Re: [Ace] AD review of draft-ietf-ace-cwt-proof-of-possession-06

Ludwig Seitz <ludwig.seitz@ri.se> Tue, 13 August 2019 05:50 UTC

Return-Path: <ludwig.seitz@ri.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DA6B120089; Mon, 12 Aug 2019 22:50:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=risecloud.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EFc23-UPjXge; Mon, 12 Aug 2019 22:50:40 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80051.outbound.protection.outlook.com [40.107.8.51]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A75D0120077; Mon, 12 Aug 2019 22:50:38 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=cDg3HeTAPBKIwD0tnWRAf2qoTdvybyrdfHJF3t/Pj3RnRz4ZbtYezEMZ8a17V3KHg3m2ifcanlAmUzVe2oF1+dPTuI/OLapwYpLH05NiMFLMel2hc6dnth55FGv54OwYHcG4NWy8Nr+/asDp5S+6bg0LkPmftYCgNeX7DXnRTUbSDeUecyHG/Qb73rCqUjMUYGaTPaUrxw1+0ia5cuijw8sATXbDhHvkYxkO0mobkiO7MS8ULzXVjMVI15GL9kJKh+hONMDtl0qwgwD2Ij9gMSjtT8Q6Mnivfl2c02+Z0VDR5mxYYaxeUp1BZcneWGlSAiDB2Wbb+hFTT9A9qi7gdA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0nig//G6/VKx3pQBvEpBzA7O+VYGm7x1rPOvTNa0SrY=; b=oTVD7DXdhFVwY8ypGJ4xwzarnDGZwYO7z5rBABnHMupR0d5aKE27zDc9aaNRL0UshX52/T5hvjDQZKnkNzDJyApY+y2QZ35hIoj39iwBzsJhdjLzcj2mPhp4XUbsOeIcVn+aTuN35lscfx5odGRTKeUh0hxq7XOmCganWZor0OZ1tLPe3sz3xb+q/i/+Bc/+gReLDTeoF8eobP+dSJAyizqz0w7iYmBRKI7YHIy1fzgHmgJkqZc+3olM0ildg/6L8CoWUZ9R4CQyV5nxzYPXJvOKHe9fmBGkyMBEEqQL0XS4N1IsS9SS71OWvnMt860Z/F+wuOKzSLUYWR9ScQPDFQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 194.218.146.197) smtp.rcpttodomain=ietf.org smtp.mailfrom=ri.se; dmarc=bestguesspass action=none header.from=ri.se; dkim=none (message not signed); arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=RISEcloud.onmicrosoft.com; s=selector2-RISEcloud-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0nig//G6/VKx3pQBvEpBzA7O+VYGm7x1rPOvTNa0SrY=; b=iOQHkRlKRWlf8Ry6QaDx1xOvOY+kPjxqXLGJp2pBH+uCvOIWj5NXs3GfEtJqfPQyysUlktE/Wbyb25epsDKJmyw2n3xwCjfAo0lHlfYNgZS+Ey41japrhug2dPxVXMINKAS+Gl1USYGcZE6HU+cqgwMUMSS5WFfSCJvUJy+Qd9c=
Received: from HE1P18901CA0001.EURP189.PROD.OUTLOOK.COM (2603:10a6:3:8b::11) by AM5P18901MB0212.EURP189.PROD.OUTLOOK.COM (2603:10a6:203:7a::15) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2157.14; Tue, 13 Aug 2019 05:50:36 +0000
Received: from AM5EUR02FT050.eop-EUR02.prod.protection.outlook.com (2a01:111:f400:7e1e::200) by HE1P18901CA0001.outlook.office365.com (2603:10a6:3:8b::11) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2157.14 via Frontend Transport; Tue, 13 Aug 2019 05:50:35 +0000
Authentication-Results: spf=pass (sender IP is 194.218.146.197) smtp.mailfrom=ri.se; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=bestguesspass action=none header.from=ri.se;
Received-SPF: Pass (protection.outlook.com: domain of ri.se designates 194.218.146.197 as permitted sender) receiver=protection.outlook.com; client-ip=194.218.146.197; helo=mail.ri.se;
Received: from mail.ri.se (194.218.146.197) by AM5EUR02FT050.mail.protection.outlook.com (10.152.9.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.20.2157.15 via Frontend Transport; Tue, 13 Aug 2019 05:50:35 +0000
Received: from [10.112.134.122] (10.100.0.158) by sp-mail-2.sp.se (10.100.0.162) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Tue, 13 Aug 2019 07:50:34 +0200
To: Carsten Bormann <cabo@tzi.org>
CC: Benjamin Kaduk <kaduk@mit.edu>, <draft-ietf-ace-cwt-proof-of-possession.all@ietf.org>, <ace@ietf.org>
References: <20190730155605.GM47715@kduck.mit.edu> <92fc4816-3447-62e3-e2fa-e6d92ea772e3@ri.se> <F92AC586-6122-499E-A7CC-28EC7E181AFB@tzi.org>
From: Ludwig Seitz <ludwig.seitz@ri.se>
Message-ID: <46e6b3ec-8812-fa19-84b4-dde3933cd061@ri.se>
Date: Tue, 13 Aug 2019 07:50:24 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <F92AC586-6122-499E-A7CC-28EC7E181AFB@tzi.org>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms090204000004080407010100"
X-Originating-IP: [10.100.0.158]
X-ClientProxiedBy: sp-mail-3.sp.se (10.100.0.163) To sp-mail-2.sp.se (10.100.0.162)
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:194.218.146.197; IPV:NLI; CTRY:SE; EFV:NLI; SFV:NSPM; SFS:(10009020)(4636009)(396003)(136003)(346002)(376002)(39860400002)(2980300002)(199004)(189003)(22746008)(6246003)(4326008)(8676002)(2616005)(478600001)(446003)(11346002)(81166006)(81156014)(229853002)(5660300002)(64126003)(65806001)(65956001)(2906002)(106002)(16576012)(235185007)(54906003)(44832011)(486006)(58126008)(31686004)(5000100001)(316002)(8936002)(126002)(70206006)(70586007)(336012)(476003)(6116002)(568964002)(31696002)(386003)(36756003)(53546011)(16586007)(65826007)(6916009)(86362001)(3846002)(22756006)(356004)(16526019)(186003)(53936002)(14444005)(7736002)(71190400001)(5024004)(26005)(76176011)(305945005)(33964004)(40036005)(6666004); DIR:OUT; SFP:1101; SCL:1; SRVR:AM5P18901MB0212; H:mail.ri.se; FPR:; SPF:Pass; LANG:en; PTR:InfoDomainNonexistent; A:1; MX:1;
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: bc868851-b87a-4614-63ce-08d71fb2295a
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600148)(711020)(4605104)(4709080)(1401327)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:AM5P18901MB0212;
X-MS-TrafficTypeDiagnostic: AM5P18901MB0212:
X-Microsoft-Antispam-PRVS: <AM5P18901MB0212368DA5685CBCE94308CF82D20@AM5P18901MB0212.EURP189.PROD.OUTLOOK.COM>
X-MS-Oob-TLC-OOBClassifiers: OLM:7691;
X-Forefront-PRVS: 01283822F8
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Message-Info: ClyBRBvDAvlKOuAC4wrvZKISXzbWYh4DsWnI1Ww3V4zXu9JinEjRXolrtPQlKdcIaWzPzgOM65z0k+ezToKNFp8MSUsjNNOO6kEgPdwKCZtvdp4wJY8LQd/hRQKgF1aSJvQt8UTk3pcJBUj42R6JUDuMjk8qWP3NsnLYWX/3GhVL1o8lFEurZnhHDezUQ6sCNQ+z2FQIjiWupMAaVvecNqrFc83mYIRyot46tJdy6m0sY2Aafv2eo3d0cPbt1E68G1sZivWmX5Lfnw41+tjEzqegxPN6DjGoSX1bu/kL0wCRtiBqJMXhWw2XVpQ0Vn6ekAEN1+r7Vooqq7QENC0tqx+4q3puwn+sEBTfGq6N51syi1rnY7bJreUntFB2tLdH26xQVU7YQI74qto8OLb7wEYZwJo5VwS7ddiQLB6RkmU=
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Aug 2019 05:50:35.3452 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: bc868851-b87a-4614-63ce-08d71fb2295a
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=5a9809cf-0bcb-413a-838a-09ecc40cc9e8; Ip=[194.218.146.197]; Helo=[mail.ri.se]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM5P18901MB0212
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/TcmZNnbUZYGaa_O6qZ10yKVUhmc>
Subject: Re: [Ace] AD review of draft-ietf-ace-cwt-proof-of-possession-06
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Aug 2019 05:50:44 -0000

On 12/08/2019 23:59, Carsten Bormann wrote:
> On Aug 12, 2019, at 14:08, Ludwig Seitz <ludwig.seitz@ri.se>; wrote:
>>
>> As far as I gather from the comments (especially from Carsten), we'd solve this by referencing section 6 of RFC 7049. I will consult with my co-authors, but I think this is the right solution.
> 
> That is not what I said.
> 
> Grüße, Carsten
> 

Sorry,

hasty copy-paste of the wrong reference (the right one came later in 
your email: Appendix G of RFC 8610).

I blame Monday morning after the holidays ...

/Ludwig

-- 
Ludwig Seitz, PhD
Security Lab, RISE
Phone +46(0)70-349 92 51