Merge pull request #25 from ietf-rats-wg/fs

add example using file system object as component id
ietf-rats-wg · Feb 20, 2025 · 5e2b27d · 5e2b27d
2 parents 1469885 + 3e5a944
commit 5e2b27d
Show file tree

Hide file tree

Showing 2 changed files with 11 additions and 8 deletions.
diff --git a/cddl/ex2.diag b/cddl/ex2.diag
@@ -1,15 +1,11 @@
 {
   / id / 1: [
-    / name / "boot loader X",
-    / version / [
-      "1.2.3rc2",
-      16384 / semver /
-    ]
+    / name / "/boot/loader.bin"
   ],
   / measurement / 2: [
-    / alg / "sha-256",
-    / val / h'3996003d486fb91ffb056f7d03f2b2992b215b31dbe7af4b37
-              3431fc7d319da3'
+    / alg / "sha-384",
+    / val / h'66ec2fb4e02d8c8b3eee320e750d9389d66c52c51db11cc6
+              9cc5e410816283ed60ba573795f5fcc85e513af57b3f6def'
   ],
   / profile-flags / 4: h'0000000000000101'
 }
diff --git a/draft-ietf-rats-eat-measured-component.md b/draft-ietf-rats-eat-measured-component.md
@@ -255,6 +255,13 @@ The example uses TBD2 as the `content-type` value of the `measurements-format` e
 ~~~
 {: #ex-eat-2 title="EAT Measurements Claim using a Measured Component (JSON)"}
 
+The example in {{ex-2}} is a measured component representing a boot loader identified by its path name:
+
+~~~ cbor-edn
+{::include cddl/ex2.diag}
+~~~
+{: #ex-2 title="Measured Component using File Path as Identifier"}
+
 # Security and Privacy Considerations {#seccons}
 
 The Name and Version of a component can give an attacker detailed information about the software running on a device and its configuration settings.