[Ace] [Technical Errata Reported] RFC8392 (5710)

RFC Errata System <rfc-editor@rfc-editor.org> Mon, 29 April 2019 15:56 UTC

Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B504B120330 for <ace@ietfa.amsl.com>; Mon, 29 Apr 2019 08:56:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.2
X-Spam-Level:
X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IQG9bPtYGfdP for <ace@ietfa.amsl.com>; Mon, 29 Apr 2019 08:56:05 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1EFA81201BE for <ace@ietf.org>; Mon, 29 Apr 2019 08:56:04 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id 4F894B8217A; Mon, 29 Apr 2019 08:55:53 -0700 (PDT)
To: mbj@microsoft.com, erik@wahlstromstekniska.se, erdtman@spotify.com, Hannes.Tschofenig@arm.com, rdd@cert.org, kaduk@mit.edu, daniel.migault@ericsson.com, ietf@augustcellars.com
X-PHP-Originating-Script: 30:errata_mail_lib.php
From: RFC Errata System <rfc-editor@rfc-editor.org>
Cc: felipe@felipegasper.com, ace@ietf.org, rfc-editor@rfc-editor.org
Content-Type: text/plain; charset="UTF-8"
Message-Id: <20190429155553.4F894B8217A@rfc-editor.org>
Date: Mon, 29 Apr 2019 08:55:53 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/WFzj0pkzceTV_wpH5TA1v1q5BS4>
X-Mailman-Approved-At: Mon, 29 Apr 2019 09:22:54 -0700
Subject: [Ace] [Technical Errata Reported] RFC8392 (5710)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Apr 2019 15:56:08 -0000

The following errata report has been submitted for RFC8392,
"CBOR Web Token (CWT)".

--------------------------------------
You may review the report below and at:
http://www.rfc-editor.org/errata/eid5710

--------------------------------------
Type: Technical
Reported by: Felipe Gasper <felipe@felipegasper.com>

Section: 1.1

Original Text
-------------
In JSON, maps are called objects and only have one kind of map key: a
   string.  CBOR uses strings, negative integers, and unsigned integers
   as map keys.

Corrected Text
--------------
In JSON, maps are called objects and only have one kind of map key:
a string.  CBOR allows other data types, such as strings, negative
integers, and unsigned integers, as map keys.

Notes
-----
The text as it stands risks an interpretation that CBOR limits map keys to integers and strings; per discussion on the CBOR mailing list, this is not the case.

Instructions:
-------------
This erratum is currently posted as "Reported". If necessary, please
use "Reply All" to discuss whether it should be verified or
rejected. When a decision is reached, the verifying party  
can log in to change the status and edit the report, if necessary. 

--------------------------------------
RFC8392 (draft-ietf-ace-cbor-web-token-15)
--------------------------------------
Title               : CBOR Web Token (CWT)
Publication Date    : May 2018
Author(s)           : M. Jones, E. Wahlstroem, S. Erdtman, H. Tschofenig
Category            : PROPOSED STANDARD
Source              : Authentication and Authorization for Constrained Environments
Area                : Security
Stream              : IETF
Verifying Party     : IESG