IETF Logo Mail Archive

Re: [CDNi] URI Signing Signed Token Chaining refactor

Ray van Brandenburg <ray@tiledmedia.com> Wed, 19 July 2017 14:14 UTC

Return-Path: <ray@tiledmedia.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6FF9F131C51 for <cdni@ietfa.amsl.com>; Wed, 19 Jul 2017 07:14:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.921
X-Spam-Level:
X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=tiledmedia.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BKgw4VBe300i for <cdni@ietfa.amsl.com>; Wed, 19 Jul 2017 07:14:25 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0094.outbound.protection.outlook.com [104.47.0.94]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9C015131891 for <cdni@ietf.org>; Wed, 19 Jul 2017 07:14:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=tiledmedia.onmicrosoft.com; s=selector1-tiledmedia-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=GTLEj1X44HJx+PYRRKrehXJo8h/Em7wq7RK2c+edPUs=; b=bcR2L6rMeya63Gu4/xsVFchnEtvx5GECbd8B8jjvct0IlbipbhznkswlOpFBJUhRtg1jqabXSHnh0r7vZ78De+2aDFgVrh3sTV5DIf973wlivP79n9tT88yZmNhzPVehUpJjzi1hSU4wRqWNtjuT6W43X/cxUFUhu8fq3n+g5qo=
Received: from AM5PR0701MB3044.eurprd07.prod.outlook.com (10.168.157.13) by AM5PR0701MB1731.eurprd07.prod.outlook.com (10.167.215.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1282.4; Wed, 19 Jul 2017 14:14:21 +0000
Received: from AM5PR0701MB3044.eurprd07.prod.outlook.com ([fe80::d46:d591:f1c0:55d5]) by AM5PR0701MB3044.eurprd07.prod.outlook.com ([fe80::d46:d591:f1c0:55d5%18]) with mapi id 15.01.1282.007; Wed, 19 Jul 2017 14:14:21 +0000
From: Ray van Brandenburg <ray@tiledmedia.com>
To: "Kevin J. Ma" <kevin.j.ma.ietf@gmail.com>
CC: Phil Sorber <sorber@apache.org>, "cdni@ietf.org" <cdni@ietf.org>, Matthew Miller <linuxwolf@outer-planes.net>
Thread-Topic: [CDNi] URI Signing Signed Token Chaining refactor
Thread-Index: AQHTAJUCafvhrEh6vkqITYzFagrYeaJbKxaAgAAGYYA=
Date: Wed, 19 Jul 2017 14:14:21 +0000
Message-ID: <A2FBEA85-BF95-44A4-8E11-97D39C8DCF76@tiledmedia.com>
References: <CABF6JR3wEfUoCSJ29xQ3n56Ah1EqPnCvkZ4x6W5_cTW8V35Hwg@mail.gmail.com> <7CEB7DDD-7C33-4FD9-93BC-75E5E78AB3C2@gmail.com>
In-Reply-To: <7CEB7DDD-7C33-4FD9-93BC-75E5E78AB3C2@gmail.com>
Accept-Language: en-US, nl-NL
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=tiledmedia.com;
x-originating-ip: [89.255.38.58]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM5PR0701MB1731; 7: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
x-ms-office365-filtering-correlation-id: 78ba4dff-cae0-447a-bf7f-08d4ceb0738d
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(300000503095)(300135400095)(2017052603031)(201703131423075)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:AM5PR0701MB1731;
x-ms-traffictypediagnostic: AM5PR0701MB1731:
x-exchange-antispam-report-test: UriScan:(236129657087228);
x-microsoft-antispam-prvs: <AM5PR0701MB1731CA7C54065A52A6E3C04CCBA60@AM5PR0701MB1731.eurprd07.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(8121501046)(5005006)(2017060910075)(10201501046)(100000703101)(100105400095)(3002001)(93006095)(93001095)(6041248)(20161123564025)(20161123555025)(20161123560025)(20161123562025)(20161123558100)(201703131423075)(201702281528075)(201703061421075)(201703061406153)(2016111802025)(6072148)(6043046)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM5PR0701MB1731; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM5PR0701MB1731;
x-forefront-prvs: 0373D94D15
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(39450400003)(39400400002)(39410400002)(39830400002)(24454002)(377454003)(81166006)(8936002)(5660300001)(2900100001)(229853002)(8676002)(6506006)(102836003)(305945005)(189998001)(6916009)(5250100002)(2950100002)(7736002)(66066001)(3846002)(6116002)(6486002)(38730400002)(6512007)(54356999)(86362001)(6246003)(53936002)(6306002)(110136004)(54906002)(99286003)(50986999)(76176999)(25786009)(478600001)(39060400002)(4326008)(2906002)(3660700001)(3280700002)(14454004)(83716003)(82746002)(6436002)(5003630100001)(33656002)(36756003)(966005)(53546010); DIR:OUT; SFP:1102; SCL:1; SRVR:AM5PR0701MB1731; H:AM5PR0701MB3044.eurprd07.prod.outlook.com; FPR:; SPF:None; MLV:ovrnspm; PTR:InfoNoRecords; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <D05AE5158D954646A1B47DABD25BFA57@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: tiledmedia.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Jul 2017 14:14:21.3677 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0702b858-b758-4fb0-9e66-447a46ee0509
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM5PR0701MB1731
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/9TkumXyPkhglnl0acyIigOwZFr8>
Subject: Re: [CDNi] URI Signing Signed Token Chaining refactor
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 19 Jul 2017 14:14:27 -0000

Yes, good point!

Although I can’t think of another use case from the top of my head, I don’t see a good reason to limit it to HAS either.

Ray


> On 19 Jul 2017, at 15:51, Kevin J. Ma <kevin.j.ma.ietf@gmail.com> wrote:
> 
> (as an individual) I agree with making the section more generic and citing HAS as a use case for token chaining.
> 
> Sent from my iPhone
> 
>> On Jul 19, 2017, at 9:43 AM, Phil Sorber <sorber@apache.org> wrote:
>> 
>> Since we have added the HAS content I have been thinking about how specific we have made it. Perhaps just specifying a method for token chaining, and then citing HAS as a use case makes more sense. I wanted to get some opinions on it before I make those changes. It shouldn't be that big of a change, just taking the HAS specific stuff and putting it in a lower "Use Case" sub-section at the bottom and leaving everything else as a "Signed Token Chaining" section.
>> 
>> Thoughts?
>> 
>> Thanks.
>> _______________________________________________
>> CDNi mailing list
>> CDNi@ietf.org
>> https://www.ietf.org/mailman/listinfo/cdni

v2.23.0 | Report a Bug | By Email