IETF Logo Mail Archive

[Ace] Client Token Analysis

Hannes Tschofenig <Hannes.Tschofenig@arm.com> Mon, 19 March 2018 10:20 UTC

Return-Path: <Hannes.Tschofenig@arm.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61FBF126E64 for <ace@ietfa.amsl.com>; Mon, 19 Mar 2018 03:20:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.909
X-Spam-Level:
X-Spam-Status: No, score=-2.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=armh.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QSp5D-Nkkx6u for <ace@ietfa.amsl.com>; Mon, 19 Mar 2018 03:20:00 -0700 (PDT)
Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50045.outbound.protection.outlook.com [40.107.5.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 11B5412D889 for <ace@ietf.org>; Mon, 19 Mar 2018 03:19:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=armh.onmicrosoft.com; s=selector1-arm-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=YJfoYKn13DAhoawkCtmH/DdSkHC8rZetVtgdvuGZD+Q=; b=nhZXYo6ALPXlvGO2QPbeitbhJ/xf/2VOSVUpeqQRgzF1qaa4D863X7AMGBovcWa6g9BMdcV5iC19RATpDA+Lc2SYXEpMviXU2PKCp0ne38zzNLduiNjxqM/vc8lXiVv26q7uAToE0VKrKKlUa3HkABAoWVjadHc0NQslqntNOjg=
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com (10.173.75.16) by VI1PR0801MB1967.eurprd08.prod.outlook.com (10.173.74.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.588.14; Mon, 19 Mar 2018 10:19:57 +0000
Received: from VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::783f:d09c:fea6:f83d]) by VI1PR0801MB2112.eurprd08.prod.outlook.com ([fe80::783f:d09c:fea6:f83d%17]) with mapi id 15.20.0588.016; Mon, 19 Mar 2018 10:19:57 +0000
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
To: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: Client Token Analysis
Thread-Index: AdO/a3rDkQB3IcS+SlOu3y0ypq+sgw==
Date: Mon, 19 Mar 2018 10:19:57 +0000
Message-ID: <VI1PR0801MB211228D7EAEF672CAF365836FAD40@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Hannes.Tschofenig@arm.com;
x-originating-ip: [31.133.155.188]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; VI1PR0801MB1967; 7:qakmc5/l4yhcna0BUlY/+9QyaIs+wtwOa20dlbk2F3aI7WEFkxwjNIT4QtPtLoMsOHPM00orz6vu4he5F57ymtrPAwFEgfHKy1KKfiNF8LNg3unK1pRvfWgrGyk5iHHqAwoNJ1/FQJEAsmykQ/dOnalJfdStoOxfQOMBKZYuradI7Er5l34EUI4lzEQx2y9VsMrHkARipqESo2u6CBfcglQQj/DfyxY6B3+IrUhbp3aWxNO8OkzNpvn9GlpBjYqv
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: f14d38d4-4a78-4da3-d2e9-08d58d82f719
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(48565401081)(5600026)(4604075)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:VI1PR0801MB1967;
x-ms-traffictypediagnostic: VI1PR0801MB1967:
x-microsoft-antispam-prvs: <VI1PR0801MB196706859F97A301BA8F3150FAD40@VI1PR0801MB1967.eurprd08.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(192374486261705)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(10201501046)(93006095)(93001095)(3231221)(944501244)(52105095)(3002001)(6055026)(6041310)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123562045)(20161123564045)(20161123558120)(6072148)(201708071742011); SRVR:VI1PR0801MB1967; BCL:0; PCL:0; RULEID:; SRVR:VI1PR0801MB1967;
x-forefront-prvs: 06167FAD59
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39380400002)(39860400002)(366004)(376002)(346002)(396003)(53754006)(199004)(189003)(40434004)(105586002)(3846002)(53936002)(1730700003)(54896002)(236005)(7696005)(106356001)(2351001)(2906002)(6436002)(72206003)(55016002)(790700001)(316002)(5630700001)(8676002)(102836004)(6116002)(6306002)(5640700003)(9686003)(3660700001)(7736002)(26005)(33656002)(6506007)(59450400001)(6916009)(606006)(966005)(2501003)(14454004)(81166006)(81156014)(7116003)(74316002)(8936002)(3480700004)(99286004)(5890100001)(5660300001)(186003)(5250100002)(3280700002)(68736007)(97736004)(25786009)(86362001)(2900100001)(66066001)(478600001); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1PR0801MB1967; H:VI1PR0801MB2112.eurprd08.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: arm.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: HiDCAfCeP7v5voRKjSQuBbIEOhXSv3yqL1YuifSeDsASoyc8Glm3zsBqhOvoxsROn81+0ztBpFJ6N/LHoccgAyMOsCpeyP2E3o4x5UmiWYgJqXrtB63gRe0bsUFsOdiNf6MLaO63dsrNN0ya++7LK2IJyK7M+a2AihfnIeU7s/kWu0248/MjVWGkIEpMd44+N+GmE7j3tv1ONZSMf5cDJyo+dOy3Xj7BRgkXK1f+ugc6M4Wrc0fX9rGBkCsFlYsWLt8S18hozxMOPlM/CgEVQuDRxtC7C/1hKo6ErUY9xTznxakpusyHC3klDIq0pQSeKk+spFJIHH7YYYHutViaJg==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_VI1PR0801MB211228D7EAEF672CAF365836FAD40VI1PR0801MB2112_"
MIME-Version: 1.0
X-OriginatorOrg: arm.com
X-MS-Exchange-CrossTenant-Network-Message-Id: f14d38d4-4a78-4da3-d2e9-08d58d82f719
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Mar 2018 10:19:57.3097 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f34e5979-57d9-4aaa-ad4d-b122a662184d
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0801MB1967
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/c1VKM6bfHalarqq3s979rby1RTQ>
Subject: [Ace] Client Token Analysis
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2018 10:20:03 -0000

Hi all,

as mentioned during the ACE working group meeting today the paper with the analysis of the Client Token functionality can be found at the paper published for the OAuth Security Workshop.

Here is the link to the paper
http://st.fbk.eu/sites/st.fbk.eu/files/osw2018-ace.pdf

There are also lots of papers worthwhile reading:
https://st.fbk.eu/osw2018/program

Ciao
Hannes

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.

v2.23.0 | Report a Bug | By Email