TRC description: mandate normalization, introduce language tag and localizedDescriptions

[nicorusti]

Resolves #136

Diff with main

Slack discussion

TODO:

• Ensure latest trc.asn1 is copy pasted to appendix before merging

[oncilla]

Nit: i would change the field names slightly

[nicorusti]

Hi @oncilla, I incorporated your suggestions in the PR. Good to hear that you like the overall approach, and thanks for posting your comments.. I also sometimes forget to click publish…

Did you already check that the existing TRCs are compatible with this ASN.1 module?

With the updated ASN.1 module here, I can successfully decode various TRCs in ASN.1 studio:

In general looks good to me, but I need to double check how existing code will behave if a TRC with these new fields is encountered.
How long does it take?
I would merge the PR if we don’t expect other changes, but leave Issue #136 open until you can get this tested. If it helps, I dropped a TRC with the extended description. it would be good to check how this affects signing of the TRC. This way you can take your time. We anyways have at least a few weeks before the draft goes to publication, since Eliot will also do a final review on his side.

If you feel this change needs more community input, I can post it on scionproto, but I’m not sure there are more people understanding PKI as deep as you.

[oncilla]

Hi @oncilla, I incorporated your suggestions in the PR. Good to hear that you like the overall approach, and thanks for posting your comments.. I also sometimes forget to click publish…

Did you already check that the existing TRCs are compatible with this ASN.1 module?

With the updated ASN.1 module here, I can successfully decode various TRCs in ASN.1 studio:

Cool. Thanks for checking!

In general looks good to me, but I need to double check how existing code will behave if a TRC with these new fields is encountered. How long does it take? I would merge the PR if we don’t expect other changes, but leave Issue #136 open until you can get this tested. If it helps, I dropped a TRC with the extended description. it would be good to check how this affects signing of the TRC. This way you can take your time. We anyways have at least a few weeks before the draft goes to publication, since Eliot will also do a final review on his side.

I created a draft PR with what I did to check: scionproto/scion#4927
As far as I can tell, the change is forward and backward compatible. So all good from my side!

If you feel this change needs more community input, I can post it on scionproto, but I’m not sure there are more people understanding PKI as deep as you.

It's probably good form to announce this in the community. I don't think there is going to be much input though.

[tzaeschke]

Instead of MAX, I suggest using a very low number here, e.g. 5.

I also wonder, do we really need 8KB?
How about limiting it to 256 bytes?
Same for the localizations. Also, localizations don't need to have the same length as the main description...?

The problem is really that this can be exploited to create really large TRC that could even be used as an attack (as discussed in the meeting yesterday).

[tzaeschke]

The size concern also goes for other fields, do we really need 2000 votes or 4000 certificates?

[nicorusti]

Is TRC size a real threat vector? If yes, is it prevented with hard limits in the spec?

I mean, if you see a 1 GB certificate/TRC, you maybe don't want to open it anyways and I think implementations may have some limits internally. Is it the case?

[nicorusti]

We have to review many field limits, I suggest that we merge this PR, which is about language tags, and then review field sizes in #153

[tzaeschke]

Suggested change

	content UTF8String (SIZE (0..8192))
	content UTF8String (SIZE (1..256))

See discussion below on description field: We should probably avoid bloated TRC.

[nicorusti]

The current SSHN TRC does not fit (even tough it uses multiple languages without tags).
#127 (comment)

[nicorusti]

With @oncilla we discussed here that 4096 or 8192 is an acceptable size.. I would not make it smaller than 4096 (or bare minimum 1024)

[nicorusti]

We have to review many field limits, I suggest that we merge this one and then just review field sizes in #153

[nicorusti]

It's probably good form to announce this in the community. I don't think there is going to be much input though.

FOr the record, this was discussed at TC #10 on 21.05.2026 with no objections. It was also announced on Slack and it will be brought to the OS contributor call next week.

[tzaeschke]

I approve, but I think we need to discuss the "NOT empty" further, I think it doesn't express what it is supposed to express (see my comment below)....

[nicorusti]

For the record, enclosed the html diff corresponding to this PR
Diff_ draft-dekater-scion-pki.txt - draft-dekater-scion-pki.txt.html