Add UnrequestTA to list of conceptual APIs

Addresses #213 Signed-off-by: Dave Thaler <dthaler@ntdev.microsoft.com>
ietf-teep · Nov 11, 2020 · 020f4cc · 020f4cc
1 parent 357ff63
commit 020f4cc
Showing 1 changed file with 9 additions and 3 deletions.
diff --git a/draft-ietf-teep-architecture.md b/draft-ietf-teep-architecture.md
@@ -973,14 +973,20 @@ The following conceptual APIs exist from a TEEP Broker to a TEEP Agent:
    or an Untrusted Application) that it depends on a given Trusted Component, which may or may not
    already be installed in the TEE.
 
-2. ProcessTeepMessage: A message arriving from the network, to be delivered
+2. UnrequestTA: A notification from an REE application (e.g., an installer,
+   or an Untrusted Application) that it no longer depends on a given
+   Trusted Component, which may or may not already be installed in the TEE. 
+   For example, if the Untrusted Application is uninstalled, the uninstaller
+   might invoke this conceptual API.
+
+3. ProcessTeepMessage: A message arriving from the network, to be delivered
    to the TEEP Agent for processing.
 
-3. RequestPolicyCheck: A hint (e.g., based on a timer) that the TEEP Agent
+4. RequestPolicyCheck: A hint (e.g., based on a timer) that the TEEP Agent
    may wish to contact the TAM for any changes, without the device itself
    needing any particular change.
 
-4. ProcessError: A notification that the TEEP Broker could not deliver an outbound
+5. ProcessError: A notification that the TEEP Broker could not deliver an outbound
    TEEP message to a TAM.
 
 For comparison, similar APIs may exist on the TAM side, where a Broker may or may not