IETF Logo Mail Archive

[WIMSE] Re: Follow-up of meeting 122 presentation (Formal proof of insecurity of Intel's RA-TLS and draft-fossati-tls-attestation)

Arndt Schwenkschuster <arndt@defakto.security> Tue, 06 January 2026 14:31 UTC

Return-Path: <arndt@defakto.security>
X-Original-To: wimse@mail2.ietf.org
Delivered-To: wimse@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 505A4A3742F1 for <wimse@mail2.ietf.org>; Tue, 6 Jan 2026 06:31:21 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=defakto.security
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mmSBafcdb7qT for <wimse@mail2.ietf.org>; Tue, 6 Jan 2026 06:31:20 -0800 (PST)
Received: from mail-oa1-x2b.google.com (mail-oa1-x2b.google.com [IPv6:2001:4860:4864:20::2b]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 8630DA37427E for <wimse@ietf.org>; Tue, 6 Jan 2026 06:31:18 -0800 (PST)
Received: by mail-oa1-x2b.google.com with SMTP id 586e51a60fabf-3ec6c10a295so488610fac.0 for <wimse@ietf.org>; Tue, 06 Jan 2026 06:31:18 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=defakto.security; s=google; t=1767709872; x=1768314672; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=Z73LIWWtSW0ZP699X1U9N8oNI2gGZblAmjBWHzLzuP8=; b=ozIDoHlDQhcRu8m6fYYw7aufxHQCUkBL/Dza744k3fWBnOvpjadiJkJtaBmA4u86iT HB/8ATp6+SrnsJEU/FC64jmhc2D4EvO6/i4++/FR2/kljVLZ7GzBT0tEfrf9IcHUlVRt WOt1tkYhRXEFXQpyExaQyRUezsUhDB77tOlLGFjMlrDaBju3RBiBOPUh7fTNzYOb7IuT UAoin58NME0iM3h3yvaNa82MpaZCqIXYE5O4V8+1p/hzWTahvuF1RMf9gYRuh9AHf3kV 42d0Tlw8ACFKhGH0ksE57g7SQg/TyACCSafYOvn6q9rt5WFWtfg+/8H6/w/Fq60YZiJj 7fPQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1767709872; x=1768314672; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=Z73LIWWtSW0ZP699X1U9N8oNI2gGZblAmjBWHzLzuP8=; b=WWuvdxzbPkq9/Hi8L8eSNnp03/Z7GYynZxSm6x97LyylfT/tOWTMq298ieiZxOmAot Yyz8+Lkapcz7BTWi8/GVlr2w9VAFxX4L3nAdDvSDolaIpIf/Q0BN7+FRJhSJKvKKkX9c QrBUmckDyKIY/kn8II7NTxNGIb1tTKs/41F1TWvY1AG789lTaXjOUFwkXGAnwtNUSVH6 pEM7sX+yzZlgC5ov9bsik/uyKuC/4A7t03lvsrt+fyg5OcnCvoaVpcG0dBfKjIP7l+ux P0JFz/7bfewT3UJiqv7cLHWZHebfOdprtx8PqzuywkXwOVdWve+SHNhbAJNOpngzbn5X 8Acg==
X-Forwarded-Encrypted: i=1; AJvYcCXN7T6mmemaMIfs8eL1bm2l4seeWrMtzViY9nAjSs+tvyWuxE87xKY6iKwTo1AJd2i82lqrFQ==@ietf.org
X-Gm-Message-State: AOJu0YzR93ZkUkpDOaDJlFT01wYeKCPkp59w1QoIqGJEmcfpzEIuqjTj vKN60hbNI8zqbgOhJa36xJIDrHr+b1cNjmbaBKpUP8JA3NOG7CG1zEco5qDt32iYuyfDGoxg/9v IbNFwi2gDOqbvbdcn0MtsvoCh3w7vL49ST2ABugkcmg==
X-Gm-Gg: AY/fxX4MLOl12UCLoxmS8jg3pO/XtgzjHQshB4fyEJtmJtucP9FTSwa7DnHWGEJAgrC 8aLoGR8ewVZGoFYPr00zR0QWUhn+opsi4KR6eTsVJdib4peZOS19aR2PfTzSe8qB2A7nXY40KS0 bB/zP8ouMoIMeb77bIJEG8muLPFW8/yHfVfxrEXbJYauQSC9ngVhu81aaDITi/RPaxhMFxGbWwA rXHuz4xdjG2/54A9j6jp7XvwAIfCbrUGFlHNXQryiT9cVwU6jrbBPQPBdgavgxlhqrW+m0CsN+D NYGyoBsWe/83hs9ONjc53IvpGvHdbmZ/BvmT6LGHTxJiVa4iD8Vfum688Bfv/2EPBuE=
X-Google-Smtp-Source: AGHT+IEsV4QPX3+R3NSvWVEyy/OrKRHU1yS3MUS4lLzDUdbX3hyBO4feUvzKS1Yq1Z350U2l6Nbp79xZFVkSTzdCcQ0=
X-Received: by 2002:a05:6870:a79a:b0:3f1:6dce:b865 with SMTP id 586e51a60fabf-3ffa0c6a990mr1858285fac.28.1767709867459; Tue, 06 Jan 2026 06:31:07 -0800 (PST)
MIME-Version: 1.0
References: <8ea21216-8819-4b5d-8526-7dc3ca75c854@tu-dresden.de> <CAMtubr2zprpqDLjTRqYHR9fgV13xoagU6GEJYoLrK6bdS-jyDA@mail.gmail.com> <810544c8-3169-4f38-b7de-2175ab55b9c5@tu-dresden.de> <372b6fab-20fa-4dfe-ae58-8655e11f46f7@returnze.ro> <23cb1733-c8c4-4dc8-bec2-6102a2971494@tu-dresden.de> <3df51010-820a-4615-af22-9722ab40a94e@returnze.ro> <0516f548-19e0-43a8-a1d4-02feb2da8b50@tu-dresden.de> <1091A040-E13F-41C7-9344-03642A92258F@gmail.com> <97de370c-1f6d-43af-b80b-9850056cc567@tu-dresden.de> <9CE46048-084B-46CF-B0A5-1DAF7FE1FB07@gmail.com> <04151c27-ed12-41cd-93fd-6a20db315fbe@tu-dresden.de> <440F8274-35D6-49C7-AA11-9F2FDB20ABAF@gmail.com> <bcdd15c4-4d79-4dd6-818c-67a0000ccee9@tu-dresden.de> <80B45863-8DDB-4539-80DB-D6342B93CFCF@gmail.com> <890f353f-eae2-4bc8-bd6e-514526e73972@tu-dresden.de> <10E1AEB3-B425-4B3B-B201-D300A37B1FAC@mit.edu> <14295601-86df-4557-beb0-1e1845141417@tu-dresden.de> <CALtWOA20-CF4OJa9SKJG4rVtDKzrukVmwLRYbVMp72PgX_osKQ@mail.gmail.com> <b05e9694-f4ef-4ccf-a936-3254932b713e@tu-dresden.de>
In-Reply-To: <b05e9694-f4ef-4ccf-a936-3254932b713e@tu-dresden.de>
From: Arndt Schwenkschuster <arndt@defakto.security>
Date: Tue, 06 Jan 2026 15:30:54 +0100
X-Gm-Features: AQt7F2q1MTts8jPD2eOLIrR_YkT2EOi7A0ZbVhSw09_1nS5GCHRU_0jsGOHQ4XQ
Message-ID: <CADQr8dEaP=S6MoPWZtmBrMA-nn=CHywAcRNPnLOFpve6T2mrLw@mail.gmail.com>
To: Muhammad Usama Sardar <muhammad_usama.sardar@tu-dresden.de>
Content-Type: multipart/alternative; boundary="000000000000b7528d0647b906fc"
Message-ID-Hash: 6GGBLJZ3ZSDDWKMWAGWKDSWQPAK7O623
X-Message-ID-Hash: 6GGBLJZ3ZSDDWKMWAGWKDSWQPAK7O623
X-MailFrom: arndt@defakto.security
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Pieter Kasselman <pieter@defakto.security>, Justin Richer <jricher@mit.edu>, wimse-chairs@ietf.org, John Kemp <stable.pseudonym@gmail.com>, Sorin Dumitru <sorin@returnze.ro>, "wimse@ietf.org" <wimse@ietf.org>, "rats@ietf.org" <rats@ietf.org>, "seat@ietf.org" <seat@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [WIMSE] Re: Follow-up of meeting 122 presentation (Formal proof of insecurity of Intel's RA-TLS and draft-fossati-tls-attestation)
List-Id: WIMSE Workload Identity in Multi-Service Environment <wimse.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/wimse/s53UGGY7gwmHMLWJCIcQFeEDHFY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/wimse>
List-Help: <mailto:wimse-request@ietf.org?subject=help>
List-Owner: <mailto:wimse-owner@ietf.org>
List-Post: <mailto:wimse@ietf.org>
List-Subscribe: <mailto:wimse-join@ietf.org>
List-Unsubscribe: <mailto:wimse-leave@ietf.org>

+1 on Justin asking what is being asked here? Are you asking for the
references to RFC9334 to be removed?

@Usama: A suggestion in the form of a PR would greatly help our
understanding please.

Kind regards,
Arndt

On Tue, Jan 6, 2026 at 3:11 PM Muhammad Usama Sardar <
muhammad_usama.sardar@tu-dresden.de> wrote:

> Hi Pieter and Justin,
>
> May I ask why the chairs are bypassing my question? Joe as presenter of
> the draft at IETF meeting 123 [0] agreed to remove attestation and
> Pieter as chair saw folks giving double thumbs up. What exactly has
> changed that rough consensus?
>
> On 06.01.26 12:48, Pieter Kasselman wrote:
> > I believe your objection at the start of this thread was to any WIMSE
> > draft (including draft-ietf-wimse-arch-06 and
> > draft-lkspa-wimse-verifiable-geo-fence) which proposes or even implies
> > attested TLS in pre-handshake or intra-handshake attestation.
> Yes, I stand by my words.
> > As Yaroslav pointed out, the WIMSE architecture draft does not define
> > or require attested TLS. Any security guidance given on using attested
> > TLS seems better suited for TLS or SEAT, rather than WIMSE.
>
> It mentions 13xTLS. It mentions 9xattestation. As the terminology
> defines it as consistent with RATS, there are three ways of combining
> the two: pre-/intra-/post-handshake attestation.
>
> > Regarding the use of the term attestation in the WIMSE architecture
> > draft, the WIMSE architecture draft captures the common practice in
> > large scale workload identity deployments that use the concept of
> > attestation to identify a workload, assign an identifier and issue
> > credentials. SPIRE is an example of this as Sorin and others have
> > pointed out, but other implementations follow the same patterns. Not
> > documenting this pattern would disadvantage the community because it
> > has proven an effective and scalable mechanism for managing workload
> > identity lifecycles at very large scale. The draft references the
> > definition of attestation from RFC9683, which seems generic enough and
> > applicable in this case. It also references the term "evidence" as
> > defined in RFC 9334, which is once again narrowly used and appears
> > applicable to what the architecture document attempts to describe.
> > Both definitions are generic and seem like an attempt to use already
> > established terminology rather than redefining it.
> >
> > Are you objecting to re-using the generic terms attestation and
> > evidence as defined in RFC9683 and RFC9334 respectively?
>
> Sorry, I couldn't follow your reasoning of "generic" here, but existing
> definitions of these terms are a concern for me.
>
> -Usama
>
> [0] https://youtu.be/Mv4lgHLxOH4?t=2626
> --
> WIMSE mailing list -- wimse@ietf.org
> To unsubscribe send an email to wimse-leave@ietf.org
>

v2.38.3 | Report a Bug | By Email | System Status