<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.4.9) -->
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-usama-seat-intra-vs-post-04" category="info" consensus="true" submissionType="IETF" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="Intra-vs-post">Pre-, Intra- and Post-handshake Attestation</title>
    <seriesInfo name="Internet-Draft" value="draft-usama-seat-intra-vs-post-04"/>
    <author fullname="Muhammad Usama Sardar">
      <organization>TU Dresden</organization>
      <address>
        <email>muhammad_usama.sardar@tu-dresden.de</email>
      </address>
    </author>
    <date year="2026" month="July" day="06"/>
    <area>Security</area>
    <workgroup>Secure Evidence and Attestation Transport</workgroup>
    <keyword>remote attestation</keyword>
    <keyword>TLS 1.3</keyword>
    <keyword>attested TLS</keyword>
    <abstract>
      <?line 177?>

<t>This document presents a taxonomy of extending TLS protocol with remote attestation,
referred to as attested TLS. It also presents high-level analysis of benefits and limitations of each
category, namely pre-handshake attestation, intra-handshake attestation and post-handshake attestation.
It also captures the opinions of the WG participants in order to build consensus towards solutions.
It also discussed tradeoffs and scalability.</t>
    </abstract>
    <note removeInRFC="true">
      <name>About This Document</name>
      <t>
        The latest revision of this draft can be found at <eref target="https://muhammad-usama-sardar.github.io/seat-intra-vs-post/draft-usama-seat-intra-vs-post.html"/>.
        Status information for this document may be found at <eref target="https://datatracker.ietf.org/doc/draft-usama-seat-intra-vs-post/"/>.
      </t>
      <t>
        Discussion of this document takes place on the
        Secure Evidence and Attestation Transport Working Group mailing list (<eref target="mailto:seat@ietf.org"/>),
        which is archived at <eref target="https://mailarchive.ietf.org/arch/browse/seat"/>.
        Subscribe at <eref target="https://www.ietf.org/mailman/listinfo/seat/"/>.
      </t>
      <t>Source for this draft and an issue tracker can be found at
        <eref target="https://github.com/muhammad-usama-sardar/seat-intra-vs-post"/>.</t>
    </note>
  </front>
  <middle>
    <?line 186?>

<section anchor="introduction">
      <name>Introduction</name>
      <!-- Formatting https://raw.githubusercontent.com/cabo/kramdown-rfc/master/examples/draft-rfcxml-general-template-standard-00.xml-edited.md
and https://github.com/cabo/kramdown-rfc
https://authors.ietf.org/en/templates-and-schemas -->
<t>Based on our extensive analysis of attested TLS <xref target="Tech-Concepts"/>,
we classify attested TLS into three main categories:</t>
      <ul spacing="normal">
        <li>
          <t>pre-handshake attestation,</t>
        </li>
        <li>
          <t>intra-handshake attestation, and</t>
        </li>
        <li>
          <t>post-handshake attestation.</t>
        </li>
      </ul>
      <t>In pre-handshake attestation, the signing of Claims <xref target="Tech-Concepts"/> precedes the
TLS handshake, while post-handshake attestation applies the reverse.
Intra-handshake attestation requires the signing of Claims to
be done within the TLS handshake protocol.</t>
      <section anchor="scope">
        <name>Scope</name>
        <t>In this version, we analyze the three categories (without combinations) with a focus on the last two, i.e., intra-handshake attestation and post-handshake attestation.</t>
        <t>The current scope of this draft is existing specifications and real-world implementations pointed in the
given references. Any theoretical solutions are currently out of scope until some specification or
implementation emerges.</t>
        <t>For simplicity, we consider simple Attester with only one Attesting Environment and only one Target
Environment <xref target="RFC9334"/>. That is, complicated scenarios such as Composite Device
<xref target="RFC9334"/> etc. are out of scope in this version.</t>
        <t>From RATS perspective, we consider Background Check Model <xref target="RFC9334"/>. Future versions will add
Passport Model <xref target="RFC9334"/>.</t>
        <t>From TLS perspective, the scope is limited to TLS 1.3 as per <xref target="SEAT-Charter"/>.
That is, older versions of TLS are explicitly out of scope.</t>
      </section>
      <section anchor="note">
        <name>Note</name>
        <t>Regarding remote attestation, we note that:</t>
        <blockquote>
          <t>Remote attestation provides guarantees about the state of
Attester <strong>only</strong> at the time at which signing of Claims
is done to generate Evidence <xref target="Tech-Concepts"/>.</t>
        </blockquote>
      </section>
    </section>
    <section anchor="conventions-and-definitions">
      <name>Conventions and Definitions</name>
      <t>The key words "<bcp14>MUST</bcp14>", "<bcp14>MUST NOT</bcp14>", "<bcp14>REQUIRED</bcp14>", "<bcp14>SHALL</bcp14>", "<bcp14>SHALL
NOT</bcp14>", "<bcp14>SHOULD</bcp14>", "<bcp14>SHOULD NOT</bcp14>", "<bcp14>RECOMMENDED</bcp14>", "<bcp14>NOT RECOMMENDED</bcp14>",
"<bcp14>MAY</bcp14>", and "<bcp14>OPTIONAL</bcp14>" in this document are to be interpreted as
described in BCP 14 <xref target="RFC2119"/> <xref target="RFC8174"/> when, and only when, they
appear in all capitals, as shown here.</t>
      <?line -18?>

<t>We use terminology from <xref target="RFC9334"/> and <xref target="I-D.ietf-tls-rfc8446bis"/> slightly loosely (intentionally)
for readability. Future versions will tighten it.</t>
      <t>In addition, we define three temporal terms:</t>
      <ul spacing="normal">
        <li>
          <t><strong>Evidence Generation Time</strong>: Time when Evidence is generated (more specifically when Claims are signed)</t>
        </li>
        <li>
          <t><strong>Connection Establishment Time</strong>: Time at which TLS handshake is performed</t>
        </li>
        <li>
          <t><strong>Lifetime of Connection</strong>: Time period starting from Connection Establishment Time until the connection exists.</t>
        </li>
      </ul>
    </section>
    <section anchor="pre-handshake-attestation">
      <name>Pre-handshake Attestation</name>
      <section anchor="benefits">
        <name>Benefits</name>
        <t>In certain deployments, there may be benefits for pre-handshake attestation.
As Yaroslav Rosomakho (as individual contributor) observes <xref target="Yaroslav-22Jan"/>:</t>
        <blockquote>
          <t>no modification of TLS, no changes to application protocols, and
potential caching/scalability.</t>
        </blockquote>
        <t>He (as individual contributor) further explains <xref target="Yaroslav-22Jan"/>:</t>
        <blockquote>
          <t>Many signed artifacts carry issuance time and validity constraints
(e.g., JWT iat/exp <xref target="RFC7519"/>, HTTP Message Signatures created/expires <xref target="RFC9421"/>,
SAML conditions <xref target="SAML"/>). A timestamp alone is not the same as freshness,
but a short validity window plus a trustworthy time source can be an
acceptable assurance mechanism in some deployments. Likewise, some
schemes can provide stronger freshness via verifier-chosen challenges
or monotonic counters.</t>
        </blockquote>
      </section>
      <section anchor="limitations">
        <name>Limitations</name>
        <t>There are also security concerns on pre-handshake attestation for
use cases such as confidential computing <xref target="sec-sec-cons"/>.
Since the Evidence Generation Time could be at any
arbitrary point of time in the past compared to the Connection
Establishment Time in the case of untrusted clocks as in confidential computing,
pre-handshake attestation provides no guarantees about the state of Attester
at the Connection Establishment Time and during the Lifetime of Connection.</t>
      </section>
    </section>
    <section anchor="intra-handshake-attestation">
      <name>Intra-handshake Attestation</name>
      <t>In general, intra-handshake attestation improves the situation where Evidence Generation Time
is the same as Connection Establishment Time, assuming freshness mechanisms,
such as unpredictable, single-use challenge and clear replay handling, are in place.</t>
      <t>In following subsections, we present the benefits and limitations of intra-handshake attestation.</t>
      <!--  (If RA appraisal succeeds, client and server agree on
current transcript hash. We do not have all guarantees about
authentication and security of the connection at the point
at which the Evidence is conveyed.)  -->

<section anchor="benefits-1">
        <name>Benefits</name>
        <section anchor="sec-intra-app-changes">
          <name>No Additional Application-Level Protocol</name>
          <t>Intra-handshake attestation does not require a new application-layer protocol or message exchange.
Evidence and related metadata are conveyed within handshake via TLS extensions.
TLS is responsible for conveyance of the Evidence; it does not perform appraisal of Evidence or authorization.
Appraisal of Evidence, policy evaluation, and trust decisions are performed by application-level components that
consume the attestation properties exposed by the TLS stack. As a result, while no new application-layer protocol
is required, applications do incorporate additional trust logic to interpret attested connection properties
and make security-relevant decisions.</t>
          <t>Related to this, Markus Rudy shares his practical experience <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>Conveying the evidence is not enough, it needs to be verified as well
in order to end up with a trustworthy channel. We decided to integrate
verification into the handshake, too, but that has massive drawbacks:
Verification can take orders of magnitude longer than normal TLS handshakes,
and usually involves remote calls, affecting all sorts of timeouts.
However, doing the verification at the application level would require
forwarding information from the handshake (e.g. nonce), at which point
the application needs to be fully aware of the handshake protocol in
order to verify it, breaking the intended layering.</t>
          </blockquote>
        </section>
        <section anchor="avoid-extra-round-trips-for-one-time-attestation">
          <name>Avoid Extra Round Trips for One-time Attestation</name>
          <t>It is claimed that intra-handshake attestation avoids extra round trips
for use cases which require remote attestation only once
during Connection Establishment Time.</t>
          <t>However, this may only be valid in cases when the Connection Establishment
Time without remote attestation is significantly higher than the time
for generation and appraisal of Evidence, such as cross-continent.
For instance, Markus Rudy shares his practical experience <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>I don't think saving extra roundtrips is an appropriate design
goal when attestation is required. Generating evidence alone takes
much longer than normal network roundtrip times, not even speaking
of verification.</t>
          </blockquote>
          <t>On request, he kindly conducted an experiment and shared his
preliminary results of experiment based on
attested TLS implementation in Edgeless Systems Contrast where
Coordinator is one of the components <xref target="Markus-19Jan"/>:</t>
          <artwork><![CDATA[
  I did a quick experiment in our testing lab, running on the
same machine as the Coordinator:

  * TCP connections are local, and thus the TCP connection establishment
unsurprisingly takes only 0.5ms. But even to neighbouring nodes
in the same cluster, the TCP handshake takes below 2ms.


 * I measured generation of evidence including the TLS session
establishment, but with these numbers I don't think it makes a lot
of difference:

  >  * SNP: Median time of 140ms from TCP SYN to TLS channel established
and evidence sent to the client.

  >  * TDX: Median time of 1020ms, same procedure. I don't know why
it is that slow, it should only be making machine-local remote
calls, if any.

  * So far, I only managed to measure TDX verification, which adds
another 340ms. This is bound by remote HTTP requests, afaiu, and could
be optimized with locally cached collateral, CRL, etc. I'd expect SNP
to exhibit similar timing, because verification does similar remote calls.

  AMD is probably quicker because they're trading off with the appraisal time: the AMD report is not self-contained and can be generated with only the VM and the SP, but for verification you need to fetch the VCEK from somewhere, whereas the Intel quote includes the PCK cert and possibly other things that need to be fetched from a host service, if not the internet.
]]></artwork>
          <t>We summarize that in the following table:</t>
          <table>
            <name>Preliminary analysis by Markus Rudy (Median time in ms)</name>
            <thead>
              <tr>
                <th align="left">Property</th>
                <th align="left">Intel TDX</th>
                <th align="left">AMD SEV-SNP</th>
              </tr>
            </thead>
            <tbody>
              <tr>
                <td align="left">Generation of Evidence + TLS</td>
                <td align="left">1020</td>
                <td align="left">140</td>
              </tr>
              <tr>
                <td align="left">Appraisal of Evidence</td>
                <td align="left">340</td>
                <td align="left">not available (expected ca. 340)</td>
              </tr>
            </tbody>
          </table>
          <t>However, Yaroslav Rosomakho (as individual contributor) raises a concern <xref target="Yaroslav-22Jan"/>:</t>
          <blockquote>
            <t>The argument that avoiding an extra RTT is not a relevant goal may depend
heavily on deployment topology (LAN vs same-region vs cross-continent).</t>
          </blockquote>
          <section anchor="request-for-contributions">
            <name>Request for Contributions</name>
            <t>We invite the WG to submit their analysis results for cases such as:</t>
            <ul spacing="normal">
              <li>
                <t>within continent</t>
              </li>
              <li>
                <t>across continent</t>
              </li>
            </ul>
            <!--  Our experiments also support his practical experience. In our experience,
the generation of Evidence for Infineon Optiga SLB 9670,
a discrete hardware TPM (dTPM) implementing TPM 2.0, takes around 210 ms.
In our experience, the generation of Evidence for AMD SEV-SNP takes around
6 ms. -->

</section>
        </section>
      </section>
      <section anchor="limitations-1">
        <name>Limitations</name>
        <section anchor="limited-claims-availability">
          <name>Limited Claims Availability</name>
          <t>Since limited Claims are available at the Evidence Generation Time, it does not provide
complete security posture of the Attester, such as runtime integrity of Attester.
Examples include dynamic Claims, such as weights of trained model and contextual data
in the case of AI agents/agentic AI <xref target="I-D.jiang-seat-dynamic-attestation"/>, <xref target="Edward-20Jan"/>, <xref target="I-D.aylward-aiga-1"/>. These dynamic Claims are neither available for pre-handshake
attestation nor for intra-handshake attestation.</t>
        </section>
        <section anchor="invasive-changes-in-tls-and-security-concerns">
          <name>Invasive Changes in TLS and Security Concerns</name>
          <t>To be made secure for confidential computing, it requires invasive changes in TLS
protocol, as deep as key
schedule and adding or modifying existing handshake messages <xref target="ID-Crisis"/>, which
are explicitly out of scope of <xref target="SEAT-Charter"/>:</t>
          <blockquote>
            <t>The attested (D)TLS protocol extension will not modify the (D)TLS
protocol itself. It may define (D)TLS extensions to support its goals
but will not modify, add, or remove any existing protocol messages
or modify the key schedule.</t>
          </blockquote>
          <t>A detailed analysis of different binding mechanisms for intra-handshake attestation
is available at <xref target="Intra-handshake.fail"/> and the corresponding formal analysis is available
at <xref target="Intra-handshake.fail-repo"/>.</t>
        </section>
        <section anchor="state-after-connection-establishment-not-covered">
          <name>State After Connection Establishment Not Covered</name>
          <t>It provides no guarantees about the state of Attester during the Lifetime
of Connection. This is a security concern in long-lived connections where
state of Attester (at workload or platform level) may change after
Connection Establishment Time. Examples include AI agents/agentic AI
<xref target="I-D.jiang-seat-dynamic-attestation"/>, <xref target="Edward-20Jan"/>, <xref target="I-D.aylward-aiga-1"/>.
Note that session resumption is a new connection <xref target="I-D.ietf-tls-rfc8446bis"/>.</t>
        </section>
        <section anchor="high-handshake-latency">
          <name>High Handshake Latency</name>
          <t>Because of signature in Evidence generation and verification of signatures during appraisal,
this leads to high handshake latency. This may not be desirable for some applications.</t>
          <t>Markus Rudy shares his practical experience <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>Conveying the evidence is not enough, it needs to be verified as well
in order to end up with a trustworthy channel. We decided to integrate
verification into the handshake, too, but that has massive drawbacks:
Verification can take orders of magnitude longer than normal TLS handshakes,
and usually involves remote calls, affecting all sorts of timeouts.
However, doing the verification at the application level would require
forwarding information from the handshake (e.g. nonce), at which point
the application needs to be fully aware of the handshake protocol in
order to verify it, breaking the intended layering.</t>
          </blockquote>
          <t>As Yaroslav Rosomakho (as individual contributor) observes <xref target="Yaroslav-22Jan"/>,
note that Post-Quantum (PQ) transition may change the baseline. We argue that
while PQ is unavoidable within TLS handshake, remote attestation is avoidable
(see <xref target="sec-post-HS-need"/>).</t>
        </section>
        <section anchor="maturity-of-tees">
          <name>Maturity of TEEs</name>
          <t>With several attacks (see <xref target="sec-sec-cons"/>), attestation in
TEEs may not yet be mature enough to be integrated <em>within</em> TLS handshake.</t>
          <t>Ayoub Benaissa remarks <xref target="Ayoub-16Jan"/>:</t>
          <blockquote>
            <t>TLS might not be well suited to include this in its protocol. Not sure
TEEs are even as mature for the people to see that it should be included
right now. The plan to make it a post-handshake protocol makes more sense
right now. A future where it's incorporated into TLS might exist, but I
don't think there is enough motivation right now.</t>
          </blockquote>
        </section>
        <section anchor="amount-of-effort">
          <name>Amount of Effort</name>
          <t>Markus Rudy shares his practical experience <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>"Keeping attestation out of the application logic" is not as straightforward
as it sounds. In the background-check model, the attester needs to collect
evidence in response to the relying party's challenge (nonce). We were
lucky that the Golang TLS stack can be supplied with arbitrary closures
that are called during the handshake, but in my experience this is a rare
design choice and may also be difficult to implement in other languages.</t>
          </blockquote>
          <t>Ayoub Benaissa remarks <xref target="Ayoub-16Jan"/>:</t>
          <blockquote>
            <t>An intra-handshake requires much more work compared to a post-handshake.
People need to agree on how to add this as optional in TLS (we can't force
everyone to use it of course), the standard needs to be implemented by
major libraries, and then it will be available in major client/server
applications. If any of the prior steps doesn't go through, it means you
have to patch your components to make it work, which is not convenient /
less secure.</t>
          </blockquote>
        </section>
        <section anchor="difficulty-of-debugging-attestation">
          <name>Difficulty of Debugging Attestation</name>
          <t>Markus Rudy shares his practical experience <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>There's only so much information in a TLS alert message, and it's
definitely not enough to understand remote verification failures.
While I understand this to be a deliberate design choice by TLS,
I found this to be a hindrance for operating and debugging a large
number of services in practice.</t>
          </blockquote>
        </section>
      </section>
    </section>
    <section anchor="sec-post-HS">
      <name>Post-handshake Attestation</name>
      <t>Post-handshake attestation improves the situation further by signing the Claims
during Lifetime of Connection, i.e., at the time when it is actually required.
Hence, together with use cases requiring one-time attestation, it covers the use cases of
long-lived connections requiring re-attestation.
For post-handshake attestation, first round of remote attestation <bcp14>MUST</bcp14> be done
immediately after Connection Establishment Time, and Relying Party (RP)
<xref target="RFC9334"/> <bcp14>MUST</bcp14> not send any secure data until Evidence is successfully appraised.</t>
      <t>As Yaroslav Rosomakho (as individual contributor) proposes <xref target="Yaroslav-22Jan"/>:</t>
      <blockquote>
        <t>an explicit shim or gating layer that performs attestation after
the TLS handshake completes but before any application data is exchanged.
This is operationally distinct from both intra-handshake attestation and
fully application-integrated post-handshake attestation. Such an approach
could preserve standard TLS handshake behaviour and latency characteristics,
avoid invasive TLS changes, and still prevent application data from
flowing until attestation succeeds. It may also mitigate some of the
application-layer complexity by localizing attestation handling to a
well-defined enforcement point (e.g., a sidecar or connection gate)
rather than requiring per-protocol integration.</t>
      </blockquote>
      <t>So a promising idea is to have an attested TLS library as a layer in between
TLS implementation and application layer.</t>
      <artwork><![CDATA[
TLS (any implmentation) -> Attested TLS library -> Application Layer
]]></artwork>
      <t>In following subsections, we present the benefits and limitations of post-handshake attestation.</t>
      <section anchor="benefits-2">
        <name>Benefits</name>
        <t>In general, it allows re-authentication and re-attestation without tearing down the connection.</t>
        <section anchor="full-claims-availability">
          <name>Full Claims Availability</name>
          <t>Since all Claims are available at the time of post-handshake attestation (during
Lifetime of Connection), it provides complete security posture of the Attester.</t>
        </section>
        <section anchor="no-change-in-tls">
          <name>No Change in TLS</name>
          <t>It does not require any change in TLS protocol.</t>
        </section>
        <section anchor="state-after-connection-establishment-is-covered">
          <name>State After Connection Establishment Is Covered</name>
          <t>It provides guarantees about the state of Attester during the Lifetime of Connection.
This is particularly helpful in long-lived connections where
state of Attester may change after Connection Establishment Time.</t>
        </section>
        <section anchor="standard-handshake-latency">
          <name>Standard Handshake Latency</name>
          <t>Since the signature in Evidence generation and verification of signatures during appraisal
happen after Connection Establishment Time, there is no additional latency.</t>
          <t>Yaroslav Rosomakho (as individual contributor) shares his concern <xref target="Yaroslav-22Jan"/>:</t>
          <blockquote>
            <t>I don't think that moving latency related to attestation into after handshake
is always a good thing. In some real-time and streaming applications, a spike
after the session is established may be much more disruptive than paying a cost
during the handshake.</t>
          </blockquote>
          <t>We believe this concern can be resolved by the layering described in <xref target="sec-post-HS"/>.</t>
        </section>
        <section anchor="avoid-extra-round-trips">
          <name>Avoid Extra Round Trips</name>
          <t>Except for first round of remote attestation, post-handshake attestation outperforms the
intra-handshake attestation (one round trip), which requires re-establishing the connection
(1.5 round trip).</t>
        </section>
        <section anchor="ease-of-implementation">
          <name>Ease of Implementation</name>
          <t>Ayoub Benaissa remarks <xref target="Ayoub-16Jan"/>:</t>
          <blockquote>
            <t>We already implemented a post-handshake protocol and have a full demo
working. We were able to do this in a matter of weeks. That's because you
don't need to modify any TLS implementation, but only add a few
verification steps after the usual TLS handshake. This is almost the same
on the client and server side.</t>
          </blockquote>
          <t>Production-grade deployments, including Google STET <xref target="Keith-STET-CCC"/> and
SCONE <xref target="SoK-Attestation"/>, exist.</t>
        </section>
        <section anchor="ease-of-verification-and-audit">
          <name>Ease of Verification and Audit</name>
          <t>Post-handshake attestation has relatively easier formal analysis and
verification. The same may apply to audit.</t>
          <t>Markus Rudy remarks <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>(Formal) verification of a protocol and audit of its implementations
might be much easier if it ran on top of TLS. Existing proofs and
certifications would not need to be reevaluated.</t>
          </blockquote>
        </section>
        <section anchor="general-solution-for-other-protocols">
          <name>General Solution for Other Protocols</name>
          <t>In post-handshake attestation, design, verification and audit effort
will be one-time and any protocol
(e.g., Noise) which has support for exporters can then use it without
changing each and every protocol.</t>
          <t>Markus Rudy shares this requirement <xref target="Markus-16Jan"/>:</t>
          <blockquote>
            <t>It should be possible to port the general shape of a post-handshake
attested TLS protocol to other protocols that provide secure channels
and session binding (Noise comes to mind).</t>
          </blockquote>
        </section>
      </section>
      <section anchor="limitations-2">
        <name>Limitations</name>
        <section anchor="sec-post-app-changes">
          <name>Impact on Application Layer</name>
          <t>Post-handshake attestation may require changes at the application layer. However, changes at
the application layer do not necessarily imply modifications to application business logic
or data exchange protocols. Attestation-related functionality may be realized via application-level
signalling (Exported Authenticators <xref target="RFC9261"/>) and trust logic, which may be implemented in
intermediary components (e.g., proxies, sidecars, or middleware) on both client and server sides.
These components are responsible for exchanging and appraising attestation evidence and enforcing
trust or authorization decisions before application data is processed. This is analogous to common
production deployments in which TLS termination and certificate handling are performed by a
fronting proxy, while the application itself remains unchanged and resides behind it.</t>
        </section>
      </section>
    </section>
    <section anchor="sec-post-HS-need">
      <name>Need for Post-handshake Attestation</name>
      <t>We argue that post-handshake attestation is unavoidable (e.g., re-attestation to
track changes after Connection Establishment Time for long-lived connections).
Use cases where pre-handshake attestation and intra-handshake attestation are
insufficient include AI agents/agentic AI <xref target="I-D.jiang-seat-dynamic-attestation"/>.</t>
      <t>Intra-handshake attestation only adds unnecessary complexity which is avoidable.
All identified use cases <xref target="I-D.mihalcea-seat-use-cases"/> where intra-handshake
attestation seems suitable can be covered by post-handshake
attestation (by doing attestation round immediately after Connection Establishment Time)
but not the other way around.</t>
      <section anchor="iot-constraints">
        <name>IoT Constraints</name>
        <t><xref target="SEAT-Charter"/> includes TLS client as RATS Attester. Client could be a low-power IoT device.
There are use cases where periodic
or on-demand attestation is required, such as periodic
attestation for long-lived, low-power IoT devices or in IoT
swarms that need to synchronize software versions before
coordinated operations or after configuration updates.</t>
        <t>Moreover, we note some observations from LAKE WG:</t>
        <t>Michael Richardson shares his insight <xref target="MCR-LAKE"/>:</t>
        <blockquote>
          <t>I have a half-written document on putting EAT into the full BRSKI protocol.
A reason that I stopped is that I realized that doing security posture
evaluation at onboarding time (only) wasn't enough.  It has to be done
regularly.  So having a protocol used at onboarding time and another one
during normal operation meant that the onboarding one would have bugs that
never get fixed, since the code only runs once.</t>
        </blockquote>
        <t>He further shares <xref target="MCR-LAKE2"/>:</t>
        <blockquote>
          <t>My contention, which I think the group agreed with, is that one probably
wants to do continuous assurance, that is, to repeat the remote attestation.</t>
        </blockquote>
        <blockquote>
          <t>Do you want to have two protocols and two code paths? (redundant code in a
constrained device?).  I suggested that <em>maybe</em> the remote attestation should
use it's own /.well-known Path, and that it would just occur after
onboarding, and regularly onwards.  Maybe it's weird to onboard a device only
to kick it out again immediately because it failed remote attestation, but
given continuous assurance, this could happen at any time.</t>
        </blockquote>
        <t>Göran Selander observes <xref target="Goran-LAKE"/>:</t>
        <blockquote>
          <t>Indeed, if the authentication procedure is repeated at a later stage, for
whatever reason, e.g. key rotation, it should be possible to repeat the attestation procedure.</t>
        </blockquote>
      </section>
    </section>
    <section anchor="existing-implementations">
      <name>Existing Implementations</name>
      <section anchor="intra-handshake-attestation-1">
        <name>Intra-handshake Attestation</name>
        <t>Prominent implementations of intra-handshake attestation are all vulnerable to
relay attacks <xref target="Intra-handshake.fail"/>. Some of them are abusing the extensions of TLS, such as
SNI and ALPN, for conveyance of attestation nonce <xref target="Intra-handshake.fail"/>.</t>
      </section>
      <section anchor="post-handshake-attestation">
        <name>Post-handshake Attestation</name>
        <t>Google <xref target="Keith-STET-CCC"/>, Microsoft <xref target="Stunes-vTPM-CCC"/>, and SCONE <xref target="SoK-Attestation"/>
are all using post-handshake attestation.</t>
      </section>
    </section>
    <section anchor="sec-sec-cons">
      <name>Security Considerations</name>
      <t>Most of the document is about security considerations. Also,
Security Considerations of <xref target="RFC9334"/> and <xref target="I-D.ietf-tls-rfc8446bis"/> apply. In addition:</t>
      <ul spacing="normal">
        <li>
          <t>Pre-handshake attestation is vulnerable to <strong>replay</strong> <xref target="RA-TLS"/> and <strong>diversion</strong>
            <xref target="ID-Crisis"/> attacks. See the corresponding formal analysis at <xref target="ID-Crisis-repo"/>.
Moreover, pre-handshake attestation leads to a single point of
failure.</t>
        </li>
        <li>
          <t>Without significant changes to the TLS protocol: Intra-handshake attestation is
vulnerable to <strong>diversion</strong> attacks <xref target="ID-Crisis"/>. We reported these attacks to TLS WG in
February 2025 <xref target="Usama-TLS-26Feb25"/>. A formal proof is available
<xref target="ID-Crisis-Repo"/> for further research and
development. Since reporting to TLS WG, the assumptions required for these attacks have been practically
demonstrated in <eref target="https://tee.fail/">TEE.fail</eref>, <eref target="https://wiretap.fail/">Wiretap.fail</eref>, and <eref target="https://badram.eu/">BadRAM</eref>.
More recently, we found that intra-handshake attestation also does not bind the Evidence
to the application traffic secrets, resulting in <strong>relay</strong> attacks <xref target="Intra-handshake.fail"/>.
A detailed formal analysis of binding mechanisms is available at <xref target="Intra-handshake.fail-repo"/>.
Analyzed implementations include Meta's AI, Cocos AI, Edgeless Systems Contrast, and CCC Attestation SIG's adopted project attested TLS proof of concept.</t>
        </li>
        <li>
          <t>No attacks on post-handshake attestation are currently known. Post-handshake attestation
avoids replay attacks by using fresh attestation nonce. Moreover, it avoids diversion and relay attacks
by binding the Evidence to the underlying TLS connection, such as using Exported Keying Material (EKM)
<xref target="I-D.ietf-tls-rfc8446bis"/>, as proposed in Section 9.2 of <xref target="ID-Crisis"/>.
<xref target="RFC9261"/> and <xref target="RFC9266"/> provide mechanisms for such bindings. Efforts for a formal proof
of security of post-handshake attestation are ongoing.</t>
        </li>
      </ul>
      <section anchor="exploit-of-sensitive-hardware-level-information">
        <name>Exploit of Sensitive Hardware-level Information</name>
        <t>From the view of the TLS server, post-handshake attestation offers better security
than intra-handshake attestation when the server acts as the Attester. In intra-handshake
attestation, due to the inherent asymmetry of the TLS protocol, a malicious TLS client
could potentially retrieve sensitive hardware-level and firmware-level information from the server's Evidence <strong>without
the client's trustworthiness (i.e., authentication) first being established by the server</strong>.
This information (e.g., vulnerable firmware version) can be exploited for attacks on the server.
In post-handshake attestation, the server can ask for client authentication during the handshake and only
send the Evidence after successful client authentication.</t>
        <t>We believe this regression of intra-handshake attestation violates <xref target="SEAT-Charter"/>:</t>
        <artwork><![CDATA[
The effort will not create solutions that decrease the privacy
or security properties of generic (D)TLS connections.
]]></artwork>
        <t>Additionally, we are not convinced that these non-trivial changes in intra-handshake attestation will not break the well-established computational security properties of TLS in CryptoVerif (cf. <eref target="https://github.com/Inria-Prosecco/reftls/blob/master/paper/RR-9040.pdf">this</eref>), as mentioned in Appendix F.1.6. of <xref target="I-D.ietf-tls-rfc8446bis"/>.</t>
      </section>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>This document has no IANA actions.</t>
    </section>
  </middle>
  <back>
    <references anchor="sec-combined-references">
      <name>References</name>
      <references anchor="sec-normative-references">
        <name>Normative References</name>
        <reference anchor="RFC2119">
          <front>
            <title>Key words for use in RFCs to Indicate Requirement Levels</title>
            <author fullname="S. Bradner" initials="S." surname="Bradner"/>
            <date month="March" year="1997"/>
            <abstract>
              <t>In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="2119"/>
          <seriesInfo name="DOI" value="10.17487/RFC2119"/>
        </reference>
        <reference anchor="RFC8174">
          <front>
            <title>Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words</title>
            <author fullname="B. Leiba" initials="B." surname="Leiba"/>
            <date month="May" year="2017"/>
            <abstract>
              <t>RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="8174"/>
          <seriesInfo name="DOI" value="10.17487/RFC8174"/>
        </reference>
      </references>
      <references anchor="sec-informative-references">
        <name>Informative References</name>
        <reference anchor="RFC9334">
          <front>
            <title>Remote ATtestation procedureS (RATS) Architecture</title>
            <author fullname="H. Birkholz" initials="H." surname="Birkholz"/>
            <author fullname="D. Thaler" initials="D." surname="Thaler"/>
            <author fullname="M. Richardson" initials="M." surname="Richardson"/>
            <author fullname="N. Smith" initials="N." surname="Smith"/>
            <author fullname="W. Pan" initials="W." surname="Pan"/>
            <date month="January" year="2023"/>
            <abstract>
              <t>In network protocol exchanges, it is often useful for one end of a communication to know whether the other end is in an intended operating state. This document provides an architectural overview of the entities involved that make such tests possible through the process of generating, conveying, and evaluating evidentiary Claims. It provides a model that is neutral toward processor architectures, the content of Claims, and protocols.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9334"/>
          <seriesInfo name="DOI" value="10.17487/RFC9334"/>
        </reference>
        <reference anchor="RFC9261">
          <front>
            <title>Exported Authenticators in TLS</title>
            <author fullname="N. Sullivan" initials="N." surname="Sullivan"/>
            <date month="July" year="2022"/>
            <abstract>
              <t>This document describes a mechanism that builds on Transport Layer Security (TLS) or Datagram Transport Layer Security (DTLS) and enables peers to provide proof of ownership of an identity, such as an X.509 certificate. This proof can be exported by one peer, transmitted out of band to the other peer, and verified by the receiving peer.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9261"/>
          <seriesInfo name="DOI" value="10.17487/RFC9261"/>
        </reference>
        <reference anchor="RFC9266">
          <front>
            <title>Channel Bindings for TLS 1.3</title>
            <author fullname="S. Whited" initials="S." surname="Whited"/>
            <date month="July" year="2022"/>
            <abstract>
              <t>This document defines a channel binding type, tls-exporter, that is compatible with TLS 1.3 in accordance with RFC 5056, "On the Use of Channel Bindings to Secure Channels". Furthermore, it updates the default channel binding to the new binding for versions of TLS greater than 1.2. This document updates RFCs 5801, 5802, 5929, and 7677.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9266"/>
          <seriesInfo name="DOI" value="10.17487/RFC9266"/>
        </reference>
        <reference anchor="Tech-Concepts" target="https://www.researchgate.net/publication/396199290_Perspicuity_of_Attestation_Mechanisms_in_Confidential_Computing_Technical_Concepts">
          <front>
            <title>Perspicuity of Attestation Mechanisms in Confidential Computing: Technical Concepts</title>
            <author initials="M. U." surname="Sardar">
              <organization/>
            </author>
            <date year="2025" month="October"/>
          </front>
        </reference>
        <reference anchor="I-D.ietf-tls-rfc8446bis">
          <front>
            <title>The Transport Layer Security (TLS) Protocol Version 1.3</title>
            <author fullname="Eric Rescorla" initials="E." surname="Rescorla">
              <organization>Independent</organization>
            </author>
            <date day="13" month="September" year="2025"/>
            <abstract>
              <t>   This document specifies version 1.3 of the Transport Layer Security
   (TLS) protocol.  TLS allows client/server applications to communicate
   over the Internet in a way that is designed to prevent eavesdropping,
   tampering, and message forgery.

   This document updates RFCs 5705, 6066, 7627, and 8422 and obsoletes
   RFCs 5077, 5246, 6961, 8422, and 8446.  This document also specifies
   new requirements for TLS 1.2 implementations.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-tls-rfc8446bis-14"/>
        </reference>
        <reference anchor="ID-Crisis">
          <front>
            <title>Identity Crisis in Confidential Computing: Formal Analysis of Attested TLS</title>
            <author fullname="Muhammad Usama Sardar" initials="M." surname="Sardar">
              <organization>TU Dresden, Dresden, Germany</organization>
            </author>
            <author fullname="Mariam Moustafa" initials="M." surname="Moustafa">
              <organization>Aalto University, Espoo, Finland</organization>
            </author>
            <author fullname="Tuomas Aura" initials="T." surname="Aura">
              <organization>Aalto University, Espoo, Finland</organization>
            </author>
            <date month="June" year="2026"/>
          </front>
          <seriesInfo name="Proceedings of the ACM Asia Conference on Computer and Communications Security" value="pp. 547-560"/>
          <seriesInfo name="DOI" value="10.1145/3779208.3785387"/>
          <refcontent>ACM</refcontent>
        </reference>
        <reference anchor="ID-Crisis-repo" target="https://github.com/CCC-Attestation/formal-spec-id-crisis">
          <front>
            <title>Identity Crisis in Confidential Computing: Formal Analysis of Attested TLS</title>
            <author initials="M. U." surname="Sardar">
              <organization/>
            </author>
            <author initials="M." surname="Moustafa">
              <organization/>
            </author>
            <author initials="T." surname="Aura">
              <organization/>
            </author>
            <date year="2025" month="November"/>
          </front>
        </reference>
        <reference anchor="Intra-handshake.fail" target="https://www.researchgate.net/publication/408219182_Intra-handshakefail_CVE-2026-33697_High-severity_CVE_in_Attested_TLS">
          <front>
            <title>Intra-handshake.fail (CVE-2026-33697): High-severity CVE in Attested TLS</title>
            <author initials="M. U." surname="Sardar">
              <organization/>
            </author>
            <author initials="V." surname="Dubeyko">
              <organization/>
            </author>
            <author initials="J.-M." surname="Jacquet">
              <organization/>
            </author>
            <date year="2026" month="June"/>
          </front>
        </reference>
        <reference anchor="Intra-handshake.fail-repo" target="https://github.com/CCC-Attestation/formal-spec-KBS">
          <front>
            <title>Intra-handshake.fail (CVE-2026-33697): High-severity CVE in Attested TLS</title>
            <author initials="M. U." surname="Sardar">
              <organization/>
            </author>
            <author initials="V." surname="Dubeyko">
              <organization/>
            </author>
            <author initials="J.-M." surname="Jacquet">
              <organization/>
            </author>
            <date year="2026" month="June"/>
          </front>
        </reference>
        <reference anchor="RA-TLS">
          <front>
            <title>Towards Validation of TLS 1.3 Formal Model and Vulnerabilities in Intel’s RA-TLS Protocol</title>
            <author fullname="Muhammad Usama Sardar" initials="M." surname="Sardar">
              <organization>Faculty of Computer Science, Technical University of Dresden, Dresden, Germany</organization>
            </author>
            <author fullname="Arto Niemi" initials="A." surname="Niemi">
              <organization>Huawei Technologies Oy, Helsinki, Finland</organization>
            </author>
            <author fullname="Hannes Tschofenig" initials="H." surname="Tschofenig">
              <organization>Department of Computer Science, University of Applied Sciences Bonn-Rhein-Sieg and Siemens, Sankt Augustin, Germany</organization>
            </author>
            <author fullname="Thomas Fossati" initials="T." surname="Fossati">
              <organization>Linaro, Lausanne, Switzerland</organization>
            </author>
            <date year="2024"/>
          </front>
          <seriesInfo name="IEEE Access" value="vol. 12, pp. 173670-173685"/>
          <seriesInfo name="DOI" value="10.1109/access.2024.3497184"/>
          <refcontent>Institute of Electrical and Electronics Engineers (IEEE)</refcontent>
        </reference>
        <reference anchor="I-D.jiang-seat-dynamic-attestation">
          <front>
            <title>Dynamic Attestation for AI Agent Communication</title>
            <author fullname="Yuning Jiang" initials="Y." surname="Jiang">
         </author>
            <author fullname="Wangdonghui" initials="" surname="Wangdonghui">
         </author>
            <date day="13" month="November" year="2025"/>
            <abstract>
              <t>   This document describes a use case for conveying remote attestation
   information in association with Transport Layer Security (TLS)
   sessions in the context of AI agent communication.  It focuses on
   long-lived secure channel sessions where an AI agent runtime posture,
   covering the platform Trusted Computing Base (TCB), agent manifest
   (models, tools and policies) and committed runtime context, can
   change frequently and unpredictably.  The document highlights
   requirements for dynamic attestation so that relying parties can base
   authorization decisions on the current runtime posture of the
   communicating agent.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-jiang-seat-dynamic-attestation-00"/>
        </reference>
        <reference anchor="SEAT-Charter" target="https://datatracker.ietf.org/wg/seat/about/">
          <front>
            <title>Secure Evidence and Attestation Transport (SEAT): Charter for Working Group</title>
            <author initials="" surname="IETF">
              <organization/>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="MCR-LAKE" target="https://mailarchive.ietf.org/arch/msg/lake/RseQknOug41sTzW7xBJ60oRdvq0/">
          <front>
            <title>Re: Comments for remote attestation over EDHOC</title>
            <author initials="" surname="Michael Richardson">
              <organization/>
            </author>
            <date year="2024" month="May"/>
          </front>
        </reference>
        <reference anchor="MCR-LAKE2" target="https://mailarchive.ietf.org/arch/msg/lake/o2oujiDacHm2m9a5y7W50oUsY7o/">
          <front>
            <title>Evaluation of attestation results by EDHOC clients</title>
            <author initials="" surname="Michael Richardson">
              <organization/>
            </author>
            <date year="2024" month="June"/>
          </front>
        </reference>
        <reference anchor="Goran-LAKE" target="https://mailarchive.ietf.org/arch/msg/lake/Bb3eTcQxDA-F1AYJ0hZZy3p9wpQ/">
          <front>
            <title>Re: Comments for remote attestation over EDHOC</title>
            <author initials="" surname="Göran Selander">
              <organization/>
            </author>
            <date year="2024" month="May"/>
          </front>
        </reference>
        <reference anchor="Keith-STET-CCC" target="https://github.com/CCC-Attestation/meetings/blob/main/materials/KeithMoyer_STET.pdf">
          <front>
            <title>Split-Trust Encryption Tool Attested Session Handling</title>
            <author initials="" surname="Keith Moyer">
              <organization/>
            </author>
            <date year="2022" month="March"/>
          </front>
        </reference>
        <reference anchor="Stunes-vTPM-CCC" target="https://www.youtube.com/watch?v=J7SibeZmQsE">
          <front>
            <title>Azure vTPM Attestation and Binding</title>
            <author initials="" surname="Mike Stunes">
              <organization/>
            </author>
            <date year="2025" month="July"/>
          </front>
        </reference>
        <reference anchor="SoK-Attestation" target="https://www.researchgate.net/publication/367284929_SoK_Attestation_in_Confidential_Computing">
          <front>
            <title>SoK: Attestation in Confidential Computing</title>
            <author initials="M. U." surname="Sardar">
              <organization/>
            </author>
            <author initials="T." surname="Fossati">
              <organization/>
            </author>
            <author initials="S." surname="Frost">
              <organization/>
            </author>
            <date year="2023" month="January"/>
          </front>
        </reference>
        <reference anchor="Ayoub-16Jan" target="https://mailarchive.ietf.org/arch/msg/seat/8eynK9ky5F-TcnL_UPbSRDKuK1E/">
          <front>
            <title>Re: New Version Notification for draft-usama-seat-intra-vs-post-00.txt</title>
            <author initials="" surname="Ayoub Benaissa">
              <organization/>
            </author>
            <date year="2026" month="January"/>
          </front>
        </reference>
        <reference anchor="Markus-16Jan" target="https://mailarchive.ietf.org/arch/msg/seat/Pxr_12v6MIQIzGFTUdx04aVZYpM/">
          <front>
            <title>Re: New Version Notification for draft-usama-seat-intra-vs-post-00.txt</title>
            <author initials="" surname="Markus Rudy">
              <organization/>
            </author>
            <date year="2026" month="January"/>
          </front>
        </reference>
        <reference anchor="Usama-TLS-26Feb25" target="https://mailarchive.ietf.org/arch/msg/tls/Jx_yPoYWMIKaqXmPsytKZBDq23o/">
          <front>
            <title>Impersonation attacks on protocol in draft-fossati-tls-attestation (Identity crisis in Attested TLS) for Confidential Computing</title>
            <author initials="" surname="Muhammad Usama Sardar">
              <organization/>
            </author>
            <date year="2025" month="February"/>
          </front>
        </reference>
        <reference anchor="ID-Crisis-Repo" target="https://github.com/CCC-Attestation/formal-spec-id-crisis">
          <front>
            <title>Identity Crisis in Confidential Computing: Formal analysis of attested TLS protocols</title>
            <author initials="" surname="Muhammad Usama Sardar">
              <organization/>
            </author>
            <date/>
          </front>
        </reference>
        <reference anchor="I-D.mihalcea-seat-use-cases">
          <front>
            <title>Security Goals and Use Cases for Integrating Remote Attestation with Secure Channel Protocols</title>
            <author fullname="Ionuț Mihalcea" initials="I." surname="Mihalcea">
              <organization>Arm</organization>
            </author>
            <author fullname="Muhammad Usama Sardar" initials="M. U." surname="Sardar">
              <organization>TU Dresden</organization>
            </author>
            <author fullname="Thomas Fossati" initials="T." surname="Fossati">
              <organization>Linaro</organization>
            </author>
            <author fullname="Tirumaleswar Reddy.K" initials="T." surname="Reddy.K">
              <organization>Nokia</organization>
            </author>
            <author fullname="Yuning Jiang" initials="Y." surname="Jiang">
         </author>
            <author fullname="Meiling Chen" initials="M." surname="Chen">
              <organization>China Mobile</organization>
            </author>
            <date day="16" month="June" year="2026"/>
            <abstract>
              <t>   This document outlines desirable security goals and use cases for
   integrating remote attestation (RA) capabilities with secure channel
   establishment protocols (e.g., TLS and DTLS).  Peer authentication in
   such protocols establishes trust in a peer's network identifiers but
   provides no assurance regarding the integrity of its underlying
   software and hardware stack.  Remote attestation addresses this gap
   by enabling a peer to provide verifiable evidence about the current
   state of the Target Environment.  This document specifies a set of
   essential security goals the protocol solution must have, including
   cryptographic binding to the secure connection, evidence freshness,
   and flexibility to support different attestation models.  It then
   explores relevant use cases, such as confidential data collaboration
   and secure secrets provisioning, to motivate the need for this
   integration.  This document is intended to serve as an input to the
   design of protocol solutions within the SEAT working group.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-mihalcea-seat-use-cases-03"/>
        </reference>
        <reference anchor="Markus-19Jan" target="https://mailarchive.ietf.org/arch/msg/seat/iAeCQLna8FdfoQGV3P-mEHUobn4/">
          <front>
            <title>Re: New Version Notification for draft-usama-seat-intra-vs-post-00.txt</title>
            <author initials="" surname="Markus Rudy">
              <organization/>
            </author>
            <date year="2026" month="January"/>
          </front>
        </reference>
        <reference anchor="Mike-19Jan" target="https://lists.confidentialcomputing.io/g/attestation/message/276">
          <front>
            <title>Re: Requesting review of IETF draft on categories for attested TLS</title>
            <author initials="" surname="Mike Bursell">
              <organization/>
            </author>
            <date year="2026" month="January"/>
          </front>
        </reference>
        <reference anchor="Yaroslav-22Jan" target="https://mailarchive.ietf.org/arch/msg/seat/gQTdMo0OexLffcB1x39M4J57Ug4/">
          <front>
            <title>Re: New Version Notification for draft-usama-seat-intra-vs-post-02.txt</title>
            <author initials="" surname="Yaroslav Rosomakho">
              <organization/>
            </author>
            <date year="2026" month="January"/>
          </front>
        </reference>
        <reference anchor="Edward-20Jan" target="https://mailarchive.ietf.org/arch/msg/rats/TFzusdvG5d0PSl5m0dY3nAeeUyQ/">
          <front>
            <title>[Use Case] RATS for Hardware-Enforced State Management in Autonomous Agents (AIGA)</title>
            <author initials="" surname="Edward Aylward">
              <organization/>
            </author>
            <date year="2026" month="January"/>
          </front>
        </reference>
        <reference anchor="I-D.aylward-aiga-1">
          <front>
            <title>AI Governance and Accountability Protocol (AIGA)</title>
            <author fullname="Edward Richard Aylward Jr" initials="E. R." surname="Aylward">
         </author>
            <date day="2" month="November" year="2025"/>
            <abstract>
              <t>   This document specifies the AI Governance and Accountability (AIGA)
   Protocol version 1.0, a practical, economically viable, and
   technically enforceable framework for governing autonomous AI
   agents.  AIGA 1.0 is designed to address real-world deployment
   constraints, adversarial agent scenarios, and economic incentive
   alignment.

   The protocol is founded on a Tiered Risk-Based Governance model,
   applying proportional oversight to agents based on their
   capabilities.  All agents are governed by an Immutable Kernel
   Architecture which provides a non-modifiable Trusted Computing Base
   (TCB) for enforcing policy.  This is combined with Action-Based
   Authorization, where critical operations require real-time approval.

   To solve the single-point-of-failure problem, the protocol uses a
   Federated Authority Network of regional, cross-validating hubs and
   provides a Network-Level Quarantine Protocol for enforcement.  The
   entire framework is designed around Economic Incentive Alignment,
   making compliance the most economically rational choice for
   operators.

   For high-assurance (T3-T4) scenarios, AIGA 1.0 specifies advanced,
   redundant mechanisms including Multi-Vendor TEE Attestation
   (M-TACE), AI "Warden Triumvirate" Triage, Human Review Board (HRB)
   Multi-Signature, Peer Consensus Failsafe &amp; Identity Rotation, and
   Double Ratchet Cryptography.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-aylward-aiga-1-00"/>
        </reference>
        <reference anchor="RFC7519">
          <front>
            <title>JSON Web Token (JWT)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="J. Bradley" initials="J." surname="Bradley"/>
            <author fullname="N. Sakimura" initials="N." surname="Sakimura"/>
            <date month="May" year="2015"/>
            <abstract>
              <t>JSON Web Token (JWT) is a compact, URL-safe means of representing claims to be transferred between two parties. The claims in a JWT are encoded as a JSON object that is used as the payload of a JSON Web Signature (JWS) structure or as the plaintext of a JSON Web Encryption (JWE) structure, enabling the claims to be digitally signed or integrity protected with a Message Authentication Code (MAC) and/or encrypted.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7519"/>
          <seriesInfo name="DOI" value="10.17487/RFC7519"/>
        </reference>
        <reference anchor="RFC9421">
          <front>
            <title>HTTP Message Signatures</title>
            <author fullname="A. Backman" initials="A." role="editor" surname="Backman"/>
            <author fullname="J. Richer" initials="J." role="editor" surname="Richer"/>
            <author fullname="M. Sporny" initials="M." surname="Sporny"/>
            <date month="February" year="2024"/>
            <abstract>
              <t>This document describes a mechanism for creating, encoding, and verifying digital signatures or message authentication codes over components of an HTTP message. This mechanism supports use cases where the full HTTP message may not be known to the signer and where the message may be transformed (e.g., by intermediaries) before reaching the verifier. This document also describes a means for requesting that a signature be applied to a subsequent HTTP message in an ongoing HTTP exchange.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9421"/>
          <seriesInfo name="DOI" value="10.17487/RFC9421"/>
        </reference>
        <reference anchor="SAML" target="https://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf">
          <front>
            <title>Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0</title>
            <author initials="" surname="Cantor et al">
              <organization/>
            </author>
            <date year="2005" month="March"/>
          </front>
        </reference>
      </references>
    </references>
    <?line 755?>

<section numbered="false" anchor="acknowledgments">
      <name>Acknowledgments</name>
      <t>We gratefully thank the following:</t>
      <ul spacing="normal">
        <li>
          <t>Peg Jones for review of early draft before submission of -00</t>
        </li>
        <li>
          <t>Paul Wouters for review of section 4 of -00</t>
        </li>
        <li>
          <t>Ayoub Benaissa for review of -00 and sharing his practical experiences</t>
        </li>
        <li>
          <t>Markus Rudy for review of -00 and sharing his practical experiences and
for conducting experiments with TDX and SNP on our request</t>
        </li>
        <li>
          <t>Mike Bursell (Executive Director, Confidential Computing Consortium) for review of -01 <xref target="Mike-19Jan"/></t>
        </li>
        <li>
          <t>Yaroslav Rosomakho (as individual contributor) for detailed review of -02 <xref target="Yaroslav-22Jan"/></t>
        </li>
      </ul>
    </section>
    <section numbered="false" anchor="contributors">
      <name>Contributors</name>
      <t>Pavel Nikonorov (GENXT / IIAP NAS RA) contributed text in <xref target="sec-intra-app-changes"/> and <xref target="sec-post-app-changes"/>.</t>
    </section>
    <section numbered="false" anchor="history">
      <name>History</name>
      <t>-01</t>
      <ul spacing="normal">
        <li>
          <t>Added scope section to address comments of Paul Wouters</t>
        </li>
        <li>
          <t>Added comments of Ayoub Benaissa as quotes</t>
        </li>
        <li>
          <t>Added some subsections to incorporate practical experiences of Markus Rudy</t>
        </li>
        <li>
          <t>Extended security considerations</t>
        </li>
      </ul>
      <t>-02</t>
      <ul spacing="normal">
        <li>
          <t>Added experiments by Markus Rudy</t>
        </li>
        <li>
          <t>Removed our experiments</t>
        </li>
        <li>
          <t>Added reference to use cases document to address comment of Mike Bursell</t>
        </li>
      </ul>
      <t>-03</t>
      <ul spacing="normal">
        <li>
          <t>Added advantages of pre-handshake attestation</t>
        </li>
        <li>
          <t>Added references for limited Claims for intra-handshake attestation</t>
        </li>
        <li>
          <t>Added Yaroslav's proposal in post-handshake attestation</t>
        </li>
      </ul>
    </section>
  </back>
  <!-- ##markdown-source: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-->

</rfc>
