Re: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-01.txt
Christoph Neumann <Christoph.Neumann@broadpeak.tv> Wed, 07 December 2022 10:09 UTC
Return-Path: <Christoph.Neumann@broadpeak.tv>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7F56FC15257E for <cdni@ietfa.amsl.com>; Wed, 7 Dec 2022 02:09:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.886
X-Spam-Level:
X-Spam-Status: No, score=-1.886 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=broadpeakshare.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2YAniH1GGWkn for <cdni@ietfa.amsl.com>; Wed, 7 Dec 2022 02:09:34 -0800 (PST)
Received: from EUR05-VI1-obe.outbound.protection.outlook.com (mail-vi1eur05on20708.outbound.protection.outlook.com [IPv6:2a01:111:f400:7d00::708]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2911BC14CF1E for <cdni@ietf.org>; Wed, 7 Dec 2022 02:09:33 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=L4u2qF9VSM88TSBrw5IbE3vOql2PoGqmKU4bSIgu/sA/3n9/SGYp/3K8y1nCU/15K6Vz11nkeS+PR56SfICdYyx/DvuDWEDWTHjNjXhzG/gvYkRYtrlGw4x7u42QYnEQNZZBB5OolPuEqtagcpgr/TlXOd/5d5Ufc5oqvxF/qLw1ayO9l0boAK1vDee8dZDKX8+F4Rja9QuB1p1fkQ0bShYgGX1zx/jO6DsM8YBUR6yIWvxm44DLc4NO8Gp5ZA1QqsApTUgQ7z0HN8G5RDeaSYima86ueJ6uSSEYQTmxgy5L6qm3DXEhIbaKQNF2fRLNCu99dg8NiiytklW8RC+6Pg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=deRIWc9fA2GFl9DgfdKDrj5YAbQqND15Da+eg2SmUnY=; b=hbp0tLY2XY8XLOvij9Ym3fDQi5ZmYlKIhncZ8nWD1OUTibgOVjb21KX1po8yZfD79hHjVlkD5sjeDu9Q4zHbo3Irg1sT83slDdv1rb1MA0F60Z/EIUZq/yRYG+2+iXyo2cxxT5z3/GfX645jmAZgfBfGRkDJELOBt3AyAMHwwjK998PPLjkG+k+j5EURC3IjJdwfUf0gjZt7YpTdbdX7907hZEli2D3Yk98B/AHkVmwCBauVtSNlOvEMyMJ9sRv7uEFx2mBIEjzAGo5Q1zv7TfgdnvkZ3PjegVfIsL7f04JggWINh01WmYngslOzxQK6qyXGBMLthoKtUU5DGrpsVw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=broadpeak.tv; dmarc=pass action=none header.from=broadpeak.tv; dkim=pass header.d=broadpeak.tv; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=broadpeakshare.onmicrosoft.com; s=selector2-broadpeakshare-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=deRIWc9fA2GFl9DgfdKDrj5YAbQqND15Da+eg2SmUnY=; b=pR6Azd3gp0wWIXHxV0aIuDwm072mE6EZR9s0zqYQur57gIElaDAgCLX0LfE6JC+JbYRKzt8Wn4H7ObEYPh3t5Xw4ItzSkYIcwc0Ae0WsoNsrE3GAgFiCRordhT+FBZ6gIOYLTHjZ4IVIK4qic7hzfkG5r5nk89gIkP4KL4MDM5c=
Received: from AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:1cd::13) by AM7PR10MB3509.EURPRD10.PROD.OUTLOOK.COM (2603:10a6:20b:140::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5880.13; Wed, 7 Dec 2022 10:09:28 +0000
Received: from AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM ([fe80::b0b9:b022:6012:7b06]) by AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM ([fe80::b0b9:b022:6012:7b06%3]) with mapi id 15.20.5880.013; Wed, 7 Dec 2022 10:09:28 +0000
From: Christoph Neumann <Christoph.Neumann@broadpeak.tv>
To: "cdni@ietf.org" <cdni@ietf.org>
Thread-Topic: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-01.txt
Thread-Index: AQHZCiOYgwWAxQWux0+PqcGOxMum6q5iMwaQ
Date: Wed, 07 Dec 2022 10:09:28 +0000
Message-ID: <AM9PR10MB415227BE0986B0D6F3687CDB8F1A9@AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM>
References: <167040749143.31859.12653893295760313918@ietfa.amsl.com>
In-Reply-To: <167040749143.31859.12653893295760313918@ietfa.amsl.com>
Accept-Language: en-US, fr-FR
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=broadpeak.tv;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: AM9PR10MB4152:EE_|AM7PR10MB3509:EE_
x-ms-office365-filtering-correlation-id: 4da00406-af78-4aa8-1cd3-08dad83b205f
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230022)(4636009)(136003)(39840400004)(376002)(346002)(396003)(366004)(451199015)(38070700005)(55016003)(15974865002)(86362001)(53546011)(6506007)(33656002)(26005)(45080400002)(478600001)(7696005)(966005)(66946007)(64756008)(9686003)(71200400001)(8676002)(5660300002)(8936002)(41300700001)(52536014)(76116006)(66556008)(2906002)(6916009)(316002)(66446008)(66476007)(83380400001)(38100700002)(122000001)(186003)(66574015)(66899015)(18886075002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: broadpeak.tv
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: AM9PR10MB4152.EURPRD10.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-Network-Message-Id: 4da00406-af78-4aa8-1cd3-08dad83b205f
X-MS-Exchange-CrossTenant-originalarrivaltime: 07 Dec 2022 10:09:28.3652 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 0ebe44ea-c9c9-438d-a040-7e699f358ed4
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: wk/yeHLMS+PdPvuhmLyFxTZwsG/fB3Fc3UcIT6YThDUk6rPT4bDunBt7hvXln5jua4z0T/xvyPfYK3G7uQaiiJo9bOF1fZ75R+czpstD+pU=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM7PR10MB3509
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/CGsf2wsicdfqyGhRRHF0nHq8rzQ>
Subject: Re: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-01.txt
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 07 Dec 2022 10:09:38 -0000
Hi all, I uploaded a new version of the draft related to delegated credentials. It contains the update proposed by Broadpeak during the last meeting. The FCI is now used to announce the maximum number of delegated credentials supported and not used anymore for the renewal/expiry mechanism. It is up to the uCDN to keep track when the provided delegated credentials expire and push new one using the MI.DelegatedCredentials object. Christoph -----Original Message----- From: CDNi <cdni-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org Sent: mercredi 7 décembre 2022 11:05 To: i-d-announce@ietf.org Cc: cdni@ietf.org Subject: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-01.txt A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Content Delivery Networks Interconnection WG of the IETF. Title : CDNI Metadata for Delegated Credentials Authors : Frederic Fieau Emile Stephan Guillaume Bichot Christoph Neumann Filename : draft-ietf-cdni-https-delegation-subcerts-01.txt Pages : 12 Date : 2022-12-07 Abstract: The delivery of content over HTTPS involving multiple CDNs raises credential management issues. This document defines metadata in CDNI Control and Metadata interface to setup HTTPS delegation using Delegated Credentials from an Upstream CDN (uCDN) to a Downstream CDN (dCDN). The IETF datatracker status page for this draft is: https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-cdni-https-delegation-subcerts%2F&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C1348782f01c8452aecbe08dad83ab930%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638060043976536789%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=47tw%2BFpAlYbQ3kZCu%2Fmjm3JBqQsx9uyYNIRso46MLOU%3D&reserved=0 There is also an htmlized version available at: https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-cdni-https-delegation-subcerts-01&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C1348782f01c8452aecbe08dad83ab930%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638060043976693026%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=f0%2FYDJuPMhqMXc%2FDPMvxIfJQU7dRn0aOXNLKKRvtZJo%3D&reserved=0 A diff from the previous version is available at: https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fauthor-tools.ietf.org%2Fiddiff%3Furl2%3Ddraft-ietf-cdni-https-delegation-subcerts-01&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C1348782f01c8452aecbe08dad83ab930%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638060043976693026%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=9wny0qTW66G3mcigX91G92uCSuVMFV3%2BQvvFfcAH69A%3D&reserved=0 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts _______________________________________________ CDNi mailing list CDNi@ietf.org https://fra01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fcdni&data=05%7C01%7Cchristoph.neumann%40broadpeak.tv%7C1348782f01c8452aecbe08dad83ab930%7C0ebe44eac9c9438da0407e699f358ed4%7C0%7C0%7C638060043976693026%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=cMJkAL4JSmxhV%2BxwjkWFOp08DOfmcHLlTCi8Vz4Hwtc%3D&reserved=0 Broadpeak, S.A. Registered offices at 15 rue Claude Chappe, Zone des Champs Blancs, 35510 Cesson-Sévigné, France | Rennes Trade Register: 524 473 063 This e-mail and its attachments contain confidential information from Broadpeak S.A. and/or its affiliates (Broadpeak), which is intended only for the person to whom it is addressed. If you are not the intended recipient of this email, please notify immediately the sender by phone or email and delete it. Any use of the information contained herein in any way, including, but not limited to, total or partial disclosure, reproduction, or dissemination, by persons other than the intended recipient(s) is prohibited, unless expressly authorized by Broadpeak. Broadpeak, S.A. and its affiliates respect privacy laws, and is committed to the protection of personal data. Emails and/or attachments thereof exchanged between us may include your personal data which may be processed by Broadpeak and/or its affiliates according to applicable privacy laws & regulations. In compliance with Regulation (EU) 2016/679 (GDPR) and applicable implementation in local legislations, you can exercise at any time your rights of access, rectification or erasure of your personal data, as well as your rights to restriction, portability or object to the processing. For such purpose, or to know more about how Broadpeak processes your personal data, you may contact Broadpeak by email privacy@broadpeak.tv. Local authority : Commission Nationale Informatique et Libertés (CNIL): 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07 or www.cnil.fr
- [CDNi] I-D Action: draft-ietf-cdni-https-delegati… internet-drafts
- Re: [CDNi] I-D Action: draft-ietf-cdni-https-dele… Christoph Neumann