Google Git
Sign in
pigweed / open-dice / 0b5044098bf9b40128927d675dea4ec1fb75c510^! / .
commit0b5044098bf9b40128927d675dea4ec1fb75c510[log] [tgz]
authorAndrew Scull <ascull@google.com>Wed Aug 09 12:27:46 2023 +0000
committerCQ Bot Account <pigweed-scoped@luci-project-accounts.iam.gserviceaccount.com>Wed Aug 09 12:27:46 2023 +0000
treeee24695962a7de4273f0893018101d784cf46c35
parent4fa00cc9586b968195ce3c814588900d8ec58dc9 [diff]
Introduce the profile name in certificates

Allow the name of the profile to be included in the DICE certificate to
indicate the specification that was followed to create it and,
therefore, how a verifier should interpret the rest of the certificate.

Bug: 293659743
Change-Id: I1af7ec24b0df4d7a7ac375ddda335021ac943e1c
Reviewed-on: https://pigweed-review.googlesource.com/c/open-dice/+/163350
Reviewed-by: Max Bires <jbires@google.com>
Commit-Queue: Andrew Scull <ascull@google.com>
Reviewed-by: Darren Krahn <dkrahn@google.com>

diff --git a/docs/specification.md b/docs/specification.md
index 60206b2..e10e739 100644
--- a/docs/specification.md
+++ b/docs/specification.md

@@ -1,6 +1,6 @@
 # Open Profile for DICE
 
-v2.4
+v2.5
 
 [TOC]
 
@@ -692,6 +692,7 @@
   authorityHash           [4] EXPLICIT OCTET STRING OPTIONAL,
   authorityDescriptor     [5] EXPLICIT OCTET STRING OPTIONAL,
   mode                    [6] EXPLICIT Mode OPTIONAL,
+  profileName             [7] EXPLICIT UTF8String OPTIONAL,
 }
 ```
 
@@ -721,6 +722,8 @@
     here must have been used to compute authorityHash; i.e. a change in this
     value implies a change in authorityHash.
 *   **mode** - Required. This is the mode input value.
+*   **profileName** - Optional. This is the name of the DICE profile that
+    defines the contents of this certificate.
 
 ### CBOR UDS Certificates
 
@@ -772,17 +775,18 @@
 private fields in the map are labeled using negative integers starting at
 -4670545.
 
-Field                   | CBOR Label
------------------------ | ----------
-codeHash                | -4670545
-codeDescriptor          | -4670546
-configurationHash       | -4670547
-configurationDescriptor | -4670548
-authorityHash           | -4670549
-authorityDescriptor     | -4670550
-mode                    | -4670551
-subjectPublicKey        | -4670552
-keyUsage                | -4670553
+Field                   | CBOR Label | Major Type
+----------------------- | ---------- | ----------
+codeHash                | -4670545   | 2 (bstr)
+codeDescriptor          | -4670546   | 2 (bstr)
+configurationHash       | -4670547   | 2 (bstr)
+configurationDescriptor | -4670548   | 2 (bstr)
+authorityHash           | -4670549   | 2 (bstr)
+authorityDescriptor     | -4670550   | 2 (bstr)
+mode                    | -4670551   | 2 (bstr)
+subjectPublicKey        | -4670552   | 2 (bstr)
+keyUsage                | -4670553   | 2 (bstr)
+profileName             | -4670554   | 3 (tstr)
 
 The *subjectPublicKey* field contains the public key associated with the subject
 in the form of a COSE\_Key structure encoded to a CBOR byte string.
@@ -793,10 +797,10 @@
 For CDI certificates this should have only the keyCertSign bit set.
 
 All other fields have identical semantics to their counterparts in the
-[X.509 custom extension](#custom-extension-format). The encoding for each is a
-CBOR byte string including *mode* which is a CBOR byte string holding a single
-byte (the advantage to using a byte string here is a consistent encoding size
-regardless of the value of mode).
+[X.509 custom extension](#custom-extension-format). The *mode* field is encoded
+as a byte string holding a single byte. The advantage of using a byte string as
+opposed to an integer type is a consistent encoding size for all possible
+values.
 
 # Appendix A: Implementing on Existing Hardware