Agenda for SUIT Working Group at IETF 122
Tuesday, March 18, 2025, 15:30 - 16:30 ICT

*) Logistics

• Agenda Bashing
• Minute Taker
• Jabber Scribe
• Bluesheets

1) Firmware Encryption with SUIT Manifests

• draft-ietf-suit-firmware-encryption-23, 2025-01-29
  • See diff for full details but addresses feedback from Dublin.
  • Ready for merge and to submit a new draft. Objections?
  • Deb: Double check comments from Orie are addressed.
  • Issue a new draft, chairs will do a quick WGLC. if no objections
    will send on.

2) SUIT Manifest Format

• draft-ietf-suit-manifest-33, 2025-02-24
• difference since v29
• goal clearing discusses
• UUID RFC2562 update
• Conformance matrix from apendix to main body
• Ready to go.
• Deb: Its in editors queue, has IANA feedback to address.

3) SUIT Manifest Extensions for Multiple Trust Domains

• draft-ietf-suit-trust-domains-10, 2025-03-03
• updated (very minor)
• reclassify some reference
• added clarifying text regarding intended audience (devices)
• Typical isolation level ls8
• Discusses cleared
• Deb - Telechat for 17 April

4) Secure Reporting of Update Status

• draft-ietf-suit-report-11, 2025-03-03
• changed from Informative to standard
• Publication requested
• Deb: also have IANA feedback to address

5) Strong Assertions of IoT Network Access Requirements

• draft-ietf-suit-mud-10, 2025-03-03
• Fewer classifications
• Device certificates
• updated CONS of using Suit-Mud
• Disadvantages broardened.
• Draw implementers attention to pros/cons
• configuration that devices might require in a fully deployed system.
• In RFC editors queue.
• Deb: update 3March triggered IANA action. Look for a msg on this.
• No tech changes need to be explained to IANA.

6) Mandatory-to-Implement Algorithms for SUIT Manifests

• draft-ietf-suit-mti-13, 2025-03-17
• Clarify these profiles spec constrained node use cases.
• TEEP as user implementers don't have to stick to these MTI profiles
• explain use payload encryption as Cyber Sec defense.
• expanded on defence against chosen plaintext attacks
• TODO: align w/jose-fully-spec-algorithms draft
• Deb: Mike will take a look.
• All IANA items can happen later.
• Can do update draft this week with those changes.
• Next would be IETF Last call.

7) Update Management Extensions for SUIT Manifests

• draft-ietf-suit-update-management-09, 2025-03-17
• removed reference to CoRIM etc.
• Ready to go
• Deb: Chairs can push.

A) Others (if time permits)

1. Syncing I.D. on datatracker and github
2. What will be a good practice of maintaining drafts require cddl
   files
   • Akira Q for group regarding CDDL if there is a better way to set
     out in drafts?
   • Brendan: challenge after publication
   • extract CDDL file
   • prefer full CDDL @ end.
   • Rather easier to implement (goal)
   • Talk to Martin Thompson.