<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.2.3) -->
<?rfc rfcedstyle="yes"?>
<?rfc tocindent="yes"?>
<?rfc strict="yes"?>
<?rfc comments="yes"?>
<?rfc text-list-symbols="-o*+"?>
<?rfc docmapping="yes"?>
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-zhang-seat-selection-01" category="info" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.34.0 -->
  <front>
    <title abbrev="SEAT Selection">Balancing Security and Deployability in the Selection of Attested TLS Protocol</title>
    <seriesInfo name="Internet-Draft" value="draft-zhang-seat-selection-01"/>
    <author initials="J." surname="Zhang" fullname="Jun Zhang">
      <organization>Huawei Technologies France S.A.S.U.</organization>
      <address>
        <email>junzhang1@huawei.com</email>
      </address>
    </author>
    <author initials="H." surname="Labiod" fullname="Houda Labiod">
      <organization>Huawei Technologies France S.A.S.U.</organization>
      <address>
        <email>houda.labiod@huawei.com</email>
      </address>
    </author>
    <author initials="M." surname="Chen" fullname="Meiling Chen">
      <organization>China Mobile</organization>
      <address>
        <email>chenmeiling@chinamobile.com</email>
      </address>
    </author>
    <date/>
    <area>Security</area>
    <workgroup>SEAT</workgroup>
    <abstract>
      <?line 38?>

<t>This document analyzes the selection of Attested Transport Layer Security (aTLS) protocols, among pre-handshake, intra-handshake, and post-handshake aTLS protocols, 
focusing on the trade-off between theoretical security strength and practical deployability. The goal is to enable flexible, context-aware deployment of endpoint attestation while maintaining compatibility with existing infrastructure.</t>
    </abstract>
  </front>
  <middle>
    <?line 43?>

<section anchor="introduction">
      <name>Introduction</name>
      <t>Attested TLS (aTLS) enables a TLS server to provide cryptographic proof of its endpoint behavior, including configuration, identity, and software integrity. This is essential for high-assurance use cases such as zero-trust architectures, compliance verification, and supply chain security.</t>
      <t>However, the timing and method of attestation delivery significantly affect both security strength and network deployability. This document considers three models:</t>
      <t>Pre-handshake: Attestation sent before TLS begins.</t>
      <t>Intra-handshake: Attestation embedded in TLS handshake messages.</t>
      <t>Post-handshake: Attestation sent after handshake completion.</t>
    </section>
    <section anchor="terminology">
      <name>Terminology</name>
      <t>The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119.</t>
      <t>Attester: The entity that generates attestation evidence.</t>
      <t>Verifier: The entity that validates the attestation.</t>
      <t>Relying Party: The client or service relying on the attestation result.</t>
      <t>TLS Exporter: A TLS 1.3 mechanism to derive keying material from the handshake.</t>
      <t>Middlebox: Network devices that inspect or modify TLS traffic (e.g., firewalls, load balancers).</t>
    </section>
    <section anchor="the-theoretical-upper-bound-of-security">
      <name>The Theoretical Upper Bound of Security</name>
      <t>In an ideal world, aTLS should achieve the following security properties:</t>
      <t><strong>Cryptographic Binding</strong>: The attestation evidence MUST be cryptographically bound to the TLS session. Specifically, the evidence should cover the TLS handshake transcript (e.g., ClientHello...ServerHello). This prevents a "Man-in-the-Middle" (MITM) from stripping the attestation or replaying a valid attestation from a different session.</t>
      <t><strong>Freshness</strong>: The attestation must be fresh, preventing replay attacks. Ideally, the nonce used in the attestation is derived from the TLS handshake.</t>
      <t><strong>Zero-Knowledge (Optional Privacy)</strong>: The protocol should allow for selective disclosure, proving properties (e.g., "I am running patched Linux") without revealing the exact measurement hash, if desired.</t>
      <t><strong>Formal Verification</strong>: The protocol composition (TLS + Attestation) should be formally verified to ensure no security degradation (e.g., no downgrade attacks).</t>
      <t><strong>Attack Window</strong>：  The "Attack Window" (AW) quantifies the temporal exposure during which an attacker can influence a connection before its authenticity is cryptographically verified. AW = T_verify - T_attack_start,
   Where:</t>
      <ul spacing="normal">
        <li>
          <t>T_attack_start: The earliest time an attacker can begin intervention.</t>
        </li>
        <li>
          <t>T_verify: The time when cryptographic verification is completed.</t>
        </li>
      </ul>
      <t>A smaller AW indicates a stronger security posture.  The theoretical optimum is AW ≈ 0, where verification occurs synchronously with connection establishment.</t>
      <t>The Upper Bound implies a tight integration where the attestation is signed over the TLS handshake state, effectively making the attestation a mandatory extension of the Finished messages.</t>
    </section>
    <section anchor="the-practical-lower-bound-of-deployment">
      <name>The Practical Lower Bound of Deployment</name>
      <t>In the real world, protocols face harsh constraints that define the "Lower Bound" of what is acceptable:</t>
      <t><strong>Middlebox Compatibility</strong>: Enterprise networks, firewalls, and TLS terminators often inspect or modify TLS handshakes. A protocol that breaks these middleboxes (e.g., by adding large custom extensions that are stripped) will fail to deploy.</t>
      <t><strong>Library Fragmentation</strong>: Not all clients and servers use the latest OpenSSL/BoringSSL. The solution must ideally be backward compatible or implementable as a modular extension.</t>
      <t><strong>Hardware Asymmetry</strong>:
-High-End: Servers with TPMs 2.0 or Intel SGX/TDX can perform complex signing operations during the handshake.</t>
      <t>-Low-End: IoT devices or highly loaded servers may experience significant latency if the handshake is blocked waiting for hardware signing.</t>
      <t><strong>Operational Complexity</strong>: Verifying attestation requires a complex infrastructure (Verifier, Policy Engine). If the protocol requires the TLS server to act as the Verifier for the client, it increases server load and state management complexity.</t>
      <t><strong>Passive Observation</strong>: In some deployment models (e.g., mutual TLS), the verifier might be an offline entity analyzing logs rather than the immediate peer, requiring the attestation to be accessible post-handshake.</t>
      <t>The Lower Bound dictates that the protocol must be resilient to extension stripping, must not add unacceptable latency, and must allow for a "pass-through" mode where the TLS stack is unaware of the attestation semantics.</t>
    </section>
    <section anchor="selection-analysis">
      <name>Selection Analysis</name>
      <section anchor="the-binding-gap">
        <name>The "Binding" Gap</name>
        <t>The primary tension lies in Binding.</t>
        <t><strong>Theory</strong>: The attestation signature MUST cover the ClientHello.random and ServerHello.random.</t>
        <t><strong>Practice</strong>: Generating this signature inside the TLS state machine is difficult for many libraries.</t>
        <t><strong>Selection Decision</strong>: The group should prefer mechanisms that use the TLS Exporter [RFC5705] to bridge this gap. This allows the attestation to be generated "outside" the strict handshake code but still be cryptographically bound to the session, satisfying the upper bound while respecting the lower bound of library modularity.</t>
      </section>
      <section anchor="the-middlebox-gap">
        <name>The "Middlebox" Gap</name>
        <t><strong>Theory</strong>: We control the whole stack and can enforce attestation requirements strictly.</t>
        <t><strong>Practice</strong>: The path contains F5 load balancers, legacy proxies, and SaaS inspection tools that may strip unknown TLS extensions or block non-standard handshake behaviors.</t>
        <t><strong>Capability Negotiation</strong>: To prevent connection failures (false positives) when attestation is unsupported, the protocol MUST use a TLS Extension (e.g., attestation_supported) to signal capabilities during the handshake.</t>
        <ul spacing="normal">
          <li>
            <t><strong>Extension Present</strong>: The server explicitly supports attestation. If evidence is subsequently missing or invalid, the client MUST abort (Hard Fail).</t>
          </li>
          <li>
            <t><strong>Extension Absent</strong>: The server does not support attestation (or the extension was stripped). The client MAY fallback to standard TLS (Soft Fail), depending on local policy.</t>
          </li>
        </ul>
        <t><strong>Selection Decision</strong>: Sending attestation evidence as Application Data (post-handshake) is the most robust against middlebox interference. However, the decision to abort or fallback MUST be based on the negotiated capability (Extension presence) rather than the mere absence of evidence.</t>
      </section>
      <section anchor="the-latency-gap">
        <name>The "Latency" Gap</name>
        <t><strong>Theory</strong>: Attestation is instant.</t>
        <t><strong>Practice</strong>: TPM signing takes 50ms-200ms; SGX quoting is variable.</t>
        <t><strong>Selection Decision</strong>: To prevent blocking the TLS handshake (which hurts performance), Asynchronous Attestation should be supported. The connection can be established, and data can flow (perhaps restricted), while the attestation is being validated in the background. This lowers the performance impact to the practical floor.</t>
      </section>
    </section>
    <section anchor="evaluation-of-attestation-phases">
      <name>Evaluation of Attestation Phases</name>
      <section anchor="pre-handshake-attestation">
        <name>Pre-Handshake Attestation</name>
        <ul spacing="normal">
          <li>
            <t><strong>Description</strong>: Attestation sent before TLS handshake begins.</t>
          </li>
          <li>
            <t><strong>Pros</strong>:
            </t>
            <ul spacing="normal">
              <li>
                <t>Allows early rejection of untrusted servers.</t>
              </li>
              <li>
                <t>Can be used in stateless environments.</t>
              </li>
            </ul>
          </li>
          <li>
            <t><strong>Cons</strong>:
            </t>
            <ul spacing="normal">
              <li>
                <t>No cryptographic binding to TLS session.</t>
              </li>
              <li>
                <t>Vulnerable to downgrade or substitution attacks.</t>
              </li>
              <li>
                <t>Requires out-of-band channel or non-standard port.</t>
              </li>
            </ul>
          </li>
          <li>
            <t><strong>Attack Window</strong>: Near-infinite (attacker can intervene before any TLS message is sent; there is no cryptographic binding to the session)</t>
          </li>
          <li>
            <t><strong>Verdict</strong>: Raw Pre-handshake Attestation is not recommended due to weak session binding.</t>
          </li>
        </ul>
      </section>
      <section anchor="intra-handshake-attestation">
        <name>Intra-Handshake Attestation</name>
        <ul spacing="normal">
          <li>
            <t><strong>Description</strong>: Attestation embedded in TLS handshake messages (e.g., via extensions or <tt>Certificate</tt>).</t>
          </li>
          <li>
            <t><strong>Pros</strong>:
            </t>
            <ul spacing="normal">
              <li>
                <t>Strongest security: fully bound to handshake transcript.</t>
              </li>
              <li>
                <t>Enables mutual authentication with attestation.</t>
              </li>
              <li>
                <t>No added latency.</t>
              </li>
            </ul>
          </li>
          <li>
            <t><strong>Cons</strong>:
            </t>
            <ul spacing="normal">
              <li>
                <t>High risk of <strong>middlebox interference</strong> (e.g., stripping unknown extensions).</t>
              </li>
              <li>
                <t>Difficult to deploy on the open Internet.</t>
              </li>
              <li>
                <t>May require protocol-specific integration.</t>
              </li>
            </ul>
          </li>
          <li>
            <t><strong>Attack Window</strong>: Near-zero (verification occurs synchronously with 
the handshake; any tampering with the transcript invalidates the session)</t>
          </li>
          <li>
            <t><strong>Verdict</strong>: High security, low deployability. Suitable only in controlled environments.</t>
          </li>
        </ul>
      </section>
      <section anchor="post-handshake-attestation">
        <name>Post-Handshake Attestation</name>
        <ul spacing="normal">
          <li>
            <t><strong>Description</strong>: Attestation sent after handshake completion via application data.</t>
          </li>
          <li>
            <t><strong>Pros</strong>:
            </t>
            <ul spacing="normal">
              <li>
                <t>No middlebox issues (uses standard TLS record layer).</t>
              </li>
              <li>
                <t>Easy to implement and deploy.</t>
              </li>
              <li>
                <t>Compatible with TLS 1.3 and widely deployed stacks.</t>
              </li>
              <li>
                <t>Supports Capability Negotiation: Allows the client to detect support via TLS extensions before expecting evidence, preventing false connection aborts on legacy servers.</t>
              </li>
            </ul>
          </li>
          <li>
            <t><strong>Cons</strong>:
            </t>
            <ul spacing="normal">
              <li>
                <t>Requires explicit binding to handshake (e.g., via exporter).</t>
              </li>
              <li>
                <t>Slight latency cost (one extra message).</t>
              </li>
            </ul>
          </li>
          <li>
            <t><strong>Attack Window</strong>: Bounded (AW = T_verify - T_handshake_complete, typically 
  one RTT). During this window, the channel is encrypted but the endpoint's identity is unverified. An attacker who compromised the endpoint during handshake could operate undetected until verification completes.</t>
          </li>
          <li>
            <t><strong>Verdict</strong>: Best balance of security and deployability.</t>
          </li>
        </ul>
      </section>
    </section>
    <section anchor="failure-mode-analysis">
      <name>Failure Mode Analysis</name>
      <t>Beyond the happy path, the failure characteristics of each approach are critical for deployability:</t>
      <section anchor="hard-failure-pre-handshake-and-intra-handshake">
        <name>Hard Failure (Pre-handshake and Intra-handshake)</name>
        <t>Attestation is performed before or during the TLS handshake.  Any failure—whether due to network issues, TEE unavailability, or verification errors—results in complete connection failure.</t>
        <t>User Experience: Connection refused with no context Recovery: Client must retry entire handshake or re-attest
   Production Impact: Brittle; may cause service disruptions</t>
      </section>
      <section anchor="soft-failure-post-handshake">
        <name>Soft Failure (Post-handshake)</name>
        <t>TLS handshake completes successfully.  Attestation failure occurs after the encrypted channel is established, allowing the application to handle the situation gracefully.</t>
        <t>User Experience: Partial service, user prompt, or graceful degradation
   Recovery: Application-defined policy (terminate, retry, or continue with reduced privileges)
   Production Impact: Resilient; supports business continuity</t>
        <t>This distinction is a key factor when selecting attestation timing for high-availability deployments.</t>
      </section>
    </section>
    <section anchor="context-dependent-selection">
      <name>Context-Dependent Selection</name>
      <t>The following decision matrix summarizes the recommended attestation timing for each deployment scenario:</t>
      <table>
        <thead>
          <tr>
            <th align="left">Scenario</th>
            <th align="left">Recommended Phase</th>
            <th align="left">Failure Mode</th>
          </tr>
        </thead>
        <tbody>
          <tr>
            <td align="left">General Internet</td>
            <td align="left">Post-handshake</td>
            <td align="left">Soft</td>
          </tr>
          <tr>
            <td align="left">Controlled Environments</td>
            <td align="left">Intra-handshake</td>
            <td align="left">Hard</td>
          </tr>
          <tr>
            <td align="left">Protocols with Native Support</td>
            <td align="left">Intra-handshake</td>
            <td align="left">Hard</td>
          </tr>
          <tr>
            <td align="left">Network Admission Control</td>
            <td align="left">Pre-handshake</td>
            <td align="left">Hard</td>
          </tr>
        </tbody>
      </table>
      <section anchor="general-internet-deployment">
        <name>General Internet Deployment</name>
        <t>For public-facing services (e.g., HTTPS, APIs), <strong>post-handshake attestation</strong> like[draft-fossati-seat-early-attestation] is REQUIRED due to widespread middlebox deployment and legacy infrastructure, and is 
recommended for broad interoperability.</t>
      </section>
      <section anchor="controlled-environments-and-integrated-protocols">
        <name>Controlled Environments and Integrated Protocols</name>
        <t>In enterprise networks, data centers, or IoT deployments, where:</t>
        <ul spacing="normal">
          <li>
            <t>Middleboxes are under administrative control,</t>
          </li>
          <li>
            <t>TLS stacks are upgradable,</t>
          </li>
          <li>
            <t>Security is paramount,</t>
          </li>
        </ul>
        <t><strong>Intra-handshake attestation</strong> MAY be used when network environment allows.</t>
      </section>
      <section anchor="protocols-with-native-attestation-support">
        <name>Protocols with Native Attestation Support</name>
        <t>Certain protocols, for example the LAKE Protocol [I-D.ietf-lake-ra], provide native support for attestation integration without requiring protocol modifications. In such cases, <strong>Intra-handshake attestation is RECOMMENDED</strong>. This approach enables zero-cost attestation, optimal cryptographic binding, and protocol-level trust composition.</t>
      </section>
      <section anchor="niche-case-pre-handshake-for-network-admission-control">
        <name>Niche Case: Pre-Handshake for Network Admission Control</name>
        <t>In architectures featuring a validating gateway (e.g., a Zero Trust Network Access gateway):</t>
        <ol spacing="normal" type="1"><li>
            <t>The client attests to the gateway via a separate protocol (e.g., EST over CoAP, or a custom UDP protocol).</t>
          </li>
          <li>
            <t>The gateway validates the attestation.</t>
          </li>
          <li>
            <t>The gateway issues a short-lived Attestation Token (e.g., a psk_identity for TLS-PSK).</t>
          </li>
          <li>
            <t>The client initiates the TLS handshake to the internal server, presenting the Token.</t>
          </li>
          <li>
            <t>The server validates the Token to authorize the session.</t>
          </li>
        </ol>
        <t>Token-based Pre-handshake attestation is RECOMMENDED for gateway-based NAC, provided the Token is cryptographically bound to the TLS session.</t>
      </section>
      <section anchor="decision-flowchart">
        <name>Decision Flowchart</name>
        <t>The following flowchart provides a quick reference for selecting the appropriate attestation timing:</t>
        <figure anchor="fig-flow-chart">
          <name>Decision Flowchart</name>
          <artwork><![CDATA[
 +-----------------------+
 |   START: Select Phase |
 +-----------------------+
             |
             v
 +-----------------------+
 | Network Controlled?   |
 +-----------------------+
    |              |
  Yes              No
    |              |
    v              v
 +------------+  +-----------+
 | TLS        |  | NAC       |
 | Upgradable?|  | Gateway?  |
 +-----------+   +-----------+
  |      |       |      |
 Yes     No     Yes     No
  |      |       |      |
  v      v       v      v
+------+ +-----+ +----+ +-----+
|Intra|  |Post | |Pre | |Post |  
|HS   |  |HS   | |HS  | |HS   |
|Hard |  |Soft | |Hard| |Soft |
|Fail |  |Fail | |Fail| |Fail | 
+------+ +-----+ +----+ +-----+
]]></artwork>
        </figure>
        <t><strong>Flowchart Interpretation</strong>:</t>
        <t>The decision flow prioritizes deployability while maintaining security:</t>
        <ol spacing="normal" type="1"><li>
            <t><strong>Network Controlled?</strong> → If yes, check TLS upgradability.</t>
          </li>
          <li>
            <t><strong>TLS Upgradable?</strong> → If yes, use Intra-Handshake (strongest security).</t>
          </li>
          <li>
            <t><strong>NAC Gateway?</strong> → If yes, use Pre-Handshake (token-based).</t>
          </li>
          <li>
            <t><strong>Default</strong> → Post-Handshake (best balance).</t>
          </li>
        </ol>
        <t>This ensures that the most secure option is chosen only when the network 
environment can support it, avoiding deployment failures in uncontrolled 
environments.</t>
      </section>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>TODO</t>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <t>TODO</t>
    </section>
    <section anchor="references">
      <name>References</name>
      <section anchor="normative-references">
        <name>Normative References</name>
        <dl>
          <dt>[RFC8446]</dt>
          <dd>
            <t>Rescorla, E., "The Transport Layer Security (TLS) Protocol Version 1.3", RFC 8446, August 2018.</t>
          </dd>
          <dt>[RFC5705]</dt>
          <dd>
            <t>Rescorla, E., "Keying Material Exporters for TLS", RFC 5705, March 2010.</t>
          </dd>
          <dt>[RFC2119]</dt>
          <dd>
            <t>Bradner, S., "Key words for use in RFCs to Indicate Requirement Levels", BCP 14, RFC 2119, DOI 10.17487/RFC2119, March 1997.</t>
          </dd>
          <dt>[RFC8174]</dt>
          <dd>
            <t>Leiba, B., "Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words", BCP 14, RFC 8174, DOI 10.17487/RFC8174, May 2017.</t>
          </dd>
        </dl>
      </section>
      <section anchor="informative-references">
        <name>Informative References</name>
        <t>[draft-fossati-seat-early-attestation] : Fossati, T., et al., "Using Attestation in Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS)", Work in Progress, Internet-Draft, draft-fossati-seat-early-attestation.</t>
        <dl>
          <dt>[I-D.ietf-lake-ra]</dt>
          <dd>
            <t>Yuxuan, S., et al., "Remote Attestation over EDHOC", Internet-Draft, draft-ietf-lake-ra.</t>
          </dd>
        </dl>
      </section>
    </section>
    <section anchor="acknowledgements">
      <name>Acknowledgements</name>
      <t><cref>TODO</cref></t>
    </section>
  </middle>
  <back>








  </back>
  <!-- ##markdown-source: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-->

</rfc>
