RD AD review: vouching by endorser

ietf-rats-wg / architecture

RATS Architecture

Other

17 stars 10 forks source link

RD AD review: vouching by endorser #359

Closed mcr closed 2 years ago

mcr commented 2 years ago

** Section 7.4.

   In a typical solution, a Verifier comes to trust an Attester
   indirectly by having an Endorser (such as a manufacturer) vouch for
   the Attester's ability to securely generate Evidence, in which case
   the Endorser's key material is stored in the Verifier's trust anchor
   store.

How does an Endorser "vouch" for something?

nedmsmith commented 2 years ago

"... vouch for the Attester's ability to securely generate Evidence by asserting endorsement claims regarding the ways in which attestation keys are protected. Consequently, the Endorser's key material is stored in the Verifier's trust anchor store so that Endorsements can be included in the Verifier's appraisal."

henkbirkholz commented 2 years ago

This proposal is definitely a step into the right direction. We should not overload this, but I think this is appropriately improved.

nedmsmith commented 2 years ago

"attestation keys are protected" is too narrow

nedmsmith commented 2 years ago

See PR #374