[Ace] Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec addressing WGLC comments
Mike Jones <Michael.Jones@microsoft.com> Fri, 29 June 2018 21:02 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AF2641294D7 for <ace@ietfa.amsl.com>; Fri, 29 Jun 2018 14:02:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.01
X-Spam-Level:
X-Spam-Status: No, score=-2.01 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UmNF0UQdVKuJ for <ace@ietfa.amsl.com>; Fri, 29 Jun 2018 14:02:01 -0700 (PDT)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-bl2nam06on0109.outbound.protection.outlook.com [104.47.53.109]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2537F130E74 for <ace@ietf.org>; Fri, 29 Jun 2018 14:02:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Adf+q/4FQg8gmcbe0kqvpmCtgMWyWeNt01SiD5/2jN8=; b=BgxX7G6ikzW7uvkvDebOzxrF43AwcQTOj50aX8Kv8cMr1A9HP02UG6tCL/WISVBdwYcM9anZJbhrwWK0lV/dcxLoTW91WPBx2Vti22K0lbq5egaIQT/jyEWkdpekRSvROnkshJY396+xv/OVq0m09/jZAKkasbF6YzKwxZVGxXA=
Received: from DM5PR00MB0293.namprd00.prod.outlook.com (52.132.128.34) by DM5PR00MB0309.namprd00.prod.outlook.com (52.132.128.38) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.949.0; Fri, 29 Jun 2018 21:01:59 +0000
Received: from DM5PR00MB0293.namprd00.prod.outlook.com ([fe80::6944:e7f0:d402:b507]) by DM5PR00MB0293.namprd00.prod.outlook.com ([fe80::6944:e7f0:d402:b507%9]) with mapi id 15.20.0949.000; Fri, 29 Jun 2018 21:01:59 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "ace@ietf.org" <ace@ietf.org>
Thread-Topic: Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec addressing WGLC comments
Thread-Index: AdQP6kwTew3S+l25S6+XJdj34t8FmQ==
Date: Fri, 29 Jun 2018 21:01:49 +0000
Message-ID: <DM5PR00MB0293BA8987B7A49DA5C9BEE7F54E0@DM5PR00MB0293.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [12.130.116.117]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; DM5PR00MB0309; 7:SgYW2pPowVI/+KpMmCc8fgTMqAgpZ5BVul8OzSAVl0JioOUUJXVIN+52dlsEa6D0NBoUVsaP+bagZ6wUfnp4xbQObv3JdfXvxGov8Jr/wIGDY2DNRRIDldhzw8vljwUa6AdkXei/RoaNqJqF5ZQT5zIZB84fP1YamRfTjIL8bqEmnY7xWTP6MG4Hlz6vb8DCVRwpYp3fG2w8Gjg4LPRWjgFohwBq8BppTTxLtRtESBUKrV2DIhNJ2kCLnyKlBZ6d
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 971f0935-ea0c-461a-770b-08d5de038e08
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989117)(48565401081)(5600045)(711020)(4534165)(4627221)(201703031133081)(201702281549075)(8990107)(2017052603328)(7193020); SRVR:DM5PR00MB0309;
x-ms-traffictypediagnostic: DM5PR00MB0309:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-microsoft-antispam-prvs: <DM5PR00MB03091C855D4E15BF41D0CD5FF54E0@DM5PR00MB0309.namprd00.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(31418570063057)(21748063052155);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(2017102700009)(2017102701064)(6040522)(2401047)(5005006)(8121501046)(2017102702064)(20171027021009)(20171027022009)(20171027023009)(20171027024009)(20171027025009)(20171027026009)(2017102703076)(10201501046)(93006095)(93001095)(3002001)(3231270)(2018427008)(944501410)(52105095)(6055026)(149027)(150027)(6041310)(20161123558120)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123562045)(6072148)(201708071742011)(7699016); SRVR:DM5PR00MB0309; BCL:0; PCL:0; RULEID:; SRVR:DM5PR00MB0309;
x-forefront-prvs: 0718908305
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(396003)(376002)(136003)(39860400002)(346002)(209900001)(189003)(199004)(9686003)(5640700003)(81166006)(186003)(486006)(55016002)(53376002)(790700001)(316002)(6116002)(476003)(1730700003)(81156014)(5250100002)(2501003)(22452003)(3846002)(25786009)(106356001)(8990500004)(53936002)(606006)(8676002)(7736002)(54896002)(105586002)(8936002)(74316002)(2351001)(478600001)(10290500003)(86362001)(10090500001)(6306002)(2906002)(14454004)(966005)(256004)(26005)(68736007)(86612001)(97736004)(102836004)(21615005)(6916009)(72206003)(5630700001)(6436002)(66066001)(6506007)(236005)(5660300001)(14444005)(6666003)(33656002)(2900100001)(7696005)(99286004)(6606295002); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR00MB0309; H:DM5PR00MB0293.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: RR3t1vVmSaZEhWFb1czw3Rz8kLxmM0sDhw9bvJOacye91Zf5Uov9xXvI6YMvXKqW4PQoEsH+9vzODkxro6S/NU4taZWIZKWwcPbElc7yXNhdhnVeFpuUAg9eM/oqFfn/Bx7HcD1UR/qPw59BtPDcRSGb37j/YYTOLiZvhsdkm/krdQKdgimrCcONXrPD0m3lvCM+tb8ZiMppJ8uJCrf4a1pe2w7yR9kxcDlqX/4AuvIZw3qXlOa1xhbUihj77EhPoEvy+nIVRXKJeRFetenRi1TD4p5Q3YjE5b4kwbkEz5a8bRTFDBH9xiVay3Gc+W2/Z3Wy5/WdDfzuqUi0WPSA5uINOaCB9+V81VE2QmiMIm0=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_DM5PR00MB0293BA8987B7A49DA5C9BEE7F54E0DM5PR00MB0293namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 971f0935-ea0c-461a-770b-08d5de038e08
X-MS-Exchange-CrossTenant-originalarrivaltime: 29 Jun 2018 21:01:49.4461 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR00MB0309
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/eD3aIJDw3KkmfPUJpk7PmqIxl6U>
Subject: [Ace] Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) spec addressing WGLC comments
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 29 Jun 2018 21:02:04 -0000
A new draft of the Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs) specification has been published that addresses the Working Group Last Call (WGLC) comments received. Changes were: * Addressed review comments by Jim Schaad, see https://www.ietf.org/mail-archive/web/ace/current/msg02798.html * Removed unnecessary sentence in the introduction regarding the use any strings that could be case-sensitive. * Clarified the terms Presenter and Recipient. * Clarified text about the confirmation claim. Thanks to Samuel Erdtman and Hannes Tschofenig for contributing to the editing for this version and to Jim Schaad and Roman Danyliw for their review comments. The specification is available at: * https://tools.ietf.org/html/draft-ietf-ace-cwt-proof-of-possession-03 An HTML-formatted version is also available at: * http://self-issued.info/docs/draft-ietf-ace-cwt-proof-of-possession-03.html -- Mike P.S. This notice was also posted at http://self-issued.info/?p=1885 and as @selfissued<https://twitter.com/selfissued>.