<?xml version='1.0' encoding='utf-8'?>
<!DOCTYPE rfc [
  <!ENTITY nbsp    "&#160;">
  <!ENTITY zwsp   "&#8203;">
  <!ENTITY nbhy   "&#8209;">
  <!ENTITY wj     "&#8288;">
]>
<?xml-stylesheet type="text/xsl" href="rfc2629.xslt" ?>
<!-- generated by https://github.com/cabo/kramdown-rfc version 1.7.39 (Ruby 3.3.8) -->
<?rfc rfcedstyle="yes"?>
<?rfc tocindent="yes"?>
<?rfc strict="yes"?>
<?rfc comments="yes"?>
<?rfc text-list-symbols="-o*+"?>
<?rfc docmapping="yes"?>
<rfc xmlns:xi="http://www.w3.org/2001/XInclude" ipr="trust200902" docName="draft-bdnr-rats-trustworthy-credentials-01" category="info" submissionType="IETF" tocInclude="true" sortRefs="true" symRefs="true" version="3">
  <!-- xml2rfc v2v3 conversion 3.31.0 -->
  <front>
    <title abbrev="ESC">Trustworthy Enrollment of Secure Credentials</title>
    <seriesInfo name="Internet-Draft" value="draft-bdnr-rats-trustworthy-credentials-01"/>
    <author initials="M." surname="Novak" fullname="Mark Novak">
      <organization>J.P. Morgan Chase</organization>
      <address>
        <email>mark.f.novak@jpmchase.com</email>
      </address>
    </author>
    <author initials="M." surname="Richardson" fullname="Michael Richardson">
      <organization>Sandelman Software Works</organization>
      <address>
        <postal>
          <street/>
          <city/>
          <region/>
          <code/>
          <country>Canada</country>
        </postal>
        <email>mcr+ietf@sandelman.ca</email>
      </address>
    </author>
    <author initials="H." surname="Birkholz" fullname="Henk Birkholz">
      <organization>Franhaufer Inst.</organization>
      <address>
        <email>Henk.Birkholz@ietf.contact</email>
      </address>
    </author>
    <date year="2026" month="July" day="06"/>
    <area>Security</area>
    <workgroup>RATS Working Group</workgroup>
    <keyword>trustworthy workload identity</keyword>
    <keyword>remote attestation</keyword>
    <keyword>stable workload credentials</keyword>
    <abstract>
      <?line 79?>

<t>To be written last</t>
      <t>There is a large class of "RATS-Unaware" Relying Parties (RUPs) that Attesters nevertheless need to interoperate with.
Existing deployed services, which precede the introduction of Remote Attestation,
are often difficult to change/update in significant ways due to regulatory and cryptographic review policies.
Yet there are significant advantages if clients can be incrementally updated in the trustworthiness of the platform.</t>
      <t>This document details a protocol by which the trusthworthiness of an Attesters is reviewed as part of the process of it being provided with some form of an Identity Document (a key, or a credential) to authenticate to RUPs.</t>
      <t>This specification illustrates how the RATS Architecture can be applied to interoperate with RUPs by providing Attesters with such Identity Documents.</t>
    </abstract>
    <note removeInRFC="true">
      <name>About This Document</name>
      <t>
        Status information for this document may be found at <eref target="https://datatracker.ietf.org/doc/draft-bdnr-rats-trustworthy-credentials/"/>.
      </t>
      <t>
        Discussion of this document takes place on the
        RATS Working Group mailing list (<eref target="mailto:rats@ietf.org"/>),
        which is archived at <eref target="https://mailarchive.ietf.org/arch/browse/rats/"/>.
        Subscribe at <eref target="https://www.ietf.org/mailman/listinfo/rats/"/>.
      </t>
      <t>Source for this draft and an issue tracker can be found at
        <eref target="https://github.com/mcr/twi-rats"/>.</t>
    </note>
  </front>
  <middle>
    <?line 92?>

<section anchor="introduction">
      <name>Introduction</name>
      <t>Success of a technology is ultimately measured by its adoption.
The RATS Architecture requires that RATS Relying Parties understand Attestation Results expressed using standards such as EAT and AR4SI, execute Appraisal Policy for Attestation Results, and have trust in Verifiers.
Additionally, there is an unstated assumption present in the RATS Architecture that a change in Evidence may lead to a change in either the Attestation Results or Appraisal Policy for Attestation Results. This requirement may pose a significant adoption blocker.</t>
      <t>One key requirement for successful deployment of Remote Attestation-capable workloads is minimal blast radius.
When a workload is moved from a legacy to a remotely attestable (e.g. Trusted Execution) environment, including Intel SGX, AMD SEV-SNP,  ARM TrustZone, that workload can use Remote Attestation to obtain a stable and trustworthy Identity Document while its clients and servers do not notice anything different.</t>
      <t>For that, a mechanism is required by means of which a Credential Broker, a Key Broker, or a Credential Authority takes on the role of RATS Relying Party.
This provides an intermediation between Attestation Results, expressed using formats such as EAT and AR4SI, and the RATS-Unaware Relying Parties whose authentication and authorization policies may precede the introduction of Remotely Attestable Workloads and remain static for long periods of time.</t>
      <t>For the RATS-Unaware Relying Parties, these adoption barriers are eliminated, as these RUPs are capable of authenticating their clients utilizing appropriate Identity Documents.
This includes shared symmetric keys (bearer tokens), credentials including PKIX certificates <xref target="RFC5280"/>, JWTs <xref target="RFC7515"/>, or WIMSE WITs <xref target="I-D.ietf-wimse-workload-creds"/>.
In this world, the Attester uses Remote Attestation to obtain from the RATS Relying Party a key, token or credential that is compatible with the RUP.</t>
      <t>This document details an architecture by which legacy Identity Document Identity Document issuance mechanisms are replaced with identical Identity Documents issued, but with the additional prerequisite of successful Remote Attestation of the workloads in question.</t>
      <section anchor="assumptions-about-workload-immutability">
        <name>Assumptions about Workload Immutability</name>
        <t>While updates and upgrades to the workload and the RATS Unaware Party to add a Remote Attestation capability are not possible in this environment, some changes to the Attesting environment are required in order to do anything.</t>
        <t>The assumption is that the workload may be a compiled object or container provided by a third party.
Or the workload may be in a language not easily changed or upgraded with new capabilities.
At an extreme example, it could be an ancient COBOL program compiled into a WASM object, perhaps connected to the network via virtual paper-tape and virtual printer interfaces.
Further, such a system may require extensive and significant review by an authority before changes to the core algorithm can be made.</t>
        <t>These workloads run in a virtual machine (VM with unique kernel), or in a containerized environment (common kernel).
They never run on bare hardware, and there is a hypervisor and/or orchestration environment that arranges the workload and any needed configurations.</t>
        <t>However, it is assumed that some the following changes <em>can</em> be made:</t>
        <ul spacing="normal">
          <li>
            <t>network connections use mutual TLS, and the origin of the keypair used for client authentication can be changed or configured by an operator</t>
          </li>
          <li>
            <t>the TLS code, while built-in to the application, can be configured to use a Secure Element or TPM as the source for the private key.  Current TLS stacks such as OpenSSL can be configured to use <tt>engines</tt> or <tt>providers</tt> to do asymmetric operations, and providers exist that talk to a TPM for all private key operations.</t>
          </li>
          <li>
            <t>in the case of bearer token authentication, that the token can be configured external to the code</t>
          </li>
          <li>
            <t>that other components or configurations can be added to the execution environment by the operator</t>
          </li>
          <li>
            <t>that the orchestration environment can be extended with new capabilities without affecting the workload itself</t>
          </li>
        </ul>
      </section>
      <section anchor="hostile-regulator">
        <name>Hostile Regulator</name>
        <t>A motivating factor in this work is that there are workloads that are mandated to operate in specific geographies under inspection by a local authority.
The inspection process by the regulator may include agents that must run within the secured environment, where it may examine inputs and outputs to the workload.
These agents do not have the full trust of the workload owners or RATS Unaware Party.</t>
        <t>The trustworthiness of the workload is not absolute (no trust ever is), however there is a need to provide assurance that only the regulator's agent is present, and no additional malware has been introduced.
(For instance, the agent may have exploits known to additional parties, not yet revealed or fixed by the regulator)</t>
      </section>
    </section>
    <section anchor="definitions">
      <name>Conventions and Definitions</name>
      <t>The key words "<bcp14>MUST</bcp14>", "<bcp14>MUST NOT</bcp14>", "<bcp14>REQUIRED</bcp14>", "<bcp14>SHALL</bcp14>", "<bcp14>SHALL
NOT</bcp14>", "<bcp14>SHOULD</bcp14>", "<bcp14>SHOULD NOT</bcp14>", "<bcp14>RECOMMENDED</bcp14>", "<bcp14>NOT RECOMMENDED</bcp14>",
"<bcp14>MAY</bcp14>", and "<bcp14>OPTIONAL</bcp14>" in this document are to be interpreted as
described in BCP 14 <xref target="RFC2119"/> <xref target="RFC8174"/> when, and only when, they
appear in all capitals, as shown here.</t>
      <?line -18?>

<t>This document uses terms and concepts defined by the WIMSE and RATS architectures, as well as the terms defined by the Trustworthy Workload Identity Special Interest Group at the Confidential Computing Consortium.
For a complete glossary, see <xref section="4" sectionFormat="of" target="RFC9334"/>, <xref target="I-D.ietf-wimse-arch"/> &amp; <xref target="TWISIGDef"/>.</t>
      <t>The definitions of terms like Trustworthy Workload Identity and Workload Credential match those specified by the TWI SIG Definitions <xref target="TWISIGDef"/>.</t>
      <dl>
        <dt>Broker:</dt>
        <dd>
          <t>an entity that deals out pre-existing keys or credential. Constrast to a Credential Authority which mints new credentials.</t>
        </dd>
        <dt>RUP:</dt>
        <dd>
          <t>The RATS Unaware Party (RUP).  A target service that interacts with many clients based upon credentials provided.   This is sometimes called the Collaborating Party.</t>
        </dd>
        <dt>Workload:</dt>
        <dd>
          <t><xref target="I-D.ietf-wimse-arch"/> defines 'Workload' as "an instance of software executing for a specific purpose". Here we restrict that definition to the portions of the deployed software and its configuration that are subject to Remote Attestation.</t>
        </dd>
        <dt>Workload Duration:</dt>
        <dd>
          <t>the lifespan of the workload.   While some workloads can be very long lived, but many workloads are created for a brief period of time, often added on demand to support rising demand, and persisting for only minutes to a small fraction of a day.</t>
        </dd>
        <dt>Workload Owner:</dt>
        <dd>
          <t>the entity that manages a workload, arranging to provision it with appropriate Workload Credentials before Workload is launched</t>
        </dd>
        <dt>Workload Credential:</dt>
        <dd>
          <t>an ephemeral identity document containing an identity and a number of additional claims, that can be short-lived or long-lived, and that is used to access a service</t>
        </dd>
        <dt>Proof of possession credential:</dt>
        <dd>
          <t>this is a credential, such as a JWT, that contains no other identity or authorization claims.  It is trusted by the RUP due to local policy.</t>
        </dd>
        <dt>Collaborating Party:</dt>
        <dd>
          <t>see RUP.</t>
        </dd>
        <dt>Verifier:</dt>
        <dd>
          <t>an entity performing the role of Attestation Verification, as documented in <xref section="4" sectionFormat="of" target="RFC9334"/></t>
        </dd>
      </dl>
    </section>
    <section anchor="overview-of-mechanism">
      <name>Overview of Mechanism</name>
      <t>A newly created workload connects to the Credential Broker to obtain a set of credentials to be used to perform it's functions.</t>
      <t>Within this connection, Evidence is transferred to the Credential Broker to demonstrate the workloads' trusthworthiness.
The Credential Broker is acting as a RATS Relying Party, the workload is the Attester.
The Credential Broker contacts (using the background check model), a Verifier that it trusts in order to evaluate the Evidence, obtaining an Attestation Result.</t>
      <t>Figure <xref target="credential-arch"/> extends the <xref target="RFC9334"/> architecture to show how the workload and credential broker take on the roles of Attester and Relying Party.</t>
      <t>If the Attestation Result is acceptable, then the Credential Broker provides the set of credentials that the workload needs to accomplish it's task.</t>
      <figure anchor="credential-arch">
        <name>Credential Enrollment Architecture</name>
        <artset>
          <artwork type="svg" align="center"><svg xmlns="http://www.w3.org/2000/svg" version="1.1" height="640" width="528" viewBox="0 0 528 640" class="diagram" text-anchor="middle" font-family="monospace" font-size="13px">
              <path d="M 8,32 L 8,64" fill="none" stroke="black"/>
              <path d="M 8,304 L 8,368" fill="none" stroke="black"/>
              <path d="M 56,208 L 56,304" fill="none" stroke="black"/>
              <path d="M 96,32 L 96,64" fill="none" stroke="black"/>
              <path d="M 96,304 L 96,368" fill="none" stroke="black"/>
              <path d="M 104,176 L 104,208" fill="none" stroke="black"/>
              <path d="M 112,64 L 112,168" fill="none" stroke="black"/>
              <path d="M 128,32 L 128,96" fill="none" stroke="black"/>
              <path d="M 144,96 L 144,168" fill="none" stroke="black"/>
              <path d="M 224,32 L 224,96" fill="none" stroke="black"/>
              <path d="M 248,32 L 248,80" fill="none" stroke="black"/>
              <path d="M 264,80 L 264,168" fill="none" stroke="black"/>
              <path d="M 280,400 L 280,464" fill="none" stroke="black"/>
              <path d="M 280,528 L 280,592" fill="none" stroke="black"/>
              <path d="M 312,176 L 312,208" fill="none" stroke="black"/>
              <path d="M 336,32 L 336,80" fill="none" stroke="black"/>
              <path d="M 360,32 L 360,96" fill="none" stroke="black"/>
              <path d="M 360,304 L 360,368" fill="none" stroke="black"/>
              <path d="M 376,208 L 376,296" fill="none" stroke="black"/>
              <path d="M 400,472 L 400,528" fill="none" stroke="black"/>
              <path d="M 416,528 L 416,592" fill="none" stroke="black"/>
              <path d="M 424,96 L 424,296" fill="none" stroke="black"/>
              <path d="M 440,32 L 440,96" fill="none" stroke="black"/>
              <path d="M 456,400 L 456,464" fill="none" stroke="black"/>
              <path d="M 520,304 L 520,368" fill="none" stroke="black"/>
              <path d="M 8,32 L 96,32" fill="none" stroke="black"/>
              <path d="M 128,32 L 224,32" fill="none" stroke="black"/>
              <path d="M 248,32 L 336,32" fill="none" stroke="black"/>
              <path d="M 360,32 L 440,32" fill="none" stroke="black"/>
              <path d="M 8,64 L 96,64" fill="none" stroke="black"/>
              <path d="M 248,80 L 336,80" fill="none" stroke="black"/>
              <path d="M 128,96 L 224,96" fill="none" stroke="black"/>
              <path d="M 360,96 L 440,96" fill="none" stroke="black"/>
              <path d="M 104,176 L 312,176" fill="none" stroke="black"/>
              <path d="M 72,192 L 96,192" fill="none" stroke="black"/>
              <path d="M 312,192 L 360,192" fill="none" stroke="black"/>
              <path d="M 104,208 L 312,208" fill="none" stroke="black"/>
              <path d="M 8,304 L 96,304" fill="none" stroke="black"/>
              <path d="M 360,304 L 520,304" fill="none" stroke="black"/>
              <path d="M 16,336 L 88,336" fill="none" stroke="black"/>
              <path d="M 104,336 L 192,336" fill="none" stroke="black"/>
              <path d="M 280,336 L 352,336" fill="none" stroke="black"/>
              <path d="M 368,336 L 512,336" fill="none" stroke="black"/>
              <path d="M 8,368 L 96,368" fill="none" stroke="black"/>
              <path d="M 360,368 L 520,368" fill="none" stroke="black"/>
              <path d="M 280,400 L 456,400" fill="none" stroke="black"/>
              <path d="M 80,416 L 112,416" fill="none" stroke="black"/>
              <path d="M 192,416 L 272,416" fill="none" stroke="black"/>
              <path d="M 280,464 L 456,464" fill="none" stroke="black"/>
              <path d="M 280,528 L 416,528" fill="none" stroke="black"/>
              <path d="M 280,592 L 416,592" fill="none" stroke="black"/>
              <path d="M 56,368 L 80,416" fill="none" stroke="black"/>
              <path d="M 96,48 C 104.83064,48 112,55.16936 112,64" fill="none" stroke="black"/>
              <path d="M 72,192 C 63.16936,192 56,199.16936 56,208" fill="none" stroke="black"/>
              <path d="M 360,192 C 368.83064,192 376,199.16936 376,208" fill="none" stroke="black"/>
              <polygon class="arrowhead" points="432,296 420,290.4 420,301.6" fill="black" transform="rotate(90,424,296)"/>
              <polygon class="arrowhead" points="408,472 396,466.4 396,477.6" fill="black" transform="rotate(270,400,472)"/>
              <polygon class="arrowhead" points="384,296 372,290.4 372,301.6" fill="black" transform="rotate(90,376,296)"/>
              <polygon class="arrowhead" points="360,336 348,330.4 348,341.6" fill="black" transform="rotate(0,352,336)"/>
              <polygon class="arrowhead" points="280,416 268,410.4 268,421.6" fill="black" transform="rotate(0,272,416)"/>
              <polygon class="arrowhead" points="272,168 260,162.4 260,173.6" fill="black" transform="rotate(90,264,168)"/>
              <polygon class="arrowhead" points="152,168 140,162.4 140,173.6" fill="black" transform="rotate(90,144,168)"/>
              <polygon class="arrowhead" points="120,168 108,162.4 108,173.6" fill="black" transform="rotate(90,112,168)"/>
              <polygon class="arrowhead" points="104,192 92,186.4 92,197.6" fill="black" transform="rotate(0,96,192)"/>
              <g class="text">
                <text x="52" y="52">Endorser</text>
                <text x="176" y="52">Reference</text>
                <text x="292" y="52">Verifier</text>
                <text x="400" y="52">Relying</text>
                <text x="176" y="68">Value</text>
                <text x="288" y="68">Owner</text>
                <text x="400" y="68">Party</text>
                <text x="172" y="84">Provider</text>
                <text x="400" y="84">Owner</text>
                <text x="312" y="116">Appraisal</text>
                <text x="192" y="132">Reference</text>
                <text x="300" y="132">Policy</text>
                <text x="344" y="132">for</text>
                <text x="180" y="148">Values</text>
                <text x="308" y="148">Evidence</text>
                <text x="212" y="196">Verifier</text>
                <text x="100" y="244">Evidence</text>
                <text x="320" y="244">Attestation</text>
                <text x="304" y="260">Results</text>
                <text x="52" y="324">Attester</text>
                <text x="416" y="324">Relying</text>
                <text x="472" y="324">Party</text>
                <text x="236" y="340">enrollment</text>
                <text x="52" y="356">workload</text>
                <text x="412" y="356">credential</text>
                <text x="484" y="356">broker</text>
                <text x="156" y="404">authentication</text>
                <text x="152" y="420">work-data</text>
                <text x="332" y="420">RATS</text>
                <text x="384" y="420">Unaware</text>
                <text x="344" y="436">Relying</text>
                <text x="400" y="436">Party</text>
                <text x="344" y="452">Collaborating</text>
                <text x="424" y="452">Party</text>
                <text x="340" y="484">RATS-Unaware</text>
                <text x="332" y="500">Authentication</text>
                <text x="364" y="516">Policy</text>
                <text x="348" y="548">RATS-Unaware</text>
                <text x="320" y="564">Relying</text>
                <text x="376" y="564">Party</text>
                <text x="344" y="580">Owner</text>
              </g>
            </svg>
          </artwork>
          <artwork type="ascii-art" align="center"><![CDATA[
   .----------.   .-----------.  .----------.  .---------.
   | Endorser +.  | Reference |  | Verifier |  | Relying |
   '----------' | |   Value   |  |  Owner   |  |  Party  |
                | | Provider  |  '-+--------'  |  Owner  |
                | '-+---------'    |           '-------+-'
                |   |              | Appraisal         |
                |   | Reference    | Policy for        |
                |   | Values       | Evidence          |
                v   v              v                   |
               .-------------------------.             |
          .--->|         Verifier        +------.      |
         |     '-------------------------'       |     |
         |                                       |     |
         | Evidence                  Attestation |     |
         |                           Results     |     |
         |                                       |     |
         |                                       v     v
   .-----+----.                                .-------------------.
   | Attester |                                |   Relying Party   |
   |----------|------------enrollment--------->|-------------------|
   | workload |                                | credential broker |
   '-----+----'                                '-------------------'
          \
           \   authentication        .---------------------.
            `----work-data---------->|    RATS Unaware     |
                                     |    Relying Party    |
                                     | Collaborating Party |
                                     '---------------------'
                                       RATS-Unaware ^
                                     Authentication |
                                             Policy |
                                     .--------------+-.
                                     |  RATS-Unaware  |
                                     | Relying Party  |
                                     |     Owner      |
                                     '----------------'

]]></artwork>
        </artset>
      </figure>
      <section anchor="types-of-credentials">
        <name>Types of Credentials</name>
        <t>There are three kinds of credentials that can be involved.
Some workloads might use a few of each, possibly with each one being used with a different RATS Unaware Party.</t>
        <ol spacing="normal" type="1"><li>
            <t>The Credential Broker is also an Identity Provider (IdP), and acts as an Registration Authority (possibly including the Certification Authority).  It issues new credentials in the form of PKIX certificates to each trustworthy workload.</t>
          </li>
          <li>
            <t>The Credential Broker is a respository for a credential issued by another Identity Provider (IdP).
The Credential Broker has both the private key (encrypted) and the certificate, and it discloses these to trustworthy workloads by returning them in a unique encryption, bound to the workload identity.</t>
          </li>
          <li>
            <t>The Credential Broker is a resposity for a bearer token issued by a Resource Owner, or a Workload Identity Tokens (WITs) defined in Section 3.1 of <xref target="I-D.ietf-wimse-identifier"/>.
The Credential Broker discloses this to trustworthy workloads by returning them in a unique encryption, bound to the workload identity.</t>
          </li>
        </ol>
        <t>The use of a shared assymetric private key is unorthodox.
This architecture is justified by the need to rapidly scale the number of workers and to recover from hardware or network failures.
The alternatives is that external Identity Providers would need to be willing to respond to spikes of hundreds of credential requests within a small period of time.
This would look like a denial of service attack, and it may also require additional human authorization for each.</t>
        <t>The patterns of communication shown in figure <xref target="credential-arch"/> are designed specifically such that as few modifications are required to the workload, and no changes to the Collaborating Party are required.</t>
      </section>
      <section anchor="deployment-of-credentials">
        <name>Deployment of Credentials</name>
        <t>Workloads are expected to include a (virtual) Trusted Platform Module (TPM) (or equivalent) by which they will collect and sign Evidence to be used in the Remote Attestation process.</t>
        <t>The credential that will be shared by the Credential Broker will be encrypted to a key involved in the Remote Attestation process.
The most natural mechanism is to encrypt to a key that is available only to the TPM.
The credential are then decrypted by the TPM, and the keypair can then be made available to the workload, while never permitting the workload to ever see the key.</t>
        <t>In this way, a workload that be designed to do mutual TLS using a client-certificate, and for which the location of the private key can be configured to be in a TPM, can be adapted to the mechanism described in this document without any significant change to the workload itself.</t>
      </section>
    </section>
    <section anchor="details-of-protocol">
      <name>Details of protocol</name>
      <t>As there are three major types of credentials that may be used, it is not unreasonable that they may get provisioned in different ways, using different protocols.</t>
      <section anchor="use-of-enrollment-over-secure-transport-est">
        <name>Use of Enrollment over Secure Transport (EST)</name>
        <t>EST (<xref target="RFC7030"/>) describes a mechanism to enroll with a certification authority using a TLS secured HTTP based protocol.</t>
        <section anchor="credential-broker-as-identity-provider">
          <name>Credential Broker as Identity Provider</name>
          <t>EST is used by the hypervisor (or container orchestrator) to connect to the Identity Provider.
The EST protocol is extended to include transmission of Evidence from the Attester to the Identity Provider.
This Identity Provider acts as a RATS Relying Party, in Background-Check mode.
The Evidence is passed to an appropriately trusted Verifier, and evaluated.</t>
          <t>Based upon the Attestation Results, the Identity Provide then allows the hypervisor to use the EST /simpleenroll mechanism to provide a CSR, and retrieve an appropriate certificate.
The private key for the certificate can be generated within a TPM, never to leave.
The hypervisor then inserts the certificate into an appropriate place for inline transmission by mutual TLS.</t>
          <t>There are three ways to handle the Evidence:</t>
          <ul spacing="normal">
            <li>
              <t>via a new, Remote Attestation extension to EST</t>
            </li>
            <li>
              <t>using <xref target="I-D.ietf-lamps-csr-attestation"/> extensions to the CSR itself</t>
            </li>
            <li>
              <t>within TLS itself, using for instance, <xref target="I-D.fossati-seat-expat"/>, or whichever protocol the SEAT WG standardizes</t>
            </li>
          </ul>
        </section>
        <section anchor="credential-broker-as-secure-repository">
          <name>Credential Broker as Secure Repository</name>
          <t>EST is used by the hypervisor (or container orchestrator) to connect to the Secure Repository
The EST protocol is extended to include transmission of Evidence from the Attester to the Secure Repository.</t>
          <t>The EST /serverkeygen mechanism is used.
The server does not generate a fresh key, but rather retrieves the keypair (private key and certificate) from the store.
This is encrypted back to the client using one of the mechanisms described in RFC7030.
(TBD: This needs more detail, particularly for the mTLS used in the EST)</t>
          <t>As before, there are three possible ways to transmit the Evidence:</t>
          <ul spacing="normal">
            <li>
              <t>via a new, Remote Attestation extension to EST</t>
            </li>
            <li>
              <t>using <xref target="I-D.ietf-lamps-csr-attestation"/> extensions to the CSR itself.  The serverkeygen mechanism still sends a CSR, with a fake public key.</t>
            </li>
            <li>
              <t>within TLS itself, using for instance, <xref target="I-D.fossati-seat-expat"/>, or whichever protocol the SEAT WG standardizes</t>
            </li>
          </ul>
        </section>
        <section anchor="credential-broker-as-short-term-bearer-token-issuer">
          <name>Credential Broker as short-term Bearer Token issuer</name>
          <t>EST is not appropriate for this use case.
Another protocol will be required.</t>
          <t>TBD.</t>
        </section>
      </section>
    </section>
    <section anchor="security-considerations">
      <name>Security Considerations</name>
      <t>All communications between entities (Workload to Credential Authority, Workload to Verifier etc) <bcp14>MUST</bcp14> be secured using mutually authenticated, confidential, and integrity-protected channels (e.g., TLS).</t>
      <t>In addition to the considerations herein, Verifier, which is a central point of anchor for Trustworthy Workload Identifer <bcp14>MUST</bcp14> follow the security guidance detailed in the "Security and Privacy considerations" as detailed in the RATS Architecture Section <xref target="RFC9334" section="11" sectionFormat="bare"/> and Section <xref target="RFC9334" section="12" sectionFormat="bare"/> of <xref target="RFC9334"/>.</t>
      <t>The credential key <bcp14>MUST</bcp14> always be stored securely at all time, for example in a secure element of the underlying platform running the Workload.</t>
      <t>There is a risk that a live Workload Migration may render some of the claims about the Workload invalid (e.g., live-migrating a Workload between Germany and France may incorrectly preserve the "Country=Germany" claim, but correctly preserve the "Region=Europe" claim).</t>
    </section>
    <section anchor="privacy-considerations">
      <name>Privacy Considerations</name>
      <t>Remote Attestation of a Workload requires exchange of attestation related messages, for example, Evidence and Attestation Results. This can potentially leak sensitive information about the Workload.</t>
      <t>Confidentiality: Encryption could be used to prevent unauthorised parties from accessing sensitive information from Evidence or Attestation Results.
This is crucial in multi-tenant environments.
The Credential Key to be released to a Workload <bcp14>MUST</bcp14> always be encrypted to avoid potential leakage to unauthorised actors.</t>
    </section>
    <section anchor="iana-considerations">
      <name>IANA Considerations</name>
      <t>This document has no IANA actions (yet).</t>
    </section>
  </middle>
  <back>
    <references anchor="sec-combined-references">
      <name>References</name>
      <references anchor="sec-normative-references">
        <name>Normative References</name>
        <reference anchor="RFC7030">
          <front>
            <title>Enrollment over Secure Transport</title>
            <author fullname="M. Pritikin" initials="M." role="editor" surname="Pritikin"/>
            <author fullname="P. Yee" initials="P." role="editor" surname="Yee"/>
            <author fullname="D. Harkins" initials="D." role="editor" surname="Harkins"/>
            <date month="October" year="2013"/>
            <abstract>
              <t>This document profiles certificate enrollment for clients using Certificate Management over CMS (CMC) messages over a secure transport. This profile, called Enrollment over Secure Transport (EST), describes a simple, yet functional, certificate management protocol targeting Public Key Infrastructure (PKI) clients that need to acquire client certificates and associated Certification Authority (CA) certificates. It also supports client-generated public/private key pairs as well as key pairs generated by the CA.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7030"/>
          <seriesInfo name="DOI" value="10.17487/RFC7030"/>
        </reference>
        <reference anchor="RFC5280">
          <front>
            <title>Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile</title>
            <author fullname="D. Cooper" initials="D." surname="Cooper"/>
            <author fullname="S. Santesson" initials="S." surname="Santesson"/>
            <author fullname="S. Farrell" initials="S." surname="Farrell"/>
            <author fullname="S. Boeyen" initials="S." surname="Boeyen"/>
            <author fullname="R. Housley" initials="R." surname="Housley"/>
            <author fullname="W. Polk" initials="W." surname="Polk"/>
            <date month="May" year="2008"/>
            <abstract>
              <t>This memo profiles the X.509 v3 certificate and X.509 v2 certificate revocation list (CRL) for use in the Internet. An overview of this approach and model is provided as an introduction. The X.509 v3 certificate format is described in detail, with additional information regarding the format and semantics of Internet name forms. Standard certificate extensions are described and two Internet-specific extensions are defined. A set of required certificate extensions is specified. The X.509 v2 CRL format is described in detail along with standard and Internet-specific extensions. An algorithm for X.509 certification path validation is described. An ASN.1 module and examples are provided in the appendices. [STANDARDS-TRACK]</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="5280"/>
          <seriesInfo name="DOI" value="10.17487/RFC5280"/>
        </reference>
        <reference anchor="RFC7515">
          <front>
            <title>JSON Web Signature (JWS)</title>
            <author fullname="M. Jones" initials="M." surname="Jones"/>
            <author fullname="J. Bradley" initials="J." surname="Bradley"/>
            <author fullname="N. Sakimura" initials="N." surname="Sakimura"/>
            <date month="May" year="2015"/>
            <abstract>
              <t>JSON Web Signature (JWS) represents content secured with digital signatures or Message Authentication Codes (MACs) using JSON-based data structures. Cryptographic algorithms and identifiers for use with this specification are described in the separate JSON Web Algorithms (JWA) specification and an IANA registry defined by that specification. Related encryption capabilities are described in the separate JSON Web Encryption (JWE) specification.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="7515"/>
          <seriesInfo name="DOI" value="10.17487/RFC7515"/>
        </reference>
        <reference anchor="I-D.ietf-wimse-workload-creds">
          <front>
            <title>WIMSE Workload Credentials</title>
            <author fullname="Brian Campbell" initials="B." surname="Campbell">
              <organization>Ping Identity</organization>
            </author>
            <author fullname="Joseph A. Salowey" initials="J. A." surname="Salowey">
              <organization>CyberArk</organization>
            </author>
            <author fullname="Arndt Schwenkschuster" initials="A." surname="Schwenkschuster">
              <organization>Defakto Security</organization>
            </author>
            <author fullname="Yaron Sheffer" initials="Y." surname="Sheffer">
              <organization>Intuit</organization>
            </author>
            <author fullname="Yaroslav Rosomakho" initials="Y." surname="Rosomakho">
              <organization>Zscaler</organization>
            </author>
            <date day="2" month="July" year="2026"/>
            <abstract>
              <t>   The WIMSE architecture defines authentication and authorization for
   software workloads in a variety of runtime environments, from the
   most basic ones up to complex multi-service, multi-cloud, multi-
   tenant deployments.

   This document defines the credentials that workloads use to represent
   their identity.  They can be used in various protocols to
   authenticate workloads to each other.  To use these credentials,
   workloads must provide proof of possession of the associated private
   key material, which is covered in other documents.  This document
   focuses on the credentials alone, independent of the proof-of-
   possession mechanism.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-wimse-workload-creds-02"/>
        </reference>
        <reference anchor="RFC2119">
          <front>
            <title>Key words for use in RFCs to Indicate Requirement Levels</title>
            <author fullname="S. Bradner" initials="S." surname="Bradner"/>
            <date month="March" year="1997"/>
            <abstract>
              <t>In many standards track documents several words are used to signify the requirements in the specification. These words are often capitalized. This document defines these words as they should be interpreted in IETF documents. This document specifies an Internet Best Current Practices for the Internet Community, and requests discussion and suggestions for improvements.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="2119"/>
          <seriesInfo name="DOI" value="10.17487/RFC2119"/>
        </reference>
        <reference anchor="RFC8174">
          <front>
            <title>Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words</title>
            <author fullname="B. Leiba" initials="B." surname="Leiba"/>
            <date month="May" year="2017"/>
            <abstract>
              <t>RFC 2119 specifies common key words that may be used in protocol specifications. This document aims to reduce the ambiguity by clarifying that only UPPERCASE usage of the key words have the defined special meanings.</t>
            </abstract>
          </front>
          <seriesInfo name="BCP" value="14"/>
          <seriesInfo name="RFC" value="8174"/>
          <seriesInfo name="DOI" value="10.17487/RFC8174"/>
        </reference>
        <reference anchor="I-D.ietf-lamps-csr-attestation">
          <front>
            <title>Use of Remote Attestation with Certification Signing Requests</title>
            <author fullname="Mike Ounsworth" initials="M." surname="Ounsworth">
              <organization>Cryptic Forest Software</organization>
            </author>
            <author fullname="Hannes Tschofenig" initials="H." surname="Tschofenig">
              <organization>Siemens</organization>
            </author>
            <author fullname="Henk Birkholz" initials="H." surname="Birkholz">
              <organization>Fraunhofer SIT</organization>
            </author>
            <author fullname="Monty Wiseman" initials="M." surname="Wiseman">
              <organization>Independent</organization>
            </author>
            <author fullname="Ned Smith" initials="N." surname="Smith">
         </author>
            <date day="16" month="June" year="2026"/>
            <abstract>
              <t>   Certification Authorities (CAs) issuing certificates to Public Key
   Infrastructure (PKI) end entities may require a certificate signing
   request (CSR) to include additional verifiable information to confirm
   policy compliance.  For example, a CA may require an end entity to
   demonstrate that the private key corresponding to a CSR's public key
   is secured by a hardware security module (HSM), is not exportable,
   etc.  The process of generating, transmitting, and verifying
   additional information required by the CA is called remote
   attestation.  While work is currently underway to standardize various
   aspects of remote attestation, a variety of proprietary mechanisms
   have been in use for years, particularly regarding protection of
   private keys.

   This specification defines ASN.1 structures which may carry
   attestation data for PKCS#10 and Certificate Request Message Format
   (CRMF) messages.  Both standardized and proprietary attestation
   formats are supported by this specification.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-lamps-csr-attestation-28"/>
        </reference>
      </references>
      <references anchor="sec-informative-references">
        <name>Informative References</name>
        <reference anchor="RFC9334">
          <front>
            <title>Remote ATtestation procedureS (RATS) Architecture</title>
            <author fullname="H. Birkholz" initials="H." surname="Birkholz"/>
            <author fullname="D. Thaler" initials="D." surname="Thaler"/>
            <author fullname="M. Richardson" initials="M." surname="Richardson"/>
            <author fullname="N. Smith" initials="N." surname="Smith"/>
            <author fullname="W. Pan" initials="W." surname="Pan"/>
            <date month="January" year="2023"/>
            <abstract>
              <t>In network protocol exchanges, it is often useful for one end of a communication to know whether the other end is in an intended operating state. This document provides an architectural overview of the entities involved that make such tests possible through the process of generating, conveying, and evaluating evidentiary Claims. It provides a model that is neutral toward processor architectures, the content of Claims, and protocols.</t>
            </abstract>
          </front>
          <seriesInfo name="RFC" value="9334"/>
          <seriesInfo name="DOI" value="10.17487/RFC9334"/>
        </reference>
        <reference anchor="I-D.mihalcea-seat-use-cases">
          <front>
            <title>Security Goals and Use Cases for Integrating Remote Attestation with Secure Channel Protocols</title>
            <author fullname="Ionuț Mihalcea" initials="I." surname="Mihalcea">
              <organization>Arm</organization>
            </author>
            <author fullname="Muhammad Usama Sardar" initials="M. U." surname="Sardar">
              <organization>TU Dresden</organization>
            </author>
            <author fullname="Thomas Fossati" initials="T." surname="Fossati">
              <organization>Linaro</organization>
            </author>
            <author fullname="Tirumaleswar Reddy.K" initials="T." surname="Reddy.K">
              <organization>Nokia</organization>
            </author>
            <author fullname="Yuning Jiang" initials="Y." surname="Jiang">
         </author>
            <author fullname="Meiling Chen" initials="M." surname="Chen">
              <organization>China Mobile</organization>
            </author>
            <date day="16" month="June" year="2026"/>
            <abstract>
              <t>   This document outlines desirable security goals and use cases for
   integrating remote attestation (RA) capabilities with secure channel
   establishment protocols (e.g., TLS and DTLS).  Peer authentication in
   such protocols establishes trust in a peer's network identifiers but
   provides no assurance regarding the integrity of its underlying
   software and hardware stack.  Remote attestation addresses this gap
   by enabling a peer to provide verifiable evidence about the current
   state of the Target Environment.  This document specifies a set of
   essential security goals the protocol solution must have, including
   cryptographic binding to the secure connection, evidence freshness,
   and flexibility to support different attestation models.  It then
   explores relevant use cases, such as confidential data collaboration
   and secure secrets provisioning, to motivate the need for this
   integration.  This document is intended to serve as an input to the
   design of protocol solutions within the SEAT working group.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-mihalcea-seat-use-cases-03"/>
        </reference>
        <reference anchor="I-D.ietf-wimse-arch">
          <front>
            <title>Workload Identity in a Multi System Environment (WIMSE) Architecture</title>
            <author fullname="Joseph A. Salowey" initials="J. A." surname="Salowey">
              <organization>Palo Alto Networks</organization>
            </author>
            <author fullname="Yaroslav Rosomakho" initials="Y." surname="Rosomakho">
              <organization>Zscaler</organization>
            </author>
            <author fullname="Hannes Tschofenig" initials="H." surname="Tschofenig">
              <organization>University of the Bundeswehr Munich</organization>
            </author>
            <date day="6" month="July" year="2026"/>
            <abstract>
              <t>   The increasing prevalence of cloud computing and micro service
   architectures has led to the rise of complex software functions being
   built and deployed as workloads, where a workload is defined as
   software executing for a specific purpose, potentially comprising one
   or more running instances.  This document discusses an architecture
   for designing and standardizing protocols and payloads for conveying
   workload identity and security context information.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-wimse-arch-08"/>
        </reference>
        <reference anchor="I-D.ietf-wimse-identifier">
          <front>
            <title>Workload Identifier</title>
            <author fullname="Yaroslav Rosomakho" initials="Y." surname="Rosomakho">
              <organization>Zscaler</organization>
            </author>
            <author fullname="Joseph A. Salowey" initials="J. A." surname="Salowey">
              <organization>Palo Alto Networks</organization>
            </author>
            <date day="6" month="July" year="2026"/>
            <abstract>
              <t>   This document defines a canonical identifier for workloads, referred
   to as the Workload Identifier.  A Workload Identifier is a URI that
   uniquely identifies a workload within the context of a specific trust
   domain.  This identifier can be embedded in Workload Identity
   Credentials, including X.509 certificates and JWT-based tokens, to
   support authentication, authorization, and policy enforcement across
   diverse systems.  The Workload Identifier format ensures
   interoperability, facilitates secure identity federation, and enables
   consistent identity semantics.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-ietf-wimse-identifier-03"/>
        </reference>
        <reference anchor="TWISIGDef" target="https://github.com/confidential-computing/twi/blob/main/TWI_Definitions.md">
          <front>
            <title>Trustworthy Workload Identity (TWI) Special Interest Group — Definitions</title>
            <author>
              <organization>Confidential Computing Consortium Trustworthy Workload Identity SIG</organization>
            </author>
            <date>n.d.</date>
          </front>
        </reference>
        <reference anchor="I-D.fossati-seat-expat">
          <front>
            <title>Remote Attestation with Exported Authenticators</title>
            <author fullname="Muhammad Usama Sardar" initials="M. U." surname="Sardar">
              <organization>TU Dresden</organization>
            </author>
            <author fullname="Thomas Fossati" initials="T." surname="Fossati">
              <organization>Linaro</organization>
            </author>
            <author fullname="Tirumaleswar Reddy.K" initials="T." surname="Reddy.K">
              <organization>Nokia</organization>
            </author>
            <author fullname="Yaron Sheffer" initials="Y." surname="Sheffer">
              <organization>Intuit</organization>
            </author>
            <author fullname="Hannes Tschofenig" initials="H." surname="Tschofenig">
              <organization>University of the Bundeswehr Munich</organization>
            </author>
            <author fullname="Ionuț Mihalcea" initials="I." surname="Mihalcea">
              <organization>Arm Limited</organization>
            </author>
            <date day="4" month="July" year="2026"/>
            <abstract>
              <t>   This specification defines a method for two parties in a
   communication interaction to exchange Evidence and Attestation
   Results using exported authenticators, as defined in [RFC9261].
   Additionally, it introduces the cmw_attestation extension, which
   allows attestation credentials to be included directly in the
   Certificate message sent during the Exported Authenticator-based
   post-handshake authentication.  The approach supports both the
   passport and background check models from the RATS architecture while
   ensuring that attestation remains bound to the underlying
   communication channel.

              </t>
            </abstract>
          </front>
          <seriesInfo name="Internet-Draft" value="draft-fossati-seat-expat-03"/>
        </reference>
      </references>
    </references>
    <?line 360?>

<section numbered="false" anchor="acknowledgments">
      <name>Acknowledgments</name>
    </section>
  </back>
  <!-- ##markdown-source:
H4sIAAAAAAAAA81c63Ibx5X+P0/RS1etSAuAJNupxKzYCSVRFhPR4pKUFe9m
N27MNIAx54JMz4CCJaXyEPsA+yz7KPske75zunt6MKClVGW3gvKFmOnL6XO/
NabTadLmbWGO1XXT2fa2btrVVp1WTV0UpalaVS/UlUm7xqgnjcnoSa4Lm+j5
vDGbY3V69STJ6rTSJa2QNXrRTudZ1Uwb3dpp2684TfvJ04ePklS3Zlk322OV
V4s6ydfNseLhnz18+OXDzxLdGH0sG+ftNrldHqvLk+sr9bpubvJqqb5p6m6d
2FZX2Z90UVeGp5vEdvMytzavq3a7podnp9fPkqor56Y5TjLa9DhJCOzPkyS5
MVuCLTtO1FRFkCr6301R60zlDDDtTgMaU9atUbptDW3a0vp4Sn/OC9PPiA5J
25iqo+3UEqAK+IkSqIanUKXOi2MFlP02N+1iVjdLmpa3q25+rA7KtHnQ3uaM
0oMkWed0BKWaRWoy225Bua2x9KSt0+jPvAIk/oGlozVmYcP3bTn42jZ5Ggan
dQnKh7etedNOi9y2U5o2rwt6Ma0/vU9viPKlXq/pKDI2SXTXrmpC9ZToSuPO
Z+rbeqNvaKywyLlubsIjOuexUr+bXczUOf2tK/Vkpa2hN0ZQUtLo2WJWYfxv
f1yXKV7PCL4k2uAyp8dNZkESvwsemWL4ine7IoYxRUlbXdWL9pbYjIlhoz3T
5j6o8Fvrh85SLTgyhnB0cMAoyoz/kzjE/dmYJTFGGNJVLRj8ia50pj3EAcbn
prpRj/PmZlUXPwVkPGt0tdLdwjTqrLLtrIcL42d+vPBJSlyu05bQXtVNSVy5
Ab+py2dPfvnw84cQzuskgXwNX375+edfeH5UZ9OnszJf6SI1emqNbqedNdOU
8EzYvTo9uX51deqGYc/pbV7Se92kK2Ljs/N9L0VuFjmJnAw5e0qDrl+fXZ19
89QsAIVS0+P+CT9odbMEfldtu7bHDx4I/4PYD+ici9wJ1pQerLuWWA5C8WBe
1PMHhKDqAa32J1orr3JIp52VmSw7Vm6vvbieOQFXhzT5SF2tTUo7EOJb05CY
i3iq//nrf6poYV7Vs7niD5PuSQQkfXFA4jGEL+/KD8BAqCBCTqdTpefEa0zX
61rNSb2QCmxNpQpt8WxFwKncKk0PCGUqpecWavoAJJ2+qjTY+kBdmmILCC40
bW+sOrx8dWGPVLvSrTphPWYaqyqzMQSRKYzFF5OR8iBGpXf12pDKoe2JELPk
9A0pACyXmXVRb2mcNc0mT42dqNsVyZlaN4ZUkqENDBZo6qxLgTGAdinq86RX
nxOoeHqFg2X5YpGnXdFib5LYamkedGtoa1pI2XxZETelmozRrd5alXUGA0na
ukK3ZEQUSSrp3u26rZeNXhM09HKTm1u1ros8pcPPku9NC8hoT+wbr6mzDf1P
LwlF+YKwmUP3KXoF3OcV6XRoQ10UWyVAZYAKp+ytRl4ZoQEerwkqyNwMxCJC
kZbs2JRmpiVRBuXWTU06ui7UfOuwF9ZbDRckMHpi0WJyMIJBW7UmyoZNmzp1
U/KWIAep6NmGWDJjEpINKI0CXG7ZwHlPPXyHWpFRnBA/E4i9LTsCtsHx+ArD
je9gJn9AC8EBNpnceVF0YGACWq3qW4aObfcJKY28NWkLZ8Lhl6wHIXw/0/Ee
wJCcAyfqUSFH6ghzo3MALshRmWdZYZLkE0h0YMckuepSjypNxi1dVXVRL7fA
LvFgTrqSJEeVRlsCNAMAOTGEzuo15s8ggXsO1Jg/dzmpDREwfr8rgR0ZlIZ9
llgSaJilfa0yb0iErKUtO4tpPBLmS85JBCd1zLx+cvnF1dmEJpB/BLFarxud
W9I7F+D3Lai8b4cJT17pjWM18PF3pmFVTUg7yTJWcWD1iRMW6JmKAMdKzHS2
KxkNEHcLpnGyMEYI40E7ecawUzBjlRoy61tVGM1UjweYHJvycvvwg0N95Eln
ihnT0YSZG5uua0sstyP9QlZFliS9MQ3xzsvKQA4Gs7GPFb5ZdIVTgt4/Hms3
MqDrgWvIsluSDSkJ9jk0Ofl7Wd4R2l+TXBFQvdtJA+sNIXvR1CW0vFlqOinj
StxQ4k7niGKLQzNbzsS40KRT5gkC4UiZapM3dQUoJ1BkRccyBPNWqKtv/jBR
J+dPycZ/N7369mKiiKvOZZl/JX96IvTrXVuwAWFvfFZAVs9Js+EUDibwWexT
j3UNaT0aB8HyGhdzYFMg3VmtqrrFv2Rh6M0WGnHJhoK4siK/KHlWNwwiMTXJ
Kpgot6Xqic6CS0JcsaCLktVRDKMeNzXRG9N/T8T231j3RaNO2NID9FbfkAzX
wu4UHhkm/a6cb2eiE53uZfFhzVaaLBd8zU17a0y1X0J3lYA4b3eqAEa0Ez9v
+kd653bFfN9rcOyImeLG5D/JE28sRVQ+aM2JC096LnwdGB0LN3BaK8WnS1l4
KEYjg0TKps7EUOalCVT8efhZF+EAQVR100BlsSk3RU5yBe00AX5kKFsOzWZG
5BC6Pjo/LU5f8iYwH4lMkf+E52SRyAo1OazQPtPC1BVpIlRZii/gC20pZEIQ
BcVBrtbc0GM6GfFUZY8mcWAYSeLF78/+oFJyv8R40nJv3/4TOei/+OxXD9+/
n6jfvb72j375i0e/wCNCF7vU9F95t+N7e3nleNu+fz9LzsCwBDK9KbJJpFwJ
PhJo+/MSzToo6PcBoyvnLfAhAVh/SNEdtCmcdVqSNSEMNq/06uJuz4j4MrYh
wT1ySnCsR8ZPKPzvNJsZrxWEFRrS2Tr13pC46inc/RGReQnw07xre7h1MI8Q
DtYylgAFa0WWYQ82nYcWmYJK/bmj1+xNJJ98ok6CWSVQ5zXt2scHZdmRhBF3
ttuEbAW0prihImndmlxecCLRLN5loBmUlywhHExJRiP2AcsCw7sx0qCFyWpa
JmHuWGlgWNitFBsegJAFwSnRUEcEp5xzsEzGMgJt71U8c4aJ/YzceVSDw0FD
wXtkBiOUZMSvPxLPMBsiKib/uen93zmYldZvMvaZSUe/bPYuyDasoLN0FA/w
4ckLzEnTyQEzrO8w7viooigj4IwjjZMWbGzetHAd6P+6XBdkTskrT+uuyBhu
qN8Umkc9efn45QtASouW/XFI5cLevz65OndHm0B7rvQaQlVV9EC8ZpyiMrCz
N2qTa/q3aTuwqKbh05b+y5wQHjdsjMQkLUgcCOBnHQJAsn1iY0iZkXIoGSWO
XDgNKbJ8I4vF/pMLtIDhytuTFrgkpT/iixTPdLHEmFXpY4CSsCl0t7GUNF0l
9PCwlzpFXKQOvzsX3HdVTnJEWqipTHHEypEnBA7IfyIkxSx4iNwWMZWbwr78
VmJg3k+Mi1HIGkFggoH1Ifdqu0bYa+EmVNkD+l9N+spwvANujTcTB7hpHAp2
hZNYngNuApETHMtO1kD48ry+BUzMNdgX4gB6Y0UWOKy2qIuivoWUeTR/Shj9
1KP0OEk+DazheIY1DNw4UipA6fWLq96HIKos86CuSLevdc42ImMLLqZy141w
NIzkwx/GyR0tyDFd3QAerEybcgJt4pzAeZcX7TSvPJdwTCjLT8L6/aI0qmM3
3qWlTwtx0Wnr64tz5wMQlrom5XjXhcf5BhadTjVT6knXwItkSEjxpTe9f/Vy
baqrqxd37/uDqZaIzn/Ahj84FdPQV6fIeldAzg2UC47DWBKn3Dr+aHVxI749
gAe4FH7F4EbLzIBBF28hQwdSxZ7GDm0mveKU1+MzQa4bWLQgoJkRMtHEmqMx
qCSKByoJwIacGqL4LOu1kfERyEAYiBWYxwa84KC7W4Tc+qx+7lS5/BRGU1N0
kHrnLgqoWmuKRcKW9nlNdqmAi+mSR0lyQuFWC3Szu63TVtSId5puYgvk0ke9
knIyDomrJDcE38klMeABu9SIWhqXm/J5AGSD1yKSYp8o/iRCBBUqeYZokM/w
OEyG9BcraueQKjJboBSDVSLEh1YDfhzbWJaZbGjCb0W/SYwMgwUtm1frzkVl
hFv+e8fFmDmV7fZ0MZukF6CeOmJkyTPseECqvq0gBgT72DtxHsAdubU4SsZu
em7rAjmQw6p2m7Eyz+F1r0SLxvrbZzidLLJmbdhbFJavih3s3rNyPsUxHac8
RJqrOvYIKay/FcNBBEJw52MmQ2g6fMYshXxOasQFlzWBb8YXRX1FjWD4piLc
OActeJs+DMKBt4ZtrtGFaNtF/kYU7QDqI3A7cs8bqAN2KwnkOIv99lh9kvXf
1XvGOvQNimJWHZy/uro+mMj/1bcv+e/L0395dXZ5+hR/Xz0/efEi/JG4EVfP
X7568bT/q5/55OX5+em3T2UyPVWDR8nB+cn3B4LZg5cX12cvvz15cRDkMAQK
wHFbi6tGqosoImmphFzgtMnn4lk+fnLx3//16AsXO3326NGX79+7L7969Msv
6AuxfCW7McnlK6Fwm5D1IZXKjgTxL+mZnFS05djSrkAcMBM08b8BM/9+rH49
T9ePvvjaPcCBBw89zgYPGWfjJ6PJgsQ9j/ZsE7A5eL6D6SG8J98Pvnu8Rw9/
/ZsCymD66Fe/+TrZjdo4fERqQ9iLbENq1tAE4KueKyVgxQiW9jjAE7zeGsK0
s9uy3M4KH6ic7K/bOOPywbrMjJMQEkoUxE5qWVDAoxsKba0xxDZXTgF/ASU0
xRkQib99O+WDETP9M76EahaCbhamWLygvvhkRX7zofMAU+FplIoqdcuFAiRz
nF2JUPT6DCWkWMbHUEmS6zg55ghFdmO9lxlkJmBDSaKmxtd6OJkxiOxnjDgy
1bYVr2VvqkxidjIjrRVr3ac/CIrLVxcAIaTRh8EpylRH5KOduIqgrzO5nAJo
TDbaFQBKONE+hzPXnDZbwyuN8i0+CqQ1JSuMigX50MhAwYMpCpM5TikKir4b
8QS8MfKUAMgRzYVDrbrn398DBx9wtk8UPScGfJHZOUWS0EOM5f2CddcgK30w
U89hpG6hxKUc7ynj6enN7xps63mK2cwX5PxmYCDOrMbOWu+q2E5iZVRxRgmA
6MTqqZuKo2OnIl8Yu9ajjAYwK5kJjk1678i5b2SDt5IALCiEdHkVJl0/lJN1
jWEXSlA0b3KzcClDnzGcuIqhOJx0qMyUHL7UdKo1MKOa3EqZEi+c403OhuNo
LM0an5izayUyJWqU0PULMJZL2GiV6Zj66iVcFo+IWHRoG64d9hn8iQv62BF1
roblVIbLJsUpxj2Cbn30/DpydgrdVeQlZxFI/Qwv0esVhUINiaJvXel1tYuJ
OcNZ9e85EFXSIMPn7t2OtNB5aV0Q4ShJFrBBL8hGnA/QdOpoKlGkpP04ZgRm
pdCmvQwnyUVT0y70D5JKhht1ImEV/IqIxhXISQjPNJKiHiY5EhxBF6uEY4GB
BrltOQwx6hkD2LpqiVOepHJ8VVm8cE6Fg/57dAKAhGGQPKavnw2VKnEcEvc+
FPHVgjjRJhN9pKZ7syouzH6zA6/u5QbIJK1Kj899ihNhDGlaZKqcEPWVGwn9
g/s+KoEMCziG3fVYgYq/5WnqjkbMTK7xgpjSh6avfZSR2yjdMOnLfox3XdmF
aZo+XNwLDkmvmJnWDHOn90ZFcomTxquAhSQYZLYZ568no4Aizo3ftazrubHq
UOozmDPX6Q26vOADrUx6QwFlxgkpHcqrTjRaAd8O0p9mo4vOn9Rja+JI4gR2
XCtC8YSjeGKVnlrcmUPmSSJmORJZLeGeYW4dOhP1eV+jHySnolz+3FFFk+MS
Vb9sz9CmEe9uWAZLzhZ3lHKFNvAVUZthOlR38EIoo0nwOubNUWoYEZ51ygce
XW5XwquttjcE1V/+8heltd0s0bwzm4bPbPgV32d3fENXlnqnTqusbkizqfsz
fL00XJskRn+Hr4Hy7+Sl4OYdpt7r171H72iA+o5YwPCq+IeNTfgmfpFMHXww
9cIllXjkven9fuFooX1To7EYzMPDx0N4f3pvz9ThWP7aF+bDszsm9mjir1Ed
/wMTGUU2PApq5Wd23Lh/dx6N1t+dGPPB8DO7cyLmfN3jJZDffe4P5kcTZcq9
O3e8Nxg3mvjhz56JY9z5Tyysf9OOvknj7w3qx32EqptepO+PibXns4/OTriD
ZvsgCBgwLIy6I7zrF30X72BCc3V49PVggJ8kkATN9hGQjNV2pHDux+x052cf
J8ZK4I+xsPxRqd2CwM+g1iE3fH7AIxxvmulW96NEjAaxoVL75PsOLKgxQT5+
8h6P72Mn7xfisQa94zPogfiPj5t1MkT+RwLqP075fuSsHZLe36HmnZ93O0f7
eFrsUPFvYYBgQ9VHzxuR7x57C5wq3fGwyJPiutpUF/my+uoghd/eHEi38VcH
kR8T3aSIu+MO3nM54nq7FkcqvlvhWnw51blqKNK4yStpmhl5PqFLdVMXG6Sa
r4YBeJkvV60rly0kZDA6XU18TX8rASmekW9nXN8ou/oSqfYtV/tT9Y9m6m73
u7D1oNE0+CqHZ9nFkYSM7Etr7vy4NMs8VIH6ZNJhgLXvnGFnMTTODMYf+SDP
wlvYyT756plvgx134MAfBzb23Qih8372c+dF6oaAzbknebHTReuaSqQmKuHq
HYi5K/Tg2kLtulHiCuEh2XJ0P5vsKBRzo0NNXEKIaGnTorbGd0m19d5jcomp
McSmlcN1KXV1V293u3FwN+eoZ7f3xMfhhLDPPwphHl2DamaEMLgXUtBlsXZt
euPU6TU3XKlDdEcdhSwyAe+D6c9nj0B3n8g7e4q86H4AY2zl9v8FWQCkk7qu
9q1l2tqtKyjHNEeWpQIodVa/cV1pg/COvv9I4A6SxL761eh1npFA2VQXEnb2
GSDAxb11Ampj0ho1NG4E820RQL/vLFjovEAmX9CoCy4o47aJDYXTUGUeMTwq
rOiJ8YDhtkNeFC5zxtzhsnvr/EY05YpwiN62oT7kThVjXV5YMhmc1BvmDx2i
ZNOirm8kH09qzlRYBSlbl27WLRoDguygVMcKzbfERJmyVVf2zS8u4QR+hiJx
VF2jYbeRpC16UIg7nOKSohJa7e6O5oFyCoLJ1CDN67vtcSOB82KS2bWs4cs6
C0rRDluudhgvlDF3mnT2OUDxOtKy9nTQAT0wX68HSV3zZh2alUKVWh26pp6j
0Lh84W5NqPM669DWfH1xfqQOgUbad0OMWrVHg/sSW+YVQmdRIJ3tO5P66CZK
XPku9XHDmyurOzrt9jDyDpz41E0vR2Nl4ccFTSyJZZZUZ5w/BgaAUNa2VSRC
HRK5g85m2CZZv1/dp1z1huRQWl25hi20JBzOds8lfgWu3RgPq68hXZz33UC+
/wcuBg93bUXRTiOGkn4eaaciwSvzdtyNwQkveo8UqtsHuSLfcKG3k7gZno83
j7hfumz69iXXJq1dFWg6snsQxP6KDdK7cVNmrFL3tvz4pkDGTWh30euo/a6n
0aAIPSxchx6Vajvon3O3H0ZGgXtWIGokadIbi6S5uzaUJCc2akcRL7HUP6LZ
yXuUI1/RtThCHHxfGRoKuqox2pIeY4q6dNqWR6P6FqoXcqjeHcRVrInDfv/U
Q2hFS7wSYxZfJwbtXefWNbLBXLQ5PL26PkoS+q86fPvWXWB8//4oYNQOuvxZ
ELCk91LTgS/YtyF65uBGL9f68vz6+sLVCj20DOwne8SalOrIZgmYvsrhRCfq
Czwc9KD2vU11wxepXGrcU3y0vMgrtgiXxNBy6zugIi3KyXR325mx7PVeaNoO
SYyf2yzfc8beLd+bOEeLRch5T5+EnLeDPUr4r7X1taAqrntBRTnF7zNlIq4+
GQ4z87gv6O5PJMvVgBH4oq80uiPtLnVcF1/rcPzA5qj6O24acFhoEVJPri4n
7loD+WFmY3YOEzvbgoJYrfgWxGiQVyRLU3GnWNZ7LaxnRIOiGmX0xi0Zn2HF
DUbkqbR2tLR0Dg/h48Z3BiSvuJ9jwDq4JxP06WwcfvKlS1qUUJMVwyoF95ii
7RidVbeTfbbNtQ5L/ZpvJH/qxDK+vVDocm2nqW2m0RV7X8ew7Mt49+TqMnT0
ferxBvmWh14lLQYtV2/f/gZbLdDY0eZyz5kcE926OxVsIMRseaHDXrj/rF5/
E27i5T/hkvudqsKptUvjg8C/r6oYL/9/pylGezn/SGSGb2kRbxP/Dj0UnFPY
VcaQ/TNiZjyrIxFBfv1K7o6gEYCeIhj2smUH3sdhLElcmOpZ/agH3xKI3rnn
CwrBsyE1FZpbpYFZ+APZDucDRPdEBgbcmaFZcnj9+Omx9I5Idams2SGHXZ5I
e17aFbopemEvxTXpvT4xcCe+tj8Zme9wy8KLmyNa+48jcDOletKOyI/G2oJe
IlfldKazzguUDtfdvJD7UbN/OMGVtgY0aKnHkoG47jMQvcHnhtNIrQqxhe25
IXuWnLjUToDGBwZR9ETcNOP+TP/zJtxTBbMrURuxCYc1UZRow6VBtnR8nf91
5FHv68KaqHhEqEeZNj1S3Kk479uBBfViBXC7NLrsTc5i/PsLLiCuWrPEJlMc
VOI78EFlyNvkC6kTkPZIPHsfKvdd5vFxuaEyryaRIyD+ujSB0LYNd2TkEmoS
X6zQ94p2/7vb6PADGnxIuSThyscO3csuz7hDS0S4F9KDQBEc8gKqJ93ugHvA
vRo7E8e3n/v+jUePeLXw9bOon2McdULPMeBoKN5aJhKUW+ZoxXd/uTVV+qE4
zyB3jJRr4GDNbfytCNFx3HIuPpz/eQK0hvucVUDfbPADE01ub1x2gVu3eiyf
50uXqJVrQtzRzt1fbkNpuHG32eIdEA/rIs88m2DdaSnLsa8eBnqW/4bkEmET
sPhMmrVdy3vdNITVYiud2Y1rPD94Ij+98pWbeCDAiLW5a84l/3bLV6cdfoLA
zTji+Muzwa6Q7r/pF8EffhHAvHFRHt5Hw4ma7PyVFPujh2xAzahx5o4fDHCX
3OFLrgkS5p+Cb9bfQA2T3QbJwu+/IDAaUYNbnHrp5t+yOQ0py/7GWuj+Qe85
jGjlgiwOo9w9Y7mwzj1f/PsFe2HgQeFod1zfD5Y8bTru7SXWLvHjDKSkK4TN
0f2FcQcQ7nNL6E4YNtoHIBH3DgVsmLTZ1MScAaGMTi0R+uDQfFGEw1x1dvLt
yYg9hq3SyN1XtYzU7h7W4da0YDH+sQo4KljrJMUVAFItSz5b8vZYUrMm++pg
QbE8V47+F4KC37y2SwAA

-->

</rfc>
