[Ace] Nits in draft-ietf-ace-oauth-authz

Ludwig Seitz <ludwig.seitz@combitech.com> Wed, 11 August 2021 06:43 UTC

Return-Path: <ludwig.seitz@combitech.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B6C863A0D3F for <ace@ietfa.amsl.com>; Tue, 10 Aug 2021 23:43:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.101
X-Spam-Level:
X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=combitech.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gOAZ7u6juYsN for <ace@ietfa.amsl.com>; Tue, 10 Aug 2021 23:42:54 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2069.outbound.protection.outlook.com [40.107.21.69]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CC4A53A0D3D for <ace@ietf.org>; Tue, 10 Aug 2021 23:42:52 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=YrMr2W9qo8fA3+WQH4yWcBQKI7EOb1jTbGNEpRr4d4eSLPCCowYoS9PGqhgL5UOZqzW0NvlqIpeEhj47MMluYi613ri5/3YzjZcasgURCwm/oowd5Ok4KJ6+oK5wn8iMpfOnTvVuG4zWPY0TNzOdy/Qzk8rrCJU7HCur6giKrQwNp0m+BEvjJepq55onAykiMtwNNG1/RiIkFnRMc1dlpvBQf7SgG70OjGfiWzrCId+ArFKeyxnEQulMLngPc4g+7NDMXTnww2woo5EcFv8zXkNqw5g4Q+hymk3qenu/dIE0bgIyRTSfnXwjchEhwPCF7F15yDp6s0uXVtLNZyBdjw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xX+0+UY73z5KkreCPr/reqahhfvEf/5/LauFSC4bJ9I=; b=ddIHCuruEpMknJEu+Fr3Prijf5vMy/Bwal7YiXNd4L3+WaMecl21wj7V56czv3lry82rlhKPF9Vl3Efhk3qpfd3kItmeowx+nF1cseqlPq01gokm6vxWK8TBlc2vfwX//+vBp2xYUbUv4i5Nd2Vhg0XflB6lsVHJu4ebH4QK+fZeMU/z7QoJQ/NJ/lnripbsfhD4ZDCYkMQHTgIOx5A6hnR6ZzFy09rBzQcZ3BdnfbCovnD7esiGgWUa1vaUbFUFBHBDOOpfo1+HXn49IE7GgM6GDvw3PNAcBp+NmAlEYh2TwViMDD4Tdp7iEt0I39CJ16/Re6+BcMLneFEO5Mfvng==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=combitech.com; dmarc=pass action=none header.from=combitech.com; dkim=pass header.d=combitech.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=combitech.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xX+0+UY73z5KkreCPr/reqahhfvEf/5/LauFSC4bJ9I=; b=BAjjx/QF7TM+PdHEGLncj34LqaN8i+1u2NTWk6ouyR7PRGq2f476IG8jnKdNb4Q6BUtytFrq0jGxuowAmDwrF5cki7Kmhmr4kbAs2yPxyw7iEeYrd6MdqGSxEyPWWaxQqOTRforbHHdjpB66sdsk8FwcFhqXhJukNa09RO00S3A04n6ap0G0q/P3EVOcQnlZniYpBpgMFTYL52xMj9e9UDGVyYHj44PFuEBKJBN8cAkMGir75AJQIjWtc+ADZ3HPpsbbwpxTCE1t+v9hminQsBjrYWuDJ/dEzC4z0rWm0kSBuaNOcGUmHqW5+fml9VDRmXXhDG5NfAByZzyx/6G6Tg==
Received: from AM0PR0302MB3363.eurprd03.prod.outlook.com (2603:10a6:208:c::21) by AM0PR03MB4932.eurprd03.prod.outlook.com (2603:10a6:208:fd::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4415.15; Wed, 11 Aug 2021 06:42:48 +0000
Received: from AM0PR0302MB3363.eurprd03.prod.outlook.com ([fe80::8562:622f:2b59:854a]) by AM0PR0302MB3363.eurprd03.prod.outlook.com ([fe80::8562:622f:2b59:854a%6]) with mapi id 15.20.4415.016; Wed, 11 Aug 2021 06:42:47 +0000
From: Ludwig Seitz <ludwig.seitz@combitech.com>
To: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: Nits in draft-ietf-ace-oauth-authz
Thread-Index: AdeOeuu3Wo4wqy8dQxa6sxjDhIZbMA==
Date: Wed, 11 Aug 2021 06:42:47 +0000
Message-ID: <AM0PR0302MB3363C2AADFCD40CDB9D001629EF89@AM0PR0302MB3363.eurprd03.prod.outlook.com>
Accept-Language: en-US, sv-SE
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_Enabled=true; MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_SetDate=2021-08-11T06:33:10Z; MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_Method=Standard; MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_Name=Company Confidential; MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_SiteId=0d11ac4a-ef5e-423a-803b-e51aacfa43d6; MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_ActionId=b794ff75-c309-42c2-8ea4-864d98192317; MSIP_Label_71cffee6-aa30-4f5a-bbc3-434e7067f7b3_ContentBits=0
authentication-results: ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=none action=none header.from=combitech.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b9258347-31f3-46fa-fac9-08d95c933b98
x-ms-traffictypediagnostic: AM0PR03MB4932:
x-microsoft-antispam-prvs: <AM0PR03MB49324D62C103402EFE9CDAC39EF89@AM0PR03MB4932.eurprd03.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM0PR0302MB3363.eurprd03.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(39840400004)(346002)(396003)(376002)(366004)(33656002)(44832011)(26005)(186003)(316002)(7696005)(478600001)(8676002)(6506007)(66574015)(76116006)(8936002)(2906002)(86362001)(83380400001)(52536014)(6916009)(122000001)(38100700002)(66446008)(9686003)(66476007)(66946007)(38070700005)(64756008)(5660300002)(55016002)(71200400001)(66556008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?utf-8?B?akRPajlNWXJPY0V3alpUOFdsd1lFZDlKZHByRU9TYld3LzV5cGM0MHRHMGxK?= =?utf-8?B?N0xuVEIxdjRNQkYwYTJDVE5uS3ZiSVE2aFdYOXRiNjU2djJpVW90MzBwa0Nq?= =?utf-8?B?NHlzWE1naE1pQWI4SDh1KzJwRFBDNTNKWTVtdi9xaVAvZ3hVTHFwNTh1Y0tV?= =?utf-8?B?K1h5Y3dDMTljMmNRUmVoUklvRnFMNDdBZnE4K25aYmJJV3BWU1JheWdnOFBu?= =?utf-8?B?THIvRllnMG4wMUZvMHc2Q3l2SUY3SWlOL3VKZ2J1d2hjVS9xV1RmWE1NWi9Z?= =?utf-8?B?TkxXUmJGeGJaM2s2TW1HelRBMGQ0d0NRQWpQNXNhMVFtcUZWREJSemR3eTlR?= =?utf-8?B?bExUZEJmQVJUOEozQzhTcFVleTlCY0VTYjV3dlpraERRSWplNW9UU29YTEJa?= =?utf-8?B?TEp0Y3NpcjV5azExbUVJOUcwc1hmNXF1RjNzUEFpdHB6a0p2NnZ0VFNtVURj?= =?utf-8?B?UGlRTWRaZllucXJFdStKWm9wZG9va3pobWd4ckJvSUwxejdvNEJmZXMwUkk4?= =?utf-8?B?NDJPTDFEMDhhdWtwZkxvZWF0ci9KbU5XaXU5S3FLWkdrNm5aekhmUm1KajVF?= =?utf-8?B?RGFsOW5FUTJwR2VqK0ZEL0k2Q0l6REFXSTFTWUxYWTM4cUp5ZWVPNW03bHNz?= =?utf-8?B?RDJCUzYrT1RLMjQyeFRJaXBxQWJGdWZvSHVldllSR3RhdXVsdjJGMEl1ZnVj?= =?utf-8?B?elgzYXhoQWMvWHgvbFI3SUJRSlFVWkhpaStnMm9XZE1wNXdEU2FJRFNmRTZT?= =?utf-8?B?d29SaXJHL1pLY2NGaVZZSVcxM0dWc0ZKdG1LeUhsUmtvOGJPVGpQaml3eG02?= =?utf-8?B?bjJHT3NwT2lkNTFrZU9ac0J5S1Z1eFhiVEFMZ3hTS085YUsxV1UvazIwRERB?= =?utf-8?B?VTduNWFVMXJwNkttUHAvQXZpcDYvYngwL2RiUEJPZ2JBQnRNc1dESkpxTXhn?= =?utf-8?B?cWU5RE92azR4bEgvR0NZc3M1U2M2M01tdXgxQis1b2FqREtrNzJDRyt2VlJT?= =?utf-8?B?MTRtbXhxVVh3Zyt0bWlyMW1talpvZlJWT21KeEdwcnZqV1JVVENoUkdGL2RE?= =?utf-8?B?Rjk4MTJvRTF1bHhPYWJqN3BtYVk5ZmRic3g0OHo0K1dRN3hjeVdZcWNLUjlK?= =?utf-8?B?NWFSTjZGSmdjZFIyYWVvekpUbmxJNWFuMStLbXFpUVBkUGlNRENLVnlpZW9R?= =?utf-8?B?ZzJ0ZmpOaWRva2VwVU82MGxJc0V2eHpvRGRKRmRYa3F1bUNpK3JVNVRzZU82?= =?utf-8?B?bHROWWRUM0FxRTRlc1JkUER5NWNFUXI3VW05TytFNmNSb01oNy9YMHE2T2V2?= =?utf-8?B?MTF0bkE2aFJXMW1xK0QxVklzand3akR3bWU1R1lHaUt3Q3d1cEpOMkZxVjR0?= =?utf-8?B?ODVPSzJvNWI2R2dCZVhLMmd5RDBMUGcxS0NOc1kxM2R6VnNFZ2U0M1dVbzRM?= =?utf-8?B?dkNjSzF6VWRzc25ITmhkYU15Ykh2c0QrVlUvVXhxaVlUU0pEek1Nb0xMU3Bj?= =?utf-8?B?TGliVzhiL1k2ZnJQakR3UThCQlZqWDZCUmhoR25URGs0SFRqYjVYb25JTlhx?= =?utf-8?B?V0FhaTIwRkNncEhiQTROaklZU3BZR0Z1VVhBNktDTkY5UnZwNDRjTmhVZWI0?= =?utf-8?B?T0VyN1QrdlV1dTFad0Y2VHhuYStzUVFYQmk5ZDhybVJaUXArcit2TXNWNlVn?= =?utf-8?B?NVdnY0ZnR05kYzYrNjVPcnYwMFM1TS9MWGZKKzYvMkdqNjNqck1GNXNzMTl2?= =?utf-8?Q?9JYL2iVySrq+qecDAE=3D?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: combitech.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM0PR0302MB3363.eurprd03.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b9258347-31f3-46fa-fac9-08d95c933b98
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Aug 2021 06:42:47.7246 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0d11ac4a-ef5e-423a-803b-e51aacfa43d6
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: MUkWHa9PE99BGFWRhMW8yX0goxKT8U+6e4vEx09ROiUKiB4sVaNSXCBPgNyfjOc0xMYJN79/PhOmh7SYmFEYGLEf5rd+0V2GxwPFmp+iEcE=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM0PR03MB4932
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/C_bCIIxAATYhMYrb4PDa-0NVRR8>
Subject: [Ace] Nits in draft-ietf-ace-oauth-authz
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 11 Aug 2021 06:43:01 -0000

Hello Ace,

I'm currently dealing with some nits in draft-ietf-ace-oauth-authz that I have discovered during the final IANA check. For one of them I need group feedback: 

The draft defines a CBOR abbreviation for the Introspection parameter 'cti' which is the CWT identifier defined in RFC 8392, however it turns out that parameter was never defined as Introspection response parameter, it only exists as CWT claim.

 Can this draft just add 'cti' to the OAuth Token Introspection Response parameters without affecting the progress of the draft at this stage?


(For those interested, the other nits are: 1. Inconsistent IANA tables where some had the column "Original Specification" and some didn't for the CBOR
abbreviation mappings, 2. An obsolete reference that needed to be updated in an IANA entry).

/Ludwig



--
Ludwig Seitz
Infrastructure Security Analyst
Combitech AB
Djäknegatan 31 . SE-211 35 Malmö . Sweden
Phone: +46 102 160 846
ludwig.seitz@combitech.com . combitech.com This e-mail is private and confidential between the sender and the addressee. In the event of misdirection, the recipient is prohibited from using, copying or disseminating it or any information in it. Please notify the above of any such misdirection Please consider the environment before printing this e-mail!