From 9ae38a20e8eb732e996f8cc2a1b052ebcc9b0403 Mon Sep 17 00:00:00 2001
From: ID Bot <idbot@example.com>
Date: Thu, 4 Jul 2024 09:50:39 +0000
Subject: [PATCH] Script updating gh-pages from b28ec96. [ci skip]

---
 draft-ietf-rats-uccs.html | 275 +++++++++++++++++++++++++++++------
 draft-ietf-rats-uccs.txt  | 296 ++++++++++++++++++++++----------------
 2 files changed, 411 insertions(+), 160 deletions(-)

diff --git a/draft-ietf-rats-uccs.html b/draft-ietf-rats-uccs.html
index 4d13f57..47193b4 100644
--- a/draft-ietf-rats-uccs.html
+++ b/draft-ietf-rats-uccs.html
@@ -17,23 +17,22 @@
 
 
     " name="description">
-<meta content="xml2rfc 3.20.0" name="generator">
+<meta content="xml2rfc 3.22.0" name="generator">
 <meta content="Internet-Draft" name="keyword">
 <meta content="draft-ietf-rats-uccs-latest" name="ietf.draft">
 <!-- Generator version information:
-  xml2rfc 3.20.0
-    Python 3.11.8
+  xml2rfc 3.22.0
+    Python 3.12.3
     ConfigArgParse 1.7
     google-i18n-address 3.1.0
     intervaltree 3.1.0
-    Jinja2 3.1.2
-    lxml 4.9.3
-    platformdirs 4.2.0
+    Jinja2 3.1.4
+    lxml 4.9.4
+    platformdirs 4.2.2
     pycountry 22.3.5
     PyYAML 6.0.1
-    requests 2.31.0
-    setuptools 68.2.2
-    six 1.16.0
+    requests 2.32.3
+    setuptools 69.5.1
     wcwidth 0.2.13
 -->
 <link href="draft-ietf-rats-uccs.xml" rel="alternate" type="application/rfc+xml">
@@ -1033,11 +1032,11 @@
 <thead><tr>
 <td class="left">Internet-Draft</td>
 <td class="center">Unprotected CWT Claims Sets</td>
-<td class="right">March 2024</td>
+<td class="right">July 2024</td>
 </tr></thead>
 <tfoot><tr>
 <td class="left">Birkholz, et al.</td>
-<td class="center">Expires 5 September 2024</td>
+<td class="center">Expires 5 January 2025</td>
 <td class="right">[Page]</td>
 </tr></tfoot>
 </table>
@@ -1050,12 +1049,12 @@
 <dd class="internet-draft">draft-ietf-rats-uccs-latest</dd>
 <dt class="label-published">Published:</dt>
 <dd class="published">
-<time datetime="2024-03-04" class="published">4 March 2024</time>
+<time datetime="2024-07-04" class="published">4 July 2024</time>
     </dd>
 <dt class="label-intended-status">Intended Status:</dt>
 <dd class="intended-status">Standards Track</dd>
 <dt class="label-expires">Expires:</dt>
-<dd class="expires"><time datetime="2024-09-05">5 September 2024</time></dd>
+<dd class="expires"><time datetime="2025-01-05">5 January 2025</time></dd>
 <dt class="label-authors">Authors:</dt>
 <dd class="authors">
 <div class="author">
@@ -1117,7 +1116,7 @@ <h2 id="name-status-of-this-memo">
         time. It is inappropriate to use Internet-Drafts as reference
         material or to cite them other than as "work in progress."<a href="#section-boilerplate.1-3" class="pilcrow">¶</a></p>
 <p id="section-boilerplate.1-4">
-        This Internet-Draft will expire on 5 September 2024.<a href="#section-boilerplate.1-4" class="pilcrow">¶</a></p>
+        This Internet-Draft will expire on 5 January 2025.<a href="#section-boilerplate.1-4" class="pilcrow">¶</a></p>
 </section>
 </div>
 <div id="copyright">
@@ -1176,6 +1175,17 @@ <h2 id="name-copyright-notice">
 </li>
           <li class="compact toc ulBare ulEmpty" id="section-toc.1-1.6">
             <p id="section-toc.1-1.6.1"><a href="#section-6" class="auto internal xref">6</a>.  <a href="#name-iana-considerations" class="internal xref">IANA Considerations</a></p>
+<ul class="compact toc ulBare ulEmpty">
+<li class="compact toc ulBare ulEmpty" id="section-toc.1-1.6.2.1">
+                <p id="section-toc.1-1.6.2.1.1"><a href="#section-6.1" class="auto internal xref">6.1</a>.  <a href="#name-cbor-tag-registration" class="internal xref">CBOR Tag registration</a></p>
+</li>
+              <li class="compact toc ulBare ulEmpty" id="section-toc.1-1.6.2.2">
+                <p id="section-toc.1-1.6.2.2.1"><a href="#section-6.2" class="auto internal xref">6.2</a>.  <a href="#name-media-type-application-uccs" class="internal xref">Media-Type application/uccs+cbor Registration</a></p>
+</li>
+              <li class="compact toc ulBare ulEmpty" id="section-toc.1-1.6.2.3">
+                <p id="section-toc.1-1.6.2.3.1"><a href="#section-6.3" class="auto internal xref">6.3</a>.  <a href="#name-content-format-registration" class="internal xref">Content-Format registration</a></p>
+</li>
+            </ul>
 </li>
           <li class="compact toc ulBare ulEmpty" id="section-toc.1-1.7">
             <p id="section-toc.1-1.7.1"><a href="#section-7" class="auto internal xref">7</a>.  <a href="#name-security-considerations" class="internal xref">Security Considerations</a></p>
@@ -1426,7 +1436,7 @@ <h2 id="name-uccs-in-rats-conceptual-mes">
 If the receiver subsequently forwards UCCS, they are treated as though they originated within the receiver.<a href="#section-4-8" class="pilcrow">¶</a></p>
 <p id="section-4-9">The Secure Channel context does not govern fully formed CWTs in the
 same way it governs UCCS.
-As with EATs nested in other EATs (Section <span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25#section-4.2.18.3" class="relref">4.2.18.3</a> (<a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25#section-4.2.18.3" class="relref">Nested Tokens</a>)</span> of <span>[<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span>), the Secure
+As with EATs nested in other EATs (Section <span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28#section-4.2.18.3" class="relref">4.2.18.3</a> (<a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28#section-4.2.18.3" class="relref">Nested Tokens</a>)</span> of <span>[<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span>), the Secure
 Channel does not endorse fully formed CWTs transferred through it.
 Effectively, the COSE envelope of a CWT (or a nested EAT) shields the
 CWT Claims Set from the endorsement of the secure channel.
@@ -1454,7 +1464,7 @@ <h3 id="name-delegated-attestation">
 The sub-Attester produces a UCCS with the required CWT Claims Set and sends the UCCS through the Secure Channel to the lead Attester.
 The lead Attester then computes a cryptographic hash of the UCCS and
 protects that hash using its signing key for Evidence, for example,
-using a Detached-Submodule-Digest or Detached EAT Bundle (<span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25#section-5" class="relref">Section 5</a> of [<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span>).<a href="#section-5.1-1" class="pilcrow">¶</a></p>
+using a Detached-Submodule-Digest or Detached EAT Bundle (<span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28#section-5" class="relref">Section 5</a> of [<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span>).<a href="#section-5.1-1" class="pilcrow">¶</a></p>
 </section>
 </div>
 <div id="privacy-preservation">
@@ -1467,7 +1477,7 @@ <h3 id="name-privacy-preservation">
 session established.  In general, when a privacy preserving Secure Channel is employed for conveying a conceptual message the receiver cannot correlate the message with the senders of other received UCCS messages.<a href="#section-5.2-1" class="pilcrow">¶</a></p>
 <p id="section-5.2-2">An Attester must consider whether any UCCS it returns over a privacy
 preserving Secure Channel compromises the privacy in unacceptable ways.  As
-an example, the use of the EAT UEID Claim <span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25#section-4.2.1" class="relref">Section 4.2.1</a> of [<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span> in UCCS over a privacy
+an example, the use of the EAT UEID Claim <span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28#section-4.2.1" class="relref">Section 4.2.1</a> of [<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span> in UCCS over a privacy
 preserving Secure Channel allows a Verifier to correlate UCCS from a single
 Attesting Environment across many Secure Channel sessions. This may be
 acceptable in some use-cases (e.g., if the Attesting Environment is a
@@ -1482,41 +1492,218 @@ <h3 id="name-privacy-preservation">
       <h2 id="name-iana-considerations">
 <a href="#section-6" class="section-number selfRef">6. </a><a href="#name-iana-considerations" class="section-name selfRef">IANA Considerations</a>
       </h2>
-<p id="section-6-1">In the CBOR Tags registry <span>[<a href="#IANA.cbor-tags" class="cite xref">IANA.cbor-tags</a>]</span> as defined in <span><a href="https://rfc-editor.org/rfc/rfc8949#section-9.2" class="relref">Section 9.2</a> of [<a href="#RFC8949" class="cite xref">RFC8949</a>]</span>, IANA is requested to allocate the tag in <a href="#tab-tag-values" class="auto internal xref">Table 1</a> from
+<div id="cbor-tag-registration">
+<section id="section-6.1">
+        <h3 id="name-cbor-tag-registration">
+<a href="#section-6.1" class="section-number selfRef">6.1. </a><a href="#name-cbor-tag-registration" class="section-name selfRef">CBOR Tag registration</a>
+        </h3>
+<p id="section-6.1-1">In the CBOR Tags registry <span>[<a href="#IANA.cbor-tags" class="cite xref">IANA.cbor-tags</a>]</span> as defined in <span><a href="https://rfc-editor.org/rfc/rfc8949#section-9.2" class="relref">Section 9.2</a> of [<a href="#RFC8949" class="cite xref">RFC8949</a>]</span>, IANA is requested to allocate the tag in <a href="#tab-tag-values" class="auto internal xref">Table 1</a> from
 the Specification Required space (1+2 size), with the present document
-as the specification reference.<a href="#section-6-1" class="pilcrow">¶</a></p>
+as the specification reference.<a href="#section-6.1-1" class="pilcrow">¶</a></p>
 <span id="name-values-for-tags"></span><div id="tab-tag-values">
 <table class="center" id="table-1">
-        <caption>
+          <caption>
 <a href="#table-1" class="selfRef">Table 1</a>:
 <a href="#name-values-for-tags" class="selfRef">Values for Tags</a>
-        </caption>
+          </caption>
 <thead>
-          <tr>
-            <th class="text-right" rowspan="1" colspan="1">Tag</th>
-            <th class="text-left" rowspan="1" colspan="1">Data Item</th>
-            <th class="text-left" rowspan="1" colspan="1">Semantics</th>
-          </tr>
-        </thead>
-        <tbody>
-          <tr>
-            <td class="text-right" rowspan="1" colspan="1">CPA601</td>
-            <td class="text-left" rowspan="1" colspan="1">map (Claims-Set as per <a href="#cddl" class="auto internal xref">Appendix A</a> of [RFCthis])</td>
-            <td class="text-left" rowspan="1" colspan="1">Unprotected CWT Claims Set [RFCthis]</td>
-          </tr>
-        </tbody>
-      </table>
+            <tr>
+              <th class="text-right" rowspan="1" colspan="1">Tag</th>
+              <th class="text-left" rowspan="1" colspan="1">Data Item</th>
+              <th class="text-left" rowspan="1" colspan="1">Semantics</th>
+            </tr>
+          </thead>
+          <tbody>
+            <tr>
+              <td class="text-right" rowspan="1" colspan="1">CPA601</td>
+              <td class="text-left" rowspan="1" colspan="1">map (Claims-Set as per <a href="#cddl" class="auto internal xref">Appendix A</a> of [RFCthis])</td>
+              <td class="text-left" rowspan="1" colspan="1">Unprotected CWT Claims Set [RFCthis]</td>
+            </tr>
+          </tbody>
+        </table>
 </div>
-<p id="section-6-3"><span class="cref" id="cpa">RFC-Editor: This document uses the CPA (code point allocation)
+<p id="section-6.1-3"><span class="cref" id="cpa">RFC-Editor: This document uses the CPA (code point allocation)
   convention described in [I-D.bormann-cbor-draft-numbers].  For
   each usage of the term "CPA", please remove the prefix "CPA"
   from the indicated value and replace the residue with the value
   assigned by IANA; perform an analogous substitution for all other
   occurrences of the prefix "CPA" in the document.  Finally,
-  please remove this note.</span><a href="#section-6-3" class="pilcrow">¶</a></p>
+  please remove this note.</span><a href="#section-6.1-3" class="pilcrow">¶</a></p>
+</section>
+</div>
+<div id="media-type">
+<section id="section-6.2">
+        <h3 id="name-media-type-application-uccs">
+<a href="#section-6.2" class="section-number selfRef">6.2. </a><a href="#name-media-type-application-uccs" class="section-name selfRef">Media-Type application/uccs+cbor Registration</a>
+        </h3>
+<p id="section-6.2-1">IANA is requested to add the following Media-Type to the "Media Types"
+registry <span>[<a href="#IANA.media-types" class="cite xref">IANA.media-types</a>]</span>.<a href="#section-6.2-1" class="pilcrow">¶</a></p>
+<span id="name-media-type-registration"></span><div id="new-media-type">
+<table class="center" id="table-2">
+          <caption>
+<a href="#table-2" class="selfRef">Table 2</a>:
+<a href="#name-media-type-registration" class="selfRef">Media Type Registration</a>
+          </caption>
+<thead>
+            <tr>
+              <th class="text-left" rowspan="1" colspan="1">Name</th>
+              <th class="text-left" rowspan="1" colspan="1">Template</th>
+              <th class="text-left" rowspan="1" colspan="1">Reference</th>
+            </tr>
+          </thead>
+          <tbody>
+            <tr>
+              <td class="text-left" rowspan="1" colspan="1">uccs+cbor</td>
+              <td class="text-left" rowspan="1" colspan="1">application/uccs+cbor</td>
+              <td class="text-left" rowspan="1" colspan="1">
+                <a href="#media-type" class="auto internal xref">Section 6.2</a> of RFCthis</td>
+            </tr>
+          </tbody>
+        </table>
+</div>
+<span class="break"></span><dl class="dlCompact dlParallel" id="section-6.2-3">
+          <dt id="section-6.2-3.1">Type name:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.2">
+            <p id="section-6.2-3.2.1">application<a href="#section-6.2-3.2.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.3">Subtype name:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.4">
+            <p id="section-6.2-3.4.1">uccs+cbor<a href="#section-6.2-3.4.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.5">Required parameters:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.6">
+            <p id="section-6.2-3.6.1">n/a<a href="#section-6.2-3.6.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.7">Optional parameters:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.8">
+            <p id="section-6.2-3.8.1">n/a<a href="#section-6.2-3.8.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.9">Encoding considerations:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.10">
+            <p id="section-6.2-3.10.1">binary (CBOR data item)<a href="#section-6.2-3.10.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.11">Security considerations:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.12">
+            <p id="section-6.2-3.12.1"><a href="#seccons" class="auto internal xref">Section 7</a> of RFCthis<a href="#section-6.2-3.12.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.13">Interoperability considerations:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.14">
+            <p id="section-6.2-3.14.1">none<a href="#section-6.2-3.14.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.15">Published specification:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.16">
+            <p id="section-6.2-3.16.1">RFCthis<a href="#section-6.2-3.16.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.17">Applications that use this media type:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.18">
+            <p id="section-6.2-3.18.1">Applications that transfer Unprotected CWT Claims Set(s) (UCCS) over
+Secure Channels<a href="#section-6.2-3.18.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.19">Fragment identifier considerations:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.20">
+            <p id="section-6.2-3.20.1">The syntax and semantics of
+    fragment identifiers is as specified for "application/cbor".  (At
+    publication of this document, there is no fragment identification
+    syntax defined for "application/cbor".)<a href="#section-6.2-3.20.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.21">Additional information:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.22">
+            <span class="break"></span><dl class="dlParallel" id="section-6.2-3.22.1">
+              <dt id="section-6.2-3.22.1.1">Deprecated alias names for this type:</dt>
+              <dd style="margin-left: 1.5em" id="section-6.2-3.22.1.2">
+                <p id="section-6.2-3.22.1.2.1">N/A<a href="#section-6.2-3.22.1.2.1" class="pilcrow">¶</a></p>
+</dd>
+              <dd class="break"></dd>
+<dt id="section-6.2-3.22.1.3">Magic number(s):</dt>
+              <dd style="margin-left: 1.5em" id="section-6.2-3.22.1.4">
+                <p id="section-6.2-3.22.1.4.1">N/A<a href="#section-6.2-3.22.1.4.1" class="pilcrow">¶</a></p>
+</dd>
+              <dd class="break"></dd>
+<dt id="section-6.2-3.22.1.5">File extension(s):</dt>
+              <dd style="margin-left: 1.5em" id="section-6.2-3.22.1.6">
+                <p id="section-6.2-3.22.1.6.1">.uccs<a href="#section-6.2-3.22.1.6.1" class="pilcrow">¶</a></p>
+</dd>
+              <dd class="break"></dd>
+<dt id="section-6.2-3.22.1.7">Macintosh file type code(s):</dt>
+              <dd style="margin-left: 1.5em" id="section-6.2-3.22.1.8">
+                <p id="section-6.2-3.22.1.8.1">N/A<a href="#section-6.2-3.22.1.8.1" class="pilcrow">¶</a></p>
+</dd>
+            <dd class="break"></dd>
+</dl>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.23">Person and email address to contact for further information:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.24">
+            <p id="section-6.2-3.24.1">RATS WG mailing list (rats@ietf.org)<a href="#section-6.2-3.24.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.25">Intended usage:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.26">
+            <p id="section-6.2-3.26.1">COMMON<a href="#section-6.2-3.26.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.27">Restrictions on usage:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.28">
+            <p id="section-6.2-3.28.1">none<a href="#section-6.2-3.28.1" class="pilcrow">¶</a></p>
+</dd>
+          <dd class="break"></dd>
+<dt id="section-6.2-3.29">Author/Change controller:</dt>
+          <dd style="margin-left: 1.5em" id="section-6.2-3.30">
+            <p id="section-6.2-3.30.1">IETF<a href="#section-6.2-3.30.1" class="pilcrow">¶</a></p>
+</dd>
+        <dd class="break"></dd>
+</dl>
+</section>
+</div>
+<div id="ct">
+<section id="section-6.3">
+        <h3 id="name-content-format-registration">
+<a href="#section-6.3" class="section-number selfRef">6.3. </a><a href="#name-content-format-registration" class="section-name selfRef">Content-Format registration</a>
+        </h3>
+<p id="section-6.3-1">IANA is requested to register a Content-Format number in the "CoAP
+Content-Formats" subregistry, within the "Constrained RESTful
+Environments (CoRE) Parameters" registry <span>[<a href="#IANA.core-parameters" class="cite xref">IANA.core-parameters</a>]</span>, as
+follows:<a href="#section-6.3-1" class="pilcrow">¶</a></p>
+<span id="name-content-format-registration-2"></span><div id="content-format-reg">
+<table class="center" id="table-3">
+          <caption>
+<a href="#table-3" class="selfRef">Table 3</a>:
+<a href="#name-content-format-registration-2" class="selfRef">Content-Format Registration</a>
+          </caption>
+<thead>
+            <tr>
+              <th class="text-left" rowspan="1" colspan="1">Media Type</th>
+              <th class="text-left" rowspan="1" colspan="1">Encoding</th>
+              <th class="text-left" rowspan="1" colspan="1">ID</th>
+              <th class="text-left" rowspan="1" colspan="1">Reference</th>
+            </tr>
+          </thead>
+          <tbody>
+            <tr>
+              <td class="text-left" rowspan="1" colspan="1">application/uccs+cbor</td>
+              <td class="text-left" rowspan="1" colspan="1">-</td>
+              <td class="text-left" rowspan="1" colspan="1">TBD601</td>
+              <td class="text-left" rowspan="1" colspan="1">
+                <a href="#ct" class="auto internal xref">Section 6.3</a> of RFCthis</td>
+            </tr>
+          </tbody>
+        </table>
+</div>
+</section>
+</div>
 </section>
 </div>
-<div id="security-considerations">
+<div id="seccons">
 <section id="section-7">
       <h2 id="name-security-considerations">
 <a href="#section-7" class="section-number selfRef">7. </a><a href="#name-security-considerations" class="section-name selfRef">Security Considerations</a>
@@ -1724,7 +1911,15 @@ <h3 id="name-informative-references">
 <dl class="references">
 <dt id="I-D.ietf-rats-eat">[I-D.ietf-rats-eat]</dt>
         <dd>
-<span class="refAuthor">Lundblade, L.</span>, <span class="refAuthor">Mandyam, G.</span>, <span class="refAuthor">O'Donoghue, J.</span>, and <span class="refAuthor">C. Wallace</span>, <span class="refTitle">"The Entity Attestation Token (EAT)"</span>, <span class="refContent">Work in Progress</span>, <span class="seriesInfo">Internet-Draft, draft-ietf-rats-eat-25</span>, <time datetime="2024-01-15" class="refDate">15 January 2024</time>, <span>&lt;<a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25">https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25</a>&gt;</span>. </dd>
+<span class="refAuthor">Lundblade, L.</span>, <span class="refAuthor">Mandyam, G.</span>, <span class="refAuthor">O'Donoghue, J.</span>, and <span class="refAuthor">C. Wallace</span>, <span class="refTitle">"The Entity Attestation Token (EAT)"</span>, <span class="refContent">Work in Progress</span>, <span class="seriesInfo">Internet-Draft, draft-ietf-rats-eat-28</span>, <time datetime="2024-06-25" class="refDate">25 June 2024</time>, <span>&lt;<a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28">https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28</a>&gt;</span>. </dd>
+<dd class="break"></dd>
+<dt id="IANA.core-parameters">[IANA.core-parameters]</dt>
+        <dd>
+<span class="refAuthor">IANA</span>, <span class="refTitle">"Constrained RESTful Environments (CoRE) Parameters"</span>, <span>&lt;<a href="http://www.iana.org/assignments/core-parameters">http://www.iana.org/assignments/core-parameters</a>&gt;</span>. </dd>
+<dd class="break"></dd>
+<dt id="IANA.media-types">[IANA.media-types]</dt>
+        <dd>
+<span class="refAuthor">IANA</span>, <span class="refTitle">"Media Types"</span>, <span>&lt;<a href="http://www.iana.org/assignments/media-types">http://www.iana.org/assignments/media-types</a>&gt;</span>. </dd>
 <dd class="break"></dd>
 <dt id="NIST-SP800-90Ar1">[NIST-SP800-90Ar1]</dt>
         <dd>
@@ -1895,7 +2090,7 @@ <h2 id="name-eat">
 <a href="#appendix-D" class="section-number selfRef">Appendix D. </a><a href="#name-eat" class="section-name selfRef">EAT</a>
       </h2>
 <p id="appendix-D-1">This appendix is informative.<a href="#appendix-D-1" class="pilcrow">¶</a></p>
-<p id="appendix-D-2">The following CDDL adds UCCS-format and UJCS-format tokens to EAT using its predefined extension points (see Section <span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25#section-4.2.18" class="relref">4.2.18</a> (<a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-25#section-4.2.18" class="relref">submods</a>)</span> of <span>[<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span>).<a href="#appendix-D-2" class="pilcrow">¶</a></p>
+<p id="appendix-D-2">The following CDDL adds UCCS-format and UJCS-format tokens to EAT using its predefined extension points (see Section <span><a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28#section-4.2.18" class="relref">4.2.18</a> (<a href="https://datatracker.ietf.org/doc/html/draft-ietf-rats-eat-28#section-4.2.18" class="relref">submods</a>)</span> of <span>[<a href="#I-D.ietf-rats-eat" class="cite xref">I-D.ietf-rats-eat</a>]</span>).<a href="#appendix-D-2" class="pilcrow">¶</a></p>
 <div class="lang-cddl sourcecode" id="appendix-D-3">
 <pre>
 $EAT-CBOR-Tagged-Token /= UCCS-Tagged
diff --git a/draft-ietf-rats-uccs.txt b/draft-ietf-rats-uccs.txt
index 744988d..a557b44 100644
--- a/draft-ietf-rats-uccs.txt
+++ b/draft-ietf-rats-uccs.txt
@@ -5,12 +5,12 @@
 RATS Working Group                                           H. Birkholz
 Internet-Draft                                            Fraunhofer SIT
 Intended status: Standards Track                           J. O'Donoghue
-Expires: 5 September 2024                     Qualcomm Technologies Inc.
+Expires: 5 January 2025                       Qualcomm Technologies Inc.
                                                            N. Cam-Winget
                                                            Cisco Systems
                                                               C. Bormann
                                                   Universität Bremen TZI
-                                                            4 March 2024
+                                                             4 July 2024
 
 
                A CBOR Tag for Unprotected CWT Claims Sets
@@ -53,9 +53,9 @@ Status of This Memo
 
 
 
-Birkholz, et al.        Expires 5 September 2024                [Page 1]
+Birkholz, et al.         Expires 5 January 2025                 [Page 1]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
    Internet-Drafts are draft documents valid for a maximum of six months
@@ -63,7 +63,7 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    time.  It is inappropriate to use Internet-Drafts as reference
    material or to cite them other than as "work in progress."
 
-   This Internet-Draft will expire on 5 September 2024.
+   This Internet-Draft will expire on 5 January 2025.
 
 Copyright Notice
 
@@ -89,31 +89,34 @@ Table of Contents
    5.  Considerations for Using UCCS in Other RATS Contexts  . . . .   7
      5.1.  Delegated Attestation . . . . . . . . . . . . . . . . . .   7
      5.2.  Privacy Preservation  . . . . . . . . . . . . . . . . . .   7
-   6.  IANA Considerations . . . . . . . . . . . . . . . . . . . . .   8
-   7.  Security Considerations . . . . . . . . . . . . . . . . . . .   8
-     7.1.  General Considerations  . . . . . . . . . . . . . . . . .   9
-     7.2.  AES-CBC_MAC . . . . . . . . . . . . . . . . . . . . . . .   9
-     7.3.  AES-GCM . . . . . . . . . . . . . . . . . . . . . . . . .  10
-     7.4.  AES-CCM . . . . . . . . . . . . . . . . . . . . . . . . .  10
-     7.5.  ChaCha20 and Poly1305 . . . . . . . . . . . . . . . . . .  10
-   8.  References  . . . . . . . . . . . . . . . . . . . . . . . . .  10
-     8.1.  Normative References  . . . . . . . . . . . . . . . . . .  10
-     8.2.  Informative References  . . . . . . . . . . . . . . . . .  11
-   Appendix A.  CDDL . . . . . . . . . . . . . . . . . . . . . . . .  13
-   Appendix B.  Example  . . . . . . . . . . . . . . . . . . . . . .  15
-   Appendix C.  JSON Support . . . . . . . . . . . . . . . . . . . .  15
-   Appendix D.  EAT  . . . . . . . . . . . . . . . . . . . . . . . .  16
-   Acknowledgements  . . . . . . . . . . . . . . . . . . . . . . . .  16
-   Authors' Addresses  . . . . . . . . . . . . . . . . . . . . . . .  16
-
-
-
-
-Birkholz, et al.        Expires 5 September 2024                [Page 2]
+   6.  IANA Considerations . . . . . . . . . . . . . . . . . . . . .   7
+     6.1.  CBOR Tag registration . . . . . . . . . . . . . . . . . .   8
+     6.2.  Media-Type application/uccs+cbor Registration . . . . . .   8
+     6.3.  Content-Format registration . . . . . . . . . . . . . . .   9
+   7.  Security Considerations . . . . . . . . . . . . . . . . . . .   9
+     7.1.  General Considerations  . . . . . . . . . . . . . . . . .  10
+     7.2.  AES-CBC_MAC . . . . . . . . . . . . . . . . . . . . . . .  11
+     7.3.  AES-GCM . . . . . . . . . . . . . . . . . . . . . . . . .  11
+     7.4.  AES-CCM . . . . . . . . . . . . . . . . . . . . . . . . .  11
+     7.5.  ChaCha20 and Poly1305 . . . . . . . . . . . . . . . . . .  11
+   8.  References  . . . . . . . . . . . . . . . . . . . . . . . . .  11
+     8.1.  Normative References  . . . . . . . . . . . . . . . . . .  12
+     8.2.  Informative References  . . . . . . . . . . . . . . . . .  12
+   Appendix A.  CDDL . . . . . . . . . . . . . . . . . . . . . . . .  14
+   Appendix B.  Example  . . . . . . . . . . . . . . . . . . . . . .  16
+   Appendix C.  JSON Support . . . . . . . . . . . . . . . . . . . .  16
+   Appendix D.  EAT  . . . . . . . . . . . . . . . . . . . . . . . .  17
+
+
+
+Birkholz, et al.         Expires 5 January 2025                 [Page 2]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+   Acknowledgements  . . . . . . . . . . . . . . . . . . . . . . . .  17
+   Authors' Addresses  . . . . . . . . . . . . . . . . . . . . . . .  17
+
 1.  Introduction
 
    A CBOR Web Token (CWT) as specified by [RFC8392] is always wrapped in
@@ -160,16 +163,16 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    The terms Claim Key, Claim Value, and CWT Claims Set are used as in
    [RFC8392].
 
-   The terms Attester, Attesting Environment, Evidence, Relying Party
-   and Verifier are used as in [RFC9334].
-
 
 
-Birkholz, et al.        Expires 5 September 2024                [Page 3]
+Birkholz, et al.         Expires 5 January 2025                 [Page 3]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+   The terms Attester, Attesting Environment, Evidence, Relying Party
+   and Verifier are used as in [RFC9334].
+
    UCCS:  Unprotected CWT Claims Set(s); CBOR map(s) of Claims as
       defined by the CWT Claims Registry that are composed of pairs of
       Claim Keys and Claim Values.
@@ -215,17 +218,17 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    Environment (TEE, see [RFC9397]) or a Trusted Platform Module (TPM,
    see [TPM2]).  Especially in some resource constrained environments,
    the same process that provides the secure communication transport is
-   also the delegate to compose the Claim to be conveyed.  Whether it is
-   a transfer or transport, a Secure Channel is presumed to be used for
-   conveying such UCCS.  The following sections elaborate on Secure
 
 
 
-Birkholz, et al.        Expires 5 September 2024                [Page 4]
+Birkholz, et al.         Expires 5 January 2025                 [Page 4]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+   also the delegate to compose the Claim to be conveyed.  Whether it is
+   a transfer or transport, a Secure Channel is presumed to be used for
+   conveying such UCCS.  The following sections elaborate on Secure
    Channel characteristics in general and further describe RATS usage
    scenarios and corresponding requirements for UCCS deployment.
 
@@ -272,16 +275,16 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    MUST come with additional instruction leaflets and security
    considerations.
 
-   For the purposes of this section, any RATS role can be the sender or
-   the receiver of the UCCS.
-
 
 
-Birkholz, et al.        Expires 5 September 2024                [Page 5]
+Birkholz, et al.         Expires 5 January 2025                 [Page 5]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+   For the purposes of this section, any RATS role can be the sender or
+   the receiver of the UCCS.
+
    Secure Channels can be transient in nature.  For the purposes of this
    specification, the mechanisms used to establish a Secure Channel are
    out of scope.
@@ -330,12 +333,9 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
 
 
 
-
-
-
-Birkholz, et al.        Expires 5 September 2024                [Page 6]
+Birkholz, et al.         Expires 5 January 2025                 [Page 6]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
    The Secure Channel context does not govern fully formed CWTs in the
@@ -384,17 +384,17 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    physical sensor in a factory) and unacceptable in others (e.g., if
    the Attesting Environment is a user device belonging to a child).
 
+6.  IANA Considerations
 
 
 
 
-
-Birkholz, et al.        Expires 5 September 2024                [Page 7]
+Birkholz, et al.         Expires 5 January 2025                 [Page 7]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
-6.  IANA Considerations
+6.1.  CBOR Tag registration
 
    In the CBOR Tags registry [IANA.cbor-tags] as defined in Section 9.2
    of [RFC8949], IANA is requested to allocate the tag in Table 1 from
@@ -419,6 +419,70 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    // occurrences of the prefix "CPA" in the document.  Finally, please
    // remove this note.
 
+6.2.  Media-Type application/uccs+cbor Registration
+
+   IANA is requested to add the following Media-Type to the "Media
+   Types" registry [IANA.media-types].
+
+      +===========+=======================+========================+
+      | Name      | Template              | Reference              |
+      +===========+=======================+========================+
+      | uccs+cbor | application/uccs+cbor | Section 6.2 of RFCthis |
+      +-----------+-----------------------+------------------------+
+
+                     Table 2: Media Type Registration
+
+   Type name:  application
+   Subtype name:  uccs+cbor
+   Required parameters:  n/a
+   Optional parameters:  n/a
+   Encoding considerations:  binary (CBOR data item)
+   Security considerations:  Section 7 of RFCthis
+   Interoperability considerations:  none
+   Published specification:  RFCthis
+   Applications that use this media type:  Applications that transfer
+      Unprotected CWT Claims Set(s) (UCCS) over Secure Channels
+
+
+
+Birkholz, et al.         Expires 5 January 2025                 [Page 8]
+
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
+
+
+   Fragment identifier considerations:  The syntax and semantics of
+      fragment identifiers is as specified for "application/cbor".  (At
+      publication of this document, there is no fragment identification
+      syntax defined for "application/cbor".)
+   Additional information:  Deprecated alias names for this type:  N/A
+
+                            Magic number(s):  N/A
+
+                            File extension(s):  .uccs
+
+                            Macintosh file type code(s):  N/A
+   Person and email address to contact for further information:  RATS WG
+      mailing list (rats@ietf.org)
+   Intended usage:  COMMON
+   Restrictions on usage:  none
+   Author/Change controller:  IETF
+
+6.3.  Content-Format registration
+
+   IANA is requested to register a Content-Format number in the "CoAP
+   Content-Formats" subregistry, within the "Constrained RESTful
+   Environments (CoRE) Parameters" registry [IANA.core-parameters], as
+   follows:
+
+        +=======================+==========+========+=============+
+        | Media Type            | Encoding | ID     | Reference   |
+        +=======================+==========+========+=============+
+        | application/uccs+cbor | -        | TBD601 | Section 6.3 |
+        |                       |          |        | of RFCthis  |
+        +-----------------------+----------+--------+-------------+
+
+                    Table 3: Content-Format Registration
+
 7.  Security Considerations
 
    The security considerations of [RFC8949] apply.  The security
@@ -434,22 +498,19 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    scope where a scope-specific security consideration discussion has
    not been conducted, vetted and approved for that use.  In order to be
    able to use the UCCS CBOR tag in another such scope, the secure
-   channel and/or the application protocol (e.g., TLS and the protocol
-   identified by ALPN) MUST specify the roles of the endpoints in a
-   fashion that the security properties of conveying UCCS via a Secure
-   Channel between the roles are well-defined.
-
-
-
 
 
 
-
-Birkholz, et al.        Expires 5 September 2024                [Page 8]
+Birkholz, et al.         Expires 5 January 2025                 [Page 9]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+   channel and/or the application protocol (e.g., TLS and the protocol
+   identified by ALPN) MUST specify the roles of the endpoints in a
+   fashion that the security properties of conveying UCCS via a Secure
+   Channel between the roles are well-defined.
+
 7.1.  General Considerations
 
    Implementations of Secure Channels are often separate from the
@@ -491,21 +552,24 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    The remaining subsections of this section highlight some aspects of
    specific cryptography choices that are detailed further in [RFC9053].
 
-7.2.  AES-CBC_MAC
 
-   *  A given key should only be used for messages of fixed or known
-      length.
 
-   *  Different keys should be used for authentication and encryption
-      operations.
 
 
 
-Birkholz, et al.        Expires 5 September 2024                [Page 9]
+Birkholz, et al.         Expires 5 January 2025                [Page 10]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+7.2.  AES-CBC_MAC
+
+   *  A given key should only be used for messages of fixed or known
+      length.
+
+   *  Different keys should be used for authentication and encryption
+      operations.
+
    *  A mechanism to ensure that IV cannot be modified is required.
 
    Section 3.2.1 of [RFC9053] contains a detailed explanation of these
@@ -546,6 +610,14 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
 
 8.  References
 
+
+
+
+Birkholz, et al.         Expires 5 January 2025                [Page 11]
+
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
+
+
 8.1.  Normative References
 
    [IANA.cbor-tags]
@@ -555,13 +627,6 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
    [IANA.cwt] IANA, "CBOR Web Token (CWT) Claims",
               <http://www.iana.org/assignments/cwt>.
 
-
-
-Birkholz, et al.        Expires 5 September 2024               [Page 10]
-
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
-
-
    [RFC2119]  Bradner, S., "Key words for use in RFCs to Indicate
               Requirement Levels", BCP 14, RFC 2119,
               DOI 10.17487/RFC2119, March 1997,
@@ -602,21 +667,28 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
 
 8.2.  Informative References
 
-   [I-D.ietf-rats-eat]
-              Lundblade, L., Mandyam, G., O'Donoghue, J., and C.
-              Wallace, "The Entity Attestation Token (EAT)", Work in
-              Progress, Internet-Draft, draft-ietf-rats-eat-25, 15
-              January 2024, <https://datatracker.ietf.org/doc/html/
-              draft-ietf-rats-eat-25>.
 
 
+Birkholz, et al.         Expires 5 January 2025                [Page 12]
+
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
+   [I-D.ietf-rats-eat]
+              Lundblade, L., Mandyam, G., O'Donoghue, J., and C.
+              Wallace, "The Entity Attestation Token (EAT)", Work in
+              Progress, Internet-Draft, draft-ietf-rats-eat-28, 25 June
+              2024, <https://datatracker.ietf.org/doc/html/draft-ietf-
+              rats-eat-28>.
 
-Birkholz, et al.        Expires 5 September 2024               [Page 11]
-
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+   [IANA.core-parameters]
+              IANA, "Constrained RESTful Environments (CoRE)
+              Parameters",
+              <http://www.iana.org/assignments/core-parameters>.
 
+   [IANA.media-types]
+              IANA, "Media Types",
+              <http://www.iana.org/assignments/media-types>.
 
    [NIST-SP800-90Ar1]
               Barker, E. and J. Kelsey, "Recommendation for Random
@@ -647,6 +719,17 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
               Initial Algorithms", RFC 9053, DOI 10.17487/RFC9053,
               August 2022, <https://www.rfc-editor.org/rfc/rfc9053>.
 
+
+
+
+
+
+
+Birkholz, et al.         Expires 5 January 2025                [Page 13]
+
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
+
+
    [RFC9334]  Birkholz, H., Thaler, D., Richardson, M., Smith, N., and
               W. Pan, "Remote ATtestation procedureS (RATS)
               Architecture", RFC 9334, DOI 10.17487/RFC9334, January
@@ -661,19 +744,6 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
               “2.0”, Level 00, Revision 01.59 ed., Trusted Computing
               Group", 2019.
 
-
-
-
-
-
-
-
-
-Birkholz, et al.        Expires 5 September 2024               [Page 12]
-
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
-
-
 Appendix A.  CDDL
 
    The Concise Data Definition Language (CDDL), as defined in [RFC8610]
@@ -711,23 +781,9 @@ Appendix A.  CDDL
 
 
 
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-Birkholz, et al.        Expires 5 September 2024               [Page 13]
+Birkholz, et al.         Expires 5 January 2025                [Page 14]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
    UCCS-Untagged = Claims-Set
@@ -781,9 +837,9 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
 
 
 
-Birkholz, et al.        Expires 5 September 2024               [Page 14]
+Birkholz, et al.         Expires 5 January 2025                [Page 15]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
    ; [RFC8747]
@@ -837,9 +893,9 @@ Appendix C.  JSON Support
 
 
 
-Birkholz, et al.        Expires 5 September 2024               [Page 15]
+Birkholz, et al.         Expires 5 January 2025                [Page 16]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
 Appendix D.  EAT
@@ -893,9 +949,9 @@ Authors' Addresses
 
 
 
-Birkholz, et al.        Expires 5 September 2024               [Page 16]
+Birkholz, et al.         Expires 5 January 2025                [Page 17]
 
-Internet-Draft         Unprotected CWT Claims Sets            March 2024
+Internet-Draft         Unprotected CWT Claims Sets             July 2024
 
 
    Carsten Bormann
@@ -949,4 +1005,4 @@ Internet-Draft         Unprotected CWT Claims Sets            March 2024
 
 
 
-Birkholz, et al.        Expires 5 September 2024               [Page 17]
+Birkholz, et al.         Expires 5 January 2025                [Page 18]