Re: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-11.txt

Mike Jones <Michael.Jones@microsoft.com> Thu, 31 October 2019 14:52 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E3469120809; Thu, 31 Oct 2019 07:52:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8p6jIPzaLKPF; Thu, 31 Oct 2019 07:52:16 -0700 (PDT)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-bl2nam06on0704.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe55::704]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8D5F1207FE; Thu, 31 Oct 2019 07:52:15 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jfiMyB13oSQEKmHunbTseLkJL8NJ1FkGDVBiqhk+DM8zZqfvinAlvAnruGjC/xHb70GNfPMFqfs8LtXEaeXU16ZiT4B1/rvA37LVsv7WFuEUEfCcc6DP+eDPEBUTLUj8Sf2WMSNehYIIsCMjqqSE53PG30j/QFHRdIYQWrYUM+vrJ3CFvxYDbl0xBe/j0AS4qjE3/pqEt50EwKrPFBafAAKt6WvkJONNEtVVBBrL47gJ73ypjnMSAbfwanxSWLNoVO8JL1izjwybKdqx8lJNrWQT7Ls6xXjpZFHD9lHHaWMG+pIPCAKiguFyNxeBrrTHR7VaIL56nFHEvawZ9j9cZw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2+ODgplPrMjQB3Pq50QkBXxbyg+KAFvM/CE9cwjSCAE=; b=QQ77wRqbyHHZqYhYIocJKgcnYH7zPA6G7zILDuF8RdnFEEXMrzn9B/wa/+ceH/yEDOgklFnsC1iY67QXCRXW2potbK68tkHDZla5Dh3Q+4oL1ChDSrl057xAJ/svv3/MRaOZZFKk4daCOle7Q9y/N4QmtwrIaiD3KgLsso1yzQKgCyYyh6eUkIbd/qHSI96QoSfHHIrEaswLpPWK+E/pK2JOlJ3soeAfIUCGTa2cCd0evHlTZ9pGIbDAfXCHhD1xqHUJklPzxY142zRupz9KCkCdgR+jnpoy6Cfs7WmfcKZGGJoGFU28Wqyc7iuKhni8Mn36fcXeRo8PvCx1AfFuxw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2+ODgplPrMjQB3Pq50QkBXxbyg+KAFvM/CE9cwjSCAE=; b=cy0Hhcl7ciGzkvCgbezzB53DcPoLSt6R5G/lXrkx80YH9GwCiIjGuCbRz90vVFQs6YcvaVFmN5d1Or9oun4dyBxjqiKFofdy9QkANU1gBSU7juLS4GH5joQofzDZ6htl0uKxJRLLabPP2WPtdok4XLEJN17770Ad8QFtHHmhlpo=
Received: from DM6PR00MB0569.namprd00.prod.outlook.com (20.179.51.12) by DM6PR00MB0570.namprd00.prod.outlook.com (20.179.51.13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2450.0; Thu, 31 Oct 2019 14:52:11 +0000
Received: from DM6PR00MB0569.namprd00.prod.outlook.com ([fe80::49:30:b130:e9b3]) by DM6PR00MB0569.namprd00.prod.outlook.com ([fe80::49:30:b130:e9b3%7]) with mapi id 15.20.2450.000; Thu, 31 Oct 2019 14:52:11 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "ace@ietf.org" <ace@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>
CC: =?utf-8?B?TWlyamEgS8O8aGxld2luZA==?= <ietf@kuehlewind.net>, Benjamin Kaduk <kaduk@mit.edu>
Thread-Topic: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-11.txt
Thread-Index: AQHVj/mZz4Ishz7OLEqk1Rhswf20vKd01PnQ
Date: Thu, 31 Oct 2019 14:52:11 +0000
Message-ID: <DM6PR00MB0569997C429F5E284437299AF5630@DM6PR00MB0569.namprd00.prod.outlook.com>
References: <157253301472.30380.9313695597907874615@ietfa.amsl.com>
In-Reply-To: <157253301472.30380.9313695597907874615@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=24157e70-b9af-4ee5-8deb-00006262cfbd; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-10-31T14:49:57Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [50.47.93.218]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 54684e0f-1439-4093-9cbc-08d75e11e95e
x-ms-traffictypediagnostic: DM6PR00MB0570:
x-microsoft-antispam-prvs: <DM6PR00MB0570BCD290DB0629AF290A08F5630@DM6PR00MB0570.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6108;
x-forefront-prvs: 02070414A1
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(136003)(396003)(346002)(39860400002)(376002)(189003)(199004)(13464003)(2501003)(74316002)(305945005)(86362001)(256004)(10090500001)(33656002)(52536014)(446003)(7696005)(9686003)(55016002)(478600001)(5660300002)(966005)(10290500003)(25786009)(8990500004)(14454004)(6306002)(4001150100001)(66574012)(7736002)(71200400001)(71190400001)(3846002)(6116002)(76116006)(186003)(8676002)(64756008)(66556008)(81156014)(6246003)(6436002)(4326008)(76176011)(81166006)(66476007)(229853002)(66946007)(66446008)(110136005)(99286004)(26005)(316002)(11346002)(486006)(54906003)(6506007)(53546011)(2906002)(66066001)(22452003)(8936002)(102836004)(476003); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR00MB0570; H:DM6PR00MB0569.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: OmIHUZKGuEnTs7IlLj0rw8l1rm6aCsSZ+BdYOsNw3P2E+M7NvdQStbJfc3tY2I3qjEDorNW0Rp2NUfDr0PzJ8zIfwKqjElfJ9vTYoHOiYLaaGYBdhUiMF7suVk7rF+KbT/iDK4lm7tkOFwW9X2HG7I3h5enhNT3gV7sA2nFOzPUotqVL6m5zxYDWSBtA/IBZkUnLPDl3nckAqG3Jery3J/WR2tZdpgZm+aXAiq0YyR8hOvUv99rYytF00/gib3vn6Oelopauk2HiRgN1ONrhWc/y6PPocgX637utUuFzBBxLMBGNzX9fmozi7Ah+8quH3fp7VKVlWggcfGtb4j59rS6xzRL082Vd81bORcN8NCnRcs1Joq7Yq90XaUaGUog0XZ/Nc4M+UiSsSKi1zo/shGT2/u3PrpBeR+xUTce53RwyCUR5vojbcQrlLv8JVNKd
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 54684e0f-1439-4093-9cbc-08d75e11e95e
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Oct 2019 14:52:11.7861 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: RKHJkQVRIgIZWmVHq38vNqZ1j5c1jZ44lbXZEMu7ycYsnjgaZExjAvQEuyijIHifUTXh178pl3gvJUGT+TdyLg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR00MB0570
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/nmBtEpUJdnaFrLkNjMkJDNBdusE>
Subject: Re: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-11.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Oct 2019 14:52:19 -0000

This version addresses the remaining IESG review comment by Mirja Kühlewind, which removes the language about contacting the IESG should the Designated Experts not act on IANA registrations in a timely way, per a decision by the IESG on today's telechat.

				-- Mike

-----Original Message-----
From: Ace <ace-bounces@ietf.org>; On Behalf Of internet-drafts@ietf.org
Sent: Thursday, October 31, 2019 7:44 AM
To: i-d-announce@ietf.org
Cc: ace@ietf.org
Subject: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-11.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Authentication and Authorization for Constrained Environments WG of the IETF.

        Title           : Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs)
        Authors         : Michael B. Jones
                          Ludwig Seitz
                          Göran Selander
                          Samuel Erdtman
                          Hannes Tschofenig
	Filename        : draft-ietf-ace-cwt-proof-of-possession-11.txt
	Pages           : 16
	Date            : 2019-10-31

Abstract:
   This specification describes how to declare in a CBOR Web Token (CWT)
   (which is defined by RFC 8392) that the presenter of the CWT
   possesses a particular proof-of-possession key.  Being able to prove
   possession of a key is also sometimes described as being the holder-
   of-key.  This specification provides equivalent functionality to
   "Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)" (RFC
   7800) but using Concise Binary Object Representation (CBOR) and CWTs
   rather than JavaScript Object Notation (JSON) and JSON Web Tokens
   (JWTs).


The IETF datatracker status page for this draft is:
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-ace-cwt-proof-of-possession%2F&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C6fe566449c1b4805cee708d75e10ba0b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637081298248386929&amp;sdata=cElMuuONfQiYsRqMjJs4wMHUtsvanpy6%2F1hWGvY7FN0%3D&amp;reserved=0

There are also htmlized versions available at:
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-ace-cwt-proof-of-possession-11&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C6fe566449c1b4805cee708d75e10ba0b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637081298248386929&amp;sdata=8253o%2BDZTDVf4HeuoYu%2BbpHR91CQrswnV%2FsCfGQ95Es%3D&amp;reserved=0
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-ace-cwt-proof-of-possession-11&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C6fe566449c1b4805cee708d75e10ba0b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637081298248386929&amp;sdata=cJ%2B7qAhU78Vr1sXrcTzQNSEojTo8VbZS%2FimuNyX2CCs%3D&amp;reserved=0

A diff from the previous version is available at:
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Frfcdiff%3Furl2%3Ddraft-ietf-ace-cwt-proof-of-possession-11&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C6fe566449c1b4805cee708d75e10ba0b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637081298248386929&amp;sdata=M%2BkS9bx%2BIgswYIDwiLo31elWcakFKG9Wni2VrKVyVUA%3D&amp;reserved=0


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
Ace mailing list
Ace@ietf.org
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Face&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C6fe566449c1b4805cee708d75e10ba0b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637081298248386929&amp;sdata=cVK4RObuN77arf0SyvC6thrDdprjgReHirSFx2pwMso%3D&amp;reserved=0