Re: [Ace] Summarizing WGLC discussion of draft-ietf-ace-cwt-proof-of-possession

Roman Danyliw <rdd@cert.org> Wed, 07 November 2018 07:56 UTC

Return-Path: <rdd@cert.org>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 50AB412777C for <ace@ietfa.amsl.com>; Tue, 6 Nov 2018 23:56:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xox6Lq4wNmWg for <ace@ietfa.amsl.com>; Tue, 6 Nov 2018 23:56:33 -0800 (PST)
Received: from veto.sei.cmu.edu (veto.sei.cmu.edu [147.72.252.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A5E1F130E6C for <ace@ietf.org>; Tue, 6 Nov 2018 23:56:33 -0800 (PST)
Received: from delp.sei.cmu.edu (delp.sei.cmu.edu [10.64.21.31]) by veto.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id wA77uG3n046643; Wed, 7 Nov 2018 02:56:16 -0500
DKIM-Filter: OpenDKIM Filter v2.11.0 veto.sei.cmu.edu wA77uG3n046643
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1541577377; bh=6jbXvn2k4PI7D1GyGs8T8boRby52Xfj6VL2EN6Y8cho=; h=From:To:CC:Subject:Date:References:In-Reply-To:From; b=bURBdC1v/Lkbl7v840NW3IFGofZBJlGGeLwJUr0iHlH1/YWVPyx4Bw3DGpX14QgXX /N+RKZz2onjctIHtMkT0AH5o9EK09spY0tQm8Gbh3NAc7n1MlaPOjTnHVldJzPbFBu 5Cw9nzL/jngaZM0vJUntmE5+nnPcIMdRbj8aDUag=
Received: from CASCADE.ad.sei.cmu.edu (cascade.ad.sei.cmu.edu [10.64.28.248]) by delp.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id wA77tjjM026652; Wed, 7 Nov 2018 02:55:45 -0500
Received: from MARATHON.ad.sei.cmu.edu ([10.64.28.250]) by CASCADE.ad.sei.cmu.edu ([10.64.28.248]) with mapi id 14.03.0415.000; Wed, 7 Nov 2018 02:55:44 -0500
From: Roman Danyliw <rdd@cert.org>
To: "'Mike Jones'" <Michael.Jones@microsoft.com>, "ace@ietf.org" <ace@ietf.org>
CC: Jim Schaad <ietf@augustcellars.com>
Thread-Topic: Summarizing WGLC discussion of draft-ietf-ace-cwt-proof-of-possession
Thread-Index: AdQaB+pCJ/tP7Ud0T+GY5Fn6FrAcuBbeY8wQADsjz/A=
Date: Wed, 7 Nov 2018 07:55:44 +0000
Message-ID: <359EC4B99E040048A7131E0F4E113AFC0181A49D1F@marathon>
References: <359EC4B99E040048A7131E0F4E113AFC014C3FEDA1@marathon> <MW2PR00MB030043BAB5054032AE710B0DF5CB0@MW2PR00MB0300.namprd00.prod.outlook.com>
In-Reply-To: <MW2PR00MB030043BAB5054032AE710B0DF5CB0@MW2PR00MB0300.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.22.6]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/-WpPAg0MrAQn8ZyuyfKZsjfxCvE>
Subject: Re: [Ace] Summarizing WGLC discussion of draft-ietf-ace-cwt-proof-of-possession
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Nov 2018 07:56:40 -0000

Hi Mike!

Thanks for publishing -04.  The changes made in this version address the last of my WGLC comments per [Danyliw #7] and  [Danyliw #12].  More details below:

> From: Mike Jones [mailto:Michael.Jones@microsoft.com] 
> Sent: Tuesday, November 6, 2018 3:43 AM
> To: Roman Danyliw <rdd@cert.org>;; ace@ietf.org
> Cc: Jim Schaad <ietf@augustcellars.com>;
> Subject: RE: Summarizing WGLC discussion of draft-ietf-ace-cwt-proof-of-possession
>
> Thanks for the useful summary, Roman.  Replies are inline below 
> prefixed by "Mike>".  I've just published draft -04, which contains the 
> small number of changes described below.  I believe that this completes 
> resolution of the WGLC feedback.
>
> -----Original Message-----
> From: Ace <ace-bounces@ietf.org>; On Behalf Of Roman Danyliw
> Sent: Friday, July 13, 2018 12:56 AM
> To: ace@ietf.org
> Subject: [Ace] Summarizing WGLC discussion of draft-ietf-ace-cwt-proof-of-possession

[snip]

>  [Schaad #16] Section 4 - Are audience restrictions not done in CWT?  -- same 
> issues as [Danyliw #12]
>
> Mike> All claims in CWTs (and JWTs) are optional, including the "aud" (audience) 
> claim.  Particular profiles can suggest and require particular claims, as this 
> profile does.  I have deleted the unnecessary middle sentence, which 
> [Danyliw #12] correctly pointed out broke up the logical flow of the exposition. 
> Thanks for pointing this out.

This change addresses my concerns.

[snip]

> [Danyliw #7] Page 6, Section 3.3, The sentence "The COSE_Key could, for 
> instance, be encrypted using a COSE_Encrypt0 representation using the 
> AES-CCM-16-64-128 algorithm" seems out of place.  What is this text 
> explaining relative to the examples?
>
> Mike> Thanks.  I deleted the confusing and unnecessary sentence.

This change addresses my concern.

Roman