IETF Logo Mail Archive

Re: [arch-d] Proposed IAB program on Wholistic Human-Oriented Discussions on Identity Systems (WHODIS)

tom petch <ietfc@btconnect.com> Thu, 22 June 2023 12:19 UTC

Return-Path: <ietfc@btconnect.com>
X-Original-To: architecture-discuss@ietfa.amsl.com
Delivered-To: architecture-discuss@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 178E4C151545 for <architecture-discuss@ietfa.amsl.com>; Thu, 22 Jun 2023 05:19:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id J5-dXsX6ppWX for <architecture-discuss@ietfa.amsl.com>; Thu, 22 Jun 2023 05:19:52 -0700 (PDT)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on2090.outbound.protection.outlook.com [40.107.21.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4BC6AC137387 for <architecture-discuss@ietf.org>; Thu, 22 Jun 2023 05:19:52 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SidwbZXTXKVfYOI/hu5qIcG0F4tzrW26i+JlQqIvaTS7DWBYe/3101QpcqTH4BMoIRm4g1Y547/y1hqYqD8jmNA9Uue/bBJQYiZIsmaCt5po7JncNWYSZvoDo0aOhsBzUXRSrkQJPTbumoJ7mor2kcBCoTmfiIP0+Nx9eGwfTl/4hLSyd3Cru4vnyuJpMWmHO0fjq8NjwsO1Lrq2F04NhHL72op9fZ/++gf/h5PX7Ac0gEEgd4008TO9dYFBHToNZ+KVbQOvVCEgO+plBh4YzP5RTvhBTN20jRvWzlDTLTqDv0fLPS1TAzqEQUPPdZnqrvn0o+YclzB+wWxa9iUxAA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=SaYKjmOEtCLAx4+GkBdB5mlPzeRuTXo0jr5o3N/Fybo=; b=eVdwrm9m38ySfCWCOhB4o5Y7HX/GD6ZlyPiNOwgZtF1UTuhd0ovTORLPP+HaZ9X1ncOiMcJcPLjDaXqRVs1m/q9pBrLeCGm0S3Vt2pUhtsGMhLa5GnMSrbChe3fQA4D1Xf//ccw2W2EpOfAoy/0lF9jSAgan6583XXDJQKurDd+MfnxmHUppkR4Pw2q8upG5380AOVn1aIDjyu9QzcP3lxm0KJtr1MtpIi5jfu7Q5bvJULxLXp+NasPSzpdl1TU8ZGOXDrdYO+CX32wGjdJHevLRNteyZZcgMxwK3reUCsU+LwPoQ1qMnGBYSsjn3aj7m/n+H3OBKKtN63ALyHp8xg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SaYKjmOEtCLAx4+GkBdB5mlPzeRuTXo0jr5o3N/Fybo=; b=CQ1Om4/lfzHKG8f770F0bz/mdlydUX8cNK5pqWUdECenaPTt0haKE/ITxodc7r0N/umL27qch6wZUSvhA0tDPkJxrtUXdSILmminpJeCNx/IvGJJftY/t77EOZz7Y4dwYdR0CBY92Xk1tuo3kjtpnDMEjfz+y3j4zDRZeuwNlYE=
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com (2603:10a6:20b:134::11) by DU2PR07MB8177.eurprd07.prod.outlook.com (2603:10a6:10:272::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6521.24; Thu, 22 Jun 2023 12:19:49 +0000
Received: from AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::a928:74cd:caef:f589]) by AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::a928:74cd:caef:f589%7]) with mapi id 15.20.6521.024; Thu, 22 Jun 2023 12:19:49 +0000
From: tom petch <ietfc@btconnect.com>
To: Toerless Eckert <tte@cs.fau.de>, Martin Thomson <mt@lowentropy.net>
CC: "architecture-discuss@ietf.org" <architecture-discuss@ietf.org>
Thread-Topic: [arch-d] Proposed IAB program on Wholistic Human-Oriented Discussions on Identity Systems (WHODIS)
Thread-Index: AQHZpGLCKJLLDJu2l0OX7YiXJegWlK+V6rGAgAAxZoCAAKKGBg==
Date: Thu, 22 Jun 2023 12:19:49 +0000
Message-ID: <AM7PR07MB6248D3B6A282C513F9FDD093A022A@AM7PR07MB6248.eurprd07.prod.outlook.com>
References: <17514E09-F39D-425C-970C-BC14C70F15B9@heapingbits.net> <d65583b8-7706-ddbd-1430-ba353e05bfee@lear.ch> <0439cbdf-fe23-4ffd-8b43-3d1494d7eb73@betaapp.fastmail.com> <ZJOz0aPntajkOtPP@faui48e.informatik.uni-erlangen.de>
In-Reply-To: <ZJOz0aPntajkOtPP@faui48e.informatik.uni-erlangen.de>
Accept-Language: en-GB, en-US
Content-Language: en-GB
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=btconnect.com;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM7PR07MB6248:EE_|DU2PR07MB8177:EE_
x-ms-office365-filtering-correlation-id: 22cbfbc9-4c4a-4f85-e956-08db731af96e
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR07MB6248.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230028)(396003)(376002)(39860400002)(366004)(346002)(136003)(451199021)(5660300002)(52536014)(966005)(2906002)(6506007)(53546011)(26005)(8936002)(41300700001)(8676002)(9686003)(478600001)(38100700002)(122000001)(82960400001)(71200400001)(7696005)(55016003)(66446008)(64756008)(316002)(76116006)(66946007)(4326008)(86362001)(66476007)(66556008)(91956017)(186003)(38070700005)(110136005)(33656002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: btconnect.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM7PR07MB6248.eurprd07.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 22cbfbc9-4c4a-4f85-e956-08db731af96e
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Jun 2023 12:19:49.4068 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: cf8853ed-96e5-465b-9185-806bfe185e30
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: wtmxzd52mTekQ3+1HWzwOyir/gZ9LJsdSmh3DpZg/JEN3pg6PLEMEl6g+KnAiOrvG3HV1+DTfucfH9J6dAvqkA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DU2PR07MB8177
Archived-At: <https://mailarchive.ietf.org/arch/msg/architecture-discuss/-6CNYEk3QEWyfT_z840f83Pgem4>
Subject: Re: [arch-d] Proposed IAB program on Wholistic Human-Oriented Discussions on Identity Systems (WHODIS)
X-BeenThere: architecture-discuss@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: open discussion forum for long/wide-range architectural issues <architecture-discuss.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/architecture-discuss/>
List-Post: <mailto:architecture-discuss@ietf.org>
List-Help: <mailto:architecture-discuss-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/architecture-discuss>, <mailto:architecture-discuss-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Jun 2023 12:19:56 -0000

From: Architecture-discuss <architecture-discuss-bounces@ietf.org> on behalf of Toerless Eckert <tte@cs.fau.de>
Sent: 22 June 2023 03:37

Wholistic and Human-Oriented are somewhat imprecise terms, maybe explaining what
they're supposed to mean in this context would help.

<tp>
Holistic I am well familiar with but Whol... sounds like an abomination.

Tom Petch



Given how Device Identities, both insecure and secure (through public keys, certificates
or othrer means) are a broadly accepted term in the industry, and given how the mayority of
such devices are (luckily) not tied to individual humans (think light bulbs in street lights with IDevID),
it would certinly be very important to understand how "wholistic" this discussion is
meant to be. "Human-Oriented" can easily be interpreted as a contradiction to "Wholistic".

Cheers
    toerless

On Thu, Jun 22, 2023 at 09:40:17AM +1000, Martin Thomson wrote:
> I think that I disagree with Eliot with respect to the device thing.
>
> >From my perspective, devices are relevant only to the extent that they are agents of or proxies for people.
>
> There are contexts in which this is not the case, but the considerations are very different in those cases.
>
> You should include reference to how government-provided identity systems integrate with technology (e.g., Aadhar).  Mobile drivers licenses are an emerging trend that needs care and consideration, see https://www.ul.com/resources/new-isoiec-standard-electronic-credentials
>
> Colleagues at Mozilla have done a lot of work in this space; we might be interested in participation.
>
> (I also disagree with Eliot; the name is not just fine, but a good choice.  A great pairing for OHAI, which is a useful tool in this space, as it happens.)
>
> On Thu, Jun 22, 2023, at 03:06, Eliot Lear wrote:
> > I think it sounds interesting, and I'm interested!  Obviously this is a
> > very active area, and has been for a long time, so your proposed
> > approach sounds pretty good.  It's good that IAB is giving it some focus.
> >
> > One nit:
> >
> > I do think you are just a bit too cutsy with the name, since you
> > specifically call out device identity, as you should.  I would suggest
> > that the name itself might mislead people to think you're only talking
> > about user identity. Perhaps Big Fat Discussions on Identity Systems
> > (BiFDIS)?  ;-)
> >
> > A meta-comment:
> >
> > I like the idea of reviewing identity systems, but often times those
> > systems are tied necessarily to specific functions, as OAUTH
> > demonstrates.  I would suggest that the program not be too rigid about
> > its charter in this regard.  Some underlying functionality may help
> > elaborate the need for different sorts of systems.
> >
> > Eliot
> >
> > On 21.06.23 08:01, Christopher Wood wrote:
> >> Hi folks,
> >>
> >> The IAB proposes to create a new program that focuses on standardized identity systems used in practice. At a high level, there are three primary goals:
> >>
> >> 1. Survey the identity standardization landscape (inside and outside of the IETF);
> >> 2. Distill practical use cases for identity systems; and
> >> 3. Identify gaps and opportunities for technical work that can help address important use cases.
> >>
> >> A more complete description of the proposed program can be found at [1]. For those interested, we intend to allocate some time during the IAB Open meeting at IETF 117 to discuss this topic.
> >>
> >> Please let us know what you think!
> >>
> >> Best,
> >> Chris, for the IAB
> >>
> >> [1] https://github.com/intarchboard/proposed-program-whodis/blob/main/README.md
> >> _______________________________________________
> >> Architecture-discuss mailing list
> >> Architecture-discuss@ietf.org
> >> https://www.ietf.org/mailman/listinfo/architecture-discuss
> >>
> >
> > _______________________________________________
> > Architecture-discuss mailing list
> > Architecture-discuss@ietf.org
> > https://www.ietf.org/mailman/listinfo/architecture-discuss
>
> _______________________________________________
> Architecture-discuss mailing list
> Architecture-discuss@ietf.org
> https://www.ietf.org/mailman/listinfo/architecture-discuss

--
---
tte@cs.fau.de

_______________________________________________
Architecture-discuss mailing list
Architecture-discuss@ietf.org
https://www.ietf.org/mailman/listinfo/architecture-discuss

v2.23.0 | Report a Bug | By Email