Re: [Ace] New doc: draft-maler-ace-oauth-uma-00
Thomas Hardjono <hardjono@mit.edu> Thu, 26 March 2015 14:18 UTC
Return-Path: <hardjono@mit.edu>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 44F721ACECF for <ace@ietfa.amsl.com>; Thu, 26 Mar 2015 07:18:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vvnyWllaske7 for <ace@ietfa.amsl.com>; Thu, 26 Mar 2015 07:18:29 -0700 (PDT)
Received: from dmz-mailsec-scanner-5.mit.edu (dmz-mailsec-scanner-5.mit.edu [18.7.68.34]) by ietfa.amsl.com (Postfix) with ESMTP id 0C85D1ACEC7 for <ace@ietf.org>; Thu, 26 Mar 2015 07:18:28 -0700 (PDT)
X-AuditID: 12074422-f79cb6d000000d7b-6f-55141534a246
Received: from mailhub-auth-1.mit.edu ( [18.9.21.35]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-5.mit.edu (Symantec Messaging Gateway) with SMTP id 16.9C.03451.43514155; Thu, 26 Mar 2015 10:18:28 -0400 (EDT)
Received: from outgoing-exchange-3.mit.edu (outgoing-exchange-3.mit.edu [18.9.28.13]) by mailhub-auth-1.mit.edu (8.13.8/8.9.2) with ESMTP id t2QEIRDe008045; Thu, 26 Mar 2015 10:18:28 -0400
Received: from W92EXEDGE5.EXCHANGE.MIT.EDU (w92exedge5.exchange.mit.edu [18.7.73.22]) by outgoing-exchange-3.mit.edu (8.13.8/8.12.4) with ESMTP id t2QEIKIx026118; Thu, 26 Mar 2015 10:18:26 -0400
Received: from W92EXHUB14.exchange.mit.edu (18.7.73.25) by W92EXEDGE5.EXCHANGE.MIT.EDU (18.7.73.22) with Microsoft SMTP Server (TLS) id 14.3.158.1; Thu, 26 Mar 2015 10:17:30 -0400
Received: from OC11EXPO24.exchange.mit.edu ([169.254.1.20]) by W92EXHUB14.exchange.mit.edu ([18.7.73.25]) with mapi id 14.03.0158.001; Thu, 26 Mar 2015 10:18:07 -0400
From: Thomas Hardjono <hardjono@mit.edu>
To: Olaf Bergmann <bergmann@tzi.org>
Thread-Topic: [Ace] New doc: draft-maler-ace-oauth-uma-00
Thread-Index: AQHQZ7WW9/2bq6MAyUqCPahRYFita50uzMDf
Date: Thu, 26 Mar 2015 14:18:06 +0000
Message-ID: <5E393DF26B791A428E5F003BB6C5342A92C612A6@OC11EXPO24.exchange.mit.edu>
References: <59F1C792-B108-4DEC-8B5F-94CA8DC19BF8@xmlgrrl.com> <87vbhpv13k.fsf@tzi.org> <E91E6B50-4FAD-4F11-8C99-0BBEBBEC4DDD@mit.edu>,<87sics57za.fsf@tzi.org>
In-Reply-To: <87sics57za.fsf@tzi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [18.111.17.16]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrPKsWRmVeSWpSXmKPExsUixCmqrGsiKhJq0L5FweL7tx5mi6bFjUwW 7y4sZXRg9liy5CeTx7RFmR77Wq6yBTBHcdmkpOZklqUW6dslcGUcu9vJUvCMp+LIs2XMDYwz uboYOTkkBEwkVjztZ4KwxSQu3FvP1sXIxSEksJhJ4umu94wQzgFGiR07+thBqoQEjjFK3F+k C5HYziix5vkFJghnFVDi1WtGkCo2AQ2Jth+9YB0iAioSG7qfge1gFsiXWNj2gRXEFhawkOjc v5IVosZS4vWbFVD1RhJtlxvB5rAIqEqs/X8XyObg4BUIkni6OxrqPEaJ21NusoDUcALVnJxx EKyeEeiH76fWQO0Sl7j1ZD7Ub4ISi2bvYYb589+uh2wQtoLE/5uHWSHq9SRuTJ3CBmFrSyxb +Bqsnheo9+TMJywTGCVnIRk7C0nLLCQts5C0LGBkWcUom5JbpZubmJlTnJqsW5ycmJeXWqRr qpebWaKXmlK6iREUr+wuSjsYfx5UOsQowMGoxMP7o184VIg1say4MvcQoyQHk5Iob5mwSKgQ X1J+SmVGYnFGfFFpTmrxIUYJDmYlEd4dDEA53pTEyqrUonyYlDQHi5I476YffCFCAumJJanZ qakFqUUwWRkODiUJXh4RoEbBotT01Iq0zJwShDQTByfIcB6g4fogNbzFBYm5xZnpEPlTjIpS 4rziIAkBkERGaR5cLyydvmIUB3pFmNcGpIoHmIrhul8BDWYCGnwunw9kcEkiQkqqgTHz0eXJ z33kmXOL2fIU68T0+1YKbPU9kbwj7llij/tcke3fvCKvfpds11E6yfma/WJm96RnzW4J84Qi K15VpLNZarsktEiIJAdr3/z//pHPnP53s/5cKDbsd2a//Ex93bE7IVlJn+OWe/UIy2VouCyZ F7j7o7D0wdgtsReOTb+f5h/celjpkRJLcUaioRZzUXEiAK4h7zaCAwAA
Archived-At: <http://mailarchive.ietf.org/arch/msg/ace/2M3REjGDBS7MfdJbHmty_m80Sjo>
Cc: Eve Maler <eve@xmlgrrl.com>, Thomas Hardjono <hardjono@mit.edu>, "ace@ietf.org" <ace@ietf.org>
Subject: Re: [Ace] New doc: draft-maler-ace-oauth-uma-00
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Mar 2015 14:18:32 -0000
Hi Olaf, The need to create profiles is kind of expected (i.e. no need to call it out). This was true also of the SAML2.0 specs where there is a core-spec and then a bunch of profiles (the most oft-used being the Web Browser SSO profile), bindings, etc. This allows the core spec to remain stable, and for new profiles (use-case specific) to be developed later. As Eve correctly noted (in previous UMA WG meetings), the UMA permission ticket is an opaque structure, so it may not need to be profiled. However, IMO if there are use-case deployments where multiple ASs are used and Federation is thus needed, then the permission ticket may need to be profiled (at least for that use-case). The HEART WG is specifically addressing the Healthcare vertical (not IoT per se). They've just started, so it is early days yet. Their site is here: http://openid.net/wg/heart/ /thomas/ ________________________________________ From: Olaf Bergmann [bergmann@tzi.org] Sent: Thursday, March 26, 2015 7:11 AM To: Thomas Hardjono Cc: Eve Maler; ace@ietf.org Subject: Re: [Ace] New doc: draft-maler-ace-oauth-uma-00 Hi Thomas, Thomas Hardjono <hardjono@mit.edu> writes: > In order to use UMA in a given IoT scenario, you will need to create a > profile of UMA that defines the "missing parts", such as the contents > of the permission ticket. This is what the HEART WG is doing in the > OIF. Thank you for the clarification, maybe it would be good to include this as a note or so in draft-maler-ace-oauth-uma. Can you provide a pointer to the HEART WG's docs? Grüße Olaf
- Re: [Ace] New doc: draft-maler-ace-oauth-uma-00 Olaf Bergmann
- Re: [Ace] New doc: draft-maler-ace-oauth-uma-00 Thomas Hardjono
- Re: [Ace] New doc: draft-maler-ace-oauth-uma-00 Olaf Bergmann
- Re: [Ace] New doc: draft-maler-ace-oauth-uma-00 Thomas Hardjono
- Re: [Ace] New doc: draft-maler-ace-oauth-uma-00 Eve Maler
- [Ace] New doc: draft-maler-ace-oauth-uma-00 Eve Maler