Re: [Ace] New Version Notification - draft-ietf-ace-cwt-proof-of-possession-07.txt

Mike Jones <Michael.Jones@microsoft.com> Thu, 26 September 2019 00:47 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CEF561201E0; Wed, 25 Sep 2019 17:47:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id o95kYH5RcxwV; Wed, 25 Sep 2019 17:47:48 -0700 (PDT)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-eopbgr650091.outbound.protection.outlook.com [40.107.65.91]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AB21512001A; Wed, 25 Sep 2019 17:47:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=AIUg9yTuRHhfloNGvlWldnhbDABSJTy2Hml/ukY5x6qdXy3xdOFiZslTzJRUWmmjVd+ijAo9MfYRLTz0xwiVXOFEnqAG959bFM4Pl4PluDkK0Sf5QUrvv3KbxtT1Cl9Mcq19lPe/AjSrVpSsoLconI0iDHmAfvkg19g3nY4BKfMGnNqpiZITTOJpHL8ydKrJippqYWr80eo6N7qEimxefMrt668HGFs+cwNi/Ik9JvkTuCpmslPmzRwP+4sEb5OkaoofeNyhMc1MT9DfCmbkh4n4WWVrBsWbOT7SDYnOPsH6jD1ewqzH2REaTSbTxfG4UhDPqPIsTyB109exIC/Ufg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=YwDD2la5ic/2W97z/ZAus/utni1qo8QpjKSQW4JMnOM=; b=FZeAzWYV1UXOb4pFko2zwAEUodPl3QVAd1p0PtS2SHXVxis5OSPmH74crIYGzyMvTvGepdhaiq7RZeEMYMjiLFbVqb6Qp0BvKq3gMV3Yn565vzmupUmopGGGAG5ZZeXktYLtsaIryUIHwLl4kwb0AuIkpRSB0L3lVNOCBfin/9s9SUnU6g+sz9cQLQ9KqCJrez/HzV/wHbkrQNof4SNt+Zw9zaaAKHP46Nh2XyP0IFWFq7brTXjC5bW+JQOHNSPQCY6WNYchX5JabUPtv/ph1qVmvGRDZF0ZRhOrpgWWHGygKX4kSOjNEqU+BT2G3XBrK9oxgQ1peLBvo8ioYdUMWQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=YwDD2la5ic/2W97z/ZAus/utni1qo8QpjKSQW4JMnOM=; b=btvZvSnk4bFySCkmqY5wMHVlPHDT4RloTL2KZVPKK8aS6lgrFDMitR1j8cPCfywZ8EQbSibE0YEwH6JXhuX3f9tsoxsAv+H8gtWyoS0UW8TcBZzAXxiVtSYwkHHc4jR/qJxpgv0cBEAp4eKfBQp6kkJs9pvCDKT8dU96F9/aXQc=
Received: from DM6PR00MB0569.namprd00.prod.outlook.com (20.179.51.12) by DM6PR00MB0587.namprd00.prod.outlook.com (20.179.51.206) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2345.0; Thu, 26 Sep 2019 00:47:46 +0000
Received: from DM6PR00MB0569.namprd00.prod.outlook.com ([fe80::f5a9:6bae:fd4a:4d4b]) by DM6PR00MB0569.namprd00.prod.outlook.com ([fe80::f5a9:6bae:fd4a:4d4b%4]) with mapi id 15.20.2343.000; Thu, 26 Sep 2019 00:47:46 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Ludwig Seitz <ludwig.seitz@ri.se>, Samuel Erdtman <erdtman@spotify.com>
CC: Benjamin Kaduk <kaduk@mit.edu>, "draft-ietf-ace-cwt-proof-of-possession.all@ietf.org" <draft-ietf-ace-cwt-proof-of-possession.all@ietf.org>, "ace@ietf.org" <ace@ietf.org>
Thread-Topic: New Version Notification - draft-ietf-ace-cwt-proof-of-possession-07.txt
Thread-Index: AQHVczB5c21d3/O1yke4JlwD6QWRUac7ewcAgAANbDCAAGbHgIAADRsAgAAOsmCAABdaAIAA/vyA
Date: Thu, 26 Sep 2019 00:47:46 +0000
Message-ID: <DM6PR00MB056937E704B75C65BC0E98F8F5860@DM6PR00MB0569.namprd00.prod.outlook.com>
References: <156886195825.4610.11342453288215138739.idtracker@ietfa.amsl.com> <20190924233318.GH6424@kduck.mit.edu> <20190924233510.GI6424@kduck.mit.edu> <MN2PR00MB05746F4B49B5655EE8B772D9F5870@MN2PR00MB0574.namprd00.prod.outlook.com> <1cd22827-d9d3-3212-3475-36fdb8efcc90@ri.se> <CAOB_DJkne4YEWoJ5-wOVOAVNSDmAp7B_2LC5jVODp7MJND4SeA@mail.gmail.com> <BYAPR00MB05674CFE3D37599DC5DDFC9BF5870@BYAPR00MB0567.namprd00.prod.outlook.com> <eba84d59-025e-d16c-b89e-8964e9446bc4@ri.se>
In-Reply-To: <eba84d59-025e-d16c-b89e-8964e9446bc4@ri.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=3d048337-f455-494a-8799-000057f576f5; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-09-26T00:46:46Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [110.8.254.3]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 28efaed3-fb81-4226-2a11-08d7421b2601
x-ms-office365-filtering-ht: Tenant
x-ms-traffictypediagnostic: DM6PR00MB0587:
x-microsoft-antispam-prvs: <DM6PR00MB05871D5099DD036E64164B48F5860@DM6PR00MB0587.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0172F0EF77
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(136003)(346002)(39860400002)(366004)(396003)(376002)(13464003)(199004)(189003)(25786009)(71200400001)(478600001)(22452003)(7736002)(316002)(71190400001)(305945005)(53546011)(102836004)(7696005)(6506007)(74316002)(26005)(186003)(76176011)(476003)(486006)(11346002)(446003)(66476007)(14444005)(256004)(76116006)(81166006)(66446008)(64756008)(66556008)(14454004)(66946007)(110136005)(10290500003)(54906003)(8936002)(81156014)(8676002)(4326008)(33656002)(8990500004)(9686003)(55016002)(6436002)(2906002)(66066001)(6246003)(86362001)(6116002)(3846002)(229853002)(15650500001)(52536014)(99286004)(10090500001)(5660300002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR00MB0587; H:DM6PR00MB0569.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 0Tr1h7znpqZOHZENKI/r39vqV3EOkVWeENXV8QaMQWXan6w647HP5Phmk3A96r0UVJfl6ppuO9kytIxVreA45FHEBwEYHjiOHwSUuIubkCt0HZV/Fn9zqrYCaEHqIqC9d6jqDvFBS2ytmH53JETuBRp2izUaF3pxJrswbLqF9ZOcnzVCtcYRmKjrhNRmrQthKmQ1UFec6phoaHtEcoloEYnqh26Cuq7589KnxbqeZYn3NBuLegEAHMXa8qxNWWBWoVPyFPeNECHEji0/rLDu+pD1kCgxiQ2oe0sF50ngrQzm9BUJaB2EXG9lZn/PSN6/lFreBccvYieuLAur4zLi/NStNgQQSRiwHwZ/qgrdOG41Y3P7RySmlaJ0WAaQPv/9n1ZF1LvLYMe2DxB+afZk9uWH7IDy3FBdO/sssa19tkM=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 28efaed3-fb81-4226-2a11-08d7421b2601
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Sep 2019 00:47:46.4215 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 0cmgZFbplibp8bD0CIgww08nGumAYcRvPTxW0sOEBmpZ/8TARBioWtnrwwDDgwC8k9vsJQ0aAW1sODUJ2PQ2zw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR00MB0587
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/92Z-cpGZyr4i-RZeGRVq12y39y4>
Subject: Re: [Ace] New Version Notification - draft-ietf-ace-cwt-proof-of-possession-07.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Sep 2019 00:47:51 -0000

On Ben's (2): "The only things that were removed that I wanted to check if we should think about keeping was the note that the same key might be referred to by different key IDs in messages directed to different recipients.  What do people think about that?"  I'm fine restoring that text.

Could you also do that, Ludwig?

				Thanks all,
				-- Mike

-----Original Message-----
From: Ludwig Seitz <ludwig.seitz@ri.se>; 
Sent: Wednesday, September 25, 2019 2:34 AM
To: Mike Jones <Michael.Jones@microsoft.com>;; Samuel Erdtman <erdtman@spotify.com>;
Cc: Benjamin Kaduk <kaduk@mit.edu>;; draft-ietf-ace-cwt-proof-of-possession.all@ietf.org; ace@ietf.org
Subject: Re: New Version Notification - draft-ietf-ace-cwt-proof-of-possession-07.txt

On 25/09/2019 10:13, Mike Jones wrote:
> Does one of you have the time to create a PR today making the two 
> changes?  I’ll then be able to review it and publish sometime in the 
> next 24 hours.  Or if not, I’ll plan to do it myself while flying back 
> from Korea to the US tomorrow.
> 
>                                                         Thanks all,
> 
>                                                         -- Mike
> 
> *From:* Samuel Erdtman <erdtman@spotify.com>;
> *Sent:* Wednesday, September 25, 2019 12:18 AM
> *To:* Ludwig Seitz <ludwig.seitz@ri.se>;
> *Cc:* Mike Jones <Michael.Jones@microsoft.com>;; Benjamin Kaduk 
> <kaduk@mit.edu>;; draft-ietf-ace-cwt-proof-of-possession.all@ietf.org; 
> ace@ietf.org
> *Subject:* Re: New Version Notification - 
> draft-ietf-ace-cwt-proof-of-possession-07.txt
> 
> +1
> 
> On Wed, Sep 25, 2019 at 8:31 AM Ludwig Seitz <ludwig.seitz@ri.se 
> <mailto:ludwig.seitz@ri.se>> wrote:
> 
>     On 25/09/2019 02:23, Mike Jones wrote:
>      > I'm fine with us making both of the proposed changes.
>      >
>      >                               Thanks,
>      >                               -- Mike
>      >
> 
>     +1
> 
>     -- 
>     Ludwig Seitz, PhD
>     Security Lab, RISE
>     Phone +46(0)70-349 92 51
> 


I'm in the process of doing the PR, but I noticed that I can only 
address Ben's (1) and (3).

For (2) Ben was asking for our opinion.

I think we could take the note about different key IDs referring to the 
same key and reintroduce it in the text as it is a useful reminder.

(I mean that chunk:
" Note that the value of a Key ID is not always the same for different 
parties. When sending a COSE encrypted message with a shared key,
the Key ID may be different on both sides of the conversation,
with the appropriate one being included in the message based on the 
recipient of the message.")



/Ludwig


-- 
Ludwig Seitz, PhD
Security Lab, RISE
Phone +46(0)70-349 92 51