Re: [Ace] ace-key-groupcomm-oscore-03
Marco Tiloca <marco.tiloca@ri.se> Wed, 15 January 2020 15:16 UTC
Return-Path: <marco.tiloca@ri.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CDE801200D8 for <ace@ietfa.amsl.com>; Wed, 15 Jan 2020 07:16:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.759
X-Spam-Level:
X-Spam-Status: No, score=-1.759 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_SBL=0.141, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=risecloud.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lx0ztnTS3bdf for <ace@ietfa.amsl.com>; Wed, 15 Jan 2020 07:16:01 -0800 (PST)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140052.outbound.protection.outlook.com [40.107.14.52]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 226AC120090 for <ace@ietf.org>; Wed, 15 Jan 2020 07:16:01 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dSo/viLaAXTK0VJ71+zlk47Ajh3LyBOJD8F360SskCFYGszBYcYZLkw4W4pmiXuijivj4Q5fyZMx5tOF+K0f5sLW5+02Cm1+HdAwAJ58OjDHeTxZVS5xYtWUIsYseRj5fRdJcvfej5XXryIYiqUPxNp9T6A3O4gWuDcR9zSfWtvA3qCFA8lgLOgOKohtGtrAEyR0qnb8mlsTquipOpcVAnQnQnWChHqQeCfICheJ4tpqaxcouukJ+BhP0vQlO8hr/h69gx2Mn6LONDJ0s4JKA+Kqb+UMQhmlmjIUey3qiVuNmSwwQ4ExBy50MMYLrYgRlZsVBJOIl4AMhvM8dVN3zw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=YDl+8SJDB7TtRf0BVlO6JpefxKUtflGgFlyYvmFV0N0=; b=OkFzCMSzraSBvNfqUHAXzbcA7KUsKT8jzGG6UUI4wMhcMsy3OcQhvrd1Zs2nDBDeoweeKL6w5KReFZiaFOBDobYMbgiYWxgjif2VTDYvydVkkRqjlZXRl6nr4zXItOt0VnNjay5JOYSznFfXXY1zLCn5tnKYkTIH16dCmOPjCabetXHu4GauyO/SCP8I+M9UHg6r0i1Ss9wJboAVTVsuHokgl73qBrGHzyVJvG3JQh+My6cBPxp8vygIe10Z7q+AovZGtUt+0KGimiphw08n8YHHMdBhs2z6qysQPrawjwHW2k9Y2guQP95hIgV4TwZ/jGm3x9Zs4Yrx7mp2HJlqhg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=RISEcloud.onmicrosoft.com; s=selector1-RISEcloud-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=YDl+8SJDB7TtRf0BVlO6JpefxKUtflGgFlyYvmFV0N0=; b=MTIGlV/p/ZYligYuOKhlyInlaNGUquPhmDZ5Fct9iyoa4OUS/7n/UhRHYroieaKdyO9Gc2timz2AQIbIAu1cQCphqVGkEjUH7Y/xYNU7YNqMx2wysGR9TiRhoFTRkq1W33Tcud6j63TWY6ImwCSp9CPdfHkslPNIeIizafyOSb4=
Received: from VI1P189MB0398.EURP189.PROD.OUTLOOK.COM (10.165.195.159) by VI1P189MB0320.EURP189.PROD.OUTLOOK.COM (10.165.194.144) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2623.10; Wed, 15 Jan 2020 15:15:58 +0000
Received: from VI1P189MB0398.EURP189.PROD.OUTLOOK.COM ([fe80::3485:ce83:891b:469]) by VI1P189MB0398.EURP189.PROD.OUTLOOK.COM ([fe80::3485:ce83:891b:469%4]) with mapi id 15.20.2623.017; Wed, 15 Jan 2020 15:15:58 +0000
Received: from [10.8.8.24] (196.196.244.5) by HE1PR09CA0077.eurprd09.prod.outlook.com (2603:10a6:7:3d::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2623.10 via Frontend Transport; Wed, 15 Jan 2020 15:15:58 +0000
From: Marco Tiloca <marco.tiloca@ri.se>
To: "consultancy@vanderstok.org" <consultancy@vanderstok.org>, Ace <ace@ietf.org>
Thread-Topic: [Ace] ace-key-groupcomm-oscore-03
Thread-Index: AQHVnrmD5xGCEIkuiUOCZsC5NBu0nafsL+WA
Date: Wed, 15 Jan 2020 15:15:58 +0000
Message-ID: <79596b2e-a911-e51f-ea28-f6d0eba54723@ri.se>
References: <4ac02bb82ae9a67ad93c4ffe34063f19@bbhmail.nl>
In-Reply-To: <4ac02bb82ae9a67ad93c4ffe34063f19@bbhmail.nl>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-clientproxiedby: HE1PR09CA0077.eurprd09.prod.outlook.com (2603:10a6:7:3d::21) To VI1P189MB0398.EURP189.PROD.OUTLOOK.COM (2603:10a6:802:35::31)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=marco.tiloca@ri.se;
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [196.196.244.5]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 7aa22d31-4a63-4924-b48d-08d799cdd2fd
x-ms-traffictypediagnostic: VI1P189MB0320:
x-microsoft-antispam-prvs: <VI1P189MB032094927FB5A50DE32B42C499370@VI1P189MB0320.EURP189.PROD.OUTLOOK.COM>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 02830F0362
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(4636009)(376002)(366004)(346002)(136003)(396003)(39860400002)(189003)(199004)(4001150100001)(2616005)(66946007)(64756008)(66616009)(6486002)(956004)(66446008)(36756003)(5001810100001)(66556008)(66476007)(2906002)(53546011)(110136005)(66574012)(52116002)(186003)(16526019)(5660300002)(316002)(16576012)(26005)(478600001)(71200400001)(81156014)(8676002)(966005)(31696002)(86362001)(81166006)(31686004)(8936002)(44832011); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1P189MB0320; H:VI1P189MB0398.EURP189.PROD.OUTLOOK.COM; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ri.se does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: Z/klx3Kskgddrq6ivi29G1b2bbo0y7YpFjlDeGGLkDjoiHVnNEmn9vUFVYz8bGhwEOvJo4fSCVtlkyBXaU2ee+lk9XTi8sndMENm1y9qEzyenc5rBynClKPq7PwJymCheR9xmwHVPKuFkL9+WbTQR2BmIQ9Mrcf+zkIJlolk6tfhW4FHjnkHt/O16jmumT6CMTrECU6YYeqbpRaiVvU7vogehwjbH7S3tvRRuMK7gRQf4/UUDiiWVcOjWCIsxS9QYG8MnYv9khDcyIVy7Zu7vb33HF9APeTeACeY2LalC5Lon49onJXMAZK+yPiVhJF7KuLM1PV7oYm4OVSzDmRka/AerSfQv7Oh6w+duCLUcTnWTQcLpZbveUaIwiFLQg7hzrLDoOjJs048NS05Vij21TCTOUVXx9UAoIMu/t+BBJJpsTyu2nFpVL3vZmZvocTUTKotS1rY007kCDtPw68vsH3VmA+XJVZvfgywo1G7vgE=
x-ms-exchange-transport-forked: True
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="ArcZnRWZ8sQysgT5jG13s79jmxt5rJMqc"
MIME-Version: 1.0
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: 7aa22d31-4a63-4924-b48d-08d799cdd2fd
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Jan 2020 15:15:58.4781 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: NkMtEtJ3t4KV5PKHfVY9J+l/foSFJf2EwD5EHi+xEafA+uTx0ZWkQEPa/CaerIcwa32Mcbfqcq1zwa23ttIDVQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1P189MB0320
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/VNot7zG-FC8qfYcrq2cUj5ZcIRY>
Subject: Re: [Ace] ace-key-groupcomm-oscore-03
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jan 2020 15:16:06 -0000
Hi Peter, Thank you for your comments! We have addressed them in the latest version -04 : https://tools.ietf.org/html/draft-ietf-ace-key-groupcomm-oscore-04 Please, see some more details in line below. Best, /Marco On 2019-11-19 10:12, Peter van der Stok wrote: > Hi Authors, > > Having read the document and comparing it with ace-key-groupcomm, I > have to agree with Jim that this document repeats in "other" words the > same subjects as specified in ace-key-groupcomm. > In this form, it is very difficult to find out the differences between > the two documents. > <MT> We shortened this document, to avoid repetitions and rather have simple pointers to ace-key-groupcomm , where especially general content not strictly related to the Group OSCORE case has been moved to. </MT> > It would be good if the same terminology was used or their equivalence > was pointed out: > eg: Client vs joining node <MT> Section 2 now clarifies that the joining node is the Client of ace-key-groupcomm. </MT> > Group-manager versus KDC <MT> Section 2 now clarifies that the Group Manager is the KDC of ace-key-groupcomm, as a Resource Server. </MT> > joining request versus joining authorization <MT> "Joining authorization" is not used anymore. After Section 4.1 "Token POST", authorization aspects such validation of requests against a stored Access Token are referred as in ace-key-groupcomm </MT> > > Secondly, I suggest to make this draft much shorter, and mostly refer > to the sections of ace-key-groupcomm and point out the differences. In > many cases a list of items that MUST be present, are optional or not > present at all will suffice. > For example such an enumeration is done under the bullet key on page 15. > <MT> We have tried to keep only the details and deltas from ace-key-groupcomm , and increased the usage of bullet lists. <MT> > New parameters can receive more text as is done for cs_alg, cs_params, > cs_key_params, and cs_key_enc. > <MT> Done, in Section 4.4. </MT> > Hope this helps, <MT> It does, as always. Thanks! </MT> > Thanks for all your work, > greetings, > > Peter > -- > > Peter van der Stok > vanderstok consultancy > mailto: consultancy@vanderstok.org > <mailto:consultancy@vanderstok.org>, stokcons@bbhmail.nl > <mailto:stokcons@bbhmail.nl> > www: www.vanderstok.org <http://www.vanderstok.org> > tel NL: +31(0)492474673 F: +33(0)966015248 > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace -- Marco Tiloca Ph.D., Senior Researcher RISE Research Institutes of Sweden Division ICT Isafjordsgatan 22 / Kistagången 16 SE-164 40 Kista (Sweden) Phone: +46 (0)70 60 46 501 https://www.ri.se
- [Ace] ace-key-groupcomm-oscore-03 Peter van der Stok
- Re: [Ace] ace-key-groupcomm-oscore-03 Francesca Palombini
- Re: [Ace] ace-key-groupcomm-oscore-03 Marco Tiloca