Re: [Ace] Alexey Melnikov's No Objection on draft-ietf-ace-cbor-web-token-12: (with COMMENT)

Alexey Melnikov <aamelnikov@fastmail.fm> Fri, 16 March 2018 13:03 UTC

Return-Path: <aamelnikov@fastmail.fm>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 20E49127AD4; Fri, 16 Mar 2018 06:03:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.701
X-Spam-Level:
X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=fastmail.fm header.b=RK4BhnKi; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=QvOmZlQm
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UZqqlp48OqZZ; Fri, 16 Mar 2018 06:03:33 -0700 (PDT)
Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4845612706D; Fri, 16 Mar 2018 06:03:33 -0700 (PDT)
Received: from compute7.internal (compute7.nyi.internal [10.202.2.47]) by mailout.nyi.internal (Postfix) with ESMTP id 3ED9220D44; Fri, 16 Mar 2018 09:03:32 -0400 (EDT)
Received: from frontend2 ([10.202.2.161]) by compute7.internal (MEProxy); Fri, 16 Mar 2018 09:03:32 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=fastmail.fm; h= cc:content-transfer-encoding:content-type:date:from:in-reply-to :message-id:mime-version:references:subject:to:x-me-sender :x-me-sender:x-sasl-enc; s=fm2; bh=SHm02M5pCvwaNxVkqPZXOLYNtZ5PV gNKde1RKFyJxRw=; b=RK4BhnKiIicn+ZQFSg5yMstE45XRY4En2k2SskPLnI+rO I5iytrdpnQHDTpHWO82+xhzXKVRYSb7H90YuLryBhLE1oQGYNfCOm2DlVV/SuPaS OsSz9ZtzJPGZAcXDiFJlbU0KCYUENFX8Mp8+sZIOzHAoY4xeC8hDwGrclI/6AApp 1o+ALOB1SYfmq9TbocDHCw6OaMNLD33NeeUe+5Q8gj69paLjgDTE9q+JWRK6uStm nTtMzAK4UoclE1uWiMX+7iXiMUrrOEckK+uFQ+q6dsYr8KR0E9KTvS5NaCxn3qts fQEvlSbBxm+ZQnB3T9TNv6B1Xr3ghrJAHvKZVSoSQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-sender:x-me-sender:x-sasl-enc; s=fm2; bh=SHm02M 5pCvwaNxVkqPZXOLYNtZ5PVgNKde1RKFyJxRw=; b=QvOmZlQmEha6/eSE+lMhFf okp3nv2CORnBo6DWb21EGi5InVvWFUGJGRr2VrbFQPGhG2bQptcgO40qxIiKmtdk gqT9lotW2UnUR1dg98olFcn3Llh71OuckyPMTVJOVNubRObaFvzt7haq2AeiaFnp hrG9hm01Np5if/PLpZVJ2kQKoOuIzTCfSIXHETEYaBOggTkNorLOQsV9amVY/0fr AqXejcdWxLgpqkjNXRAghpYKnGEm4Hk97VKptp9kOuXFGgpoU1pTqAxkxLnqbcSm p5mZZW9guUd/z1m1GBNP1phQZVosAD5/bHNgeJjq+VhmwiITHRH8aq1ihfjnmnyA ==
X-ME-Sender: <xms:pMCrWtM-Hw3ovu0bzDP_-JofgNIudJVHh7NLemZ0awmXgFOxu6TRRg>
Received: from [10.236.242.226] (unknown [85.255.237.100]) by mail.messagingengine.com (Postfix) with ESMTPA id B626724254; Fri, 16 Mar 2018 09:03:31 -0400 (EDT)
Content-Type: text/plain; charset=us-ascii
Mime-Version: 1.0 (1.0)
From: Alexey Melnikov <aamelnikov@fastmail.fm>
X-Mailer: iPhone Mail (15C202)
In-Reply-To: <DM5PR00MB0296A74BE2425D65DDA986D7F5D70@DM5PR00MB0296.namprd00.prod.outlook.com>
Date: Fri, 16 Mar 2018 13:03:29 +0000
Cc: Jim Schaad <ietf@augustcellars.com>, The IESG <iesg@ietf.org>, "draft-ietf-ace-cbor-web-token@ietf.org" <draft-ietf-ace-cbor-web-token@ietf.org>, "ace-chairs@ietf.org" <ace-chairs@ietf.org>, "kaduk@mit.edu" <kaduk@mit.edu>, "ace@ietf.org" <ace@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <A1B9C819-07E1-4628-86C0-087DF8D00553@fastmail.fm>
References: <152019111919.11926.18305687218435545827.idtracker@ietfa.amsl.com> <01e001d3b3f0$821e1990$865a4cb0$@augustcellars.com> <1520197258.2705337.1291165960.6753CD94@webmail.messagingengine.com> <01e901d3b3fd$639fa120$2adee360$@augustcellars.com> <DM5PR00MB0296A74BE2425D65DDA986D7F5D70@DM5PR00MB0296.namprd00.prod.outlook.com>
To: Mike Jones <Michael.Jones@microsoft.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/legU7aoioAzYWYxe8Oh399VZAGA>
Subject: Re: [Ace] Alexey Melnikov's No Objection on draft-ietf-ace-cbor-web-token-12: (with COMMENT)
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Mar 2018 13:03:40 -0000

Hi Mike,

> On 16 Mar 2018, at 10:04, Mike Jones <Michael.Jones@microsoft.com> wrote:
> 
> Hi Alexey,
> 
> https://tools.ietf.org/html/draft-ietf-ace-cbor-web-token-14 should address your comments.  Changes motivated by your comments were:
>  - Added the text "IANA must only accept registry updates from the Designated Experts and should direct all requests for registration to the review mailing list" from RFC 7519, as suggested by Amanda Baber of IANA, which is also intended to address Alexey Melnikov's comment.

Works for me, thank you!

>                Thanks again,
>                -- Mike
> 
> -----Original Message-----
> From: Jim Schaad <ietf@augustcellars.com> 
> Sent: Sunday, March 4, 2018 1:12 PM
> To: 'Alexey Melnikov' <aamelnikov@fastmail.fm>fm>; 'The IESG' <iesg@ietf.org>
> Cc: draft-ietf-ace-cbor-web-token@ietf.org; ace-chairs@ietf.org; kaduk@mit.edu; ace@ietf.org
> Subject: RE: Alexey Melnikov's No Objection on draft-ietf-ace-cbor-web-token-12: (with COMMENT)
> 
> 
> 
>> -----Original Message-----
>> From: Alexey Melnikov [mailto:aamelnikov@fastmail.fm]
>> Sent: Sunday, March 4, 2018 1:01 PM
>> To: Jim Schaad <ietf@augustcellars.com>om>; The IESG <iesg@ietf.org>
>> Cc: draft-ietf-ace-cbor-web-token@ietf.org; ace-chairs@ietf.org; 
>> kaduk@mit.edu; ace@ietf.org
>> Subject: Re: Alexey Melnikov's No Objection on 
>> draft-ietf-ace-cbor-web-
>> token-12: (with COMMENT)
>> 
>>> On Sun, Mar 4, 2018, at 7:39 PM, Jim Schaad wrote:
>>> IANA does ask for the expert review as part of the processing it 
>>> does even for standards track documents.  This is because, in part, 
>>> they are responsible for doing the final number assignment.  That is 
>>> which number in the range is actually used.  The interesting 
>>> question would be what happens if the IESG and the DEs disagree about such things.
>> 
>> This is exactly why I am asking about this. It might also possible to 
>> game the system to ask IESG approval of a Proposed Standard that 
>> bypasses Expert Review.
> 
> Interesting.  The text that IANA and I finally agreed to for the COSE Algorithm registry is "Standards Action With Expert Review".
> 
> That would make sure that it cannot bypass the Expert Review.
> 
> Jim
> 
>> 
>>> I would
>>> expect that this would result in a long discussion with some type of 
>>> final agreement between them.
>>> 
>>> Jim
>>> 
>>> 
>>>> -----Original Message-----
>>>> From: Alexey Melnikov [mailto:aamelnikov@fastmail.fm]
>>>> Sent: Sunday, March 4, 2018 11:19 AM
>>>> To: The IESG <iesg@ietf.org>
>>>> Cc: draft-ietf-ace-cbor-web-token@ietf.org; ace-chairs@ietf.org; 
>>>> kaduk@mit.edu; ace@ietf.org
>>>> Subject: Alexey Melnikov's No Objection on
>>>> draft-ietf-ace-cbor-web-token-
>>>> 12: (with COMMENT)
>>>> 
>>>> Alexey Melnikov has entered the following ballot position for
>>>> draft-ietf-ace-cbor-web-token-12: No Objection
>>>> 
>>>> When responding, please keep the subject line intact and reply to 
>>>> all email addresses included in the To and CC lines. (Feel free to 
>>>> cut this introductory paragraph, however.)
>>>> 
>>>> 
>>>> Please refer to
>>>> https://www.ietf.org/iesg/statement/discuss-criteria.html
>>>> for more information about IESG DISCUSS and COMMENT positions.
>>>> 
>>>> 
>>>> The document, along with other ballot positions, can be found here:
>>>> https://datatracker.ietf.org/doc/draft-ietf-ace-cbor-web-token/
>>>> 
>>>> 
>>>> 
>>>> ------------------------------------------------------------------
>>>> --
>>>> --
>>>> COMMENT:
>>>> ------------------------------------------------------------------
>>>> --
>>>> --
>>>> 
>>>> Just to double check: a CWT claim registration from a Proposed 
>>>> Standard still needs to be submitted to the review mailing list, 
>>>> but it is not really subject to Expert Review, correct? You might 
>>>> want to make
>> it clearer.
>>> 
>>> 
>