IETF Logo Mail Archive

Re: [Ace] Requested review for IANA registration in draft-ietf-ace-oauth-params

Brian Campbell <bcampbell@pingidentity.com> Fri, 10 January 2020 21:12 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0270B1200E9 for <ace@ietfa.amsl.com>; Fri, 10 Jan 2020 13:12:32 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.998
X-Spam-Level:
X-Spam-Status: No, score=-1.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Q6usgwK9pY9j for <ace@ietfa.amsl.com>; Fri, 10 Jan 2020 13:12:30 -0800 (PST)
Received: from mail-lf1-x135.google.com (mail-lf1-x135.google.com [IPv6:2a00:1450:4864:20::135]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B158D12008C for <ace@ietf.org>; Fri, 10 Jan 2020 13:12:29 -0800 (PST)
Received: by mail-lf1-x135.google.com with SMTP id 9so2510932lfq.10 for <ace@ietf.org>; Fri, 10 Jan 2020 13:12:29 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=ZrlstIV2pgTIe8IoGLocyuO7JgJ3lLB7wDZhmRUVQfY=; b=NPy8yT0Y67phqIDxjOnqZtfTHmzmbMnKz6178LWhNPo0RmiaqhZkHi6Sb+Z6mIb6eD Zk+gbu43E0yjnvPW72aHnwX2RZDONz6psJHP+Eb161Cv1xs1/kubCFP761arubFKyVeL TB1A2bN7DJse9nOd83SNUrKbi+r3RisKi7tk99CduOIidVk8/7cwQSfbF0enDmORrhnV vg4xifOjfrLonzCrNb3kRq0fmOJxwGUlplF9buVLhyigrdBDaD3VdL98trne361qkHiw 0IYE3UG/6eTha74umYEgqdmxcaRY+NAb3bG9UF24KRJEE2r3T9pBTNI5MlaX+1IKJYoZ EeVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=ZrlstIV2pgTIe8IoGLocyuO7JgJ3lLB7wDZhmRUVQfY=; b=UtNjpFfbvi2EeImjs6WQheK6hSpGl01osTcc/ctnajfOR2eAX5ZMQdJqHT3fZ9kBX6 lAqhv9/ILUdkqaQ1Vn7vY5pl58YytEX9vKsQhRBA72euyNPNysom+nNkZVCOuk+L7OsH TxrHyI4Q2Y67BoG+1KpBz+WLULsCUBbZ399TdsZSGlWKYLfY3/Q2xD+Y7uHK+ZY6Wk6u jTJ73bqfrfxoaKqRx2n/ALSUMgWmls/Y/HkIutmZ1U+HmRYCYpsqms6ZhA7NlgcghDBK ALGqmBUVbBKbVcvAr9iKDamTrxD61DTf31vNMwN+2Elc+S7c0OPgUzVi8heOrGZwZ0TV FxDw==
X-Gm-Message-State: APjAAAWrG+hTiXZL5FnmQfZFEf9j34Qi/vqYDcO4OgjldYVL6foRdZQm G4KPi180yERdWVmqfGN4eKyud8uDUY3prgWR+3zyrCgTjnfD52w6L6xHyltPEoHXjeezdp0fZL9 woUoUa9UE6CI=
X-Google-Smtp-Source: APXvYqyQ+nhSPqMQ/N2sPfuKtb5EujijCYX5qpfRAafeBm9RNcwxXWLD7PSU6TtNGIA0m2qsOpojqArHVN4dwCLHKd8=
X-Received: by 2002:ac2:44d9:: with SMTP id d25mr3604646lfm.15.1578690747987; Fri, 10 Jan 2020 13:12:27 -0800 (PST)
MIME-Version: 1.0
References: <9c32d171-9a4a-ba71-c989-92a177d9e989@gmx.de>
In-Reply-To: <9c32d171-9a4a-ba71-c989-92a177d9e989@gmx.de>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Fri, 10 Jan 2020 14:12:01 -0700
Message-ID: <CA+k3eCSocYYpHQtWAfs=EnOTcOFbRSFH52FK=Ak5RiTZs4nOYA@mail.gmail.com>
To: Ludwig Seitz <ludwig_seitz@gmx.de>
Cc: jwt-reg-review@ietf.org, Roman Danyliw <rdd@cert.org>, Jim Schaad <ietf@augustcellars.com>, The IESG <iesg@ietf.org>, "ace@ietf.org" <ace@ietf.org>, drafts-lastcall@iana.org, Benjamin Kaduk <kaduk@mit.edu>
Content-Type: multipart/alternative; boundary="0000000000003ea6f9059bcf955c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/J7SWt_IXvEtpqBTfY3pgOyyR1ss>
Subject: Re: [Ace] Requested review for IANA registration in draft-ietf-ace-oauth-params
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Jan 2020 21:12:32 -0000

That  "rs_cnf" claim registration request in 9.1 points to 3.3 which says
it has 'the same syntax and semantics as defined in for the "rs_cnf"
parameter', which I think is in 4.1. And 4.1 says that the "rs_cnf" values
'follow the syntax of the "cnf" claim from section 3.1 of
[I-D.ietf-ace-cwt-proof-of-possession].' Similar to other comments I've
made today, I don't follow what that would mean for the value of the claim
when it's a JWT. And that seems like something that's important to
understand for the purpose of a JWT claims registry request.


On Sat, Dec 21, 2019 at 4:11 AM Ludwig Seitz <ludwig_seitz@gmx.de> wrote:

> Hello JWT registry reviewers,
>
> the IESG-designated experts for the JWT claims registry have asked me to
> send a review request to you about the "rs_cnf" claim registered here:
>
> https://tools.ietf.org/html/draft-ietf-ace-oauth-params-07#section-9.1
>
> Thank you in advance for you review comments.
>
> Regards,
>
> Ludwig
>
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace
>

-- 
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged 
material for the sole use of the intended recipient(s). Any review, use, 
distribution or disclosure by others is strictly prohibited.  If you have 
received this communication in error, please notify the sender immediately 
by e-mail and delete the message and any file attachments from your 
computer. Thank you._

v2.23.0 | Report a Bug | By Email