Re: [Ace] Removal of the Client Token from ACE-OAuth draft

Benjamin Kaduk <kaduk@mit.edu> Thu, 08 February 2018 20:08 UTC

Return-Path: <kaduk@mit.edu>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B4B89120713 for <ace@ietfa.amsl.com>; Thu, 8 Feb 2018 12:08:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.211
X-Spam-Level:
X-Spam-Status: No, score=-4.211 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id W27HrukZRzSV for <ace@ietfa.amsl.com>; Thu, 8 Feb 2018 12:08:45 -0800 (PST)
Received: from dmz-mailsec-scanner-7.mit.edu (dmz-mailsec-scanner-7.mit.edu [18.7.68.36]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2668712D7F7 for <ace@ietf.org>; Thu, 8 Feb 2018 12:08:44 -0800 (PST)
X-AuditID: 12074424-dbbff700000065b5-9d-5a7cae4a06e0
Received: from mailhub-auth-3.mit.edu ( [18.9.21.43]) (using TLS with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-7.mit.edu (Symantec Messaging Gateway) with SMTP id E7.60.26037.A4EAC7A5; Thu, 8 Feb 2018 15:08:43 -0500 (EST)
Received: from outgoing.mit.edu (OUTGOING-AUTH-1.MIT.EDU [18.9.28.11]) by mailhub-auth-3.mit.edu (8.13.8/8.9.2) with ESMTP id w18K8fVW012496; Thu, 8 Feb 2018 15:08:41 -0500
Received: from mit.edu (24-107-191-124.dhcp.stls.mo.charter.com [24.107.191.124]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id w18K8bQn010577 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Thu, 8 Feb 2018 15:08:39 -0500
Date: Thu, 08 Feb 2018 14:08:37 -0600
From: Benjamin Kaduk <kaduk@mit.edu>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
Cc: Göran Selander <goran.selander@ericsson.com>, "ace@ietf.org" <ace@ietf.org>
Message-ID: <20180208200836.GF12363@mit.edu>
References: <D6A1C6A4.9EE0B%goran.selander@ericsson.com> <AM4PR0801MB2706A362392B8BD71B9A41D0FAF30@AM4PR0801MB2706.eurprd08.prod.outlook.com> <D6A1E576.9EE30%goran.selander@ericsson.com> <AM4PR0801MB2706D787BC1ED8432CB95243FAF30@AM4PR0801MB2706.eurprd08.prod.outlook.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <AM4PR0801MB2706D787BC1ED8432CB95243FAF30@AM4PR0801MB2706.eurprd08.prod.outlook.com>
User-Agent: Mutt/1.9.1 (2017-09-22)
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprHKsWRmVeSWpSXmKPExsUixCmqreu9ribKoLVRwuL7tx5mi+evJ7Nb 3JxxismB2WPNvDWMHr++XmXzWLLkJ1MAcxSXTUpqTmZZapG+XQJXxtwDj1kLbrBX/Fz7gLGB cSJbFyMnh4SAicTubTcZuxi5OIQEFjNJXPh1lQnC2cAoMWP3J0aQKiGBM0wSv7vTuxg5OFgE VCQ23agFCbMBmQ3dl5lBbBEBQ4m9zYdYQWxmgWyJ+1vPs4PYwgLOEuuvTmABsXkFdCTaXp5n hpg/lUli95I77BAJQYmTM5+wQDSrS/yZd4kZZBezgLTE8n8cEGF5ieats8F2cQokSux+vxxs l6iAssTevkPsExgFZyGZNAvJpFkIk2YhmbSAkWUVo2xKbpVubmJmTnFqsm5xcmJeXmqRrrle bmaJXmpK6SZGUKCzu6jsYOzu8T7EKMDBqMTDOyGmJkqINbGsuDL3EKMkB5OSKO/mXqAQX1J+ SmVGYnFGfFFpTmrxIUYJDmYlEV7dZqAcb0piZVVqUT5MSpqDRUmc18NEO0pIID2xJDU7NbUg tQgmK8PBoSTB67YWqFGwKDU9tSItM6cEIc3EwQkynAdo+IE1IMOLCxJzizPTIfKnGI052lY+ aWPmuPHidRuzEEtefl6qlDjveZBSAZDSjNI8uGmgZCWRvb/mFaM40HPCvPogS3mAiQ5u3iug VUxAq24EVYKsKklESEk1MAbEb+MRv5a35MKxozbTYh6XFxv+0Hh1IbFt+0F19v2rj806sqjX bzHjk6mMikdZRFjrNtbdnv6+1HiV0ay33qY1fnN1VhZXey+7k7f/oeB9i2SjJ8WTpgU6LDzS Oflp/LztNfukb6i/vjqn6LLixt2zOpfvfZW4T1RLbV7HM//dVh8vnLTmeDhDiaU4I9FQi7mo OBEAzglOZTEDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/8YKIOHknFtkfoBPycKZMO4OjyKw>
Subject: Re: [Ace] Removal of the Client Token from ACE-OAuth draft
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Feb 2018 20:08:47 -0000

On Thu, Feb 08, 2018 at 12:44:39PM +0000, Hannes Tschofenig wrote:
> Hi Göran,
> 
> I believe there are new data points on this topic since the time the requirements & use case draft was published. A lot of use cases were written down and not all of them are still being considered by the folks in the working group. Time has passed and we haven’t seen the same amount of interest in the Client Token even among the authors as with the other functionality. Furthermore, we have also received a review from Mike where he restated what I said earlier about the Client Token. Then, there was the recent IPR disclosure.
> 
> If you believe we need to cover the Client Token functionality because you need it then you that’s Ok. But so far I don’t think I hear you say that.

Right, this seems to be the key point.  If there's not any running
code and not going to be any, it's pretty likely that the spec (for
this portion) will not actually be usable.

-Ben (no hats)