From f7e081793ab947a3c21ea1b3ce7e58a3ce846b06 Mon Sep 17 00:00:00 2001 From: "A.J. Stein" Date: Fri, 19 Jul 2024 11:59:53 -0400 Subject: [PATCH] Reframe product as TE per the arch --- draft-moriarty-rats-posture-assessment.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/draft-moriarty-rats-posture-assessment.md b/draft-moriarty-rats-posture-assessment.md index c294192..93e18d7 100644 --- a/draft-moriarty-rats-posture-assessment.md +++ b/draft-moriarty-rats-posture-assessment.md @@ -140,13 +140,13 @@ The trustworthiness will be conveyed on original verified evidence as well as th # Supportability and Re-Attestation -The remote attestation framework shall include provisions within the system and attestation authority to allow for Product modification. +The remote attestation framework shall include provisions for a Verifier Owner and Relying Party Owner to declare an Appraisal Policy for Attestation Results and Evidence that allows for modification of the Target Environment (e.g. a product, system, or service). -Over its lifecycle, the Product may experience modification due to: maintenance, failures, upgrades, expansion, moves, etc.. +Over its lifecycle, the Target Environment may experience modification due to: maintenance, failures, upgrades, expansion, moves, etc.. The customer can chose to: -- Run remote attestation after product modification, or +- Run remote attestation after Target Environment modification, or - Not take action and remain un-protected In the case of Re-Attestation: