Matching a Reference Value to Accepted Claims Set

[andrew-draper]

This PR provides a description of how I see verifier behaviour in comparing a Reference Value against the Accepted Claims Set
It skirts around the undecided question of how to group Reference Values, Endorsements etc together as an input to this matching.
This PR partly resolves issue 71

[nedmsmith]

multiple comments provided inline

[nedmsmith]

Suggested change

	If any Reference Value in a group does not match then this does not affect
	If any Reference Value in a group does not match the Evidence that is appropriate for the group then this does not affect

[nedmsmith]

LGTM

[nedmsmith]

Suggested change

	Reference Values are represented more compactly by letting one `environment-map`
	where multiple measurements may be represented by one environment.

[andrew-draper]

I agree this is not beautiful, but I am not convinced yours is better

[yogeshbdeshpande]

None of the statements are correct. As of CDDL in the current spec, a Reference Value triple has one environment and corresponding one measurement-map So considering this fact, I would re-word the statement as

[nedmsmith]

It is reasonable to consider multiple triples having the same environment-map but using different triples to arrive at a set of measurements that belong to the environment. An internal representation would be described by an environment with multiple measurements.

Overall, the reader is confused about what the internal representation is and how the Verifier processes it.

[yogeshbdeshpande]

We should not use the word triples then. I was confused by the statement.

I would re-phrase it then to:

Internally the Verifier can combine all the measurements belonging to the same environment together or something similar

[nedmsmith]

We should not use the word triples then. I was confused by the statement.

I would re-phrase it then to:

Internally the Verifier can combine all the measurements belonging to the same environment together or something similar

I agree that we should have conventions for describing the internal representation without referring to specific CDDL / encodings. The challenge is doing this without being nebulous. Possibly, a strategy is to describe the internal representation by describing the CDDL that instantiated it. e.g., "...the environment (instantiated by environment-map)..."

[henkbirkholz]

does this thread of comments require an issue to be raised before merging?

[nedmsmith]

does this thread of comments require an issue to be raised before merging?

No. see issue #144

[yogeshbdeshpande]

@andrew-draper : Important Point:

You need to rebase your Pull Request to the tip of the file on the main branch.

Otherwise key fixes in these sections (like Feedback from RATS) and other work items from @nedmsmith will be wiped out!

[yogeshbdeshpande]

@andrew-draper : Important Point:

You need to rebase your Pull Request to the tip of the file on the main branch.

Otherwise key fixes in these sections (like Feedback from RATS) and other work items from @nedmsmith will be wiped out!

And please let me know, if you need me to rebase if you face any issues in rebasing.

[yogeshbdeshpande]

As all open issues are tracked via github, hence approving the PR!

[nedmsmith]

OK with me (obviously)

[andrew-draper]

Add first text describing how to match a Reference Value against Accepted Claims Set. Fixes issue #71