Issues raised by @thomas-fossati.
Regarding https://ietf-rats-wg.github.io/draft-ietf-rats-corim/draft-ietf-rats-corim.html#section-5.1.4.5-9.3.1
-
§5.1.4.5: (measurements) Semantics of authorized-by are unclear therefore rather unusable: "designated authority for measurement Claims" is too generic to be useful. Is this something similar to EAT MC authority, i.e., related to software updates/installations?
-
§5.1.4.5: re: authorized-by, it says: "For example, the signer of a CoMID triple". CoMID triples aren't signed! This is the only concrete example and it doesn't compute.
-
§5.1.4.5: re: authorized-by, it says: "See Section 5.1.4.6." which defines the crypto-key-type-choice type. A bit out of the blue and withouth much context.
-
§5.1.4.5: re: authorized-by, it says: "An entity is authoritative when it makes Claims that are inside its area of competence.". What is this supposed to mean?
Issues raised by @thomas-fossati.
Regarding https://ietf-rats-wg.github.io/draft-ietf-rats-corim/draft-ietf-rats-corim.html#section-5.1.4.5-9.3.1
§5.1.4.5: (measurements) Semantics of authorized-by are unclear therefore rather unusable: "designated authority for measurement Claims" is too generic to be useful. Is this something similar to EAT MC authority, i.e., related to software updates/installations?
§5.1.4.5: re: authorized-by, it says: "For example, the signer of a CoMID triple". CoMID triples aren't signed! This is the only concrete example and it doesn't compute.
§5.1.4.5: re: authorized-by, it says: "See Section 5.1.4.6." which defines the crypto-key-type-choice type. A bit out of the blue and withouth much context.
§5.1.4.5: re: authorized-by, it says: "An entity is authoritative when it makes Claims that are inside its area of competence.". What is this supposed to mean?