IETF Logo Mail Archive

[TLS] Re: [Wimse] Public side meetings on identity crisis in attested TLS for Confidential Computing

John Kemp <stable.pseudonym@gmail.com> Thu, 06 March 2025 13:24 UTC

Return-Path: <stable.pseudonym@gmail.com>
X-Original-To: tls@mail2.ietf.org
Delivered-To: tls@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 1C665835B25; Thu, 6 Mar 2025 05:24:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id huRZRGkqNspE; Thu, 6 Mar 2025 05:24:09 -0800 (PST)
Received: from mail-qv1-xf30.google.com (mail-qv1-xf30.google.com [IPv6:2607:f8b0:4864:20::f30]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 949C0835B0A; Thu, 6 Mar 2025 05:24:09 -0800 (PST)
Received: by mail-qv1-xf30.google.com with SMTP id 6a1803df08f44-6dd1962a75bso4100386d6.3; Thu, 06 Mar 2025 05:24:09 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1741267449; x=1741872249; darn=ietf.org; h=content-transfer-encoding:in-reply-to:from:content-language :references:cc:to:subject:user-agent:mime-version:date:message-id :from:to:cc:subject:date:message-id:reply-to; bh=TISSWHYaT7JLyMOBw/Wo73C1uJRQAeYICHfs3417C0c=; b=O5BifwWqweVf8zOv77aycuToTufEM8xqbhgQYyVv2is7I0/GHt2vwGuZWmiQzljzyA VSpyifn+TKb3EacfhOY5y2VmBtkLMnIAI1ePtpoBFZqqNP75HccSq6Fg5FBP9ScYorF2 6QT1LigeZT3iedQTcZTfJcXPoSKcudfKziOUqM9jEp+6Ptk4QybGuIqv6dFVqHakCcM2 l71MCQ8vbsa92ASa/PsbhrTxtUCHA7t0Qicsq7ABp71BHA/H19mp5x/zHeIstYMkU0hM 4kWZIuFDoCCaoSNKj5SHukarMJwPfj+5TXccPaJaqB8+1uAkxT+fLmZHnW0wjXTqWtX1 6RTQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1741267449; x=1741872249; h=content-transfer-encoding:in-reply-to:from:content-language :references:cc:to:subject:user-agent:mime-version:date:message-id :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=TISSWHYaT7JLyMOBw/Wo73C1uJRQAeYICHfs3417C0c=; b=T6EWbWNkk58jYCizVNXwMknXFf+LCAQQn9v7cYaZXC1OZtTtIBUv3s7IBJvPK31Y4P orjvi36HlabucgLIFo4CWstPxPhypb3r8fogKyxevbnv+UHtyKnn+DcZa26AdyhDPmqd g/fsdFaJzs3ehboZA3w75EegWVkLKOZxn5c6icZUSqoqgEy7u1uBvBkIsTVbCz5g7YmY 2O8hvk/Y8NOIlFev0IvN9aB2FTWMg8i6QiY1C/HfFWzgPms1ccmadYUHBFCiqcm4O5i0 xtpw5KuQBRmpnY855f8NG/9n2X+ixk2m/yHEjN5RdVOj0C6+mkfRsucebXSehaDVQ61Q jisA==
X-Forwarded-Encrypted: i=1; AJvYcCUJhovty8VZIlguq3S41eXZ6PnUVfSYHEWYRIlcFDnEL0yyaHjUt0iW4OOlTVfUVt3HDmEspsw=@ietf.org, AJvYcCWfy6rfydL5qUGd82ZEBbC3nVhe+dkdCzs5E8aE3O8m9EAWMp80wMsFVxVQWx1lWZO+G+Kc@ietf.org, AJvYcCWl3fOCZxDe4j5dQWakB3oGgMq/eRCLYVZEkRT0o0q4/kRl+Wus+83Crsqxa1nPSOGHLYgw@ietf.org
X-Gm-Message-State: AOJu0Yz3GRmn64vXq7aBN0IwnGpFYl2Rn/vWFO+38Cb3BXkqo8I+H6WN mkm4HIyHruLSfu2fLSPTNm8OB65/aFYDBzwZUwH0e3kT6KHxEYGWNYeCmuPc
X-Gm-Gg: ASbGnctZQHs9joS34qA6sOF4PYf1Vvx4K+RHFqgj+al7Xsq3XFfRKxQv3NoigIyOVfh YhwqHfZPPkE8TQiWl26zeGFn+sYx56YbeYMbuFxxBr5lMK/kyhEY4pn/niOTJ+I/U3W+TcjM/5e 3HV35Iu67Au+sV7S0ccVRQuPbFc9shgfs0bGQs02cTNEu5HNp+chyNwEzYL0YlJFBpvqn3cOamE fWvwhhJagyKx3L7D/GnaCpo2UjuyA3IWS+g+RiMdBZhmS6qHxmaB5mlcKBb8YxQJ2WhdhpKdhI/ H/eJzWCJFlTBGQtUdJTbe+PItIwzvKfKfPeOZ9sWNFO/+ldDfUm+GOMneleapJWtC+m9rP0/jU2 FjuqovQGTfMPgXozKxXkr
X-Google-Smtp-Source: AGHT+IGbfBbaraNS1Yf7RWvTiJuc0W3cSXUpoHapOMsK/XIqfTU5KH7fonf9MGao4mPRKZoGRKoWKw==
X-Received: by 2002:ad4:596c:0:b0:6e6:5bd5:f3a8 with SMTP id 6a1803df08f44-6e8e6d995b7mr94780206d6.29.1741267448799; Thu, 06 Mar 2025 05:24:08 -0800 (PST)
Received: from [192.168.1.157] (syn-066-066-241-066.res.spectrum.com. [66.66.241.66]) by smtp.gmail.com with ESMTPSA id 6a1803df08f44-6e8f707c61csm7102306d6.4.2025.03.06.05.24.07 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Thu, 06 Mar 2025 05:24:08 -0800 (PST)
Message-ID: <a8d71758-d708-4785-a7a5-3e9d3272a73d@gmail.com>
Date: Thu, 06 Mar 2025 08:24:07 -0500
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>, "TLS@ietf.org" <tls@ietf.org>, "rats@ietf.org" <rats@ietf.org>, wimse@ietf.org
References: <289e5201-d318-4cfd-b465-a12047092451@tu-dresden.de>
Content-Language: en-US
From: John Kemp <stable.pseudonym@gmail.com>
In-Reply-To: <289e5201-d318-4cfd-b465-a12047092451@tu-dresden.de>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Message-ID-Hash: MZQVM6ND6U4EJVBC4SMJZHFH7K5AT7ZN
X-Message-ID-Hash: MZQVM6ND6U4EJVBC4SMJZHFH7K5AT7ZN
X-MailFrom: stable.pseudonym@gmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-tls.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: 122attendees@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [TLS] Re: [Wimse] Public side meetings on identity crisis in attested TLS for Confidential Computing
List-Id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/tls/DV07cYSoz_0WMf1FfXxr8GxVFi0>
List-Archive: <https://mailarchive.ietf.org/arch/browse/tls>
List-Help: <mailto:tls-request@ietf.org?subject=help>
List-Owner: <mailto:tls-owner@ietf.org>
List-Post: <mailto:tls@ietf.org>
List-Subscribe: <mailto:tls-join@ietf.org>
List-Unsubscribe: <mailto:tls-leave@ietf.org>

Hi Usama,

The title of this email is quite alarming to me ("identity crisis") and 
yet I'm not able to understand what the actual issue is other than 
someone wishing to replace public-key authentication with "attestation".

Personally, I wouldn't do that.

Although TLS PKI authentication involves a kind of attestation itself (I 
have to trust a CA installed in my trust store, and possibly some 
intermediate CAs too, that have blessed the authenticated key) and only 
good faith and good practices prevent a private key being copied all 
over the place and violating the attestation, I agree with anyone is 
saying that providing attested measurements of a TEE is not the same 
thing as attesting a key within a PKI. They are complementary.

Where is the "identity crisis" exactly?

Cheers, John

El 03/06/25 a las 04:14, Muhammad Usama Sardar escribió:
> (Note for TLS WG only: announcing with approval of chairs [0])
> 
> Hi all,
> 
> *TL;DR*: There will be a couple of /public side meetings/ on attested 
> TLS. For organizational purposes (e.g., to ask for a bigger room 
> [current room capacity: 20]), if you are interested in presenting or 
> attending /in-person/, please drop me a short email. Since some of the 
> attested TLS team members will be remote (and in Europe), we have 
> selected a time slot suitable for them. But if you are really interested 
> and this time does not work for you, please let me know and we will seek 
> alternatives. Also see call for presentations below.
> 
> Date: 17th March (Monday) and 19th March (Wednesday)
> 
> Time: Both meetings at 15:00 - 17:00
> 
> Room: Meeting Room 3
> 
> Relevant for:
> 
>   * *RATS*: Design space to inject remote attestation into transport
>     protocols; and related security considerations
>   * *TLS*: Extension of TLS with remote attestation
>   * *WIMSE*: Identity crisis in confidential computing
> 
> No prior knowledge is assumed but knowledge of TLS will be helpful.
> 
> The current agenda is based on joint works with Arto Niemi, Hannes 
> Tschofenig, Thomas Fossati, Simon Frost, Ned Smith, Mariam Moustafa, 
> Tuomas Aura, Yaron Sheffer, Ionut Mihalcea and Jean-Marie Jacquet.
> 
> *Draft agenda for first side meeting*:
> 
> The first side meeting aims to bring everyone on the same page for 
> discussion of the open questions in the second side meeting. We plan to 
> cover the following topics (subject to changes dependent on the interest 
> and background of attendees):
> 
>   * Network Security (TLS: RFC8446bis [1])
>       o Without client authentication
>       o With client authentication
>   * Endpoint Security (Remote Attestation (RA): including RFC9334 and
>     RFC9683)
>       o Disambiguate attestation and authentication
>   * Attested TLS (RA || TLS) including [4] and [5]
>       o Design Options
>           + Pre-handshake attestation
>           + Intra-handshake attestation
>           + Post-handshake attestation
>       o Protocols
>           + Server as Attester
>           + Client as Attester
> 
> *Draft agenda and call for presentations for second side meeting*:
> 
>   * Technical details of impersonation attacks [6]
>       o Attack1 in [6]
>       o Attack2 in [6]
>   * Proposed solution (Recommendation [6])
>   * Discussion of open questions [6]
>   * Other relevant open questions
> 
> We aim to scope the side meetings to Confidential Computing and welcome 
> presentations around the theme of attacks mentioned here [6] within this 
> scope. If interested, please send me your topic and time estimate until 
> 10th March.
> 
> Additional readings:
> 
>   * Attested TLS [7]
>   * Attestation in Arm CCA and Intel TDX [8]
> 
> 
> We look forward to your perspectives and discussions during the side 
> meetings!
> 
> 
> Kind regards,
> 
> Usama
> 
> 
> [0] https://mailarchive.ietf.org/arch/msg/tls/RHyArzvEJHimDi49b2bboPAUW_c/
> 
> [1] https://datatracker.ietf.org/doc/draft-ietf-tls-rfc8446bis/
> 
> [2] https://datatracker.ietf.org/doc/rfc9334/
> 
> [3] https://datatracker.ietf.org/doc/rfc9683/
> 
> [4] https://datatracker.ietf.org/doc/draft-fossati-tls-attestation/
> 
> [5] https://datatracker.ietf.org/doc/draft-fossati-tls-exported-attestation/
> 
> [6] https://mailarchive.ietf.org/arch/msg/tls/Jx_yPoYWMIKaqXmPsytKZBDq23o/
> 
> [7] https://ieeexplore.ieee.org/document/10752524
> 
> [8] https://ieeexplore.ieee.org/document/10373038
> 
> 

-- 
Independent Security Architect
t: +1.413.645.4169
e: stable.pseudonym@gmail.com

https://www.linkedin.com/in/johnk-am9obmsk/
https://github.com/frumioj

v2.30.2 | Report a Bug | By Email | System Status