Re: [Ace] Shepard review comments on draft-ietf-ace-oauth-params

Ludwig Seitz <ludwig.seitz@ri.se> Wed, 30 January 2019 07:45 UTC

Return-Path: <ludwig.seitz@ri.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B72741311D9; Tue, 29 Jan 2019 23:45:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.043
X-Spam-Level:
X-Spam-Status: No, score=-2.043 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.142, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=risecloud.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yKbx9GvAbAGt; Tue, 29 Jan 2019 23:45:39 -0800 (PST)
Received: from EUR03-AM5-obe.outbound.protection.outlook.com (mail-eopbgr30050.outbound.protection.outlook.com [40.107.3.50]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 055B413120E; Tue, 29 Jan 2019 23:45:37 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=RISEcloud.onmicrosoft.com; s=selector1-ri-se; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8ThF0uCZKiSo756L261KA0f5W91chw5AoGx3WmIwvHE=; b=Lw7S7G/QcD3ysX4wq8nnEj/7mK8sb+CROhsHzbjJJjC18nSV7rXxO5+DT4z4IELnhiml2qvVWIWK+dVwqqX/gILAawVjwaP7E5Q32WgT/R5c7j1TPQTmkXq03UNR3cLrVMPPS4/e0tGhCENT7DP62poQl+i46F/utwJS/CjBO/4=
Received: from DB6P189CA0023.EURP189.PROD.OUTLOOK.COM (2603:10a6:6:2e::36) by VI1P18901MB0109.EURP189.PROD.OUTLOOK.COM (2603:10a6:801:f::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1558.16; Wed, 30 Jan 2019 07:45:33 +0000
Received: from VE1EUR02FT014.eop-EUR02.prod.protection.outlook.com (2a01:111:f400:7e06::205) by DB6P189CA0023.outlook.office365.com (2603:10a6:6:2e::36) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.16 via Frontend Transport; Wed, 30 Jan 2019 07:45:33 +0000
Authentication-Results: spf=pass (sender IP is 194.218.146.197) smtp.mailfrom=ri.se; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=bestguesspass action=none header.from=ri.se;
Received-SPF: Pass (protection.outlook.com: domain of ri.se designates 194.218.146.197 as permitted sender) receiver=protection.outlook.com; client-ip=194.218.146.197; helo=mail.ri.se;
Received: from mail.ri.se (194.218.146.197) by VE1EUR02FT014.mail.protection.outlook.com (10.152.12.148) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.20.1580.10 via Frontend Transport; Wed, 30 Jan 2019 07:45:33 +0000
Received: from [10.112.134.122] (10.100.0.158) by sp-mail-2.sp.se (10.100.0.162) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1531.3; Wed, 30 Jan 2019 08:45:30 +0100
To: Jim Schaad <ietf@augustcellars.com>, <draft-ietf-ace-oauth-params@ietf.org>
CC: <ace@ietf.org>
References: <01c401d4b81f$5948d7b0$0bda8710$@augustcellars.com>
From: Ludwig Seitz <ludwig.seitz@ri.se>
Message-ID: <a4049b46-16d5-4bf7-0f44-769d96f45f4e@ri.se>
Date: Wed, 30 Jan 2019 08:45:30 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.4.0
MIME-Version: 1.0
In-Reply-To: <01c401d4b81f$5948d7b0$0bda8710$@augustcellars.com>
Content-Type: text/plain; charset="utf-8"; format=flowed
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Originating-IP: [10.100.0.158]
X-ClientProxiedBy: sp-mail-2.sp.se (10.100.0.162) To sp-mail-2.sp.se (10.100.0.162)
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:194.218.146.197; IPV:NLI; CTRY:SE; EFV:NLI; SFV:NSPM; SFS:(10009020)(376002)(136003)(346002)(396003)(39860400002)(2980300002)(199004)(189003)(97736004)(8676002)(36756003)(305945005)(336012)(2906002)(77096007)(16526019)(186003)(26005)(74482002)(44832011)(81156014)(106466001)(7736002)(64126003)(2486003)(8936002)(53936002)(486006)(6246003)(6116002)(81166006)(58126008)(230700001)(67846002)(31686004)(65826007)(2616005)(110136005)(386003)(33896004)(316002)(53546011)(65806001)(65956001)(4326008)(16576012)(3846002)(478600001)(22756006)(14444005)(23676004)(476003)(106002)(446003)(69596002)(47776003)(4744005)(68736007)(11346002)(22746008)(76176011)(86362001)(50466002)(126002)(104016004)(31696002)(356004)(40036005)(229853002); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1P18901MB0109; H:mail.ri.se; FPR:; SPF:Pass; LANG:en; PTR:InfoDomainNonexistent; A:1; MX:1;
X-Microsoft-Exchange-Diagnostics: 1; VE1EUR02FT014; 1:XERnQZhxZIyMqXgwJo1v7riRU7SsA09Xm10r+qnPC8VLC8Yg/2xGJFCJ0Ob6xpnfIHB/aX086swLp0j8XuPR0Fv8wvZMy2N1fUxahYwSHAdJb/vnCgcyp9Q7jJdf96wrqMYlMvOe6Jnlz8wr/IJgfG6xfC3WCln1y+cHcZ4acF0=
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: fa74c0ce-342d-4976-0381-08d68686ea5f
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(4608076)(4709027)(2017052603328)(7153060)(7193020); SRVR:VI1P18901MB0109;
X-Microsoft-Exchange-Diagnostics: 1; VI1P18901MB0109; 3:5m38qV9Q5Q+G4DrSVO3gALvZyUJyx5ymqz4e/lDVQ3k2giFFsy5VodXV9jZi7DNi/gKiaCqxfReZoWIW82X90UmvdeFtfvEeuCyQ9i9RnVbG/T6+8cnYBtFIsWgYvPKGSj/AsYQXXAAEw9bQLijRsJXO/ubhqjcwgKwkFPKlYl6vW+kc8EQOSENBtEzSKAK/lFmHM2L2rBhW8kuIPFhvQCdlVo4IoFIbEboDG/zpw8EPdHd9EB+6w7w1FT+0z5GrgZIGBKkP9bc8xJ4dE0H0Aoviv0bf4E1A5oo/+PzR/Kb7xZSua2W17bkQdunZO0niCWNK4aU/PIhCFMUXt1kWNVT6HuEmCmboPD3jXJiVziWzF/ZjQOGwf3+Xh4kOzxUWfA8Ks7kb7a0BG5FfohnRNQ==; 25:jGH1LwnNPqv9T2/ysstIcFkVxmI1Zd8M+71jEjBhxYMN9iUORvcHc6GdfxP5K0cioLy/NecyrTRTYwwYs8uaGIuH94orhvB+hE00/4F1hbb7TTeiVTK+50wkVNFSwjXWkadDB5etdD61Ng52bVhAcDqEmloa3ezLvRzuuIij3sTsQ/hkZJzWPZZFMr3Y2U0A9tVoi+Xa+Q2YPiXLtk+PcD3gh8rIuomhSjSNg7rJs+IigxIcGfYcT3PfiwHG/Eih1DX/IPaMLzAiXBdlQl4ZYDae1ecEh6VdsCM8kg93uobPeLSKpmnFj9RPrtFqDz/eFKKehpWtQd7mbEK9ZOcInA==
X-MS-TrafficTypeDiagnostic: VI1P18901MB0109:
X-Microsoft-Exchange-Diagnostics: 1; VI1P18901MB0109; 31:Q+3RR7bKUVvY+BgGrJG4iIJnM12uiavk7OjH9ChT/djqOIdWQbEQHenNhOLhuo/dYv+LyVwHY3PWO6liHHaeQweWuQ6k0u4ENW2d5UxatkjH1EeLly/3NxHx0c3TxHXyO2UnLpsCRErYRZnhigZjf7rovD95FhqBEwmQpsjOMUWpoCEaFrAe1rSHBgjuY8k41ZGsDTyjf8Pux3OCyc6x0g9cYeegciDEdQkxoInfoEA=; 20:+gsWXdZ0SfzmljAqazRfow26axUQD2uJVBiHEd97EbxN/vIorkZOmEQuY/xf0XuKLvIjXw+jNVf4JjBQDNXv+Im7GT8OCGlH5EP6NVDXFyiPSVxdki8bfefLjNNgF3YPTY40d0wKsVDZ62JPSiZRZZdrUox0ezgmNTF49av8PKJhLLJJamv5PmDKEd33xfmDCED6Rd/GJuSCc+06ml/58Zgigwtt3BDHJFONj95tqFpTRi3i5zfZ0SukS7OJPjoA; 4:9XxSl2TpRvWfhfgBHFsI6wrgatGv6WFvTNOeuBl+wzekjZ3Crmbk6rEahJ09jfJjLae6DtIJJPXEWij2Orjzt5PvC9aeet0l7pVWJL6NP4eaXBnfFzgufuGnoevBIwFclS+uDIBmlhzhn9/l5urfn97kX6KNGeA4J6b+2Rcu7I2ROCZoNWJbZOBftz67nbtp8Q1V53MlVnNTuli9mR9TLQx2cC4FQ/Frf8b3hOQ7JkoA3M6JLoQQ+pnaCIrwgo2dkGJslcS+vrXT/3eoXt670s2SaPJ9I/4Oib9//r2fgYo=
X-Microsoft-Antispam-PRVS: <VI1P18901MB01098F5125075AC1374533A082900@VI1P18901MB0109.EURP189.PROD.OUTLOOK.COM>
X-Forefront-PRVS: 0933E9FD8D
X-Microsoft-Exchange-Diagnostics: =?utf-8?B?MTtWSTFQMTg5MDFNQjAxMDk7MjM6a0ZNR3dwVWs1MGZDSFJnb3JDd0p0TGdh?= =?utf-8?B?ZklPSUZ4WENuSVYzNyttWTZQWmoxajlDcTU4NlEvLzQ5bVNVdnpzZDU4QmpK?= =?utf-8?B?RXBqWGc4d095WVBCQmtlODQ3N0UyblFxYXdnaFRGTGwwUlRDYjB5eEZ4UHps?= =?utf-8?B?N0dlK1VMUXErdWUvUnp2L0dUQXJ2bGpIb3pXbGZwUnNTdzcwbFRybHF2SHda?= =?utf-8?B?T1l3c0JRNnc3UGVHNUZDcVJFZEF4eXViVklyVlUxdjN3MG1IV3hyYmxTdnlj?= =?utf-8?B?dzR2Yy95OEpyaTcrQ3VwMjlGL0t5c1JmdC9XTCt1cnh0RzJjZXZ1Sm01dHdU?= =?utf-8?B?MW1JYXowVDV4ZFVSQmF6TkJSaUtVZHo0aTdHaW0wZ0Era1VwS3prQ291Szlu?= =?utf-8?B?VmRtTVpNZUNTdjFmY0NnTWpjU1JiZURZTWNKY2NMaVpWZ004bC9WcTYzVkty?= =?utf-8?B?Vmd6eU4wTU4wUU52VVRxSjFzSTMwMW8wY2t1TzFvUzNsQTg4cmRLQkt6c1lz?= =?utf-8?B?S0NrSTI0Z2huU3dEUXpnK25ack1pZVYzL0YwNEJHMVMvMFg5aXQ3ZVJhZUl1?= =?utf-8?B?L3lXNnVrcXBTTHYzODlYMHNTb01NTzRDQ1NLVCtmamRmR3FaL0ljUFFMSVNL?= =?utf-8?B?dE5PZXRxaEl5bGc3Uy91azUyNEl1Z2hhdjRNdGtuV2ZtQ2krUWxycXY2ZzRN?= =?utf-8?B?Unc2a1A5TXBxRjhEQ1dBcXZ5Um5oOW1ORk1JaUpySGdneUc5cDF3d2NHVlE4?= =?utf-8?B?M0FKczhtYmtIemhWbFpqNW81OUZHOUNlcTc5V2JVeG5heU4xblZndkdEaUFI?= =?utf-8?B?YkVnbnZLeTJMWTZnZjhDZ3RWelhMRFhxdjdzaTNwQjE2aEJNdGNNMkszUyt4?= =?utf-8?B?c2sreHRSdEExd09jbGZTdlJQQ3Jvb1JzU2xkaVNSQWNFck9XVTQzQURWZ3RT?= =?utf-8?B?d1YxMnRoZ09Rdko2ZDRzZnBwZUZmOTkvaEhMRmJxbUl6MFQ3MnBzS3E5YTg0?= =?utf-8?B?ODdDNG5YYnhjVE4xS0pzcVdaVHgwcGl1bXBkZGQzUGtvb21XcmRBSTNvTm9L?= =?utf-8?B?U2s0aXdSNko4QVRtdVNwVnUvLzU0bk04L0V2WDAxMXlQNEhBbHFoeU96S1F5?= =?utf-8?B?SUdSQ0VmSk1FS3lEZk1KMWU2aDJvS3I0UUhXNXZqN2x6N1dabExLV0wrQVYr?= =?utf-8?B?alJmMHZRNnk2UWs5dzR6NGdWM3VTOVgzNGtwVkRmaGRCSTlwZW53bEVnMEw5?= =?utf-8?B?ZXlEdE9qRTdZZkl0RDFVVlRDbWRvbWgzOHY2YnRXc2NGcU8zZ0xiTHJlR2hE?= =?utf-8?B?VEd1T1hXWXJ5WG95eEEzT003Y0NtNWs3OFBLUko4VTZXdVRtWXFlM05za1Ur?= =?utf-8?B?UitGaHlrazQwUWgxRnVMYTJKWkFtQlBnbW9PSzlRYlJKdml6UU9JZC9kUHkz?= =?utf-8?B?WElEME1QdkNxYVlVSTVlWklrMUJta2lXSWRvcSs3S2c2WEh0MTRxYzUva1Z3?= =?utf-8?B?TXAzSGpQalVFQVJLbXhUM2krUmZnZ0VPNWE5SXhIWmF3TzVsR1pucEdkTktF?= =?utf-8?B?ajIvQ0x3c2Nxd1h3d2xGTmtQUWdobEY3QzdSdm55VU5FZjd5Mzg2L3crYTlx?= =?utf-8?B?WHZqd3lCdGtUQ01KUFo0YmlkRDBqQk5oWHlxZjQ1VmRuTXM4UjhSUXpXMUpV?= =?utf-8?B?OHMyWVhXNlErVlNOTkk5Ty9tenRPSzhxSlZsSEpMejZ4NVR5YjZ3RWNFdkFQ?= =?utf-8?B?SmVUMUQ4S2ozUjEvRkgyWUFKeUI3UkcyMlhoc3BmNzR3WHdqVXUxSThBQTVQ?= =?utf-8?B?Zm5kcTY5Qy8va0h4NXFTOVIvT3pUNE9iUXdhcTdra1Y1d01aZW9iK0lnb29E?= =?utf-8?B?Z1NMSTdmbnY4WWpxV1JJeW5LeGdJZXJVeEhMckZRV3BTUVFpNFZ4MnBFZUJE?= =?utf-8?B?VEdadVB4OEJxMjB3akMrMmxPcENqbi85dmt3RFMyRXpsanZMRFRwWmU0THd2?= =?utf-8?B?VXhSTXZ3eWlTOWQ5eEYwbS9PMW5GV0I2Vm1uN0lIcXNJVjdvc3BxS2JjQ0Np?= =?utf-8?Q?KFXqE4=3D?=
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Message-Info: O8pJuso3KCbTIVdnkjB81SIS7+HVdmH4XesSdpDJCk8BsJZxdbhO3jmYKlHhPv1WKEUrbJp9s5F0E0sweYkPAM826DS7FKNiXaoMxe9dkYy45NaiVsS4R06W9E/+sw5DzRH1WT+sRjFhjdzQvF77m3JIK/FjWvhnY9EIdUlVxD5p1ZrjHLdEB28XoR11mMGbtsGkc6Kw2XW1OUfJ4wo2mtYgy2mbU6qdlTrjwn1gbdgGQSZzPK5Ycu1MTrD0J+Y2fHGXImnojIJcXnLyu2gDoabn/TIT33ZslhB4lrw5cmPw2OmtUVsLSl4IL2t2fpQm7PavpsIm68/H41YoBX4xGmVHgbZ+G3jfc+hVNqdQV6k1Zz/OH6o/9tIgWlzZKtfaPFXH+dZQJf+IQyD+5jg4j7vtV36Mz5wX3BuMNx/rrzo=
X-Microsoft-Exchange-Diagnostics: 1; VI1P18901MB0109; 6:JYP6/tclG+Yhftk/CWXbe8sTlZn9vPnlsUUv0paaL8EyoBHUyasJPotkjQFFnFqk8BKUfGw/hYYRZ4d0fjzyb9ENnJMIkqiLvrkSlgl4LbnjfQRhqPC2XViir7iQobAWmSA2hf71w42EK8UE9JAquVQMqrgRKT1VSBCisS6f7uRWw+YxGpdmcecMEctITfvQQXVzvcgDbvcMjbKZOcbaEACG2KV/u1p2lWzcUa4hoREa0dfg6mbMqUWipnDLg5E4gJrfRHSH/AJ6lc7EwE3HCMiwhoVIsozpOMEfVgYHK3JS4dyS6FJ9erEXaduILhb9Fmf1sRrIgTlWQSReJf6R2HY8c+/isah27EtRBCd8xD0xR5SQpZ0XRVZYCu4+QKx29d0GwxU2WmoLhwwwgNJ748kpGsdkpX9EI+k+7RRyJBMowz/bJdQBeIYvCqf5oqxgVQyHqBPf9ldY8MBIQILo7g==; 5:9CdaaHiNNQyFtmAbEDe3VujFgelar9pWmbOqt1hmJpUfhbToPgnqn/Cg/ohfJBpiD+bKeNcstZVqY4EGyIeVMtAb6peC6Ja4Sw7brftJGZUvDJIBss5xwwWkVE7oKt5fJA9aGqmADSyR051MJEee07oz9l6tAoc8eYITEDTF50jm1d6UcZ9tQeqi8M4JFhs/H+8UF9zeChQrGTbFB1okog==; 7:zNYc1jSJZ3WjH69sL5rNIGmofMqvVlVBTydpkpyeVoAlbPeAO0OMLXKgiu1NE8Zxb5yWbvNBwVibhE5a3OSEGwPeOp+5ZTz++BN4JV3fDEVLow0fMkJ/RoIy18kd5iMHHlvgpctgB3jOMtCnXawhfg==
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Jan 2019 07:45:33.3757 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: fa74c0ce-342d-4976-0381-08d68686ea5f
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=5a9809cf-0bcb-413a-838a-09ecc40cc9e8; Ip=[194.218.146.197]; Helo=[mail.ri.se]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1P18901MB0109
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/lMoKBtxhoDIHfcDAgD3G9Yv8Moc>
Subject: Re: [Ace] Shepard review comments on draft-ietf-ace-oauth-params
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Jan 2019 07:45:48 -0000

On 29/01/2019 23:09, Jim Schaad wrote:
> 1.  In section 9.2 - While reviewing the IANA considerations, I was not sure
> if the JWT Claim Name be set to "rs_cnf".  If it is then please update the
> draft.  If not then please explain why.
> 
> Jim
> 

That was an oversight. Fixed now in -03.

/Ludwig


-- 
Ludwig Seitz, PhD
Security Lab, RISE
Phone +46(0)70-349 92 51