Return-Path: <11kenterada@gmail.com>
X-Original-To: teep@mail2.ietf.org
Delivered-To: teep@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1])
	by mail2.ietf.org (Postfix) with ESMTP id 49541B398E9A
	for <teep@mail2.ietf.org>; Sun,  8 Feb 2026 02:34:43 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level: 
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5
	tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
	DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001,
	HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001,
	SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key)
	header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31])
	by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id IRv_lIaQKnUs for <teep@mail2.ietf.org>;
	Sun,  8 Feb 2026 02:34:41 -0800 (PST)
Received: from mail-yw1-x1129.google.com (mail-yw1-x1129.google.com
 [IPv6:2607:f8b0:4864:20::1129])
	(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits)
	 key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256)
	(No client certificate requested)
	by mail2.ietf.org (Postfix) with ESMTPS id CAFFDB398E84
	for <teep@ietf.org>; Sun,  8 Feb 2026 02:34:41 -0800 (PST)
Received: by mail-yw1-x1129.google.com with SMTP id
 00721157ae682-793fdbb8d3aso34012947b3.3
        for <teep@ietf.org>; Sun, 08 Feb 2026 02:34:41 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1770546875; cv=none;
        d=google.com; s=arc-20240605;
        b=N5dExwe9UKCJ1dAo8QquT7biV7WBNBCiNjPVNJYxfnDcdOCUSjllNRn+Lbdnp1ZmC/
         EPqfM3ztpgrXfIQDssMco1LMmpLa8r75SyxvvTCngVDw5e/8eH1mif/SgYVO31dpmZxq
         AdnXBwq0D56aidS/3eddFvHQCIsgC+/hGpj6LArwKRd4o/HOQKYQOm74rKcDqgOK4FvD
         L6jxFcjuyOSNjXHXY3bE6KeKenCBxO47uTa9WPTrONNEGwNvr4PD5YhUW3IjKvC/brF/
         uowWfJGXtBI2bIKndsbrv2OFv+7UiZ15iyhZxsxKZU0pZwTtBgZe0tM7AQXTJBx0/lZb
         +tyQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com;
 s=arc-20240605;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:dkim-signature;
        bh=E5VFKONCIUfavaaYBSveKzASqFlwOOPVS/ezIdvHILU=;
        fh=DUQi9Iqg8gH/bUTlVbVqXVCgZuWOiqz7xS3RmuvZu+Y=;
        b=FpqpPbNSTlm0R1vSAXFUbw9K9pTPq5eZmAUeZypJQ6sM1jXp5hI9Tza5ofQ1PJOyqb
         30wC+xVn1rSznbasZA685UYGSLSoXJ28/j+X3wRdHQHaB7HkhWf0zbkAH9EZLo2qiPZ0
         FNf0Ms65RQymqk3qiZxQCJGlMN8WidzVGSibQh1WFFOYIpYmhEdlnydPW3hcYWw8ve6P
         8BlHg+ZUBbv8bg+vB0a6FZgxtb4yStp2lnrvhqKHv2sVc3gD4ALAbZdOE8e3PCYz3+Lb
         mdSnFfiu+xRLP1HFWZWjAmWK5WKZJ+fwA8kuYU8I+cgotdsGirD7tTgrEo5veoRIcx4l
         mdtQ==;
        darn=ietf.org
ARC-Authentication-Results: i=1; mx.google.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20230601; t=1770546875; x=1771151675; darn=ietf.org;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:from:to:cc:subject:date:message-id:reply-to;
        bh=E5VFKONCIUfavaaYBSveKzASqFlwOOPVS/ezIdvHILU=;
        b=M5VjSwBXZFM8FWRWSpvLNxmfFl81j/+y1ztba30k/nme2VeZPlr0EtEYSSO7ZZcrpI
         5ktiCa2NK1diqFzfMcnaeypCVoLLOp9MqIwGizwpsuH18qyoLqr0FpaGVu4jlQhwSyZe
         xDfDwu05mh+uRqBR6sPhAANsJC5akisQgs0br/woyb51WGZmMhncNCsGd8AKEHlX2MHI
         6WCWKfDqClzTi6fZnZyNzQDysm3m9le8q7Q1EB5E+UOEvYxdynrH+9iy9IcQulGe1uhE
         Ao0FtC4WjkDyguLzTn+rAxVXkVbstVYew0Ob56POm1VLeSIo+GgHChmeqLqJ0/iBzr+t
         9LSA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20230601; t=1770546875; x=1771151675;
        h=cc:to:subject:message-id:date:from:in-reply-to:references
         :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date
         :message-id:reply-to;
        bh=E5VFKONCIUfavaaYBSveKzASqFlwOOPVS/ezIdvHILU=;
        b=NitOuCAdy7Et6OezaIyptaAmPaKffdwr+C0UdNfpV2dLLmHb992JvLRPJYSbMPXDj1
         xt7Y87q0rkKTQe+HcwbaCD8q1HGmMzpHWN7GIAhWNeG6LxouA0P451DIGv7AMJdEUb1P
         Ipvyrx8pwdc76RAf8gagas+kN/U6Ist5DsR98JEwjKaZ4vvW+w8w0vcbNKO17PHSrMhZ
         lx7Q/SKpgPEA+dditE8QQUxFfxHQqY0IPcQmqwMnL46KNiV269NAp1ftn9JrDj1gESAb
         ClssYkrupa+VweoPgqoDJpbyeUWTz41vX4YhmlPkGC+6x90igUg8eKEj7yDbemT/nOV9
         Iiiw==
X-Gm-Message-State: AOJu0Ywr2OznYu830g51BmO+HTJ5R9L0srLrzWeMkYD/PGb3W3R3BmKO
	66CIzuG2YvBqvqWl8a+8UR7GRDMHsAs4u06cZq5oR6KQyFp7NWR4mNn0c7EhKNaWTE1mNHWLI/P
	HE/CiSxHtfvMF7CqFQNTNNVTqDzKk3XB1xVnY/hY=
X-Gm-Gg: AZuq6aIgkboMyS2eiO5b+7LK4bDXzZVJjMEAY84h4r8ZYSDIWGwUc6pAEvioxQdY1kX
	yFzBBa8Z5lGu+VKoD19AOt6PJ6pFy+JkG2n/Yjm5FuyOCT/7sh88XSV43vieufKqAjkTUjo2sZa
	Ru7Zz8J+bHkfeYrMwFGcMJyyOS5o5BHU/MhMQxpWEEoSwMyXfqWl2EFGAlaZjSLEXrVi3ffbd3o
	5Ng49Tf8g3H0TB06dergX98Irx5r5VLABfV4WzshG0hPpC/SuwK9V1cYLwO6jF1lwlw0sOM7kFj
	EwrGaeoMpKCwkeHKexUTcJhGOv7t
X-Received: by 2002:a05:690c:60c3:b0:794:ff4d:91f5 with SMTP id
 00721157ae682-7952aa6b33emr74847107b3.11.1770546875016; Sun, 08 Feb 2026
 02:34:35 -0800 (PST)
MIME-Version: 1.0
References: <0568e332-6791-4861-b360-6267240967ef@gmx.net>
In-Reply-To: <0568e332-6791-4861-b360-6267240967ef@gmx.net>
From: Ken Takayama <11kenterada@gmail.com>
Date: Sun, 8 Feb 2026 19:34:24 +0900
X-Gm-Features: AZwV_QgL_tVVGMsPwr5-JCWkQS5Unxcff3Q7BoQ1mXa5WCKxPW3QPyvlgR0MvAE
Message-ID: 
 <CAMGQZH6+6XV9tW9F=gTuG9G_OLxPX5rsVLa98hQcLmkgkEz=Pw@mail.gmail.com>
To: Hannes Tschofenig <hannes.tschofenig=40gmx.net@dmarc.ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008b2b29064a4d9134"
Message-ID-Hash: 4EONJYWPBO6JTOZFPUCXNUARCHV7X5P7
X-Message-ID-Hash: 4EONJYWPBO6JTOZFPUCXNUARCHV7X5P7
X-MailFrom: 11kenterada@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency;
 loop; banned-address; member-moderation; header-match-teep.ietf.org-0;
 nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size;
 news-moderation; no-subject; digests; suspicious-header
CC: "TEEP@ietf.org" <teep@ietf.org>,
 Ken Takayama <ken.takayama.ietf@gmail.com>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: =?utf-8?q?=5BTeep=5D_Re=3A_SUIT_Report_CDDL_Consistency_=28Ken_Takayama=29?=
List-Id: A Protocol for Dynamic Trusted Execution Environment Enablement
 <teep.ietf.org>
Archived-At: 
 <https://mailarchive.ietf.org/arch/msg/teep/u3JiLDon0BCODi9qeYKj0-d9LCM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/teep>
List-Help: <mailto:teep-request@ietf.org?subject=help>
List-Owner: <mailto:teep-owner@ietf.org>
List-Post: <mailto:teep@ietf.org>
List-Subscribe: <mailto:teep-join@ietf.org>
List-Unsubscribe: <mailto:teep-leave@ietf.org>

--0000000000008b2b29064a4d9134
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Hannes,

Thank you for addressing the issue.
However, as I mentioned in my comment here, I believe a few more
adjustments are still needed:
https://github.com/ietf-teep/teep-protocol/issues/404#issuecomment-38669234=
47

In short, `SUIT_Report` represents the SUIT Report without COSE protection,
i.e. with neither authentication nor encryption.

Best regards,
Ken

2026=E5=B9=B42=E6=9C=881=E6=97=A5(=E6=97=A5) 21:24 Hannes Tschofenig <hanne=
s.tschofenig=3D
40gmx.net@dmarc.ietf.org>:

> Hi Ken,
>
> thanks for your feedback regarding the SUIT Report encoding consistency.
>
> I have made the following changes:
>
> - Made SUIT Reports CDDL consistent across all messages (QueryRequest,
> QueryResponse, Success, Error) with "suit-reports =3D> [ + bstr .cbor
> SUIT_Report ]"
> - Enhanced documentation to clarify:
>    * Reports are encoded as CBOR byte strings (protected or unprotected)
>    * When a SUIT Report includes own COSE protection, the cryptographic
>      key must be distinct from the TEEP message's COSE security wrapper
>    * Unprotected reports rely on the TEEP message's COSE_Sign1/Sign wrapp=
er
>      for authenticity
>
> I hope version -22 addresses your feedback:
> https://www.ietf.org/archive/id/draft-ietf-teep-protocol-22.txt
>
> FWIW I also addressed this issue:
> https://github.com/ietf-teep/teep-protocol/issues/403
>
> Ciao
> Hannes
>
> PS: The changes can be found here:
>
> https://github.com/ietf-teep/teep-protocol/commit/07295b4e5dddfed09504e21=
f8261422e89e28bbf
>
>
>
> _______________________________________________
> TEEP mailing list -- teep@ietf.org
> To unsubscribe send an email to teep-leave@ietf.org
>

--0000000000008b2b29064a4d9134
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div>Hannes,</div><div><br></div><div>Thank you for addres=
sing the issue.</div><div>However, as I mentioned in my comment here, I bel=
ieve a few more adjustments are still needed:</div><div><a href=3D"https://=
github.com/ietf-teep/teep-protocol/issues/404#issuecomment-3866923447">http=
s://github.com/ietf-teep/teep-protocol/issues/404#issuecomment-3866923447</=
a></div><div><br></div><div>In short, `SUIT_Report` represents the SUIT Rep=
ort without COSE protection, i.e. with neither authentication nor encryptio=
n.</div><div><br></div><div>Best regards,</div><div>Ken</div></div><br><div=
 class=3D"gmail_quote gmail_quote_container"><div dir=3D"ltr" class=3D"gmai=
l_attr">2026=E5=B9=B42=E6=9C=881=E6=97=A5(=E6=97=A5) 21:24 Hannes Tschofeni=
g &lt;hannes.tschofenig=3D<a href=3D"mailto:40gmx.net@dmarc.ietf.org">40gmx=
.net@dmarc.ietf.org</a>&gt;:<br></div><blockquote class=3D"gmail_quote" sty=
le=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);paddi=
ng-left:1ex">Hi Ken,<br>
<br>
thanks for your feedback regarding the SUIT Report encoding consistency.<br=
>
<br>
I have made the following changes:<br>
<br>
- Made SUIT Reports CDDL consistent across all messages (QueryRequest, <br>
QueryResponse, Success, Error) with &quot;suit-reports =3D&gt; [ + bstr .cb=
or <br>
SUIT_Report ]&quot;<br>
- Enhanced documentation to clarify:<br>
=C2=A0=C2=A0 * Reports are encoded as CBOR byte strings (protected or unpro=
tected)<br>
=C2=A0=C2=A0 * When a SUIT Report includes own COSE protection, the cryptog=
raphic<br>
=C2=A0=C2=A0 =C2=A0 key must be distinct from the TEEP message&#39;s COSE s=
ecurity wrapper<br>
=C2=A0=C2=A0 * Unprotected reports rely on the TEEP message&#39;s COSE_Sign=
1/Sign wrapper<br>
=C2=A0=C2=A0 =C2=A0 for authenticity<br>
<br>
I hope version -22 addresses your feedback:<br>
<a href=3D"https://www.ietf.org/archive/id/draft-ietf-teep-protocol-22.txt"=
 rel=3D"noreferrer" target=3D"_blank">https://www.ietf.org/archive/id/draft=
-ietf-teep-protocol-22.txt</a><br>
<br>
FWIW I also addressed this issue:<br>
<a href=3D"https://github.com/ietf-teep/teep-protocol/issues/403" rel=3D"no=
referrer" target=3D"_blank">https://github.com/ietf-teep/teep-protocol/issu=
es/403</a><br>
<br>
Ciao<br>
Hannes<br>
<br>
PS: The changes can be found here:<br>
<a href=3D"https://github.com/ietf-teep/teep-protocol/commit/07295b4e5dddfe=
d09504e21f8261422e89e28bbf" rel=3D"noreferrer" target=3D"_blank">https://gi=
thub.com/ietf-teep/teep-protocol/commit/07295b4e5dddfed09504e21f8261422e89e=
28bbf</a><br>
<br>
<br>
<br>
_______________________________________________<br>
TEEP mailing list -- <a href=3D"mailto:teep@ietf.org" target=3D"_blank">tee=
p@ietf.org</a><br>
To unsubscribe send an email to <a href=3D"mailto:teep-leave@ietf.org" targ=
et=3D"_blank">teep-leave@ietf.org</a><br>
</blockquote></div>

--0000000000008b2b29064a4d9134--