]> The Proximate Location Claim
giridhar.mandyam@gmail.com
Internet RATS Working Group signing attestation cbor location The Entity Attestation Token (EAT) is an extensible attestation version of a CBOR Web Token (CWT). EAT defines a location claim, but does not define a proximate location claim. This document proposes a claim in which an attester can relay detected relative location of a target.
Introduction The Entity Attestation Token i.e. EAT provides a method for sending attesation-related data in the form of a CBOR Web Token (CWT) . Attested location is claim provided in the EAT specification wherein an attester can provide location data in the form of a standard geodetic coding system (WGS 84). Secure ranging involves the process of determining the relative location of a device (entity) with respect to a receiver. In this case, the receiver may actually attest to the location of the device in a similar manner to how the Entity Attestation Token conveys location data. However, there are majore differences between the EAT convveyance of location and a secure ranging receiver: (1) the EAT location is that of the entity to which the attester created the token, while the secure ranging receiver is conveying the detected location of the entity, and (2) the receiver is providing the relative location of the entity. In this document, a new claim - the proximate location claim - is specified that will distinguish location determined via secure ranging from location conveyed by as part of a entity's attestation evidence. Although this claim could appear in a CWT for non-attestation scenarios, it can be conveyed as part of a delegated attestation (i.e. the secure ranging receiver attests to the location on behalf of the target entity). A sample architecture is provided in . The secure ranging receiver in this case makes an angle-of-arrival (AoA) and distance determination based upon a transmitted signal from a target device. The receiver (assuming it can determine its own location) can project these measurements to a geodetic coordinate system and attest to it.
Secure Ranging and Attestation
The Proximate Location Claim (proxloc) The proximate location claim provides the location of a target entity based on what a secure ranging receiver derives. If the secure ranging receiver is capable of determining its own location, then it can project the entity's location to an appropriate geodetic coordinate system based on the relative location of the entity. It is partially derived derived from the EAT location claim , but includes the ueid claim to uniquely identify the entity. If the location cannot be derived as per the EAT specification, then the relative angle-of-arrival, angle-of-elevation, and ranging distance may be sent (the angular measurements in radians and the distance in meters). proxloc-type proxloc-type = { target-ueid => ueid, ; derived from EAT claim ueid ? target-location => location ; derived from EAT claim location if WGS-84 coordinate projection possible ? aoa => float ; angle-of-arrival optionally sent ? distance => float ; ranging distance optionally sent ? aoe => float ; angle-of-elevation optionally sent } ]]> Note that this claim may be extended in the future for other coordinate systems.
IANA Considerations This document requests registration of the following claim in the "CBOR Web Token (CWT) Claims Registry" (http://www.iana.org/assignments/cwt).  
  • Claim Name: proxloc
  • Claim Description: The Proximate Location Claim
  • JWT Claim Name: "proxloc"
  • CWT Claim Key: TBD
  • Claim Value Type(s): map
  • Change Controller: IESG
  • Specification Document(s): this document
Normative References CBOR Web Token (CWT) CBOR Web Token (CWT) is a compact means of representing claims to be transferred between two parties. The claims in a CWT are encoded in the Concise Binary Object Representation (CBOR), and CBOR Object Signing and Encryption (COSE) is used for added application-layer security protection. A claim is a piece of information asserted about a subject and is represented as a name/value pair consisting of a claim name and a claim value. CWT is derived from JSON Web Token (JWT) but uses CBOR rather than JSON. The Entity Attestation Token (EAT) Security Theory LLC Qualcomm Technologies Inc. Red Hound Software, Inc. An Entity Attestation Token (EAT) provides an attested claims set that describes state and characteristics of an entity, a device like a smartphone, IoT device, network equipment or such. This claims set is used by a relying party, server or service to determine the type and degree of trust placed in the entity. An EAT is either a CBOR Web Token (CWT) or JSON Web Token (JWT) with attestation-oriented claims.