Re: [Ace] I-D Action: draft-ietf-ace-revoked-token-notification-06.txt
Daniel Migault <daniel.migault@ericsson.com> Fri, 02 June 2023 14:35 UTC
Return-Path: <daniel.migault@ericsson.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B6E9C14CE24 for <ace@ietfa.amsl.com>; Fri, 2 Jun 2023 07:35:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.098
X-Spam-Level:
X-Spam-Status: No, score=-7.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HbhA_bMi-Ltv for <ace@ietfa.amsl.com>; Fri, 2 Jun 2023 07:35:34 -0700 (PDT)
Received: from NAM11-DM6-obe.outbound.protection.outlook.com (mail-dm6nam11on20612.outbound.protection.outlook.com [IPv6:2a01:111:f400:7eaa::612]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F1984C14CE47 for <ace@ietf.org>; Fri, 2 Jun 2023 07:35:33 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=ilFBcxbl86BVH71gpMKLPOf4PDnS+iS72I0c+7fCqD/6ZG1Egp7isAyKyybcL0tZYozaP2Q4Qt6wry88w5V3dnqPFPYdQsV45ZzOhk2MOy548M9ubc7tBDrBwCdpxtEbzgmHYXfAr4vcC39VhtQN4dkxpK026e9aiDo8x11ItME8BJZc3w2JTrIVQwZY9cOjXGKjFYt43A9gW/ejbEdb5UghuFIRfgLCJjMvL/ulVViw8NOYeKt/sdJz55ps4Y0Ueq/pSd2GgJTfkOvfxMdZ9BK/ZfV7ZQ4n//pZxrPkdSLC2CMRxRiAdYXOFCSTvtn9SeafZ0j5F5ImdTMou/IFJg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=QPRtAm7BN/wrXtOvkENlnHvbC4S3HglgHZbQOBXdKlw=; b=AZksqfYOCT5Crw7f2akVjZGL6Cyt2irrycxRGBVUSsQWNNSeqGsTxIvixVmNuldB6yBKRJa61PRaaW8wVW8RUlRQysoO0H0Yx6IbPKA7XnM/blDR4UZ1qkGejt150InEnyXEvwQhRAXZrlM3VaSVAHsyMab02OG1N7FpWxLZ9DoM2rAmNqVXJticgydY2HnBXzYbkCr+iWDsj7CWPLdXtx5JYiwykcYa0KhYT5Az/LV2znEeueIIYx3/6hIa7e3tLkpNx13nDO3OxbKl09KdN1MdAoaVQmwLQYG60RC78qIVpf8V47AijWLQPY1JUJvszV472gbV34EcLWC6yFhiPg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=QPRtAm7BN/wrXtOvkENlnHvbC4S3HglgHZbQOBXdKlw=; b=CY2MzK3l3w5YzCHP89tu9CxnRGHgm1RvJYN732XJennlKWma71puiOqLsecHc+7pDlXFeFI8kHRmk+BaslZwztHkeq5fzt2amlOVt+bBdMN0YAEkv6yGe+Uwrgj4jIA5L8tIAq7meT86v9AfqfuMRkOXgTQc00tjqt1oQQdFCRs=
Received: from DM6PR15MB3689.namprd15.prod.outlook.com (2603:10b6:5:1fb::27) by CH3PR15MB5771.namprd15.prod.outlook.com (2603:10b6:610:122::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6455.23; Fri, 2 Jun 2023 14:35:29 +0000
Received: from DM6PR15MB3689.namprd15.prod.outlook.com ([fe80::3fb8:40b9:7e84:c4f7]) by DM6PR15MB3689.namprd15.prod.outlook.com ([fe80::3fb8:40b9:7e84:c4f7%7]) with mapi id 15.20.6455.024; Fri, 2 Jun 2023 14:35:29 +0000
From: Daniel Migault <daniel.migault@ericsson.com>
To: Marco Tiloca <marco.tiloca=40ri.se@dmarc.ietf.org>, "ace@ietf.org" <ace@ietf.org>
Thread-Topic: [Ace] I-D Action: draft-ietf-ace-revoked-token-notification-06.txt
Thread-Index: AQHZlVk2JwTfltPMrE2DEw1PHlC59q93ih2AgAAJ8No=
Date: Fri, 02 Jun 2023 14:35:28 +0000
Message-ID: <DM6PR15MB368985ABEB4CF9502BA501A3E34EA@DM6PR15MB3689.namprd15.prod.outlook.com>
References: <168571378549.16758.9002597789734611185@ietfa.amsl.com> <6ade8140-fb23-a0d6-508e-e3125801c917@ri.se>
In-Reply-To: <6ade8140-fb23-a0d6-508e-e3125801c917@ri.se>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ericsson.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR15MB3689:EE_|CH3PR15MB5771:EE_
x-ms-office365-filtering-correlation-id: 3559294f-a732-47fc-ba60-08db63769ca3
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DM6PR15MB3689.namprd15.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(4636009)(136003)(346002)(366004)(376002)(396003)(39860400002)(451199021)(86362001)(44832011)(5660300002)(52536014)(15650500001)(8676002)(8936002)(38070700005)(66946007)(2906002)(38100700002)(316002)(82960400001)(76116006)(66476007)(64756008)(66446008)(122000001)(66556008)(110136005)(91956017)(45080400002)(66574015)(478600001)(33656002)(71200400001)(41300700001)(966005)(186003)(6506007)(26005)(9686003)(83380400001)(53546011)(55016003)(7696005); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: qnTPkNGrPOLwSf4gv21TdARrTl3gWEaRYNVaRS4vuGbfsi5oPVV3ahg3fPMIeddmqEv64xtdbOGAD9pJ+mX45gA9AeIpgbOuItFKu+8ru2gg4CqLljmsN9tMXYUrOCNW0ISNRvwjIkOnHvE1wwhtMdWvzhE8Dn12MOGmDsG1H74FfG+iRbDNnss9gRlTGreB/Vym3xyzSvp0wJ13TJKzDsAW94YO3kYUEXGESrpUCVtPfjTmlFHUK+jKcfGEoaMr0c/InACtXsykmJx2M7JlcyftQMC2keFNndbfoBR4m7Kq17kD5I3ZYXXBcssLogk56i4BOcAIZkquIh7g0M8+57VodFWRQfqJ+jWWo/DzccqlvRqLxj693d2FRlOmimp6ki+LXpvodCVFkGmKhoA7KRUJQ9KVwAM4OC8N7pUmivZwiZy99FNI2p3al0Bng2Vh0mPU79AuAVcZxXfp1TrsJTgl8onQMd/ppdSaCZbMfim+PgjNWpJ6C+qWibHhHdY1A/p4m2nKeUbKcs+3YcXq6AasJAbWYE142xe7rnk9hnnHSalwWxTGtVw6NSoT1kZJLcY8Gi35s5THKMLEOqYvSjvfLpGhz4HjtWDViA/DG/6jdM0dwP6b/Be2g4yJ2+XyzWPHoXa9gsbSWXSTBNE+dX4GQBf48UQK+h/A9HUjIUnQlqAFyJvbS+O6K9z+0bUkHI0xb5rou1S4D4v/YSSRiv9uzwFR1uQbCuZ8vSTYYXfdhnDOA1N1vw/DI9eSKvRGhIMXAfSQlxEue1tEBlAPirHzj5KfZJ0kYQZVFcUE3EcjPOHFeQpDS6XbI8KK6VZXJ3XHjXb+INDw5uBhKR2OXWXNYXoNHIA2CcM5YOA/dwCSww0Mr7RO7CY2WExpHvtVEzE9L5+n3gGIAYWJlUaHXjWuy4np32Tw0/4mfVOJFgBfK6d6dV+aqLowkgOIrTTuOfFsLsdGZxjc46zp2iSdlrd15mR1WBtTP14sLDrnX1NVJ7tw4agr0nLYdaBzwiN+r5zFW5WrIbpDQPJzXqHMzqURsryXQponR+bJiZ/Dv1a0uw3YwTNPGsFKyP+EisA3omEJNtl38/o/8T/X1GmssYtqZ52SP/eL37GYRZ9vmtAU+LOA4bW46TtGOMlqtpVNM8PEOtr8NGV2iPSbN5LeH9AS02W1DeRG09eVIDue5DST4wa6kmuWc88ZcJylNr2iLXpWMu45TMX3xJxP+YSTwvBXWp2I2VfUNpLPekWifHAqzWh95NkRHcLAKBUQxv1oLagcwNxCu0jZD7c6bTwppNt2lIg5Izf56TZQcAxZHjMwgBQuV8tJ7tz5z9p8BisDe9xQoNOq0LieKZk5PPlaADlNVusDPS/RU065c5ZbU0uYnUCt3uv2lfzFwQMqYZsbSBuRjfcJj5lvqEpLAVbQBPG3Lz1ucApBa2R88Vd4SFcvDM9OFNG7vbTkB6yNr9RAcdR3yBaAnYszRzsxcAFLbcBqPdVVasfgaX2wosVzscJppChVQYXlkIeUpAcKqEJfFHjWIIPjFg1upsHMibz8rS3KVwTEWWRNmZ4Gz0GTA9gZth1eJJOvRRg/l5lBujeJ
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR15MB3689.namprd15.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 3559294f-a732-47fc-ba60-08db63769ca3
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Jun 2023 14:35:28.7706 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: dD9jI+dczy9+o3/K+tCvv/pmRQTuhd70W530FDYiZ8ElyKlKTcPZyr2Z0tO0pZ0RgG2j2S1Yb9F2Jvp1HH/8Fp/s+BkELFqYLxNmuhPDm0Q=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH3PR15MB5771
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/H6TvlYuYaHlTeBGCDV9PQfcdZhQ>
Subject: Re: [Ace] I-D Action: draft-ietf-ace-revoked-token-notification-06.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Jun 2023 14:35:38 -0000
Thanks Goran for the revision and Marco for addressing these comments. Yours, Daniel ________________________________________ From: Ace <ace-bounces@ietf.org> on behalf of Marco Tiloca <marco.tiloca=40ri.se@dmarc.ietf.org> Sent: Friday, June 2, 2023 9:59 AM To: ace@ietf.org Subject: Re: [Ace] I-D Action: draft-ietf-ace-revoked-token-notification-06.txt Hello ACE, This revision addresses the comments from the Shepherd review [1] - thanks Göran! - about avoiding repetitions in the instructions for the Expert review in the IANA considerations. Best, /Marco [1] https://mailarchive.ietf.org/arch/msg/ace/mHpTsE-lDvzfMSt0cd-j_B-VknM/ On 2023-06-02 15:49, internet-drafts@ietf.org<mailto:internet-drafts@ietf.org> wrote: A New Internet-Draft is available from the on-line Internet-Drafts directories. This Internet-Draft is a work item of the Authentication and Authorization for Constrained Environments (ACE) WG of the IETF. Title : Notification of Revoked Access Tokens in the Authentication and Authorization for Constrained Environments (ACE) Framework Authors : Marco Tiloca Francesca Palombini Sebastian Echeverria Grace Lewis Filename : draft-ietf-ace-revoked-token-notification-06.txt Pages : 59 Date : 2023-06-02 Abstract: This document specifies a method of the Authentication and Authorization for Constrained Environments (ACE) framework, which allows an Authorization Server to notify Clients and Resource Servers (i.e., registered devices) about revoked access tokens. As specified in this document, the method allows Clients and Resource Servers to access a Token Revocation List on the Authorization Server by using the Constrained Application Protocol (CoAP), with the possible additional use of resource observation. Resulting (unsolicited) notifications of revoked access tokens complement alternative approaches such as token introspection, while not requiring additional endpoints on Clients and Resource Servers. The IETF datatracker status page for this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-ace-revoked-token-notification/<https://datatracker.ietf.org/doc/draft-ietf-ace-revoked-token-notification/> There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-ace-revoked-token-notification-06.html<https://www.ietf.org/archive/id/draft-ietf-ace-revoked-token-notification-06.html> A diff from the previous version is available at: https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-revoked-token-notification-06<https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-revoked-token-notification-06> Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts _______________________________________________ Ace mailing list Ace@ietf.org<mailto:Ace@ietf.org> https://www.ietf.org/mailman/listinfo/ace<https://www.ietf.org/mailman/listinfo/ace> -- Marco Tiloca Ph.D., Senior Researcher Phone: +46 (0)70 60 46 501 RISE Research Institutes of Sweden AB Box 1263 164 29 Kista (Sweden) Division: Digital Systems Department: Computer Science Unit: Cybersecurity https://www.ri.se/<https://protect2.fireeye.com/v1/url?k=31323334-501d5122-313273af-454445555731-3d296ae5721cac2b&q=1&e=47b2bd1c-8e2e-4879-8c2a-e5706e22ae60&u=https%3A%2F%2Fwww.ri.se%2F>
- [Ace] I-D Action: draft-ietf-ace-revoked-token-no… internet-drafts
- Re: [Ace] I-D Action: draft-ietf-ace-revoked-toke… Marco Tiloca
- Re: [Ace] I-D Action: draft-ietf-ace-revoked-toke… Daniel Migault