Attester Identity - Githubissues

ietf-rats-wg / draft-ietf-rats-reference-interaction-models

Referenceable Interaction Models for use in RATS

Other

2 stars 4 forks source link

Attester Identity #10

Closed henkbirkholz closed 3 years ago

henkbirkholz commented 3 years ago

Based on https://mailarchive.ietf.org/arch/msg/rats/okJriJPpapmZgeOfjbVGVP57bQk/

Attester Identity: The provenance of Evidence with respect to a distinguishable Attesting Environment MUST be correct and unambiguous.

The Attester Identity is to identify which Attester the Evidence comes from. But if the Attester has multiple Attesting Environments, what should be the Attester Identity?

henkbirkholz commented 3 years ago

The TPM’s AIK certificate is one kind of Attester Identity, right?

eckelmeckel commented 3 years ago

"The TPM’s AIK certificate is one kind of Attester Identity, right?": Correct.

eckelmeckel commented 3 years ago

"The Attester Identity is to identify which Attester the Evidence comes from. But if the Attester has multiple Attesting Environments, what should be the Attester Identity?" I see the point, too, and agree. So, perhaps it should be renamed to "Attesting Environment identity"!? The Attester Identity then should be something different. It may be the TPM AK/AIK of one of the Attesting Environments, but not necessarily.