIWuG16Z_L_WaaiTJKC75JKHUnWLAF4IObMDfaL4frUNdI7SaFJEk1Nym6ab%26u%3Dhttps%253A%252F%252Fdatatracker.ietf.org%252Fdoc%252Fdraft-pei-opentrustprotocol%252F&data=02%7C01%7Cdthaler%40microsoft.com%7C7a6910317f434c0cf7e508d5b036f02f%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C1%7C636608672364767599&sdata=4N1Xkn78OMBQeskfI6i%2FOe4R37Hw%2BcOELBqt06w6x%2FY%3D&reserved=0> as a draft protocol.
This is a call for adoption as a working group draft . If you have any concerns or objections please respond
by April 16th.
Warm regards, Nancy
_______________________________________________
TEEP mailing list
TEEP@ietf.org<mailto:TEEP@ietf.org>
https://www.ietf.org/mailman/listinfo/teep
- Re: [Teep] [EXT] Re: Call for adoption Wheeler, David M
- [Teep] Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] Call for adoption Dave Thaler
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei
- Re: [Teep] Call for adoption Scott Kitterman
- Re: [Teep] Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] [EXT] Re: Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei
- Re: [Teep] Call for adoption Scott Kitterman
- Re: [Teep] Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei
- Re: [Teep] Call for adoption Nancy Cam-Winget (ncamwing)
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei
- Re: [Teep] [EXT] Re: Call for adoption Wheeler, David M
- Re: [Teep] [EXT] Re: Call for adoption Dave Thaler
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei
- Re: [Teep] [EXT] Re: Call for adoption Nicolae Paladi
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei
- Re: [Teep] [EXT] Re: Call for adoption Nicolae Paladi
- Re: [Teep] [EXT] Re: Call for adoption Dave Thaler
- Re: [Teep] [EXT] Re: Call for adoption Jeremy O'Donoghue
- Re: [Teep] [EXT] Re: Call for adoption Mingliang Pei