[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

For your consideration: TAMP and CCC

To: ietf-trust-anchor@xxxxxxxx
Subject: For your consideration: TAMP and CCC
From: Russ Housley <housley@xxxxxxxxxxxx>
Date: Thu, 04 Oct 2007 12:35:04 -0400
List-archive: <http://www.vpnc.org/ietf-trust-anchor/mail-archive/>
List-id: <ietf-trust-anchor.vpnc.org>
List-unsubscribe: <mailto:ietf-trust-anchor-request@vpnc.org?body=unsubscribe>
Sender: owner-ietf-trust-anchor@xxxxxxxxxxxxx

The Trust Anchor Management Protocol (TAMP) specification has been submitted for your consideration. The draft was developed primarily to support trust anchor management for cryptographic modules with an assumption that the module would manage a single trust anchor store. As such, there are some aspects of the specification that are out of alignment with the direction that this group seems to be taking. Specific items that are likely to change include the following:

- Throughout the draft, the term "cryptographic module" can often be read as "trust anchor store". If I understand the direction of the group, then a focus on the trust anchor store is more appropriate.

- Messages are targeted using hardware-centric names. I think this approach is one that ought to be supported, but there are probably others. At a minimum we should consider multiple trust anchor stores on the same device.

- The mail list has discussed trust anchor types, but this draft defines a structure for trust anchors that are used in the validation of X.509 certification paths and signatures on CMS objects that are directly signed by the trust anchor. At a minimum, I think that it is important to add a hook for other trust anchor types.

Additionally, some changes are planned for the section that describes the processing of TAMPUpdate messages. Additional language describing path processing in support of TAMP update processing will be added and the CertPathControls feature will be subject to subordination rules.

The TAMP draft is accompanied by another draft: Cryptographic Message Syntax (CMS) Content Constraints X.509 Certificate Extension (CCC). The CCC draft defines a certificate extension to handle delegation of privileges expressed in TAMP via the TrustAnchorUsage type. This certificate extension is used to determine whether the public key in an X.509 public key certificate is appropriate to use in the processing of a CMS-protected content.

The drafts are available at these locations:
http ://www.ietf.org/internet-drafts/draft-housley-tamp-00.txt
http://www.ietf.org/internet-drafts/draft-housley-cms-content-constraints-extn-00.txt

Follow-Ups:
- Re: For your consideration: TAMP and CCC
  - From: Yoav Nir
- Re: For your consideration: TAMP and CCC
  - From: Stephen Farrell

Prev by Date: Strawman Charter d05
Next by Date: Re: For your consideration: TAMP and CCC
Previous by thread: Strawman Charter d05
Next by thread: Re: For your consideration: TAMP and CCC
Index(es):
- Date
- Thread