[Ace] Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec fixing nits

Mike Jones <Michael.Jones@microsoft.com> Fri, 22 February 2019 00:03 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2EABF129AA0 for <ace@ietfa.amsl.com>; Thu, 21 Feb 2019 16:03:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jctBk8e-sviz for <ace@ietfa.amsl.com>; Thu, 21 Feb 2019 16:03:28 -0800 (PST)
Received: from NAM06-DM3-obe.outbound.protection.outlook.com (mail-eopbgr640097.outbound.protection.outlook.com [40.107.64.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 81562130EB0 for <ace@ietf.org>; Thu, 21 Feb 2019 16:03:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=p42/KZOO6Ji/LCEx+FKTwFd9n7UyAqp90LfiJVZk05k=; b=IttI7JfphQAeeLpMfgfr2StUwapuiUnO0lfFDIc/T8Jo4oLlkI9Vryf8OwGJk5kD8J6p39qiWXpgyWjcVzKtQEcADTbbTzLj2DaWtFNmw046PAxhvBLFJC/WKMBHWG6LA+5meE3ymczt/O3lfQvbkxlLxRqor4Q9aoO9lx/awBM=
Received: from SN6PR00MB0304.namprd00.prod.outlook.com (52.132.117.158) by SN6PR00MB0399.namprd00.prod.outlook.com (52.132.118.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1681.0; Fri, 22 Feb 2019 00:03:26 +0000
Received: from SN6PR00MB0304.namprd00.prod.outlook.com ([fe80::351f:8467:ba69:425]) by SN6PR00MB0304.namprd00.prod.outlook.com ([fe80::351f:8467:ba69:425%9]) with mapi id 15.20.1684.000; Fri, 22 Feb 2019 00:03:26 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "ace@ietf.org" <ace@ietf.org>
CC: Roman Danyliw <rdd@cert.org>, Samuel Erdtman <samuel@erdtman.se>
Thread-Topic: Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec fixing nits
Thread-Index: AdTKQOORfLuS9Za+QCymEOwIKHh9rQ==
Date: Fri, 22 Feb 2019 00:03:26 +0000
Message-ID: <SN6PR00MB03043A1DEF6EF0C7FD442B62F57F0@SN6PR00MB0304.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=True; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Owner=mbj@microsoft.com; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-02-22T00:03:23.5147968Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=General; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Application=Microsoft Azure Information Protection; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=dcb072bb-17f3-4106-bebb-3d8e02a56ce6; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Extended_MSFT_Method=Automatic
x-originating-ip: [2001:4898:80e8:0:8d17:343b:b3e6:b348]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4b35cd7e-f171-4376-e106-08d698592b5f
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600126)(711020)(4605104)(4618075)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:SN6PR00MB0399;
x-ms-traffictypediagnostic: SN6PR00MB0399:
x-ms-exchange-purlcount: 4
x-microsoft-exchange-diagnostics: =?us-ascii?Q?1; SN6PR00MB0399; 23:WsyaMSlXmL7U6dYHZ71AzEX+mQkkHVIZv6bT/VQi3?= =?us-ascii?Q?29JHRjZ+mtX5m95hOsH2/A4SkEdKb2oV00k5XrdIwq5iMLLtFhAfBBQxkN3i?= =?us-ascii?Q?okCzMm1RDbqWyHFvdS28FvL5+5hRiPq00zCKPfXs62zlbvel75dOJkMaVIS6?= =?us-ascii?Q?1XBobF+cWkGu+GdywZFuiA/zrov6BFxG9jkGg+LrZg+HTpnv4qXEI47PtvMq?= =?us-ascii?Q?qz0UVP90TQfYOhsyTmFfTr8bS972aQMbwN2GdX/xxkNUWMXlV7P80ZaXDO46?= =?us-ascii?Q?abuw40V2ylYi/BY4rtdMRPnV2bhi3tnTt8ua3qKTjps3i5XKLBSM/1uZYx6I?= =?us-ascii?Q?VwF6QG2mbmVM/cxtgdD31g5VRa4Heh+HpC9fqYkEcgZOhP2akXhxUUPixrUz?= =?us-ascii?Q?vmaJlwsS6D92KqnF9TscQGMj+7Xkh3kpiyDiu9ngpl+ssledoiF2X7c6ri3W?= =?us-ascii?Q?Hx7yqnWkNvRhKuoAFU1kVJQ5rJiomy+QN+wIcGEHz3Xhgjwel4c+ukgvfKa/?= =?us-ascii?Q?I0H+GnmKEPvzg7D/pEjpn0Ey4YoouI7x7JBH3P2uveMzN88+Iulk/pTPdrmU?= =?us-ascii?Q?q+KorY9ka3qXzaNGDgg/hjn0Lkggx8BFpr9jHvcwdp23vqreiIFgGPPalO9K?= =?us-ascii?Q?zFpIG+//xfudG5XiA96g/WlwB1Cf0OOrbr6QgGxFpa1KKjd18JQm12HMlZ3A?= =?us-ascii?Q?PXOAb1UbbvY7MmSRhP32X6i5edr9N0XKZrefIAgdie7M6TY/ECRwPE5kq8u2?= =?us-ascii?Q?zLZr5iehzZdxm5T4s/chJwBmX4muTEdfEOttlnLj11+dyYvezL8gS9MWXWrk?= =?us-ascii?Q?nxI6zKI2i/DkZ9O4qouwME12d+Fqc4LvUsEiFqlIrEkkpMeWk1ijuK+lC54H?= =?us-ascii?Q?tdZqxwbHt+mqpeQuNIZfAdzZdy1BzUdHosxH8rMnlOOgva10nvxdTe7S9o+p?= =?us-ascii?Q?DvlUs882YiDO7Yx+R0uLDbBijlV6JhiThD8a/if0NZezTQYzgdm4YIe64ofS?= =?us-ascii?Q?ninnNzeesxeiMBQwT2EhUBKWUCorVt8lTIHVoP6QiQ0wgkop2COm7pzPGhKC?= =?us-ascii?Q?PQe5q/X1Xp7GMtQyGQGGMflsiOlcxKmvqTkI5MG9Y6De8iWx1z/N2WKQzXnE?= =?us-ascii?Q?OCFk2sa/g4VxF5afQMy0Vqk04iN5jt1FsonWtDuoRMgD1RVgNfUGqWAHMidl?= =?us-ascii?Q?p8lSLXgDWryMZAAnmirtk2+vwDYrEN0bjjgbDJqYPZNYruQlJh5LLCBe49bz?= =?us-ascii?Q?BGE9yVibly+DKX6C5QkVUlZQIvlJlzFBE3KAP8cNS6wtfql6OhkDMruYITun?= =?us-ascii?Q?8SQcUyawIeXM26HzLyD9IepnCO4rwwtYJUDTA1DwYVyrlAWwwmfm9ow+bNwJ?= =?us-ascii?Q?qscoq2FvE5Qn+N6AzDJpskD3ZuVmx6MgO6rM9Jlp18awYDXwXn+c1vojpXPr?= =?us-ascii?Q?VNy2AqiAHh+Ud59Zk9lgy/OdALIRuJrF0ZtxSKubYsU6dCDut92UQjFpOsgx?= =?us-ascii?Q?zBJHmV0Uhp6VjMje3IY/BTFO+ivZ4Uc6VD3ggLEmoWrMiUFV+11Hqn/?=
x-microsoft-antispam-prvs: <SN6PR00MB03991108F61A852D5A4B69A4F57F0@SN6PR00MB0399.namprd00.prod.outlook.com>
x-forefront-prvs: 09565527D6
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(396003)(39860400002)(136003)(366004)(346002)(209900001)(189003)(199004)(4326008)(33656002)(21615005)(74316002)(606006)(71190400001)(46003)(6116002)(68736007)(790700001)(6916009)(486006)(8990500004)(476003)(8936002)(71200400001)(106356001)(25786009)(97736004)(102836004)(105586002)(14454004)(53376002)(5640700003)(55016002)(10290500003)(10090500001)(6506007)(2351001)(81156014)(2906002)(7696005)(14444005)(22452003)(256004)(53936002)(5660300002)(8676002)(316002)(1730700003)(99286004)(236005)(6346003)(81166006)(2501003)(86612001)(478600001)(4744005)(86362001)(7736002)(54906003)(966005)(9686003)(6306002)(54896002)(72206003)(6436002)(186003)(6606295002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR00MB0399; H:SN6PR00MB0304.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: frI1V8eqahFN1n6nboDvlZ5sU6FCneix3uVx1EtL/uiKunIR06jQ6XFxut4Ond/Ve1zDYW97NF5T8gBRIty8cqe0WKJ6Vm1sAzwAnfthBsiTQO2hCjIqT6nam7VR9BREWO7QgQUgOYF8D8xOP/x/ui0gBq/Au2QLkcNglDfELeykvktvLuxoTSmTnccdFwouhuT2vql56DblnsfaTbfhNKBkvxLOwtjBLOdjJZNjD4sbnVSA7LI/A4LK2DvPQPj2Q5VnVgivepiHic5NWJ63iXF2npnBuFDXYodFWeV8Q0ynUD7UAwSDNVGzS/bD7tt6phtGMUJPuVi6/BesL7y4CPW0wlrL1hFppC8j7m4gcZHvVcFV0xh2jUY/sMWmTESP4M734uFRmOPzB5YTA0Vrfqug0jI30d+181XlgMFZUHI=
Content-Type: multipart/alternative; boundary="_000_SN6PR00MB03043A1DEF6EF0C7FD442B62F57F0SN6PR00MB0304namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4b35cd7e-f171-4376-e106-08d698592b5f
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Feb 2019 00:03:26.5629 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR00MB0399
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/7H0o7At-LFpEhaxqMgmr5lX50LU>
Subject: [Ace] Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec fixing nits
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 Feb 2019 00:03:31 -0000

The Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) specification has been updated to address issues identified by Roman Danyliw while writing his shepherd review.  Thanks to Samuel Erdtman for fixing an incorrect example.

The specification is available at:

  *   https://tools.ietf.org/html/draft-ietf-ace-cwt-proof-of-possession-06

An HTML-formatted version is also available at:

  *   http://self-issued.info/docs/draft-ietf-ace-cwt-proof-of-possession-06.html

                                                       -- Mike

P.S.  This notice was also posted at http://self-issued.info/?p=1949 and @selfissued<https://twitter.com/selfissued>.