[Ace] Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec adding Key ID considerations

Mike Jones <Michael.Jones@microsoft.com> Fri, 09 November 2018 11:10 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 93873130DC8 for <ace@ietfa.amsl.com>; Fri, 9 Nov 2018 03:10:27 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.47
X-Spam-Level:
X-Spam-Status: No, score=-2.47 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.47, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jMXU-pH1Bi9d for <ace@ietfa.amsl.com>; Fri, 9 Nov 2018 03:10:25 -0800 (PST)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-bl2nam06on0097.outbound.protection.outlook.com [104.47.53.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DA307127333 for <ace@ietf.org>; Fri, 9 Nov 2018 03:10:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=4XqcIkeJBarg2fUqx/YXYOHl1raWjbXZpk/ctJJB3ZQ=; b=CwsdE6x+sZd32vOk7Z8CN4v97HV1felNQhuV6GS4p9OGQ9OLVZhVXiku8lO6VLPvksROFpwLV2OgvkRCEUKKhXrdxVA+fyvGy6lf0lN1Oulrf6oLCv20Evn1CnnfMsxEIBpKl6J3b5i3747BaUqHisR94NRNue+tcGZxv4myqEA=
Received: from DM5PR00MB0296.namprd00.prod.outlook.com (52.132.128.37) by DM5PR00MB0439.namprd00.prod.outlook.com (52.132.129.149) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.1361.0; Fri, 9 Nov 2018 11:10:22 +0000
Received: from DM5PR00MB0296.namprd00.prod.outlook.com ([fe80::ecb8:1407:55a:56b2]) by DM5PR00MB0296.namprd00.prod.outlook.com ([fe80::ecb8:1407:55a:56b2%4]) with mapi id 15.20.1363.000; Fri, 9 Nov 2018 11:10:22 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "ace@ietf.org" <ace@ietf.org>
CC: Jim Schaad <ietf@augustcellars.com>, Roman Danyliw <rdd@cert.org>
Thread-Topic: Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec adding Key ID considerations
Thread-Index: AdR4GyUcMn00jH1KT0uf/VnRA3FyLg==
Date: Fri, 9 Nov 2018 11:10:22 +0000
Message-ID: <DM5PR00MB0296C6B9E56649EDC42A9C4DF5C60@DM5PR00MB0296.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [31.133.191.113]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR00MB0439; 6:knyqvxoHBGOkg7rx3GTByKfhCcAJ7wLQB6BUsVf7UorZqSfS0U3BUP7pj/p9x/kKAyL9pzw5eIS/m70wKhN8/BuZWtUYPTQWq9M5bCV4f4r6Gxf5Ms1IXTjSpV5Q1pi15iYK9fqnPK1xl+IVp10cueZyFWWvzRr4TlGWIGLLyaicjOH53rCOKlWLlrHnUmDjlcdoXieb0ps+GFc8FpMa9WXR4xGWEmd/iZIwJqYccyq+0jITYJrQy+qY+HZk6aEhVzepnttH6BJxuIILLrlAkhmZjq+J/rG8bDEILRjD1VAhk7L7DIaRnHeuKOYFel1Xe+DhsUZI8xPTJdAqbuBFikmZi+2aFymQ8+E8r5EOJb+K8BiE7R6uxluJ//NKwmWrw8MdplSPlNM+PMKRgTw6LAJsI3Gd/LYNd2jEM6jQb0V+W3zJUzDk83KwefpLHDcZ9NnoaAI9TPPhpIBxgVVydg==; 5:OALhrilreY4n3+8h2uqaAHGbVP4eRDwd+Kp3z/B7vOB57EBbtgKrDqrVeiVPmb2tULfUSDDPPrCRJBl5efw0okjngmRwvbWZde4suvtmmln9VsLF2g8jgdziAruLhE6hG4xHCrtzn3JOvCsJCgZUTDprxUhFpKwCsKNsK85jqOg=; 7:RzoGxoSruGqC2s8dvoiV7xpL6VRnkLYqvgQa5/O/UpYXT9b0XBRJLSa7cW0p9H3juQBoCaPo+XV5gub5jQGPpzc2/xi1OoUohLL96nr4qUQBCDGleDD3+IgfBhGsBkh9IEh4Zn2xpdKdc+eR8ZUyXg==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 73ca113d-385b-410d-c552-08d64633f158
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(4534185)(4627221)(201703031133081)(201702281549075)(5600074)(711020)(4618075)(2017052603328)(7193020); SRVR:DM5PR00MB0439;
x-ms-traffictypediagnostic: DM5PR00MB0439:
x-ms-exchange-purlcount: 9
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-microsoft-antispam-prvs: <DM5PR00MB0439D982AADC09C523941B76F5C60@DM5PR00MB0439.namprd00.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(2017102700009)(2017102701064)(6040522)(8220035)(2401047)(5005006)(8121501046)(2017102702064)(20171027021009)(20171027022009)(20171027023009)(20171027024009)(20171027025009)(20171027026009)(2017102703076)(10201501046)(3002001)(93006095)(93001095)(3231390)(944501410)(4982022)(2018427008)(6055026)(148016)(149066)(150057)(6041310)(20161123562045)(20161123558120)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(20161123560045)(201708071742011)(7699051)(76991095); SRVR:DM5PR00MB0439; BCL:0; PCL:0; RULEID:; SRVR:DM5PR00MB0439;
x-forefront-prvs: 08512C5403
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(39860400002)(136003)(366004)(376002)(346002)(209900001)(189003)(199004)(2501003)(74316002)(6436002)(53936002)(6916009)(10290500003)(97736004)(478600001)(54896002)(9686003)(6306002)(236005)(55016002)(5640700003)(81166006)(7736002)(72206003)(966005)(8676002)(256004)(14444005)(7696005)(8990500004)(1730700003)(81156014)(86362001)(2906002)(8936002)(66066001)(33656002)(14454004)(99286004)(25786009)(53376002)(4326008)(10090500001)(86612001)(606006)(2900100001)(3846002)(102836004)(68736007)(105586002)(22452003)(2351001)(26005)(316002)(71190400001)(54906003)(71200400001)(6506007)(790700001)(6116002)(5660300001)(486006)(21615005)(476003)(186003)(106356001)(6606295002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR00MB0439; H:DM5PR00MB0296.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: IeCIeCud9DEllLZjAHI6ZDuPAN7nyaWdHqGJ9FPlUb7CPUtuAOIhFdU4ced5PDgHr+oU7wYFT+iwrwIbNgmKu3gZwAaiu8OfvkGZQVnS3miI+GaC/Glejg4wiuhwyavKk4j33UQCvPu8QTPHF4ZNsQwC+19y/o2VXkVBcqGy915Xyy22UU/1KbAKm5xKPQfEvwPb10XHq3xmPaFp5TEN4JYbodTC/mQ2O7vPaFwu5ZKPhPVg0tC5j3y/XSTZ3Vv2JUp6nCNX0nHssgcTuZNgw8HPJeNfiKGmQ1KI7m+iMCRP3L13JItj+O9v92wGz5vwv8jpVwBnnVX2c+ZGJktTkh26STcd7PPvmVxoxzF3kig=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DM5PR00MB0296C6B9E56649EDC42A9C4DF5C60DM5PR00MB0296namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 73ca113d-385b-410d-c552-08d64633f158
X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Nov 2018 11:10:22.3605 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR00MB0439
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/Pg8-TOtfqQrTxeb_3pwGuRrO6QQ>
Subject: [Ace] Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec adding Key ID considerations
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Nov 2018 11:10:28 -0000

Key ID confirmation method considerations suggested by Jim Schaad have been added to the Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) specification.  Per discussions in the working group meeting in Bangkok, it's now time for the shepherd review.

The specification is available at:

  *   https://tools.ietf.org/html/draft-ietf-ace-cwt-proof-of-possession-05

An HTML-formatted version is also available at:

  *   http://self-issued.info/docs/draft-ietf-ace-cwt-proof-of-possession-05.html

                                                       -- Mike

P.S.  This notice was also posted at http://self-issued.info/?p=1938 and @selfissued<https://twitter.com/selfissued>.