In support of this draft, some basic formal analysis of a widely-used
variant of attested TLS (namely Intel's RA-TLS) has already been done
[1]. Unfortunately, Intel did not specify any properties. Also, RFC9334
is super vague about security properties. We, therefore, kindly ask the
WG for feedback on formal analysis.
During the hackathon, we discussed channel binding and Cedric Fournet
proposed 2 very interesting channel binding properties [2] that we will
work on. We would love to hear about other properties of interest.
We will discuss the progress on formal analysis in Hackdemo Happy Hour,
UFMRG and side meetings on Tuesday (9:30 - 11:30) and Wednesday (9:30 -
11:30) to which interested folks are very welcome. No knowledge of
remote attestation is assumed for side meeting. In case you have
conflicts, just catch me around any time during the week and I would be
very happy to discuss this.
Regards,
Usama
[1]
https://www.researchgate.net/publication/385384309_Towards_Validation_of_TLS_13_Formal_Model_and_Vulnerabilities_in_Intel's_RA-TLS_Protocol
[2]
https://datatracker.ietf.org/meeting/121/materials/slides-121-hackathon-sessd-formal-analysis-of-attested-tls-for-confidential-computing-00
On 14.10.24 14:07, Ionut Mihalcea wrote:
Hi TLS chairs,
We would like to request a time slot to present our draft and get WG
input towards our next steps:
* Draft to be presented: draft-fossati-tls-attestation
* Presenter's name and email: Thomas Fossati,
thomas.foss...@linaro.org
* Desired duration: 15 minutes
* Whether presenter will be local or remote: local
A quick overview of the draft:
Remote Attestation (RA) is a way to convey information about the
security state of a device to a peer, allowing more comprehensive
security policies to be deployed. This draft describes the
meansnecessary to bind together a TLS handshake session with a RA
session, with the goal of using RA as an authentication mechanism. New
TLS handshake extensions and a new exporter are defined, alongside
descriptions of their usage patterns.
We have previously presented an early version of this draft to the TLS
WG in IETF 114. Looking forward to comments and feedback.
Best wishes,
Ionut
IMPORTANT NOTICE: The contents of this email and any attachments are
confidential and may also be privileged. If you are not the intended
recipient, please notify the sender immediately and do not disclose
the contents to any other person, use it for any purpose, or store or
copy the information in any medium. Thank you.
_______________________________________________
TLS mailing list --tls@ietf.org
To unsubscribe send an email totls-le...@ietf.org
_______________________________________________
TLS mailing list -- tls@ietf.org
To unsubscribe send an email to tls-le...@ietf.org
