IETF Logo Mail Archive

Re: [Ace] New Version Notification - draft-ietf-ace-cwt-proof-of-possession-07.txt

Ludwig Seitz <ludwig.seitz@ri.se> Wed, 25 September 2019 09:34 UTC

Return-Path: <ludwig.seitz@ri.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE53D12011D; Wed, 25 Sep 2019 02:34:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=risecloud.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xFiJA3GNSNcl; Wed, 25 Sep 2019 02:34:12 -0700 (PDT)
Received: from EUR01-VE1-obe.outbound.protection.outlook.com (mail-eopbgr140041.outbound.protection.outlook.com [40.107.14.41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 55A9612011A; Wed, 25 Sep 2019 02:34:12 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XYssbmMf6gErRUWgDqiyBVn554ENrPYWSPd1Go4c+i6ko6lqFpH1wPVadoJtip7NwHEXGjDk4nlQRCsfMDeMhqMHI7T2m8dHGAss6yvOM+HhpJxoXZzTJPd60W0OqBv0bQffSZDF2wfsHnQLDxomxiZYbA5TOIM80guNktAeJW/aIaE14grB+MmeqWqHm3WS4qtiY23eZo2kMhqUNB8JTeMHZ+o3YuPtKCxPqDHjNBJKc3suSMiApWrDi16vPSx+cvs2nVbD55K873R+BumJrql+J/tVmDlwHhYhhYzx2bNCw+Q/c/bdEf0OiFHOFkmGsWIvlcuk6LBtMAdGqn83Cw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nBmZHNc3DLe88c/kS+VU11EOf4tZenNjneoHPwe6xcA=; b=KaoPuvY7iMbhMwBKp7e+Wzs71AnnQcFXWAMjb73x+A3S3dWwK+em7yS2yxPPOOHKJruyklpCQyOsCz1ei+BMueRhLzZi0Q57ZU2rQK8jx8kTth8Nm7apmWSqPMwTsaIO17qqaW1bUButRl6vwz2Zu8FD/Yj4OljzLeJkCt1km2w++xq0izylXMdjos7cs3CIIs+AmehFMJmAQZtC7a5q5V740VD4MIVorZHs8mvIa8c3Y0EMqNKf7EIgfjmc2u+HI9XXMgAANsVSNOdt494rCrvaWP2rj+uQKzMrGctVwF0hmsBFUDMO69EnVKggLHLFtl3OpbTnY5ZMDcBF9a08ig==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass (sender ip is 194.218.146.197) smtp.rcpttodomain=ietf.org smtp.mailfrom=ri.se; dmarc=pass (p=none sp=none pct=100) action=none header.from=ri.se; dkim=none (message not signed); arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=RISEcloud.onmicrosoft.com; s=selector2-RISEcloud-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=nBmZHNc3DLe88c/kS+VU11EOf4tZenNjneoHPwe6xcA=; b=FekGsb8Rpq/SHprkhZ84NyM9YxvCI9dBT76ZfhLwWsRn8+g80QQQpV/oYqwVWdtQprbjQ1kN92OePPaP1XyLw2/vbN8CXrdUlDgR4uiGdeAmhcaXy6igoS8NK3Tx1XlsQTdkSgjRFPW61Qr1d6c18LtCz8+Tt+3CzViFdmrRuUA=
Received: from VI1P18901CA0016.EURP189.PROD.OUTLOOK.COM (2603:10a6:801::26) by VI1P18901MB0031.EURP189.PROD.OUTLOOK.COM (2603:10a6:801:8::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2284.20; Wed, 25 Sep 2019 09:34:10 +0000
Received: from HE1EUR02FT033.eop-EUR02.prod.protection.outlook.com (2a01:111:f400:7e05::201) by VI1P18901CA0016.outlook.office365.com (2603:10a6:801::26) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2305.15 via Frontend Transport; Wed, 25 Sep 2019 09:34:09 +0000
Authentication-Results: spf=pass (sender IP is 194.218.146.197) smtp.mailfrom=ri.se; ietf.org; dkim=none (message not signed) header.d=none;ietf.org; dmarc=pass action=none header.from=ri.se;
Received-SPF: Pass (protection.outlook.com: domain of ri.se designates 194.218.146.197 as permitted sender) receiver=protection.outlook.com; client-ip=194.218.146.197; helo=mail.ri.se;
Received: from mail.ri.se (194.218.146.197) by HE1EUR02FT033.mail.protection.outlook.com (10.152.10.152) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.20.2284.25 via Frontend Transport; Wed, 25 Sep 2019 09:34:09 +0000
Received: from [10.112.134.122] (10.100.0.158) by sp-mail-2.sp.se (10.100.0.162) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1713.5; Wed, 25 Sep 2019 11:34:09 +0200
To: Mike Jones <Michael.Jones@microsoft.com>, Samuel Erdtman <erdtman@spotify.com>
CC: Benjamin Kaduk <kaduk@mit.edu>, "draft-ietf-ace-cwt-proof-of-possession.all@ietf.org" <draft-ietf-ace-cwt-proof-of-possession.all@ietf.org>, "ace@ietf.org" <ace@ietf.org>
References: <156886195825.4610.11342453288215138739.idtracker@ietfa.amsl.com> <20190924233318.GH6424@kduck.mit.edu> <20190924233510.GI6424@kduck.mit.edu> <MN2PR00MB05746F4B49B5655EE8B772D9F5870@MN2PR00MB0574.namprd00.prod.outlook.com> <1cd22827-d9d3-3212-3475-36fdb8efcc90@ri.se> <CAOB_DJkne4YEWoJ5-wOVOAVNSDmAp7B_2LC5jVODp7MJND4SeA@mail.gmail.com> <BYAPR00MB05674CFE3D37599DC5DDFC9BF5870@BYAPR00MB0567.namprd00.prod.outlook.com>
From: Ludwig Seitz <ludwig.seitz@ri.se>
Message-ID: <eba84d59-025e-d16c-b89e-8964e9446bc4@ri.se>
Date: Wed, 25 Sep 2019 11:34:08 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.8.0
MIME-Version: 1.0
In-Reply-To: <BYAPR00MB05674CFE3D37599DC5DDFC9BF5870@BYAPR00MB0567.namprd00.prod.outlook.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms080801000707030603060906"
X-Originating-IP: [10.100.0.158]
X-ClientProxiedBy: sp-mail-1.sp.se (10.100.0.161) To sp-mail-2.sp.se (10.100.0.162)
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:194.218.146.197; IPV:NLI; CTRY:SE; EFV:NLI; SFV:NSPM; SFS:(10009020)(4636009)(136003)(39860400002)(376002)(346002)(396003)(189003)(199004)(446003)(31696002)(44832011)(86362001)(476003)(16576012)(54906003)(15650500001)(229853002)(316002)(106002)(7736002)(110136005)(70586007)(8676002)(58126008)(5660300002)(568964002)(8936002)(22756006)(305945005)(81156014)(70206006)(81166006)(235185007)(6246003)(14444005)(22746008)(16586007)(5024004)(40036005)(65956001)(356004)(31686004)(186003)(3846002)(2906002)(6116002)(33964004)(36756003)(26005)(65806001)(16526019)(76176011)(71190400001)(478600001)(45080400002)(336012)(126002)(386003)(53546011)(2616005)(1511001)(486006)(4326008)(11346002); DIR:OUT; SFP:1101; SCL:1; SRVR:VI1P18901MB0031; H:mail.ri.se; FPR:; SPF:Pass; LANG:en; PTR:InfoDomainNonexistent; MX:1; A:1;
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 291a249a-6d81-4e77-5579-08d7419b84a4
X-Microsoft-Antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(5600167)(711020)(4605104)(4709080)(1401327)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7193020); SRVR:VI1P18901MB0031;
X-MS-TrafficTypeDiagnostic: VI1P18901MB0031:
X-Microsoft-Antispam-PRVS: <VI1P18901MB0031651F627EB81E4147D61282870@VI1P18901MB0031.EURP189.PROD.OUTLOOK.COM>
X-MS-Oob-TLC-OOBClassifiers: OLM:9508;
X-Forefront-PRVS: 01713B2841
X-MS-Exchange-SenderADCheck: 1
X-Microsoft-Antispam-Message-Info: 8j6FeCk67oRCnLre8bHoz7GEBbsgrJkf7pCdxapKnfZACBHzUx89XwisFl4EY+i5+ODeDMSVf8c8ka04bSPBIn3NxsWqHNcnvvdU1LHiAA/qZnO5YdCGpDWHiTZPgz4BoVNYbbM/BZGnC1Ds4yS2DjcLv0wMv9SBndpY51p0hX7N8q0WFQuXOiSoh0AFqrz4Vl0aFwrtGFwP621kOwxSVKgR0Sr8i2RteAkRFXReytbHez+1FO2NQkVBP8oh2RLbSRVLw/8teWksPy3CR0dUCdZc8GUMIrihm6NhjJX45L5yb5uNKUJ+O0+Af5W0TJmk9BSjB420oTvekOsDbDCEKxbYKK6BTzzh0MOvMsyoH69iGeWDhJHemttd30m9p4cqEnBz8GhgbWsBwCgJDoL2m9CmA4P2/3991Ov2/4E7j2Q=
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 25 Sep 2019 09:34:09.6762 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: 291a249a-6d81-4e77-5579-08d7419b84a4
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=5a9809cf-0bcb-413a-838a-09ecc40cc9e8; Ip=[194.218.146.197]; Helo=[mail.ri.se]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1P18901MB0031
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/nUnujFxVV5awNZAACY-PH5OaIzI>
Subject: Re: [Ace] New Version Notification - draft-ietf-ace-cwt-proof-of-possession-07.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 25 Sep 2019 09:34:16 -0000

On 25/09/2019 10:13, Mike Jones wrote:
> Does one of you have the time to create a PR today making the two 
> changes?  I’ll then be able to review it and publish sometime in the 
> next 24 hours.  Or if not, I’ll plan to do it myself while flying back 
> from Korea to the US tomorrow.
> 
>                                                         Thanks all,
> 
>                                                         -- Mike
> 
> *From:* Samuel Erdtman <erdtman@spotify.com>
> *Sent:* Wednesday, September 25, 2019 12:18 AM
> *To:* Ludwig Seitz <ludwig.seitz@ri.se>
> *Cc:* Mike Jones <Michael.Jones@microsoft.com>; Benjamin Kaduk 
> <kaduk@mit.edu>; draft-ietf-ace-cwt-proof-of-possession.all@ietf.org; 
> ace@ietf.org
> *Subject:* Re: New Version Notification - 
> draft-ietf-ace-cwt-proof-of-possession-07.txt
> 
> +1
> 
> On Wed, Sep 25, 2019 at 8:31 AM Ludwig Seitz <ludwig.seitz@ri.se 
> <mailto:ludwig.seitz@ri.se>> wrote:
> 
>     On 25/09/2019 02:23, Mike Jones wrote:
>      > I'm fine with us making both of the proposed changes.
>      >
>      >                               Thanks,
>      >                               -- Mike
>      >
> 
>     +1
> 
>     -- 
>     Ludwig Seitz, PhD
>     Security Lab, RISE
>     Phone +46(0)70-349 92 51
> 


I'm in the process of doing the PR, but I noticed that I can only 
address Ben's (1) and (3).

For (2) Ben was asking for our opinion.

I think we could take the note about different key IDs referring to the 
same key and reintroduce it in the text as it is a useful reminder.

(I mean that chunk:
" Note that the value of a Key ID is not always the same for different 
parties. When sending a COSE encrypted message with a shared key,
the Key ID may be different on both sides of the conversation,
with the appropriate one being included in the message based on the 
recipient of the message.")



/Ludwig


-- 
Ludwig Seitz, PhD
Security Lab, RISE
Phone +46(0)70-349 92 51

v2.23.0 | Report a Bug | By Email