Re: [Ace] Reminder -- WGLC on draft-ietf-ace-cwt-proof-of-possession-02

Mike Jones <Michael.Jones@microsoft.com> Mon, 18 June 2018 16:02 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0118C130DF5; Mon, 18 Jun 2018 09:02:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, T_KAM_HTML_FONT_INVALID=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k8dTg6sr4o3n; Mon, 18 Jun 2018 09:02:17 -0700 (PDT)
Received: from NAM04-SN1-obe.outbound.protection.outlook.com (mail-eopbgr700125.outbound.protection.outlook.com [40.107.70.125]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D4DC3130EED; Mon, 18 Jun 2018 09:01:58 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=YacP/fcTcT6yq3mibxGA9z4PhYOQybvRYQCYrQ/EzTE=; b=aWAIXAA+58ND6DyXv/y1hn7cprAz+HPmXfYhje19VM2FpcpcDu5X7G4BybtDpKJxGUnaWLCcnsYAwalCFsL2FmlVYv5NWDc0AIiU5suPDe1/zA5Fds2VHkKh0X64C/mVjl7M1B8B5dVYP5dNIUkJEMFUAZCSydOhAF1+S+Sej/A=
Received: from SN6PR00MB0301.namprd00.prod.outlook.com (52.132.117.155) by SN6PR00MB0384.namprd00.prod.outlook.com (52.132.118.27) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.919.0; Mon, 18 Jun 2018 16:01:54 +0000
Received: from SN6PR00MB0301.namprd00.prod.outlook.com ([fe80::1835:2a6b:5366:6133]) by SN6PR00MB0301.namprd00.prod.outlook.com ([fe80::1835:2a6b:5366:6133%5]) with mapi id 15.20.0917.000; Mon, 18 Jun 2018 16:01:53 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>, Jim Schaad <ietf@augustcellars.com>, "draft-ietf-ace-cwt-proof-of-possession@ietf.org" <draft-ietf-ace-cwt-proof-of-possession@ietf.org>
CC: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: [Ace] Reminder -- WGLC on draft-ietf-ace-cwt-proof-of-possession-02
Thread-Index: AdPtGEH4pwi+TQ+ERcWMpVROGZpXzgYrelqAAE14V/AACE9iUQ==
Date: Mon, 18 Jun 2018 16:01:53 +0000
Message-ID: <SN6PR00MB03014AD20C008FDCFEEA6300F5710@SN6PR00MB0301.namprd00.prod.outlook.com>
References: <359EC4B99E040048A7131E0F4E113AFC014C3B7AED@marathon> <004f01d405c6$2dc73340$895599c0$@augustcellars.com>, <VI1PR0801MB2112C9BB00ECD959542CE2A8FA710@VI1PR0801MB2112.eurprd08.prod.outlook.com>
In-Reply-To: <VI1PR0801MB2112C9BB00ECD959542CE2A8FA710@VI1PR0801MB2112.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [50.47.80.188]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; SN6PR00MB0384; 7:oo51Vm/0fBvEE/y7AM4Qc0nxQhtOT9StEJT/x8j5Rqvo8Nast+fb91VbQFKXkP5NriPhwEa+tDHw6AeoN8mqsjOCZIL+TRGWnaTopxaQ/xGwDGxTEyWzt68ve+DlT1Z1N0rUIj8Sg1jy+vBS3C8TE6wA7k6hVp//cJvjN2YYG9+hsB6ufvs57DAkNJy4Bg0LKkHBgYZPtCX3gBjdnSKDEYquGeUYORJypk+AXEHwU7S+BDh2ttHY5vBaolah7eK8
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: fe702c88-fad0-4e4e-c194-08d5d534cf6e
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(4534165)(4627221)(201703031133081)(201702281549075)(5600026)(711020)(48565401081)(2017052603328)(7193020); SRVR:SN6PR00MB0384;
x-ms-traffictypediagnostic: SN6PR00MB0384:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-ld-processed: 72f988bf-86f1-41af-91ab-2d7cd011db47,ExtAddr
x-microsoft-antispam-prvs: <SN6PR00MB03848D8B1C43BC92A7DCA8F4F5710@SN6PR00MB0384.namprd00.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(180628864354917)(166708455590820)(100405760836317);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(2017102700009)(2017102701064)(6040522)(2401047)(8121501046)(5005006)(2017102702064)(20171027021009)(20171027022009)(20171027023009)(20171027024009)(20171027025009)(20171027026009)(2017102703076)(10201501046)(93006095)(93001095)(3231254)(2018427008)(944501410)(52105095)(3002001)(6055026)(149027)(150027)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123564045)(20161123562045)(20161123558120)(6072148)(201708071742011)(7699016); SRVR:SN6PR00MB0384; BCL:0; PCL:0; RULEID:; SRVR:SN6PR00MB0384;
x-forefront-prvs: 0707248B64
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(346002)(39380400002)(39860400002)(366004)(376002)(199004)(189003)(12213003)(13464003)(40434004)(34654002)(606006)(2900100001)(3280700002)(10090500001)(2906002)(3660700001)(106356001)(9686003)(105586002)(236005)(6606003)(5660300001)(6306002)(54896002)(97736004)(66066001)(33656002)(478600001)(72206003)(10290500003)(86362001)(8990500004)(966005)(14454004)(68736007)(86612001)(11346002)(476003)(6116002)(486006)(3846002)(19627405001)(446003)(6436002)(229853002)(316002)(110136005)(53936002)(99286004)(22452003)(5890100001)(2501003)(53546011)(6506007)(6246003)(5250100002)(59450400001)(102836004)(25786009)(4326008)(74316002)(81166006)(7736002)(186003)(7696005)(81156014)(76176011)(55016002)(8676002)(26005)(8936002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR00MB0384; H:SN6PR00MB0301.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: 5/KUhkDcOgnPrcKu3F1kxl5M57H3WQfM6Vsu94/CpTm292S2nz7I9L5oTFCJXWniy0d3r6W8p1jf+VWU/CBWOQgJ9C85pAvUL45RV0nC/07+I36ZfdTOwWv5UQRJrpNP7eXjIjNmxzJHr+pMfrZ7os5fGTiQBrIRGgnbgLqkSTGO7d/KZSKd9+s+2WwQPiAwfmkK1vQm22oLny6A3n0x4j+aDS1hjAM1/DlSCa+l1GcIvZEnMYP6893TZaPz3AAVEAobztflII+8EQwozYZp6FjfaxKjuAC+037u2OcU9XiAxb5vqmfz1GkUMo6rb3DjugRzt/LCr4dDdql/T8Sqqw==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_SN6PR00MB03014AD20C008FDCFEEA6300F5710SN6PR00MB0301namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: fe702c88-fad0-4e4e-c194-08d5d534cf6e
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jun 2018 16:01:53.6260 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR00MB0384
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/0hYSPIWw7C2SU1Cg50AXNNIPCjU>
Subject: Re: [Ace] Reminder -- WGLC on draft-ietf-ace-cwt-proof-of-possession-02
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Jun 2018 16:02:22 -0000

The proposed change to allow multiple PoP keys in a single "cnf" element introduces unnecessary syntactic and semantic ambiguity. It also breaks the semantic equivalence with RFC 7800. Hannes, you're right that there's not consensus to do this.


Please see my review of your pull request at

https://github.com/cwt-cnf/i-d/pull/13/files/b81205b292acb393592f2e803a47670e46928c73.


Thanks,

-- Mike

________________________________
From: Hannes Tschofenig <Hannes.Tschofenig@arm.com>;
Sent: Monday, June 18, 2018 5:02:32 AM
To: Jim Schaad; draft-ietf-ace-cwt-proof-of-possession@ietf.org
Cc: ace@ietf.org
Subject: RE: [Ace] Reminder -- WGLC on draft-ietf-ace-cwt-proof-of-possession-02

Hi Jim,

I have made changes to the draft based on your review and the updated version of the document can be found at https://github.com/cwt-cnf/i-d/pull/13
However, I am not sure we have consensus on the changes.

Ciao
Hannes

-----Original Message-----
From: Jim Schaad [mailto:ietf@augustcellars.com]
Sent: 17 June 2018 01:03
To: draft-ietf-ace-cwt-proof-of-possession@ietf.org
Cc: ace@ietf.org
Subject: RE: [Ace] Reminder -- WGLC on draft-ietf-ace-cwt-proof-of-possession-02

We have seen a number of messages on this document, but we have not yet seen
an updated draft that addresses all of these issues.  When should we expect
a new version.  It would have been nice to have had two published before
Montreal but that does not seem likely at this point.

Jim


> -----Original Message-----
> From: Ace <ace-bounces@ietf.org>; On Behalf Of Roman Danyliw
> Sent: Wednesday, May 16, 2018 6:18 AM
> To: ace@ietf.org
> Subject: [Ace] Reminder -- WGLC on draft-ietf-ace-cwt-proof-of-possession-
> 02
>
> Hello!
>
> A reminder to the WG, draft-ietf-ace-cwt-proof-of-possession is in WGLC.
> Please send feedback to the mailing list by Wednesday, May 23.
>
> Thanks,
> Roman and Jim
>
> > -----Original Message-----
> > From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Roman Danyliw
> > Sent: Tuesday, May 08, 2018 6:19 PM
> > To: ace@ietf.org
> > Subject: [Ace] WGLC on draft-ietf-ace-cwt-proof-of-possession-02
> >
> > Hello!
> >
> > Consistent with the feedback from the editor team at the London
> > meeting, we are starting a working group last call (WGLC) for the
> > "Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs)" draft:
> >
> > ** draft-ietf-ace-cwt-proof-of-possession-02
> > **
> > https://tools.ietf.org/html/draft-ietf-ace-cwt-proof-of-possession-02
> >
> > Please send comments to the mailing list -- feedback on issues or
> > needed changes; as well as endorsements that this draft is ready.
> >
> > This WGLC will end on Wednesday, May 23, 2018.
> >
> > Thanks,
> > Roman and Jim
> >
> > _______________________________________________
> > Ace mailing list
> > Ace@ietf.org
> > https://www.ietf.org/mailman/listinfo/ace
>
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace

IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.