[Ace] Lars Eggert's No Objection on draft-ietf-ace-oauth-authz-38: (with COMMENT)
Lars Eggert via Datatracker <noreply@ietf.org> Thu, 25 March 2021 10:06 UTC
Return-Path: <noreply@ietf.org>
X-Original-To: ace@ietf.org
Delivered-To: ace@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id C6BAF3A1C46; Thu, 25 Mar 2021 03:06:32 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Lars Eggert via Datatracker <noreply@ietf.org>
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-ace-oauth-authz@ietf.org, ace-chairs@ietf.org, ace@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 7.27.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Lars Eggert <lars@eggert.org>
Message-ID: <161666679248.32387.12210826263019095199@ietfa.amsl.com>
Date: Thu, 25 Mar 2021 03:06:32 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/gAKBp36JjOQibbLuKtwDBx-9eZ8>
Subject: [Ace] Lars Eggert's No Objection on draft-ietf-ace-oauth-authz-38: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Mar 2021 10:06:33 -0000
Lars Eggert has entered the following ballot position for draft-ietf-ace-oauth-authz-38: No Objection When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.) Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html for more information about IESG DISCUSS and COMMENT positions. The document, along with other ballot positions, can be found here: https://datatracker.ietf.org/doc/draft-ietf-ace-oauth-authz/ ---------------------------------------------------------------------- COMMENT: ---------------------------------------------------------------------- Section 1, paragraph 3, comment: > of processing capabilities, available memory, etc. For web > applications on constrained nodes, this specification RECOMMENDS the > use of the Constrained Application Protocol (CoAP) [RFC7252] as > replacement for HTTP. Since the rest of this section is pretty careful in explaining that there is a capability spectrum for IoT devices, I was surprised about this broad recommendation against HTTP (which is also repeated elsewhere in the text.) ------------------------------------------------------------------------------- All comments below are very minor change suggestions that you may choose to incorporate in some way (or ignore), as you see fit. There is no need to let me know what you did with these suggestions. Stewart Bryant's Gen-ART review (https://mailarchive.ietf.org/arch/msg/gen-art/04lPOKG404s-LNfVm40ZE8s-Wig/) contained some nits that I wanted to make sure you were aware of. "Table of Contents", paragraph 1, nit: > Table of Contents Some sections don't use title case. Section 4, paragraph 9, nit: - In Bluetooth Low Energy, for example, advertisements are broadcasted - -- + In Bluetooth Low Energy, for example, advertisements are broadcast Section 5.3, paragraph 15, nit: - freshness nevetheless, the RS has included a "cnonce" parameter (see + freshness nevertheless, the RS has included a "cnonce" parameter (see + + "Appendix E.", paragraph 33, nit: - as playload the Access Information, including the access token and - - + as payload the Access Information, including the access token and
- [Ace] Lars Eggert's No Objection on draft-ietf-ac… Lars Eggert via Datatracker
- Re: [Ace] [EXTERNAL] Lars Eggert's No Objection o… Seitz Ludwig