RATS on Tue, 19 Mar 2024 in Room M2

Chairs: Ned Smith, Nancy Cam-Winget, Kathleen Moriarty
Notetakers: Russ Housley, Mike Ounsworth

Agenda Bash & Logistics

WG Chairs - Nancy Cam-Winget, Kathleen Moriarty, Ned Smith

EAT Media Types - WGLC - Thomas Fossati

https://datatracker.ietf.org/doc/draft-ietf-rats-eat-media-type/

Kathleen: Waiting for IPR declarations from authors.

Mike Jones: the COSE WG has a dependency on the +cwt suffix, so it would
be good for this document to move forward with haste.

Ned: do we need early allocation to satisfy COSE?

Thomas: we need it in about 3 months.

Roman: we can most certainly get it within that time without doing early
allocation. Can be revisited if more urgency emerges.

Laurence: there is a normative dependency on UCCS; so progress might get
blocked by that document.

Conceptual Message Wrapper (CMW) - WGLC - Thomas Fossati

https://datatracker.ietf.org/doc/draft-ietf-rats-msg-wrap/

Mike Ounsworth (MikeO): At the risk of slowing down the
draft-ietf-lamps-csr-attestation, do we want to include a full sample of
this in the LAMPS CRS Attestation draft? It should be trivial to include
ext-CMW EXTENSION from the CMW draft into EvidenceStatement from the
CSR Draft, but it probably worth explicitely showing that.

Thomas: Yes, maybe. We should talk offline.

MikeO: we would need pre-allocation of the CMW OID so that we can
generate the sample, but the IANA registry that we could want to
allocate that OID is created by draft-ietf-lamps-csr-attestation; so we
would need early allocation for that registry and the OID for CMW.

Michael Richardson: The draft can include the contents of the
yet-to-be-created IANA registry.

(this discussion continued in Zulip between the authors of the two
drafts)

CoRIM Recap and Verifier Theory of Operation - Ned Smith

https://datatracker.ietf.org/doc/draft-ietf-rats-corim/

Henk: The term "triples" is overloaded. In general, it matches the
semantics of triples in knowledge graphs, where the CDDL type names are
predicates. However, the ontological expressivness of creating graphs
and axioms via subject/predicate/object triples is not supported by
CoRIM. CoRIM triples can only express tree-graphs and are a
simplficication of the original triple concept. There needs to be text
in the I-D that points that out, explicitly.

Henk: Some will want a very simple "drive by" implementation, and these
might not need the complexity of view.

Muhammad: Clarification about the "Horn Scalability Clause".

Ned: That is referring to not allowing fully-arbitrary Horn logic; in
particular we do not want to allow negations; this improves the
scalability of the solution.

Next set of RATS problems - Henk Birkholz

Michael Richardson: requests lables on some of the blue boxes to clarify
that the Claims on the left and right of the "rats all the way down" box
may not be the same claims.

Xiang Liu: These diagrams should be expanded to show not only nesting,
but also parallel object at each level. Coined the term "community of
RATS".

Henk: This has been considered, but when you introduce full trees then
you run the the risk of having cycles. RATS cannot support loops in the
chain of claims.

Kathleen: Are you envisioning a new IANA registry or a revision to the
RATS architecture?

Henk: the core idea here is that we need to extend the RATS Architecture
because 9334 is fundamentally about one RAT.

Thomas Fossati: "I guess the outcome could be a new Figure 1"

Roman: What is being profiled?

Henk: This builds on the the existing RFCs, but we need to document how
they are combined. We need to talk more before the initial
Internet-Draft gets written. Maybe a virtual interim is needed.

HSM Evidence - Mike Ounsworth

https://datatracker.ietf.org/doc/draft-ounsworth-rats-x509-evidence

Time is short, so the WG Chairs did not allow discusssion after the
presentation.

Network Attestation for Secure Routing (NASR) - Chunchi (Peter) Liu

https://datatracker.ietf.org/doc/draft-liu-nasr-requirements/
Side Meeting: https://github.com/liuchunchi/nasr_side_meeting

Time is short, so the WG Chairs did not allow discusssion after the
presentation.

EAT Measured Component - Thomas Fossati

https://datatracker.ietf.org/doc/draft-fft-rats-eat-measured-component/

MikeO: Ok, we need to have a look at the semantics defined here as a
potential design idea for HSM Evidence.

Laurence: Mike, I think you take Thomas's spec for measurements and
convert to ASN.1 (if you need measurements).

Thomas: Please adopt this draft.

Open Mic

Henk: rats-endorsement just got a very recent and viable proposal from
Laurence that uplevels "Endorsed Identity" to "Key Material for Remote
Attestation"