Hello, A few of us have put together an IETF draft called Entity Attestation Token, or “EAT”. It is a general CBOR / COSE based design for digitally signed device attestations. It has some similarities to attestation types used by FIDO, the attestation feature in recent versions of Android, but is trying to be general purpose. We want to be sure it covers small IoT devices since attestation is very important for those use cases.
We’re got a non-WG IETF mailing list to gauge interest and see if a WG should be formed around it. I wanted to let you COSE folks know about this work and invite you to participate. Here’s the main info: Subscription: https://www.ietf.org/mailman/listinfo/eat Welcome message: https://mailarchive.ietf.org/arch/msg/eat/D8_RJ3cfVy9uxPv44wmRiwXYCeQ IETF Draft: https://datatracker.ietf.org/doc/draft-mandyam-eat/ Thanks, LL P.S. My participation in this work so far has been as a Qualcomm employee. It will however continue as an independent IETF citizen as this is my last week as a Qualcomm employee. Other Qualcomm folks will continue to participate.
_______________________________________________ COSE mailing list [email protected] https://www.ietf.org/mailman/listinfo/cose
