[art] Reference Implementation for new HTTP auths?

Yutaka OIWA <y.oiwa@aist.go.jp> Sat, 16 November 2019 09:37 UTC

Return-Path: <y.oiwa@aist.go.jp>
X-Original-To: art@ietfa.amsl.com
Delivered-To: art@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B212412008B for <art@ietfa.amsl.com>; Sat, 16 Nov 2019 01:37:05 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=aist.go.jp
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cfjACmUdWoO2 for <art@ietfa.amsl.com>; Sat, 16 Nov 2019 01:37:02 -0800 (PST)
Received: from JPN01-OS2-obe.outbound.protection.outlook.com (mail-eopbgr1410042.outbound.protection.outlook.com [40.107.141.42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B146A120059 for <art@ietf.org>; Sat, 16 Nov 2019 01:37:02 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Cl4rziJh+XwKQUd+5zKqlrpq7S9ws8k1RkLH6WoW6jJD1LuFAtezjmVRrFlcU78gHOkN2d061j6qrwSF0Tya4BPc4+d4gxX8Lr1ZI+F74AlJ5Eb90XoPZJRux/KZ71suTVU9LAKQYjrYc+8jeFBtn3DGKMjwHOKv+51h8GIaWjfTE5ieZZhjuMnI9obWS1xY/oqzN/uoypNu4bfZEcIint/7tlr9qroMHXoB95D235MdRDUHzxTNaIsMQjPEJE/wcPC1pjZl9isVUMgXB6I0Fnl0l3qbLHp7bt1aZ3v5lnHGAjTIu1dcAsgI5RKwQJtfaF5nhWHEturUIn16paUk7Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+CxC+HOpatVT/8ddNebaE+fbEVX9inI/oo9CzbJmq+Y=; b=czUagO5MwH+KVX7kuuAcZ3bJPPuGmq4tdPhVxgZtI/Pi2+HzLZSfCKfORK4AoP2AcldfTe0mQb5djdLETbSpnHETr9g7sBH+iV2EtWLhn5xoXP7r5RBMnnmYuPBHK65scDWhHcW5dWNvYEtzDCWeIQaQl8UgnDKv43WA5BuIUkLJQ9X2bTKtEvazDFAySuMfvgu9Lel8GBNDHa7Il1rBy/+K8VUtso8PJSIlX9oItQGjNrywyUx/X5NHMxr4GfgDmVCxX7BUT4EIaI+KlMhUBvpCcjyEl4Y1QQkJ5g/+X+z5MSRJupV9Tv9tOg+pXCdUzNhEZVH3Y/HuIwWDToKA6Q==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=aist.go.jp; dmarc=pass action=none header.from=aist.go.jp; dkim=pass header.d=aist.go.jp; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aist.go.jp; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+CxC+HOpatVT/8ddNebaE+fbEVX9inI/oo9CzbJmq+Y=; b=bTLU7Equ1BT0WrjCm+BpHMxu1df3sfC+i3+2HVEEJC+vl/hZ3UZ1zeVfVJk4y8IgsLO3mEy+SR93jNJ8qVyBiGGNV/MYu5J2OIx3PoIxhV5ns2OAPJPY3LZlV5NuxsvrUzXCHpzUJ3OykSQ2Dr6tI5Id/JfFGiWdV3iqyUrgzq4=
Received: from OSBPR01MB1815.jpnprd01.prod.outlook.com (52.134.226.138) by OSBPR01MB2663.jpnprd01.prod.outlook.com (52.134.253.143) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2451.23; Sat, 16 Nov 2019 09:37:00 +0000
Received: from OSBPR01MB1815.jpnprd01.prod.outlook.com ([fe80::85b6:608:39a:f84a]) by OSBPR01MB1815.jpnprd01.prod.outlook.com ([fe80::85b6:608:39a:f84a%7]) with mapi id 15.20.2451.029; Sat, 16 Nov 2019 09:37:00 +0000
From: Yutaka OIWA <y.oiwa@aist.go.jp>
To: "http-auth@ietf.org" <http-auth@ietf.org>
CC: "art@ietf.org" <art@ietf.org>
Thread-Topic: Reference Implementation for new HTTP auths?
Thread-Index: AdWcYPPgt4JYgt4SSomuGwj9pYkR6A==
Date: Sat, 16 Nov 2019 09:37:00 +0000
Message-ID: <OSBPR01MB18151B01C9383A3AE4CA6CBEA0730@OSBPR01MB1815.jpnprd01.prod.outlook.com>
Accept-Language: ja-JP, en-US
Content-Language: ja-JP
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=y.oiwa@aist.go.jp;
x-originating-ip: [2001:67c:1232:144:1d6a:fd56:990e:2812]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 320460b5-e57b-491e-d1fa-08d76a7887c6
x-ms-traffictypediagnostic: OSBPR01MB2663:
x-microsoft-antispam-prvs: <OSBPR01MB2663CC5C03AB6F521DECEAEDA0730@OSBPR01MB2663.jpnprd01.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:3968;
x-forefront-prvs: 02234DBFF6
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(136003)(366004)(376002)(396003)(39850400004)(346002)(189003)(199004)(33656002)(86362001)(66446008)(52536014)(66556008)(66476007)(102836004)(2906002)(6506007)(76116006)(14444005)(71200400001)(66946007)(71190400001)(6916009)(305945005)(8936002)(74316002)(64756008)(2501003)(5660300002)(486006)(256004)(6116002)(186003)(476003)(7736002)(99286004)(450100002)(2351001)(46003)(8676002)(5640700003)(25786009)(6436002)(81156014)(81166006)(413944005)(4326008)(478600001)(966005)(7696005)(55016002)(9686003)(6306002)(316002)(14454004); DIR:OUT; SFP:1101; SCL:1; SRVR:OSBPR01MB2663; H:OSBPR01MB1815.jpnprd01.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:3; A:1;
received-spf: None (protection.outlook.com: aist.go.jp does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 2OpWSPSLjk8fzm+qLfLF/q11xvOw/NeKQ75gGMb8il42edJf8/zgGRQ/raG+tOCuCKh/KbxYLFwMLp7uR79Hj09yR9LHVyLRUEnJWU8nJSJAmMv+/6Abf3DcKTTE+L4WRojNg+Lh/Z9nXokbnsXbSFbNIKwUuZ1WNVFtW7aR9TMm0L5StcXm/qG/+xEvi0h1hfxycZd5wKAp88LsLBtQEQD2pI7BIB3wR31unvaJdBvTE0c2X2U0Ci9J6lKnVl4YzeL4i+b+4p79Ct9+vikHCGACMkIHJyw1InqBCQ8RKEc/ykyspSDQddULotCBYi0d2qmgaSx5J8DfGL9+mg9MtdtLCepAlwnKlgXZkRG4xH8pyZzezG9pEO9T+vWvZMmB3MamQQlHyIkN29Xi7sqecmFQbxoq5iagNGtGRTbQxgMhOBve/7OPvLaNuIbbMGUu
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: aist.go.jp
X-MS-Exchange-CrossTenant-Network-Message-Id: 320460b5-e57b-491e-d1fa-08d76a7887c6
X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Nov 2019 09:37:00.2238 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 18a7fec8-652f-409b-8369-272d9ce80620
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: hMLTZyAK4UQlv+09kd4XKhYikr5b7ZNPRgb9j/BNVYnTqNgjPtFk4WrKa3WzoxouBZllovbROp2hXYddfefYnw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: OSBPR01MB2663
Archived-At: <https://mailarchive.ietf.org/arch/msg/art/i38vYIBH5We1Stev53X3li6fCaA>
Subject: [art] Reference Implementation for new HTTP auths?
X-BeenThere: art@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications and Real-Time Area Discussion <art.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/art>, <mailto:art-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/art/>
List-Post: <mailto:art@ietf.org>
List-Help: <mailto:art-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/art>, <mailto:art-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 16 Nov 2019 09:37:06 -0000

Dear HTTP-AUTH friends,

Do you know is there a good reference implementation or test suites for
revised Basic/Digest authentication (RFC 7617/7616) and/or i18n (RFC 5987)?

We recently implemented a set of library code for these new standards and 
We're looking forward to checking interoperability.
We checked for some limited interoperability with curl or other C-based
implementations using SHA-1, but for i18n or SHA-2 algorithms, 
we were only possible to check with our own server/client implementation pair.

Our code is available in https://github.com/yoiwa/python-httpauth-lib ,
including server/client pair for almost-full-spec RFC 7616 written in Python 3.
These codes are initially implemented for introducing stronger authentication
to our RESTCONF-based applications.

Information and/or suggestions are welcome.

Cheers,

Yutaka

-- 
Yutaka OIWA, Ph.D.          Leader, Software Quality Assurance Research Team
                                     Cyber Physical Security Research Center
     National Institute of Advanced Industrial Science and Technology (AIST)
                       Mail addresses: <y.oiwa@aist.go.jp>, <yutaka@oiwa.jp>
OpenPGP: id[440546B5] fp[7C9F 723A 7559 3246 229D  3139 8677 9BD2 4405 46B5]