[Ace] question about wrong types

Jim Schaad <ietf@augustcellars.com> Sat, 22 October 2016 04:05 UTC

Return-Path: <ietf@augustcellars.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 05DFB129404; Fri, 21 Oct 2016 21:05:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.368
X-Spam-Level:
X-Spam-Status: No, score=0.368 tagged_above=-999 required=5 tests=[BAYES_50=0.8, RP_MATCHES_RCVD=-0.431, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id A9CcVcgwebIW; Fri, 21 Oct 2016 21:05:54 -0700 (PDT)
Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E42E51293EB; Fri, 21 Oct 2016 21:05:50 -0700 (PDT)
Received: from hebrews (24.21.96.37) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Fri, 21 Oct 2016 21:22:00 -0700
From: Jim Schaad <ietf@augustcellars.com>
To: draft-ietf-ace-cbor-web-token@ietf.org
Date: Fri, 21 Oct 2016 21:05:43 -0700
Message-ID: <094701d22c19$90a85080$b1f8f180$@augustcellars.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 16.0
Content-Language: en-us
Thread-Index: AdIsGQ6xrMV4HlIeTVOu0qkLobOURg==
X-Originating-IP: [24.21.96.37]
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/YIj0sEDl1Rve3X6JR5ONcImYtjk>
Cc: ace@ietf.org
Subject: [Ace] question about wrong types
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 22 Oct 2016 04:05:55 -0000

What is the correct behavior if the type of a value is incorrect?  Is the
CWT to be rejected or is it optional for the application if it is rejected.
As an example, what happens if the "iat" claim name is associated with a
CBOR Type 0 instead of using the Tag #6.1 in front of the type 0 value.

Jim