IETF Logo Mail Archive

[Teep] Re: Review for draft-ietf-teep-usecase-for-cc-in-network

Michael Richardson <mcr+ietf@sandelman.ca> Sun, 22 June 2025 16:12 UTC

Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: teep@mail2.ietf.org
Delivered-To: teep@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id BA34B38003FB for <teep@mail2.ietf.org>; Sun, 22 Jun 2025 09:12:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=sandelman.ca
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1nF9soHus1VI for <teep@mail2.ietf.org>; Sun, 22 Jun 2025 09:12:21 -0700 (PDT)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 401F238003F3 for <teep@ietf.org>; Sun, 22 Jun 2025 09:12:21 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id B14553898B; Sun, 22 Jun 2025 12:12:20 -0400 (EDT)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavis, port 10024) with LMTP id 90sT0qxVwcR8; Sun, 22 Jun 2025 12:12:20 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sandelman.ca; s=mail; t=1750608740; bh=yq9gxlcRatrH4JVfTFSo7o3zx3ZzzdHzRMdt5sS0TVA=; h=From:To:cc:Subject:In-Reply-To:References:Date:From; b=bOdgKO5fetwrGrhElOaAqYIpaXWbzuzMe6/D52CxvLWQ/lDLTKzxMi/5fWTIHkHBZ O4gl0eJitTUY9vDdzQF2GSVMWN5rhReREAHExoStQmSi65h5uvAsqUpyK0u+lD+emi Swq3nxDptU4ZIS/4DUXsYb+2gJWp9JmxoiBpbeAkZmiWNHTuGKD/a9ftPUay38NCm2 Q1MB16G6ppcufjMG78ZhOhoJLBNLr4uMitbS1OhlGqsjXOddT4+dmeGwKVe/DpnCWn olHL+x1oVURmmcvqhHny37o2LQGY3RjXC3ba1l1SPcK6bzuBk2+pT7xE+TKvbApsv1 Qub6mMjXeqMmQ==
Received: from sandelman.ca (unknown [IPv6:2607:f0b0:f:2:b241:6fff:fe09:a92b]) by tuna.sandelman.ca (Postfix) with ESMTP id 0426B38982; Sun, 22 Jun 2025 12:12:20 -0400 (EDT)
Received: from obiwan.sandelman.ca (obiwan.sandelman.ca [127.0.0.1]) by sandelman.ca (Postfix) with ESMTP id 010E61B8; Sun, 22 Jun 2025 12:12:20 -0400 (EDT)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "ypl_ietf@163.com" <ypl_ietf@163.com>
In-Reply-To: <2025062216554380798710@163.com>
References: <465af131ff564554be12128f64f3e609@huawei.com>, <202506151122389695806@163.com>, <8926.1750012496@obiwan.sandelman.ca>, <22164.1750541483@obiwan.sandelman.ca> <2025062216554380798710@163.com>
X-Mailer: MH-E 8.6+git; nmh 1.8+dev; GNU Emacs 28.2
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0;<'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Sun, 22 Jun 2025 12:12:19 -0400
Message-ID: <5137.1750608739@obiwan.sandelman.ca>
Message-ID-Hash: LSTUKV5IHK2EJA2GQBBMX4KSITSOUYJC
X-Message-ID-Hash: LSTUKV5IHK2EJA2GQBBMX4KSITSOUYJC
X-MailFrom: mcr+ietf@sandelman.ca
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-teep.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: teep <teep@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [Teep] Re: Review for draft-ietf-teep-usecase-for-cc-in-network
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement <teep.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/teep/c4R9RAGUGl-RJvdL0g1nveDbv1Q>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Owner: <mailto:teep-owner@ietf.org>
List-Post: <mailto:teep@ietf.org>
List-Subscribe: <mailto:teep-join@ietf.org>
List-Unsubscribe: <mailto:teep-leave@ietf.org>

{Any chance you could include your name in your email?}

ypl_ietf@163.com <ypl_ietf@163.com> wrote:
    > A little confused about your case. You mean the appliance is owned by
    > ISP but cannot execute remote attestation because it cannot access
    > reference value and endorsement.

When we started RATS, I had assumed that reference values/endorsements would
be available and public.  That it was to everyone's advantage to have
trustworthy systems.  That's not the case.   Vendors do not release reference
values easily, or publically.

One of the reason for the *three* party architecture is to reduce how many
entities have to negotiate with vendors, or conversely, how many vendors have
to negotiate with Relying Parties.  That's why we have the intermediate role
of the Verifier.

If I, as a customer of an ISP (the RP), ask the ISP "are you trustworthy?", then the
ISP would just say "yes, of course we are".  That's a form of
self-attestation really.
So the ISP can't own/control the signing key for Attestation Results.
It needs to be signed by another party.

    > And the ISP operate the verifyer in a
    > TEE environment which could be attested by OEM. The meaning of this
    > case is to protect the privacy of appliance OEM and the data in that
    > appliance. Is my understanding right?

I'm hesistant to give you a blanket yes, here, but yes.
The ISP could operate the OEM's Verifier in a TEE.
The private appliance data is the OEM's Attestation Results signing key.


--
Michael Richardson <mcr+IETF@sandelman.ca>   . o O ( IPv6 IøT consulting )
           Sandelman Software Works Inc, Ottawa and Worldwide

v2.46.0 | Report a Bug | By Email | System Status