Re: [Teep] Working Group Last Call for HTTP Transport for Trusted Execution Environment Provisioning: Agent-to-TAM Communication
Dave Thaler <dthaler@microsoft.com> Wed, 01 April 2020 01:42 UTC
Return-Path: <dthaler@microsoft.com>
X-Original-To: teep@ietfa.amsl.com
Delivered-To: teep@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B5473A0FA2 for <teep@ietfa.amsl.com>; Tue, 31 Mar 2020 18:42:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.201
X-Spam-Level:
X-Spam-Status: No, score=-0.201 tagged_above=-999 required=5 tests=[DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7kUS1_MK35rb for <teep@ietfa.amsl.com>; Tue, 31 Mar 2020 18:42:28 -0700 (PDT)
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (mail-dm6nam10on2135.outbound.protection.outlook.com [40.107.93.135]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A3E443A0FA0 for <teep@ietf.org>; Tue, 31 Mar 2020 18:42:28 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Z0xadEl3L8ZH1rx+L9e+LbOB+UgcnML8/uIhIIT6sBvM7peXw4LGisY6tavusZaHjBg3ZaxzUcwMfLQ9lX2gomB6hym/QN0zNzLp9FBLx2DvgseXNsJgRVvJQ2LqzuW4WKZxOlkCjsoYqHGIknTdrjFe60bXO7VClxP+Vn0zgNvsIw3885bPODHwitV7XwOTqN0obfZz1QjdLH9LH4Gedk8tFPYRWZoPBtKyCCxX1aMYczmbSY+TkynB+8LL3Pj6yKk6GqLsxYoyLe/Q+T4bm8/m/jQ8LUAfTPprREUrvWAuaXh7ZLoPpP3X9W349yc/fzdBhDqymgTQHCBxbw/Lcg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=x5jLbSNpsVYX61jBCKpvNvE3/HM6rnjmNFstgaIes38=; b=aQ5rsGTYbQH2jqtmZN96lcxLFwhvrhyli3oHaZUzsaE8DV2B/edYPNlpTGwkH/1GCfTAmdx6r8c42aGW9KS95ZVBKsbFvB97EG/K/C9t3G6J+1LXd3YiajT4LNrgQCQe+AnPdJxozEtQ/bD10L0fdOSxhw7gEUtSxivsW+dB0JwTaykLR1ZPtO5Gz03J6dre8o4exGmbDHwlZNSJUAza9x5If65gn1W+WHaXnaMxskFoGQUFWhdfAiyAdyh7clnliM8QvP3zRSliGwb2tqwXrCLtwZYm9piYSXOrFD/b8dB3tT7Tsstx+heWz0FlPfR1FNsyjKIiLqP1a0SsieACNw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=x5jLbSNpsVYX61jBCKpvNvE3/HM6rnjmNFstgaIes38=; b=SHWam9gY+rM9gi/PiuFF45i3hmIBNqXME4yzc0KSXNLuK2jEkiwgnyhp1NF9RC+tfPE5uZVDeyZD0kAGH2W7BLnSyalXa0T7Itk6b8VdiTlSFQwoJyVlZ4AWtDqNrtzYOsL1juXy2hUzjdez+D+gu4Sd/BfL6V1ClWQj14VacNs=
Received: from BL0PR2101MB1027.namprd21.prod.outlook.com (2603:10b6:207:30::33) by BL0PR2101MB0962.namprd21.prod.outlook.com (2603:10b6:207:30::27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2900.2; Wed, 1 Apr 2020 01:42:22 +0000
Received: from BL0PR2101MB1027.namprd21.prod.outlook.com ([fe80::e5f4:bd2b:d304:bfc9]) by BL0PR2101MB1027.namprd21.prod.outlook.com ([fe80::e5f4:bd2b:d304:bfc9%4]) with mapi id 15.20.2878.010; Wed, 1 Apr 2020 01:42:22 +0000
From: Dave Thaler <dthaler@microsoft.com>
To: Russ Housley <housley@vigilsec.com>, "teep@ietf.org" <teep@ietf.org>
Thread-Topic: [Teep] Working Group Last Call for HTTP Transport for Trusted Execution Environment Provisioning: Agent-to-TAM Communication
Thread-Index: AdXgu0iSExhAZRZISA2YiaXw3QSuswAQhgSACbIuJRA=
Date: Wed, 01 Apr 2020 01:42:22 +0000
Message-ID: <BL0PR2101MB1027A538F95E00E85B7131B6A3C90@BL0PR2101MB1027.namprd21.prod.outlook.com>
References: <CY4PR1601MB12540E3731269EF636F9D5B1EA180@CY4PR1601MB1254.namprd16.prod.outlook.com> <BF015A00-E295-47FD-98B5-1E7BCF5C0F49@vigilsec.com>
In-Reply-To: <BF015A00-E295-47FD-98B5-1E7BCF5C0F49@vigilsec.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=dthaler@microsoft.com;
x-originating-ip: [2601:600:9780:16f0:2c3c:d263:476c:d2f7]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 8ece8e23-c9df-40cc-f5f6-08d7d5ddec82
x-ms-traffictypediagnostic: BL0PR2101MB0962:
x-microsoft-antispam-prvs: <BL0PR2101MB0962198FBAA43D08EB45337EA3C90@BL0PR2101MB0962.namprd21.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 03607C04F0
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL0PR2101MB1027.namprd21.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(10019020)(4636009)(366004)(81166006)(8676002)(8936002)(66476007)(186003)(81156014)(5660300002)(66446008)(64756008)(66946007)(66556008)(86362001)(52536014)(55016002)(71200400001)(82960400001)(53546011)(10290500003)(9686003)(33656002)(110136005)(6506007)(76116006)(498600001)(82950400001)(7696005)(2906002)(8990500004); DIR:OUT; SFP:1102;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: /cgP+T5P2WHptAimvQSSDkUuEYhCheY68/SqWCdlEKNQQZhSYdFqIxdNxAXZqwKH87/RX4QFUkhvnRkSGTmg+mpBVFoF5HhqFuA1YCgQTMo/fPmxf4JEh+KREZFkY2z+sMxS4+9LurtxIPWvwgK1z9bCCpzXdgb8hBEcCYLd3OELoTCpp/NtRYJaSJSHiFQ3sE5LqLrkhrZDaofZ9s/vj5fuZlMK6DuBkioSCoqjy40jthzhaH8phqjmGlm7iLAGam35Qu/lg+tAC26QL4XDcwainQS3n68BRnZx1A5tsGoGSX1WRfFcR+kg+EL9iJboF+32KlnNTbbYKkbZ1N11IUXL9VTwMftx0kDC9vr84j3fJRD9bM4GLSDGs3XZ9pkjngXtCtXj8YMW53fd/aUv+Z7kDzSpo/yYJQuATBOGmsSvgTMWswsYsz2s1axhVAgJ
x-ms-exchange-antispam-messagedata: +2iKuQoTz0GVIYXg/QjQPEGD+wM0npErviRHitGUUuScKi4mGLEwLdHyotOyje51jXihy0/AaJwez2NMe3K+t+N5dkLIdECMrezgfwJSKDErmcO4PAW3U2Hv3eVOYTzDiisvMylpPP7BxWzK4y+xCHUvpV7B+1x74+E1R/drcEa8pnnC0BdyC+RyceofET0RqbniS1GR2snodoIWKJs8Xw==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_BL0PR2101MB1027A538F95E00E85B7131B6A3C90BL0PR2101MB1027_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8ece8e23-c9df-40cc-f5f6-08d7d5ddec82
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Apr 2020 01:42:22.8139 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 9V1GGOdfu9PCLHmKqjukGJwHCapKvDXljXoU2dCmI+C74j8sp1nsnBWbOZ4p5m9IB6Hg6NBljKkdhRdKginR8o12sPs35HSugCjIbCl4YjA=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL0PR2101MB0962
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/4xJiJvcDsHL0wL3SyD-U5Djvkng>
Subject: Re: [Teep] Working Group Last Call for HTTP Transport for Trusted Execution Environment Provisioning: Agent-to-TAM Communication
X-BeenThere: teep@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/teep>, <mailto:teep-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep/>
List-Post: <mailto:teep@ietf.org>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/teep>, <mailto:teep-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Apr 2020 01:42:32 -0000
From: TEEP <teep-bounces@ietf.org> On Behalf Of Russ Housley Sent: Tuesday, February 11, 2020 9:05 AM To: teep@ietf.org Subject: Re: [Teep] Working Group Last Call for HTTP Transport for Trusted Execution Environment Provisioning: Agent-to-TAM Communication I read the document. It looks really dood, but I have two comments: 1) My reading is that application/teep+json is not required for the content type. I think it should be. It is required. Section 4 uses a SHOULD over the exact set of headers, but section 5.2 (last paragraph) and section 6.3 are worded so that Content-Type is required. Is the wording in those two sections sufficient or is there a specific change you would like? 2) Are there better examples "Foo" or "Bar" in the example. If not, please explain them in the text. I assume you're referring to the User-Agent strings in the example. We don't have an actual examples from real implementations to use yet. I take your request as a request to explain that the User-Agent values are just examples and would be filled in with implementation specific values. Thanks Russ, Dave Russ
- [Teep] Working Group Last Call for HTTP Transport… Konda, Tirumaleswar Reddy
- Re: [Teep] Working Group Last Call for HTTP Trans… Russ Housley
- Re: [Teep] Working Group Last Call for HTTP Trans… Konda, Tirumaleswar Reddy
- Re: [Teep] Working Group Last Call for HTTP Trans… Dave Thaler
- Re: [Teep] Working Group Last Call for HTTP Trans… Dave Thaler
- Re: [Teep] Working Group Last Call for HTTP Trans… Dave Thaler
- Re: [Teep] Working Group Last Call for HTTP Trans… Benjamin Kaduk
- Re: [Teep] Working Group Last Call for HTTP Trans… Dave Thaler
- Re: [Teep] Working Group Last Call for HTTP Trans… Benjamin Kaduk
- Re: [Teep] Working Group Last Call for HTTP Trans… Konda, Tirumaleswar Reddy