| ANIMA WG | S. Fries |
| Internet-Draft | H. Brockhaus |
| Intended status: Standards Track | Siemens |
| Expires: September 7, 2020 | E. Lear |
| Cisco Systems | |
| March 6, 2020 |
Support of asynchronous Enrollment in BRSKI
draft-fries-anima-brski-async-enroll-03
This document discusses enhancements of bootstrapping of a remote secure key infrastructure (BRSKI) to also operate in domains featuring no or only timely limited connectivity to backend services offering enrollment functionality, specifically a Public Key Infrastructure (PKI). The enhancements proposed to enable this are also applied to further set of use cases in which a pledge may not have a direct connection to the registrar and is served by for instance by a commissioning tool as an agent providing registrar connectivity. In the context of deploying new devices the design of BRSKI allows for online (synchronous object exchange) and offline interactions (asynchronous object exchange) with a manufacturer's authorization service. For this it utilizes an authenticated self-contained voucher to transport the domain credentials as a signed object to establish an initial trust between a pledge and the target deployment domain. The currently supported enrollment protocol for request and distribution of deployment domain specific device certificates provides only limited support for asynchronous PKI interactions. This memo motivates the enhancement of supporting authenticated self-contained objects for certificate management by using an abstract notation. The enhancement allows on one hand off-site operation of PKI services outside the deployment domain of the pledge. This addresses specifically scenarios, in which the final authorization of a certification request of a pledge cannot be made in the deployment domain and is therefore delegated to a operator backend. On the other hand, this enhancement also facilitates the exchange of certificate management information via a pledge agent. The goal is to enable the usage of existing and potentially new PKI protocols supporting authenticated self-containment for certificate management exchanges.
This Internet-Draft is submitted in full conformance with the provisions of BCP 78 and BCP 79.
Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet-Drafts is at https://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress."
This Internet-Draft will expire on September 7, 2020.
Copyright (c) 2020 IETF Trust and the persons identified as the document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as described in the Simplified BSD License.
BRSKI as defined in [I-D.ietf-anima-bootstrapping-keyinfra] specifies a solution for secure zero-touch (automated) bootstrapping of devices (pledges) in a target deployment domain. This includes the discovery of network elements in the deployment domain, time synchronization, and the exchange of security information necessary to establish trust between a pledge and the domain and to adopt a pledge as new network and application element. Security information about the deployment domain, specifically the deployment domain certificate (domain root certificate), is exchanged utilizing voucher objects as defined in [RFC8366]. These vouchers are authenticated self-contained (signed) objects, which may be provided online (synchronous) or offline (asynchronous) via the domain registrar to the pledge and originate from a Manufacturer's Authorized Signing Authority (MASA). The MASA signed voucher contains the target domain certificate and can be verified by the pledge due to the possession of a manufacturer root certificate. It facilitates the enrollment of the pledge in the deployment domain and is used to establish trust from the pledge to the domain.
For the enrollment of devices BRSKI relies on EST [RFC7030] to request and distribute deployment domain specific device certificates. EST in turn relies on a binding of the certification request to an underlying TLS connection between the EST client and the EST server. According to BRSKI the domain registrar acts as EST server and is also acting as registration authority (RA) or local registration authority (LRA). The binding to TLS is used to protect the exchange of a certification request (for an LDevID certificate) and to provide data origin authentication to support the authorization decision for processing the certification request. The TLS connection is mutually authenticated and the client side authentication bases on the pledge's manufacturer issued device certificate (IDevID certificate). This approach requires an on-site availability of a local asset or inventory management system performing the authorization decision based on tuple of the certification request and the pledge authentication using the IDevID certificate, to issue a domain specific certificate to the pledge. The reason bases on the EST server (the domain registrar) terminating the security association with the pledge and thus the local binding between the certification request and the authentication of the pledge. This type of enrollment utilizing an online connection to the PKI is considered as synchronous enrollment.
For certain use cases on-site support of a RA/CA component and/or an asset management is not available and rather provided by an operator's backend and may be provided timely limited or completely through offline interactions. This may be due to higher security requirements for operating the certification authority. The authorization of a certification request based on an asset management in this case will not / can not be performed on-site at enrollment time. Enrollment, which cannot be performed in a (timely) consistent fashion is considered as asynchronous enrollment in this document. It requires the support of a store and forward functionality of certification request together with the requester authentication information. This enables processing of the request at a later point in time. A similar situation may occur through network segmentation, which is utilized in industrial systems to separate domains with different security needs. Here, a similar requirement arises if the communication channel carrying the requester authentication is terminated before the RA/CA handling the certification request. If a second communication channel is opened to forward the certification request to the issuing RA/ CA, the requester authentication information needs to be bound to the certification request. This uses case is independent from the timely limitations of the first use case. For both cases, it is assumed that the requester authentication information is utilized in the process of authorization of a certification request. There are different options to perform store and forward of certification requests including the requester authentication information:
This document targets environments, in which connectivity to the PKI functionality is only temporary or not directly available by specifying support for handling authenticated self-contained objects supporting asynchronous enrollment. As it is intended to enhance BRSKI it is named BRSKI-AE, where AE stands for asynchronous enrollment. As BRSKI, BRSKI-AE results in the pledge storing a X.509 root certificate sufficient for verifying the domain registrar / proxy identity (LDevID CA Certificate) as well as an domain specific X.509 device certificate (LDevID EE certificate).
Based on the proposed approach, a second set of scenarios can be addressed, in which the pledge has a different technology stack as the domain registrar, but is considered to be managed by the domain registrar regarding the utilized credentials of this pledge with the help of an additional component, e.g., a commissioning tool acting as a agent for the pledge towards the domain registrar. This enable the re-use of the BRSKI functionality also in scenarios, in which the pledge has a different technology stack or does not have direct connectivity to the domain registrar.
The goal is to enhance BRSKI to either allow other existing certificate management protocols supporting authenticated self-contained objects to be applied or to allow other types of encoding for the certificate management information exchange. This is addressed by
Note that in contrast to BRSKI, BRSKI-AE assumes support of multiple enrollment protocols on the infrastructure side, allowing the pledge manufacturer to select the most appropriate. Thus, BRSKI-AE can be applied for both, asynchronous and synchronous enrollment.
From version 02 -> 03:
From version 01 -> 02:
From version 00 -> 01:
The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [RFC2119].
This document relies on the terminology defined in [I-D.ietf-anima-bootstrapping-keyinfra]. The following terms are defined additionally:
This solution is intended to be used in domains with limited support of on-site PKI services and comprises use cases in which:
In addition, the solution is intended to be applicable in domains in which the pledges have no direct connection to the domain registrar, but are expected to be managed by the registrar. This can be motivated by pledges featuring a different technology stack or by pledges without an existing connection to the domain registrar during onboarding.
The following examples are intended to motivate the support of different enrollment approaches in general and asynchronous enrollment specifically, by introducing industrial applications cases, which could leverage BRSKI as such but also require support of asynchronous operation as intended with BRSKI-AE.
Rolling stock or railroad cars contain a variety of sensors, actuators, and controller, which communicate within the railroad car but also exchange information between railroad cars building a train or with a backend. These devices are typically unaware of backend connectivity. Managing certificates may be done during maintenance cycles of the railroad car, but can already be prepared during operation. The preparation may comprise the generation of certification requests by the components, which are collected and forwarded for processing once the railroad car is connected to the operator backend. The authorization of the certification request is then done based on the operator's asset/inventory information in the backend.
In building automation a use case can be described by a detached building or the basement of a building equipped with sensor, actuators, and controllers connected, but with only limited or no connection to the centralized building management system. This limited connectivity may be during the installation time but also during operation time. During the installation in the basement, a service technician collects the necessary information from the basement network and provides them to the central building management system, e.g., using a laptop or even a mobile phone to transport the information. This information may comprise parameters and settings required in the operational phase of the sensors/actuators, like a certificate issued by the operator to authenticate against other components and services.
The collected information may be provided by a domain registrar already existing in the installation network. In this case connectivity to the backend PKI may be facilitated by the service technician's laptop. Contrary, the information can also be collected from the pledges directly and provided to a domain registrar deployed in the main network. In this cases connectivity to the domain registrar may be facilitated by the service technician's laptop.
In substation automation a control center typically hosts PKI services to issue certificates for Intelligent Electronic Devices (IED)s in a substation. Communication between the substation and control center is done through a proxy/gateway/DMZ, which terminates protocol flows. Note that NERC CIP-005-5 [NERC-CIP-005-5] requires inspection of protocols at the boundary of a security perimeter (the substation in this case). In addition, security management in substation automation assumes central support of different enrollment protocols to facilitate the capabilities of IEDs from different vendors. The IEC standard IEC62351-9 [IEC-62351-9] specifies the mandatory support of two enrollment protocols, SCEP [I-D.gutmann-scep] and EST [RFC7030] for the infrastructure side, while the IED must only support one of the two.
For the electric vehicle charging infrastructure protocols have been defined for the interaction between the electric vehicle (EV) and the charging point (e.g., ISO 15118-2 [ISO-IEC-15118-2]) as well as between the charging point and the charging point operator (e.g. OCPP [OCPP]). Depending on the authentication model, unilateral or mutual authentication is required. In both cases the charging point authenticates uses an X.509 certificate to authenticate in the context of a TLS connection between the EV and the charging point. The management of this certificate depends (beyond others) on the selected backend connectivity protocol. Specifically, in case of OCPP it is intended as single communication protocol between the charging point and the backend carrying all information to control the charging operations and maintain the charging point itself. This means that the certificate management is intended to be handled in-band of OCPP. This requires to be able to encapsulate the certificate management exchanges in a transport independent way. Authenticated self-containment will ease this by allowing the transport without a separate communication protocol. For the purpose of certificate management CMP [RFC4210] is intended to be used.
This refers to any case in which network infrastructure is normally isolated from the Internet as a matter of policy, most likely for security reasons. In such a case, limited access to external PKI resources will be allowed in carefully controlled short periods of time, for example when a batch of new devices are deployed, but impossible at other times.
The registration point performing the authorization of a certificate request is a critical PKI component and therefore implicates higher operational security than other components utilizing the issued certificates for their security features. CAs may also demand higher security in the registration procedures. Especially the CA/Browser forum currently increases the security requirements in the certificate issuance procedures for publicly trusted certificates. There may be the situation that the deployment domain does not offer enough security to operate a registration point and therefore wants to transfer this service to a backend.
For the requirements discussion it is assumed that the entity receiving the authenticated self-contained object in the deployment domain is not the authorization point for the certification request contained in the object. If the entity is the authorization point, BRSKI can be used directly. Note that BRSKI-AE could also be used in this case.
Based on the supported deployment environment described in Section 4.1 and the motivated application examples described in Section 4.2 the following base requirements are derived to support authenticated self-contained objects as container carrying the certification request and further information to support asynchronous operation. Moreover, potential solution examples (not complete) based on existing technology are provided with the focus on existing IETF standards track documents: [I-D.selander-ace-coap-est-oscore] is intended to be considered in the future as well. /* note: to be verified if this activity proceeds */
Note that the integrity of the certification request is bound to the public key contained in the certification request by performing the signature operation with the corresponding private key. In the considered application examples, this is not sufficient and needs to be bound to the existing credential of the pledge (IDevID). This binding supports the authorization decision for the certification request. The binding of data origin authentication to the certification request may be delegated to the management protocol.
Note that besides the already existing enrollment protocols there ongoing work in the ACE WG to define an encapsulation of EST in OSCORE to result in a TLS independent way of protecting EST. This approach
To support asynchronous enrollment, the base system architecture defined in BRSKI [I-D.ietf-anima-bootstrapping-keyinfra] is changed for two target use cases.
Both use cases are described in the next subsections. They utilize the existing BRSKI architecture elements as much as possible. Necessary enhancements regarding support of authenticated self-contained objects for are adoptions of exchanges to achieve the targeted functionality are kept on a minimum to ensure reuse of already defined architecture elements and interactions.
To support off-site operation of PKI components, one assumption of BRSKI-AE is that the authorization for a certification request is performed based on an authenticated self-contained object binding the certification request to the authentication using the IDevID. In addition, the authorization may be handled by an inventory or asset management system residing in the backend of the domain operator as described in Section 4.1. This leads to changes in the placement or enhancements of the logical elements as shown in Figure 1.
+------------------------+
+--------------Drop Ship--------------->| Vendor Service |
| +------------------------+
| | M anufacturer| |
| | A uthorized |Ownership|
| | S igning |Tracker |
| | A uthority | |
| +--------------+---------+
| ^
| |
V |
+--------+ ......................................... |
| | . . |
| | . +------------+ +------------+ . | BRSKI-
| | . | | | | . | MASA
| Pledge | . | Join | | Domain <-----+
| | . | Proxy | | Registrar/ | .
| <-------->............<-------> Proxy | .
| | . | BRSKI-AE | | .
| IDevID | . | | +------^-----+ .
| | . +------------+ | .
| | . | .
+--------+ ...............................|.........
"on-site domain" components |
|e.g., RFC 7030,
| RFC 4210
.............................................|.....................
. +---------------------------+ +--------v------------------+ .
. | Public Key Infrastructure |<----+ PKI RA | .
. | PKI CA |---->+ [(Domain) Registrar (opt)]| .
. +---------------------------+ +---------------------------+ .
...................................................................
"off-site domain" components
Figure 1: Architecture overview using off-site PKI components
The architecture overview in Figure 1 utilizes the same logical elements as BRSKI but with a different placement in the deployment architecture for some of the elements. The main difference is the placement of the PKI RA/CA component, which is performing the authorization decision for the certification request message. Also shown is the connectivity of the RA/CA with an inventory management system, which is expected to be utilized in the authorization decision. Note that this may also be an integrated functionality of the RA. Both components are placed in the off-site domain of the operator (not the deployment site directly), which may have no or only temporary connectivity to the deployment domain of the pledge. This is to underline the authorization decision for the certification request in the backend rather than in the deployment domain itself. The following list describes the components in the deployment domain:
The following list describes the vendor related components/service outside the deployment domain:
The following list describes the operator related components/service operated in the backend:
Based on BRSKI and the architectural changes the original protocol flow is divided into three phases showing commonalities and differences to the original approach as depicted in the following.
The behavior of a pledge as described in [I-D.ietf-anima-bootstrapping-keyinfra] is kept with one exception. After finishing the imprinting phase (4) the enrollment phase (5) is performed with a method supporting authenticated self-contained objects. Using EST with simpleenroll cannot be applied here, as it binds the pledge authentication with the existing IDevID to the transport channel rather than the certification request object directly. This authentication is not visible / verifiable at the authorization point in the off-site domain. Section 6 discusses potential protocols and EST protocol options applicable.
The discovery phase is applied as specified in [I-D.ietf-anima-bootstrapping-keyinfra].
/* for discussion: is a reference to BRSKI sufficient here or is it helpful to provide additional information and the figure? */
+--------+ +---------+ +------------+ +------------+ | Pledge | | Circuit | | Domain | | Vendor | | | | Join | | Registrar | | Service | | | | Proxy | | (JRC) | | (MASA) | +--------+ +---------+ +------------+ +------------+ | | | Internet | |<-RFC4862 IPv6 addr | | | |<-RFC3927 IPv4 addr | Appendix A | Legend | |-------------------->| | C - circuit | | optional: mDNS query| Appendix B | join proxy | | RFC6763/RFC6762 | | P - provisional | |<--------------------| | TLS connection | | GRASP M_FLOOD | | | | periodic broadcast| | | |<------------------->C<----------------->| | | TLS via the Join Proxy | | |<--Registrar TLS server authentication---| | [PROVISIONAL accept of server cert] | | P---X.509 client authentication---------->| | P | | | P--Voucher Request (w/nonce for voucher)->| | P | /---> | | P | | see Figure 3 below | P | \----> | | P<------voucher---------------------------| | [verify voucher, imprint] | | |---------------------------------------->| | | [voucher status telemetry] |<-device audit log--| | | [verify audit log and voucher] | |<--------------------------------------->| |
Figure 2: Pledge discovery of domain registrar discovery and voucher exchange
The voucher exchange is performed as specified in [I-D.ietf-anima-bootstrapping-keyinfra].
/* for discussion: is a reference to BRSKI sufficient here or is it helpful to provide additional information and the figure? */
+--------+ +---------+ +------------+ +------------+ | Pledge | | Circuit | | Domain | | Vendor | | | | Join | | Registrar | | Service | | | | Proxy | | (JRC) | | (MASA) | +--------+ +---------+ +------------+ +------------+ P | /---> | | P | | [accept device in domain] | P | | [contact Vendor] | P | | |--Pledge ID-------->| P | | |--Domain ID-------->| P | | |--optional:nonce--->| P | | | [extract DomainID] P | optional: | [update audit log] P | can occur in advance if nonceless |
Figure 3: Domain registrar - MASA voucher exchange
The enrollment for BRSKI-AE will be performed using an authenticated self-contained object. This object contains the certification request and shall support at least the following properties:
+--------+ +---------+ +------------+ +------------+ | Pledge | | Circuit | | Domain | | Operator | | | | Join | | Registrar | | RA/CA | | | | Proxy | | (JRC) | | (OPKI) | +--------+ +---------+ +------------+ +------------+ /--> | | |---------- Request CA Certs ------------>| | | [if connection to operator domain is available] | | |-Request CA Certs ->| | |<- CA Certs Response| |<-------- CA Certs Response--------------| | |---------- Attribute Request ----------->| | | [if connection to operator domain is available] | | |Attribute Request ->| | |<-Attribute Response| |<--------- Attribute Response -----------| | /--> | | |-------------- Cert Request ------------>| | | [if connection to operator domain is available] | | |--- Cert Request -->| | |<-- Cert Response --| /--> | | | [if connection to operator domain is not available] | | | | |<---------- Cert Waiting ----------------| | |-- Cert Polling (with orig request ID) ->| | | [if connection to operator domain is available] | | |--- Cert Request -->| | |<-- Cert Response --| /--> | | |<------------- Cert Response ------------| | |-------------- Cert Confirm ------------>| | | /--> | | |[optional] | | |--- Cert Confirm -->| | |<-- PKI Confirm ----| |<------------- PKI/Registrar Confirm ----| |
Figure 4: Certificate enrollment
The following list provides an abstract description of the flow depicted in Figure 4.
/* to be done:
*/
The realization of BRSKI-AE requires enhancements to the addressing scheme defined in [I-D.ietf-anima-bootstrapping-keyinfra]. This is due to the additions of authenticated self-contained object handling to BRSKI. BRSKI itself utilizes EST as enrollment protocol, which can be enabled to support authenticated self-contained objects by utilizing the FullCMCRequest instead of simpleenroll. Besides EST there are further enrollment protocols, which also support the handling of authenticated self-contained objects and which can be employed here. The approach of BRSKI-AE is to allow additional enrollment options to be supported. For the provisioning of different enrollment options at the domain registrar, the addressing approach of BRSKI using a "/.well-known" tree from [RFC5785] is enhanced.
The current addressing scheme in BRSKI for the client certificate request function during the enrollment is using the definition from EST [RFC7030], here on the example on simple enroll: "/.well-known/est/simpleenroll" This approach is generalized to the following notation: "/.well-known/enrollment-protocol/request" in which enrollment-protocol may be an already existing protocol or a newly defined approach. Note that enrollment is considered here as a sequence of at least a certification request and a certification response. In case of existing enrollment protocols the following notation is used proving compatibility to BRSKI:
/* to be done:
*/
If the registrar supports multiple enrollment protocols, specifically beyond the required mechanisms, it is more efficient to also support an optional discovery mechanism. By querying the registrar, the pledge gets an enumeration of potential options, based on the defined namespace.
/* the discover mechanism needs to be defined in terms of message exchanges. */
To support mutual trust establishment of pledges, not directly connected to the domain registrar, a similar approach is applied as discussed for the use case 1. BRSKI-AE relies on authenticated self-contained objects (the voucher request/response objects and the certification request/response objects) for the onboarding. This allows independence from the protection provided by the underlying transport.
The exchange of the objects is performed with the help of a pledge agent, which can be an integrated functionality of a commissioning tool supporting the interaction of the pledge with the domain registrar. This leads to enhancements of the logical elements with the additional tool as shown in Figure 5. Specifically the pledge agent provides an option to trigger or PUSH the pledge to create or consume the required objects, which can be exchanged with the domain registrar. Moreover, it also influences the sequences for the data exchange between the pledge and the domain registrar described in [I-D.ietf-anima-bootstrapping-keyinfra]. In general, the approach targets to reuse the already defined interfaces on the domain registrar side.
+------------------------+
+--------------Drop Ship---------------| Vendor Service |
| +------------------------+
| | M anufacturer| |
| | A uthorized |Ownership|
| | S igning |Tracker |
| | A uthority | |
| +--------------+---------+
| ^
| | BRSKI-
V | MASA
+-------+ +-------+ .............................|.........
| | | | . | .
| | | | . +-----------+ +-----v-----+ .
| | |Pledge | . | | | | .
|Pledge | | Agent | . | Join | | Domain | .
| | | | . | Proxy | | Registrar | .
| <----->.......<-------->...........<-------> (PKI RA) | .
| | | | . | BRSKI-AE | | .
| | | | . | | +-----+-----+ .
|IDevID | |opt. | . +-----------+ e.g. RFC7030 .
| | |IDevID | . +-----------------+------+ .
| | |or | . | Key Infrastructure | .
| | |LDevID | . | (e.g., PKI Certificate | .
+-------+ +-------+ . | Authority) | .
. +------------------------+ .
.......................................
"Domain" components
Figure 5: Architecture overview using a pledge agent
The architecture overview in Figure 5 utilizes the same logical elements as BRSKI with the addition of a pledge agent. The pledge agent as part of a commissioning tool, may originate from the pledge manufacturer and may have either an IDevID credential issued by the manufacturer or an LDevID issued by the deployment domain (potentially upfront). In either way, if the pledge agent possesses a certificate, the domain registrar must be able to verify the certificate by possessing the corresponding root certificate. The following list describes the components in the deployment domain:
The manufacturer provided components/services (MASA and Ownership tracker) are used as defined in BRSKI.
The behavior of a pledge as described in [I-D.ietf-anima-bootstrapping-keyinfra] is basically kept regarding the handling of voucher request/response objects and certificate request/response objects. In contrast to BRSKI, the interaction is done with a pledge agent and not with the domain registrar directly. This changes the general interaction as shown in Figure 6.
In BRSKI the pledge is expected to start the communication with the domain registrar by opening a TLS connection. This can be considered as PULL as the pledge triggers the domain registrar. In use case 2 of BRSKI-AE the pledge is expected to be triggered by the pledge agent to generate a voucher request and a certification request, which can be considered a PUSH. The pledge agent should provide the proximity-registrar-cert to the pledge to enable embedding in the voucher request. The registrar certificate may be configured at the pledge agent or may be fetched by the pledge agent based on the TLS connection establishment with the domain registrar.
Also, the pledge will be triggered by the pledge agent to generate a certification request message. For this, the pledge agent may have been pre-configured with the certification request attributes, that it may provide to the pledge. The pledge is then requested to generate a certification request as authenticated self-signed object, which assures proof of possession of the private key corresponding to the contained public key in the certification request as well as a proof of identity, based on the IDevID available on the pledge.
The pledge agent is a new component in the BRSKI context. It provides connectivity between the pledge and the domain registrar and utilizes the interfaces already specified in [I-D.ietf-anima-bootstrapping-keyinfra]. The pledge agent is expected to interact with the pledge independent of the domain registrar. The utilized communication between the pledge and the pledge agent is only defined based on the information objects, which are the voucher request/response objects and the certification request/response objects. The transport mechanism is out of scope here. This changes the general interaction as shown in Figure 6.
The pledge agent may have an own IDevID or a deployment domain issued LDevID to be utilized in the TLS communication establishment. Note that the pledge agent may also be used without client side authentication if no suitable credential is available. As BRSKI-AE utilizes data object, which bind the pledge authentication directly to the object, the TLS client authentication may be neglected. This is possible as the pledge proof of identity is bound to the voucher request and the certification request objects. This is a deviation from the BRSKI approach in which the pledge's IDevID credential is used to perform TLS client authentication. According to [I-D.ietf-anima-bootstrapping-keyinfra] section 5.3, the domain registrar performs the pledge authorization based on the provided voucher request.
The discovery phase may be applied as specified in [I-D.ietf-anima-bootstrapping-keyinfra] with the deviation that it is done between the pledge agent and the pledge. Alternatively, the domain registrar is be configured in the pledge agent.
The pledge is expected to be discovered by the pledge agent tool. This is out of scope for this specification.
The BRSKI-AE exchange of voucher requests and certification requests utilizes authenticated self-contained objects independent of transport protection.
+--------+ +-------+ +-----------+ +--------+ +---------+ | Pledge | | Plegde| | Domain | | Domain | | Vendor | | | | Agent | | Registrar | | CA | | Service | | | | | | (JRC) | | | | (MASA) | +--------+ +-------+ +-----------+ +--------+ +---------+ | | | | Internet | | opt: configure | | | | - proximity-registrar-cert | | | | - CSR attributes | | | | | | | | |<--trigger VouReq--| | | | |(o: proximity-cert)| | | | |- Voucher Request->| | | | | | | | | |<--trigger CR------| | | | |(o: attributes) | | | | |----Cert Request-->| | | | | |<---- TLS --->| | | | | | | | | |--- VouReq -->| | | | | [accept device?] | | | | [contact vendor] | | | | |----- Voucher Request ------>| | | |----- Pledge ID ------------>| | | |----- Domain ID ------------>| | | |----- optional: nonce ------>| | | | [extract DomainID] | | | [update audit log] | | |<--------- Voucher ---------| | |<-- Voucher --| | | | | |<----- device audit log ----| | | | | | | |-- CertReq -->| | | | | |-- CertReq --->| | | | |<--CertResp----| | | |<-- CertResp -| | | | | | | | |<---post Voucher---| | | | |- Voucher Status-->| | | | | | | | | |<--post CertResp---| | | | |---- CertConf ---->| | | | | | | | | | [voucher status telemetry ] | | | |VoucherStatus>| | | | |[verify audit log and voucher]| | | | | | | | | [enroll Status] | | | |-- CertConf ->| | | | | |-- CertConf -->| | | | | | |
Figure 6: Request handling of the pledge using a pledge agent
As shown in Figure 6 the pledge agent collects the voucher request and certification request objects from a pledge. As the pledge agent (e.g., as part of a commissioning tool) is intended to work between the pledge and the domain registrar, a collection of requests from multiple pledges is possible, allowing a bulk onboarding of multiple pledges using the connection between the pledge agent and the domain registrar. The communication protocol between the pledge agent and the pledge is out of scope here.
The information exchange between the pledge agent and the domain registrar resembles the exchanges between the pledge and the domain registrar from BRSKI with one exception. As authenticated self-contained objects are used consequently, the authentication of the pledge agent to the domain registrar may be neglected. Note that this allows to employ simple applications as pledge agent. The authentication of the pledge agent is recommended if it is desired to perform the onboarding with an authorized pledge agent or to support advanced auditing. To achieve the authentication the pledge agent may possess either an IDevID or LDevID credential, which can be verified by the domain registrar. The provisioning of this credential to the pledge agent is out of scope for this specification. Alternatively, the domain registrar may authenticated the user connected with the pledge agent to perform authorization of pledge onboarding.
/* to be discussed: Description on how the registrar makes the decision if he is connected with pledge directly or with a pledge agent. This may result in a case statement (client side authentication in TLS, user authentication above TLS, etc.) for the TLS connection establishment in the original BRSKI document in section 5.1 */
Once the pledge agent has finished the exchanges with the domain registrar to get the voucher and the certificate object, it can close the TLS connection to the domain registrar and provide the objects to the pledge(s). The transport of the objects to the pledge is out of scope. The objects are defined through the voucher [RFC8366] and the certificate [RFC5280].
This sections maps the requirements and the approach described in Section 5.1.4 to already existing enrollment protocols. Note that that the work in the ACE WG described in [I-D.selander-ace-coap-est-oscore] may be considered here as well, as it also addresses the encapsulation of EST in a way to make it independent from the underlying TLS using OSCORE resulting in an authenticated self-contained object.
When using the EST protocol [RFC7030], the following constrains should be considered:
When using the CMP protocol [RFC4210], the following constrains should be observed:
Note that there is a lightweight profile for CMP defined, which provides a subset of the CMP specification as profile for leaner implementation and easier interoperability in
This document requires the following IANA actions:
/* to be done: IANA consideration to be included for the defined namespaces in Section 5.1.5. */
/* to be done: clarification necessary */
/* to be done: clarification necessary */
We would like to thank the various reviewers for their input, in particular Brian E. Carpenter, Giorgio Romanenghi, Oskar Camenzind for their input and discussion on use cases and call flows.
| [I-D.ietf-anima-bootstrapping-keyinfra] | Pritikin, M., Richardson, M., Eckert, T., Behringer, M. and K. Watsen, "Bootstrapping Remote Secure Key Infrastructures (BRSKI)", Internet-Draft draft-ietf-anima-bootstrapping-keyinfra-37, February 2020. |
| [RFC2119] | Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, DOI 10.17487/RFC2119, March 1997. |
| [RFC7030] | Pritikin, M., Yee, P. and D. Harkins, "Enrollment over Secure Transport", RFC 7030, DOI 10.17487/RFC7030, October 2013. |
| [RFC8366] | Watsen, K., Richardson, M., Pritikin, M. and T. Eckert, "A Voucher Artifact for Bootstrapping Protocols", RFC 8366, DOI 10.17487/RFC8366, May 2018. |