Merge pull request #15 from ietf-rats/sn-desc

stateless nonce description
ietf-rats · Mar 10, 2023 · febe71e · febe71e
2 parents 1cc409f + 1d3b48f
commit febe71e
Show file tree

Hide file tree

Showing 2 changed files with 23 additions and 6 deletions.
diff --git a/cddl/stateless-nonce.cddl b/cddl/stateless-nonce.cddl
@@ -3,17 +3,11 @@ stateless-nonce = [
   AuthTag: bstr .size 20
 ]
 
-; AuthTag is the HMAC w/ SHA-1 computed over the CBOR serialisation
-; of TimeToken
-
 TimeToken = (
   Version: bytes .size 1
   KeyID: bytes .size 1
   Timestamp: posix-time
   Pad: bytes
 )
 
-; Pad carries no meaning; it is just pad bytes to make
-; stateless-nonce the desired size
-
 posix-time = #6.1(int)
diff --git a/draft-birkholz-rats-epoch-markers.md b/draft-birkholz-rats-epoch-markers.md
@@ -212,6 +212,29 @@ shared secret.
 {::include cddl/stateless-nonce.cddl}
 ~~~~
 
+The following describes each member of the stateless-nonce array:
+
+{:vspace}
+
+Version:
+: version of the TimeToken encoded as a single byte.  The value MUST be 0x01.
+
+KeyID:
+: opaque identifier shared across the server pool for the signing key used to
+compute AuthTag.  It is semantically equivalent to the TID field defined in
+{{Section 3.1.3 of ?RFC6896}}.
+
+Timestamp:
+: the timestamp associated with the current epoch encoded as CBOR tag for Posix
+time.  It MUST use the int format.
+
+Pad:
+: pad bytes used to make the stateless nonce the desired size.
+
+AuthTag:
+: HMAC w/ SHA-1 computed over the CBOR serialisation of TimeToken encoded as a
+20-bytes string.
+
 # Security Considerations
 
 TODO