Re: [Ace] [EXTERNAL] Zaheduzzaman Sarker's No Objection on draft-ietf-ace-oauth-params-13: (with COMMENT)

Zaheduzzaman Sarker <zaheduzzaman.sarker@ericsson.com> Fri, 26 March 2021 14:09 UTC

Return-Path: <zaheduzzaman.sarker@ericsson.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 181A23A1F65; Fri, 26 Mar 2021 07:09:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.352
X-Spam-Level:
X-Spam-Status: No, score=-2.352 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.251, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C4CNEUC4ZEgu; Fri, 26 Mar 2021 07:09:24 -0700 (PDT)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-eopbgr150057.outbound.protection.outlook.com [40.107.15.57]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EBCED3A1F63; Fri, 26 Mar 2021 07:09:23 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FWdvxc9KmN/jt5sHEgNRunRhq4cwi4tbFLenmwduTsys6l3vagJa3jXERwYJtkQA3gkVuLTX+hFA9nZu5scmZQJGkX7Y6GeEpFCU4vKhgCKHPpEcV9YU6BaGn5J1aCe4l66IaDxv0qzq64FgSiW1Dzfqj4mU96xo51Zlbzdvm7sHP/rXzJY98I+Dr1GSExlExeSwZkLpR25SfTmBksMVA2YIxbso8CbvkRp5qmiHP8aRkHEXyP5Dm3x28ab+hHnc97yKCsxsCw9nHjokG2Uumtqz1kMLij4EbHZMkuoBVD5JRuiIJ62AaJrOshoh/J7O/aOomBfsf+yzQLykDFhYIg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Ksx/rVoMT6s6sdeOOcNNYvQVZv4k6w3gE9kkTCSSAU8=; b=FwHXsLd7E4RTBvQvw6J5yyAywvGDMIG+HqdXcKeDu36FBhOSyoqfYXN+2OnXIlNl/Clx7XQZVAdd99Kn99uZBhjeU3fJEgh2sRdBFNjBu/VytITCCfiR1gczTKuQ3xFQ9u62KOLUQzupt3R8KjbL49U7hcIS560qxCa1IaMvxAZt+EcEpHveQraT8PDC/H2R6qPUnf8FZoEdVxZgr9vPQHiz7LCkeP3UfB9uuKlZ7KJNGr1x3IHQ2jCL4XN/bhgqivAtB30Y6y3HasFHNgH1Km5nW6Jdbo/n6U7uncAPp9uF04EPRJLX422jSPQEgmE3+wwp1xhox04Q6+asPyFHzw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Ksx/rVoMT6s6sdeOOcNNYvQVZv4k6w3gE9kkTCSSAU8=; b=CGZGFdqH6o1e1Cl/G5rGWxUeu66axiuJ5TK3ykTu+W6IZhqc6S76mKZ+krWvEytv0Npw62Vy9B0IcH/YHtIA6woEHqZ+cS/6kGyeN5kxLB+TlrMGxWypRgre/GGykbTdzkZYI29xR+RLbCqTAbZjCBciq6WZiiqfBgCN9/fTTek=
Received: from HE1PR07MB4187.eurprd07.prod.outlook.com (2603:10a6:7:98::23) by HE1PR0701MB2361.eurprd07.prod.outlook.com (2603:10a6:3:68::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3999.17; Fri, 26 Mar 2021 14:09:19 +0000
Received: from HE1PR07MB4187.eurprd07.prod.outlook.com ([fe80::9496:1cb2:ad7f:1c14]) by HE1PR07MB4187.eurprd07.prod.outlook.com ([fe80::9496:1cb2:ad7f:1c14%5]) with mapi id 15.20.3977.025; Fri, 26 Mar 2021 14:09:19 +0000
From: Zaheduzzaman Sarker <zaheduzzaman.sarker@ericsson.com>
To: Seitz Ludwig <ludwig.seitz@combitech.se>, The IESG <iesg@ietf.org>
CC: "ace-chairs@ietf.org" <ace-chairs@ietf.org>, "ace@ietf.org" <ace@ietf.org>, "draft-ietf-ace-oauth-params@ietf.org" <draft-ietf-ace-oauth-params@ietf.org>
Thread-Topic: [EXTERNAL] Zaheduzzaman Sarker's No Objection on draft-ietf-ace-oauth-params-13: (with COMMENT)
Thread-Index: AQHXIJBkqWhFI3yW9kCGLC/ZyWYr6KqV3t2AgACCaAD///BsAIAAESoA
Date: Fri, 26 Mar 2021 14:09:19 +0000
Message-ID: <C2076003-D103-49A4-AC24-AAED586677CC@ericsson.com>
References: <161657823601.23005.5029211862521342366@ietfa.amsl.com> <276f72855baf42f4a64dbdecd86c3fe9@combitech.se> <FC159D9F-D336-43F0-B4CA-CF32F7433B20@ericsson.com> <0a5381eeca5f43b291b2f729d903c4a9@combitech.se>
In-Reply-To: <0a5381eeca5f43b291b2f729d903c4a9@combitech.se>
Accept-Language: en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/16.47.21031401
authentication-results: combitech.se; dkim=none (message not signed) header.d=none;combitech.se; dmarc=none action=none header.from=ericsson.com;
x-originating-ip: [85.238.211.27]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 01958362-7eb2-4890-8ac9-08d8f060bf89
x-ms-traffictypediagnostic: HE1PR0701MB2361:
x-microsoft-antispam-prvs: <HE1PR0701MB2361E7CACB653AE330601D119F619@HE1PR0701MB2361.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB4187.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(366004)(376002)(39860400002)(396003)(346002)(966005)(38100700001)(26005)(8936002)(186003)(8676002)(71200400001)(76116006)(66946007)(478600001)(4326008)(6486002)(64756008)(66556008)(66446008)(66476007)(33656002)(53546011)(83380400001)(6512007)(5660300002)(44832011)(2906002)(54906003)(6506007)(2616005)(86362001)(110136005)(316002)(36756003)(45980500001); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: =?utf-8?B?MUlTd0kzWTMwNmpsSFI5bS8wWko3U0IvN05VMXprOU9yQWwyMlZEMXdaME1X?= =?utf-8?B?elFNUE5Kc2NlSHZqenVLNk1jTVpKbUpsQlRkdjdNbFJGTEdrUldHdE9LbFlo?= =?utf-8?B?eXhjVEE1ak9FaUlkRDNzQzkxd2JjT2dzRUdWcHFqbkZjYTJRUy9BUnRNbkIx?= =?utf-8?B?blVFbHpIRTYwQUtwajc5dDgzb0RVL1BDWVBROUQyN2R4MEtHQjl3VXBsRWJK?= =?utf-8?B?ZEFJL0xjYmlTQTM4bDAydGJrQ3hqL1JmYktuWmNrb1hRUTlack1aWXQwV3F1?= =?utf-8?B?NjNWc2kyUVM0UTF3R3dMTTBlWXlHa1I5M0ZqOEwyZlI3Ym41ZUNxQnZaTUVr?= =?utf-8?B?YlRRMExYbGpUQzZhYklZTlYza2hYYmxFeW1lQVdOUllLOXVJZ3A1bjh3eDRU?= =?utf-8?B?ZGp2bDAxL2dWK0lGZ1RkUW15SmcyeklISGxxSUNwUUptbUMySkY5d3Z3Tkd2?= =?utf-8?B?MXAycmhBVmxRYkluaVVUU1oxNmRIOUljL3dRUXdFd1d2Yjl1ZVdtSmswbFZm?= =?utf-8?B?SUplS0d6RktIQnFMNlFBWGFGSzVvcloySFdBRDY5eU5FN2M3a3g3aDkyanFT?= =?utf-8?B?YXYrT2xlTmF6c1k4ZlpkWDh3MFNMVnYzYXJ5NFZvanAvdDdmME16SCtBVGoy?= =?utf-8?B?UCsxR3JWbmVtK2g4RXNQTy80Ti85cnk5aUxPVjkvVVNtYTFqMEdPV1p2dVNM?= =?utf-8?B?YWd0NngzZTZ4M3BQZmxRTzJqMEFMMXM2dUFBa1lnbm5tYWIraVRIdElSN0VK?= =?utf-8?B?OEFsRlNGZ1FLWlp2RG4vdTRlRmc2aDRHYU9RTjRqSHJOalFPOWdGRk9hcEt3?= =?utf-8?B?UHIzdW5DTE04bHhVQVBvd2FsZnRuKzkwejM3cWZxVCt1MlRQWHFnOWEyQWxk?= =?utf-8?B?OTU3Sk9zVVlkUm1uM3ZuRVBoNjZac29pQnZiRExiT0wvYXhHckxnM2JvSFNq?= =?utf-8?B?b3pXSXVPQVJSSk53NCt5TVJSZjBaaTZMd0E3VkV2RFJiaXAwZjhWOFFtQXJn?= =?utf-8?B?S1hjUkpBSDd0a2M2YW1Oa0lmQ3NUWllCbHhYWHMrQkxwakpacWVrcEMrY1cy?= =?utf-8?B?aHRQY2xJbkNuclJVSFBYLy9TTEYyYW1JMUhTWWlSVG5LQVN0ZGcxSEVrZDNH?= =?utf-8?B?Ly9UbVhXTXNQSk9CWTZiS3BuS3QrNFpRYmp1TGRzVXJZQ3g0d2VyNXRMdkxL?= =?utf-8?B?dFEvd041OXc1NWYzbG5wbEcyTTg1eUpyc2xLVVJPVGdSa3J0Z3VHYTFDb3ow?= =?utf-8?B?aTlxUkZwdysxaWlPOEdlT25TalJ1U2pHbXlMeGxGY3lYeTNUNFlqTXhkQW13?= =?utf-8?B?cnB3elVIaTRjdDRJTUlxQmtaeWdENFdqVG84SlJ3djMzZ1JXS1UzZmQ5cUZ4?= =?utf-8?B?TU5QcTQ0UE5uTTJqTS9ZTmFYejM3WEQ2Mk1iUE5rdUhzU2dQV1B3QkJmWDdT?= =?utf-8?B?YnFGN3M4MUFFMEg5T3ZyWmFsVEZKOTU2VU1VUUN2WGpRZWdmeEtvOEFPMFdZ?= =?utf-8?B?amtuODNXN3FFaFUxWEdySVNhSW1pbEN0cW4xMURCZjY2RW10Q01FTTVCNzZX?= =?utf-8?B?VFRZRGhSU0VMYmV5eGVsVUw5a25ZV2tOZWVxYTZqMmZpWTlPV0ZZTFo4dHBI?= =?utf-8?B?cTBrYjlkb0tsRGtZUGtTSDJFaVFJOVdGdEwyd1hGNW44bThRV2hBdVlDaytZ?= =?utf-8?B?UXhwZVQvQkN1enE0K25FM2IwSmRXdXJndERDNkZmc0QrNU1aeVJGWk9Gay9E?= =?utf-8?Q?k/EDiXOqUypAdbtUdojWeTaYURgp+SxxPPs8BjM?=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-ID: <9C600657F1E8464C804BEEF3DFE3211D@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB4187.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 01958362-7eb2-4890-8ac9-08d8f060bf89
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Mar 2021 14:09:19.2312 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: SvVaxM3QvCatoQTWIYgAwjJ2we5HSV2g0UnMCYpMRd+ApVR1Il71ogtcy1BTZdzRYzlk/mXibosZlUqjF+W3eEHpR9/1PBiS6H7u2pyPtzrZ762kCBRNxEgPXeECrqR0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2361
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/FrFdPzN6a7IZ58uw3h2hPXXbAJM>
Subject: Re: [Ace] [EXTERNAL] Zaheduzzaman Sarker's No Objection on draft-ietf-ace-oauth-params-13: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Mar 2021 14:09:29 -0000

Sure. Thanks.

BR
Zahed

On 2021-03-26, 15:08, "Seitz Ludwig" <ludwig.seitz@combitech.se> wrote:

    Hello Zahed,

    If it's ok with you I'll fix that in conjunction with the IETF-editor review (they will probably find a few more like this).

    /Ludwig

    > -----Original Message-----
    > From: Zaheduzzaman Sarker <zaheduzzaman.sarker@ericsson.com>
    > Sent: den 26 mars 2021 15:04
    > To: Seitz Ludwig <ludwig.seitz@combitech.se>se>; The IESG <iesg@ietf.org>
    > Cc: ace-chairs@ietf.org; ace@ietf.org; draft-ietf-ace-oauth-params@ietf.org
    > Subject: Re: [EXTERNAL] Zaheduzzaman Sarker's No Objection on draft-ietf-
    > ace-oauth-params-13: (with COMMENT)
    > 
    > Thanks for the update. My comments are addressed now.
    > 
    > Found a nit : It is RECOMMENDED that an AS reject a request
    >       containing a symmetric key value in the 'req_cnf' field
    >       (kty=Symmetric), since the AS is expected to be able to generate
    >       better symmetric keys than a constrained client. client (Note: this does
    >       not apply to key identifiers referencing a symmetric key).
    > 
    > s/reject/rejects
    > 
    > BR
    > Zahed
    > 
    > 
    > On 2021-03-26, 08:17, "iesg on behalf of Seitz Ludwig" <iesg-
    > bounces@ietf.org on behalf of ludwig.seitz@combitech.se> wrote:
    > 
    >     Hello Zaheduzzaman,
    > 
    >     Thank you for your review. The issues you found are now fixed in version -
    > 14.
    > 
    >     Note that there seems to be an problem with xml2rfc, since the outdated
    > reference to draft-ietf-ace-oauth-authz-33 should have been taken care of
    > by the tooling.
    >     I have notified the maintainer of xml2rfc and fixed the draft manually.
    > 
    >     /Ludwig
    > 
    >     > -----Original Message-----
    >     > From: Zaheduzzaman Sarker via Datatracker <noreply@ietf.org>
    >     > Sent: den 24 mars 2021 10:31
    >     > To: The IESG <iesg@ietf.org>
    >     > Cc: draft-ietf-ace-oauth-params@ietf.org; ace-chairs@ietf.org;
    > ace@ietf.org
    >     > Subject: [EXTERNAL] Zaheduzzaman Sarker's No Objection on draft-ietf-
    > ace-
    >     > oauth-params-13: (with COMMENT)
    >     >
    >     > Zaheduzzaman Sarker has entered the following ballot position for
    >     > draft-ietf-ace-oauth-params-13: No Objection
    >     >
    >     > When responding, please keep the subject line intact and reply to all
    > email
    >     > addresses included in the To and CC lines. (Feel free to cut this
    > introductory
    >     > paragraph, however.)
    >     >
    >     >
    >     > Please refer to https://www.ietf.org/iesg/statement/discuss-
    > criteria.html
    >     > for more information about IESG DISCUSS and COMMENT positions.
    >     >
    >     >
    >     > The document, along with other ballot positions, can be found here:
    >     > https://datatracker.ietf.org/doc/draft-ietf-ace-oauth-params/
    >     >
    >     >
    >     >
    >     > ----------------------------------------------------------------------
    >     > COMMENT:
    >     > ----------------------------------------------------------------------
    >     >
    >     > * Section 1:
    >     >    Nit : s/Respresentation/Representation
    >     >
    >     > * Section 3.1:
    >     >   I have similar observation as Martin Duke, and the resolution suggested
    > by
    >     >   author looks fine with me as long as the cases are distinguishable.
    >     >
    >     > * Section 12:
    >     >    Refers to draft-ietf-ace-oauth-authz-33, -38 version is available now.
    >     >
    >     >
    >