< draft-tschofenig-rats-psa-token-00.txt   draft-tschofenig-rats-psa-token-01.txt >
RATS H. Tschofenig, Ed. RATS H. Tschofenig, Ed.
Internet-Draft S. Frost Internet-Draft S. Frost
Intended status: Standards Track M. Brossard Intended status: Standards Track M. Brossard
Expires: September 12, 2019 A. Shaw Expires: October 10, 2019 A. Shaw
Arm Limited Arm Limited
March 11, 2019 April 08, 2019
Arm's Platform Security Architecture (PSA) Attestation Token Arm's Platform Security Architecture (PSA) Attestation Token
draft-tschofenig-rats-psa-token-00 draft-tschofenig-rats-psa-token-01
Abstract Abstract
The insecurity of IoT systems is a widely known and discussed The insecurity of IoT systems is a widely known and discussed
problem. The Arm Platform Security Architecture (PSA) is being problem. The Arm Platform Security Architecture (PSA) is being
developed to address this challenge by making it easier to build developed to address this challenge by making it easier to build
secure systems. secure systems.
This document specifies token format and claims used in the This document specifies token format and claims used in the
attestation API of the Arm Platform Security Architecture (PSA). attestation API of the Arm Platform Security Architecture (PSA).
skipping to change at page 1, line 43 skipping to change at page 1, line 43
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at https://datatracker.ietf.org/drafts/current/. Drafts is at https://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on September 12, 2019. This Internet-Draft will expire on October 10, 2019.
Copyright Notice Copyright Notice
Copyright (c) 2019 IETF Trust and the persons identified as the Copyright (c) 2019 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(https://trustee.ietf.org/license-info) in effect on the date of (https://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 7, line 49 skipping to change at page 7, line 49
+-----+-------------+-----------+-----------------------------------+ +-----+-------------+-----------+-----------------------------------+
| Key | Type | Mandatory | Description | | Key | Type | Mandatory | Description |
| ID | | | | | ID | | | |
+-----+-------------+-----------+-----------------------------------+ +-----+-------------+-----------+-----------------------------------+
| 1 | Measurement | No | A short string representing the | | 1 | Measurement | No | A short string representing the |
| | Type | | role of this software component | | | Type | | role of this software component |
| | | | (e.g. 'BL' for Boot Loader). | | | | | (e.g. 'BL' for Boot Loader). |
| | | | | | | | | |
| 2 | Measurement | Yes | Represents a hash of the | | 2 | Measurement | Yes | Represents a hash of the |
| | value | | invariant software component in | | | Value | | invariant software component in |
| | | | memory at startup time. The value | | | | | memory at startup time. The value |
| | | | must be a cryptographic hash of | | | | | must be a cryptographic hash of |
| | | | 256 bits or stronger. | | | | | 256 bits or stronger. |
| | | | | | | | | |
| 3 | Reserved | No | Reserved | | 3 | Reserved | No | Reserved |
| | | | | | | | | |
| 4 | Version | No | The issued software version in | | 4 | Version | No | The issued software version in |
| | | | the form of a text string. The | | | | | the form of a text string. The |
| | | | value of this claim will | | | | | value of this claim will |
| | | | correspond to the entry in the | | | | | correspond to the entry in the |
| | | | original signed manifest of the | | | | | original signed manifest of the |
| | | | component. | | | | | component. |
| | | | | | | | | |
| 5 | Signer ID | Yes | The hash of a signing authority | | 5 | Signer ID | No | The hash of a signing authority |
| | | | public key for the software | | | | | public key for the software |
| | | | component. The value of this | | | | | component. The value of this |
| | | | claim will correspond to the | | | | | claim will correspond to the |
| | | | entry in the original manifest | | | | | entry in the original manifest |
| | | | for the component. | | | | | for the component. |
| | | | | | | | | |
| 6 | Measurement | No | Description of the software | | 6 | Measurement | No | Description of the software |
| | description | | component, which represents the | | | description | | component, which represents the |
| | | | way in which the measurement | | | | | way in which the measurement |
| | | | value of the software component | | | | | value of the software component |
 End of changes. 6 change blocks. 
6 lines changed or deleted 6 lines changed or added

This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/