From Mailing list
Is this document really useful? Who is going to use it? Intel has been announcing end-of-life for EPID for at least a couple of years [0] and
finally since 2nd April, 2025, EPID no longer exists.
Security considerations are really insufficient, and potentially wrong/misleading/outdated.
- Properly define what is "anonymity property".
- 8.1: What is "an Attester's private key"? I would assume there would be group signature rather an Attester's private key.
- 8.2: EPID is no longer a solution!
Since 9334 says nothing about anonymity except pointing to this draft, this draft MUST provide all the details for security considerations of DAA.
[0] https://community.intel.com/t5/Intel-Software-Guard-Extensions/IAS-End-of-Life-Announcement/td-p/1545831
From Mailing list
Is this document really useful? Who is going to use it? Intel has been announcing end-of-life for EPID for at least a couple of years [0] and
finally since 2nd April, 2025, EPID no longer exists.
Security considerations are really insufficient, and potentially wrong/misleading/outdated.
Since 9334 says nothing about anonymity except pointing to this draft, this draft MUST provide all the details for security considerations of DAA.
[0] https://community.intel.com/t5/Intel-Software-Guard-Extensions/IAS-End-of-Life-Announcement/td-p/1545831