IETF Logo Mail Archive

Re: [Ace] WGLC draft-ietf-ace-revoked-token-notification-04.txt

Marco Tiloca <marco.tiloca@ri.se> Mon, 13 March 2023 19:10 UTC

Return-Path: <marco.tiloca@ri.se>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id ABC04C151531 for <ace@ietfa.amsl.com>; Mon, 13 Mar 2023 12:10:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.997
X-Spam-Level:
X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, NICE_REPLY_A=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ri.se
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HlWMuln5u4om for <ace@ietfa.amsl.com>; Mon, 13 Mar 2023 12:10:41 -0700 (PDT)
Received: from GVZP280CU001-vft-obe.outbound.protection.outlook.com (mail-swedencentralazlp170110002.outbound.protection.outlook.com [IPv6:2a01:111:f403:c202::2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D6A06C14068D for <ace@ietf.org>; Mon, 13 Mar 2023 12:09:39 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Q+06u32JgEafr5Ak302qf89uvZ/z3eBkUHJb6YjICyi8JVIHd5mfmmRG8Vpwyu8Djdc7JavJZM6sUQVd/+I4akeGOuVSlru4L9zCEQBPZbXj6jGOHM7oeoBE3S97uMAE1Z4q3gyiGheF/FOAKPRxvizz+uGkMGCJW+vx3A54YQOSRg9kPAACoTJcgDsKOumbuNhKCNTtvwfWmZ1tXJiDVK4QBjiLHr+xqpxIsIjUzvPGk463KfYnOOmEa2Col0Fqxu+rzw4VZ/mfpSd1sKByfpsIvEW+UFMfx5ww5A+0ZiSoLFFYNDXsQCIKVyOaFjRbUAKMjO16DlbLNXtRIZuFNQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=YunTMTYZgq2AklaM1wy5dEHEIKBS+GJsavdGbERkFvw=; b=moqDtCkwGGXnE5nqF+JFFWqJcjNJREf17sI9WCQIjZ0op3v6TuE4UA9ok58Y0cpSkXmutrdvnwxTovQuxTFEB4fKua1f6ZkepzYL19JTcFXxWv4pl1cVHTk+lV2gA2n8jVRwbT14xHovhv+B9cCni3c5gwcpHiCKZgmjTFVemAj/LUvyDtecx8EZJd3Tc5ei1Higb1QF4I/9fyfz7LIbQH9PZ+fC3f+z3Ks+Mny3BqTQbKyPahvpHbdi1Hbg3fRguou07oDpPLBA6sNqbsOsEyL7hCTMxGNYUtzwXFDkPGM1Lqf8UQUs/yRYfp4jWwqEFTaUkWYLCSr6SqoyC+csig==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ri.se; dmarc=pass action=none header.from=ri.se; dkim=pass header.d=ri.se; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ri.se; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=YunTMTYZgq2AklaM1wy5dEHEIKBS+GJsavdGbERkFvw=; b=heBSb45mSmz8U/SK9TzBEyfctk4K1Ikhm9d7mFFNXH6mgkRu/Knn1vD0so2HhdgRhpJ02upueaEQ6qUeQIZa+W/Qn2XbUfkE2K0Qjty83HZoMpUTdADyb0NdMLhgjBDrkIeDTc6ODF14yAQZdV8ZWmxX0MgOLjsn8rzYa9XEkFQ=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=ri.se;
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17) by GVYP280MB0064.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:33::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6178.24; Mon, 13 Mar 2023 19:09:35 +0000
Received: from GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::5435:d7bc:5f10:99df]) by GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM ([fe80::5435:d7bc:5f10:99df%7]) with mapi id 15.20.6178.024; Mon, 13 Mar 2023 19:09:35 +0000
Message-ID: <6b64bb04-403f-c34c-d51c-0402056d72eb@ri.se>
Date: Mon, 13 Mar 2023 20:09:33 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.8.0
Content-Language: en-US
To: Daniel Migault <mglt.ietf@gmail.com>, Ace Wg <ace@ietf.org>
References: <167872177724.59809.2184168422921623653@ietfa.amsl.com> <CADZyTkmv1=KqC1AhyoVdtQc1xoJUZcq5ziYXdMJaUSGqsgOZrw@mail.gmail.com>
From: Marco Tiloca <marco.tiloca@ri.se>
In-Reply-To: <CADZyTkmv1=KqC1AhyoVdtQc1xoJUZcq5ziYXdMJaUSGqsgOZrw@mail.gmail.com>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------l0WJ1BawqASvgPCGUtNaInLi"
X-ClientProxiedBy: FR2P281CA0171.DEUP281.PROD.OUTLOOK.COM (2603:10a6:d10:99::16) To GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM (2603:10a6:150:37::17)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: GVYP280MB0464:EE_|GVYP280MB0064:EE_
X-MS-Office365-Filtering-Correlation-Id: 98eb89df-8090-4121-3d33-08db23f67bfc
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: SYzNxL/TnjymdB4LwMM2z9H8nOZq/loh9CEYa243TVYN6mUFLHDWzl/fvMnYBvFXLFyP1vrbL96cOQ8y7W2eEEAHSpAp/eVKdyIgf7FizG3jPA0tX668RPXT3pvpxV0DUWI4lWGLGeFWrDnc57QfSTUdtKv0Z1HtKWV1KUB5tOgCxDrxPdFjQxB19tScoMFGDPgykID+rxqe103IN5p8c4mtTTMf7J/qqZksJr5yI9eD0qxZeR+PgcoQ3z2v23xxLsDW0SoG3/TnXUJd61HQlzCNj9ZRWy7ku1M4E6JoZu2MjlXVmKqxeUDGY3ZJhKFhZ+6hidlBwfYYW2M8IgTkQ9r+kUHFCR7YLnfbErv27dxg+tcUQPXnUoOu/lLyZOLnOROW+t0XfhancqoIhob3LZDYVELUSpm4P4VZJVFchv3P34AuMWyOeTRDMTiJT+OhTq7EQ8TZQRT/WPZDoMuKNkj+iTy8nIoPpn1CiN+Zbw7AqcA8bLKa2q/zPskCAzxCD99X5eeQqcFwEb6nZX+WENwMcSy+HvWZgzT5Hg2eKpmnQbWCMUG0oHXPT+WKynMuHERBm3HSTnuNNH3QWdqPl+7tO24Mox0t4sdwExBFLJNHRbBjDvY/KepF+YUO22Vs1W+04CyNrQXqEOVN01t4vkweZEjOb+CS7RueSPdIW6lqi180kJCOlVDSGLV4I4fHAPVXts7JG0jrV+ON6hB/fCLiyWI/QyBAJC4B9uUcAaM=
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230025)(4636009)(396003)(376002)(346002)(39860400002)(136003)(366004)(451199018)(36756003)(86362001)(31696002)(26005)(186003)(41300700001)(6512007)(6506007)(33964004)(21480400003)(53546011)(5660300002)(235185007)(2616005)(8936002)(316002)(45080400002)(478600001)(966005)(8676002)(66556008)(66476007)(110136005)(66946007)(6486002)(166002)(38100700002)(2906002)(15650500001)(44832011)(66574015)(83380400001)(31686004)(45980500001)(43740500002); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: ri.se
X-MS-Exchange-CrossTenant-Network-Message-Id: 98eb89df-8090-4121-3d33-08db23f67bfc
X-MS-Exchange-CrossTenant-AuthSource: GVYP280MB0464.SWEP280.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 13 Mar 2023 19:09:35.3206 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 5a9809cf-0bcb-413a-838a-09ecc40cc9e8
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: e+GBBo6Wcnemzsw0UHVcbdM19y9wHl5Rd+NDVynkTkSaBsW1VhgwQJY4okCXWe1L7jHR6XqG53QYVcjxJw9nTQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: GVYP280MB0064
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/nzq_bdOb3GazeboAm8wOYYXvigw>
Subject: Re: [Ace] WGLC draft-ietf-ace-revoked-token-notification-04.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Mar 2023 19:10:45 -0000

Hi Daniel and all,

On 2023-03-13 18:36, Daniel Migault wrote:
> Hi everyone,
>
> This email starts a WGLC for draft-ietf-ace-revoked-token-notification 
> which ends on March 27. Please provide your support and feed backs by 
> that time. We will take advantage of the IETF116 session to solve any 
> remaining discussions on that draft.
>
> I am also looking for someone interested in being the document 
> shepherd: Please volunteer!
>
> To the co-authors I am looking at:
> - 1) a heads-up regarding the implementations.

==>MT
An implementation from Marco Rasori is available at [1], as building on 
the implementation of the ACE framework at [2]. It is planned to make a 
pull request of [1] onto [2].

[1] https://bitbucket.org/marco-rasori-iit/ace-java/src/ucs/

[2] https://bitbucket.org/marco-tiloca-sics/ace-java

<==

> - 2) a confirmation that they are or not aware of any IPR

==>MT
I do not have and I am not aware of any IPR on this document.
<==

> - 3)  a confirmation that they are willing to co-author the document.

==>MT
I am willing to be a co-author of this document.


Best,
/Marco
<==

>
> Yours,
> Logan and Daniel
>
>
> On Mon, Mar 13, 2023 at 11:36 AM <internet-drafts@ietf.org> wrote:
>
>
>     A New Internet-Draft is available from the on-line Internet-Drafts
>     directories. This Internet-Draft is a work item of the
>     Authentication and
>     Authorization for Constrained Environments (ACE) WG of the IETF.
>
>        Title           : Notification of Revoked Access Tokens in the
>     Authentication and Authorization for Constrained Environments
>     (ACE) Framework
>        Authors         : Marco Tiloca
>                          Ludwig Seitz
>                          Francesca Palombini
>                          Sebastian Echeverria
>                          Grace Lewis
>        Filename        : draft-ietf-ace-revoked-token-notification-04.txt
>        Pages           : 59
>        Date            : 2023-03-13
>
>     Abstract:
>        This document specifies a method of the Authentication and
>        Authorization for Constrained Environments (ACE) framework, which
>        allows an Authorization Server to notify Clients and Resource
>     Servers
>        (i.e., registered devices) about revoked Access Tokens. The method
>        allows Clients and Resource Servers to access a Token
>     Revocation List
>        on the Authorization Server, with the possible additional use of
>        resource observation for the Constrained Application Protocol
>     (CoAP).
>        Resulting (unsolicited) notifications of revoked Access Tokens
>        complement alternative approaches such as token introspection,
>     while
>        not requiring additional endpoints on Clients and Resource Servers.
>
>     The IETF datatracker status page for this Internet-Draft is:
>     https://datatracker.ietf.org/doc/draft-ietf-ace-revoked-token-notification/
>     <https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-ace-revoked-token-notification%2F&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=gYpZlIuI%2BzStJC5ry%2FAgPKsG0dsCQFlP6YvWA61JJV4%3D&reserved=0>
>
>     There is also an HTML version available at:
>     https://www.ietf.org/archive/id/draft-ietf-ace-revoked-token-notification-04.html
>     <https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-ietf-ace-revoked-token-notification-04.html&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=8A%2FhfRSRo848%2BPuH9tENHNbjyZ5tLM1rbdbt%2FOEaBY8%3D&reserved=0>
>
>     A diff from the previous version is available at:
>     https://author-tools.ietf.org/iddiff?url2=draft-ietf-ace-revoked-token-notification-04
>     <https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-ietf-ace-revoked-token-notification-04&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=p7r7kMc09mEkD3tHNYmvwMygX0OmjHU1MlaThzk%2F7sk%3D&reserved=0>
>
>     Internet-Drafts are also available by rsync at
>     rsync.ietf.org::internet-drafts
>
>
>     _______________________________________________
>     Ace mailing list
>     Ace@ietf.org
>     https://www.ietf.org/mailman/listinfo/ace
>     <https://eur05.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Face&data=05%7C01%7Cmarco.tiloca%40ri.se%7C6e109d1b535245f2de8c08db23e98fd8%7C5a9809cf0bcb413a838a09ecc40cc9e8%7C0%7C0%7C638143258281813215%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=tSAD963p0DeiAAS9i%2B36yelXzJhthyVc57uwb5Xacu8%3D&reserved=0>
>
>
>
> -- 
> Daniel Migault
> Ericsson
>
> _______________________________________________
> Ace mailing list
> Ace@ietf.org
> https://www.ietf.org/mailman/listinfo/ace

-- 
Marco Tiloca
Ph.D., Senior Researcher

Phone: +46 (0)70 60 46 501

RISE Research Institutes of Sweden AB
Box 1263
164 29 Kista (Sweden)

Division: Digital Systems
Department: Computer Science
Unit: Cybersecurity

https://www.ri.se

v2.23.0 | Report a Bug | By Email