Re: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-05.txt
Kevin Ma <kevin.j.ma.ietf@gmail.com> Tue, 02 January 2024 03:49 UTC
Return-Path: <kevin.j.ma.ietf@gmail.com>
X-Original-To: cdni@ietfa.amsl.com
Delivered-To: cdni@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4192CC14F5FA; Mon, 1 Jan 2024 19:49:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.104
X-Spam-Level:
X-Spam-Status: No, score=-7.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5EAg-jJXJBXt; Mon, 1 Jan 2024 19:49:52 -0800 (PST)
Received: from mail-ed1-x52e.google.com (mail-ed1-x52e.google.com [IPv6:2a00:1450:4864:20::52e]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8B321C14F5F6; Mon, 1 Jan 2024 19:49:52 -0800 (PST)
Received: by mail-ed1-x52e.google.com with SMTP id 4fb4d7f45d1cf-55590da560dso3481140a12.0; Mon, 01 Jan 2024 19:49:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1704167391; x=1704772191; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=5/S1m2Ia1+nHK5hN4VeJvYCbko3kjDM95cLAYWG9DW8=; b=jcJA6eNRmr+QXGf+S02P68zrFD19EtdBbAvvmdHpH3CWm35f+3REHHH0ejaNziyKH0 Wv5+flg5fto3Y3KCvpsbBTpVOqRjRgQGTyUMmDby3yVMFm+FcKuly1+shVCZ9ohMfjm0 EmTALy3q3H287/yxBk49Z7buoV5Y8Y0Lx4z27Sf8aldMndk0LhR1YHhqpw9n4OhMXMkk XEjaHCjHSFRtwoVvP4yeu4t7bmTaiBNfuAKSUpGemmCzUQZshXs1LPNU7Tv58SBvJ7V3 gAxQNob+hFOZY46VaJJv5+Q0LUV88pzOJAAJgOYBzPH5eBq5UF+4dxhJ5XLv4dVHQ+hp Wx6g==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1704167391; x=1704772191; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=5/S1m2Ia1+nHK5hN4VeJvYCbko3kjDM95cLAYWG9DW8=; b=Arqc7QQTDxFYNszx8w3owsf3svqQ+x3+pvKIB/pC36cSMxpFTuoK88bukurIzv2JXg Sm2SXT+rNaBEX8NVqywCBCYEqxb6byaG08bD4VkAhUkjghwh0wBpkofxu6V3cS790Sk7 yf+ymXJZaotliWcXMjzL3T5jO10CsNXg3ZAb95JvdWLWnSMkYq1yVjhiPmhaRe+R0AtT RO4++I2QTjUXnXiRPU8/Rb2pcvR+b5CUQ/oSQtLNEddfXyUcVx6wjMk/lgP/FsjEStjw i7GZbf9a7f13tA3JwSr6SyrkqAYrTqcsR1N69XWeuxf19iHn/fjI9iqZXmoHG5ElvP4t smLw==
X-Gm-Message-State: AOJu0Yw4n7ei2Zbi3W6KZiZN8G8Y+6OpYi778Bo23+LRKXDYdWEYVA/9 cE3q2muoUXIV63u4C64VUWWJLrkN6No19qPwqC0=
X-Google-Smtp-Source: AGHT+IFAlEPxlmgQdpY++nNb8oY7HttN905TxJPzjWiiOJ5jYrxTYYGO2lGFiCCV69qflwhQt0zJKGRCfFnqCEinYvM=
X-Received: by 2002:a17:906:34d9:b0:a28:c46:2740 with SMTP id h25-20020a17090634d900b00a280c462740mr907340ejb.70.1704167390628; Mon, 01 Jan 2024 19:49:50 -0800 (PST)
MIME-Version: 1.0
References: <169649242443.52233.18268073416166429524@ietfa.amsl.com> <PR3PR10MB415744B1DDE36FADA94A69D58FCAA@PR3PR10MB4157.EURPRD10.PROD.OUTLOOK.COM>
In-Reply-To: <PR3PR10MB415744B1DDE36FADA94A69D58FCAA@PR3PR10MB4157.EURPRD10.PROD.OUTLOOK.COM>
From: Kevin Ma <kevin.j.ma.ietf@gmail.com>
Date: Mon, 01 Jan 2024 22:49:39 -0500
Message-ID: <CAMrHYE2w46GFtY0NJpNvTVgJvoUdY9S+6DbmKtUgo3gmNF_pqg@mail.gmail.com>
To: Mike Ounsworth <mike.ounsworth@entrust.com>, Christoph Neumann <Christoph.Neumann@broadpeak.tv>
Cc: secdir@ietf.org, "<cdni@ietf.org>" <cdni@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000f4d08b060dee63a4"
Archived-At: <https://mailarchive.ietf.org/arch/msg/cdni/arkyycSWNHOHs3GI8rjWf38Inxk>
Subject: Re: [CDNi] I-D Action: draft-ietf-cdni-https-delegation-subcerts-05.txt
X-BeenThere: cdni@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "This list is to discuss issues associated with the Interconnection of Content Delivery Networks \(CDNs\)" <cdni.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cdni>, <mailto:cdni-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cdni/>
List-Post: <mailto:cdni@ietf.org>
List-Help: <mailto:cdni-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cdni>, <mailto:cdni-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Jan 2024 03:49:57 -0000
Hi Christoph, The updated text looks good to me. Hi Mike, Could you please confirm if the updated text is acceptable from a secdir perspective; or please let us know if we need to submit a new early review request to get a re-review? thanx! -- Kevin J. Ma On Thu, Oct 5, 2023 at 3:57 AM Christoph Neumann < Christoph.Neumann@broadpeak.tv> wrote: > Hi all, > > I submitted a new version of the internet draft related to delegated > credentials. > This update takes into account the secdir reviews of the previous draft. > The draft now specifies that, if used, the private key must be encrypted > using JWE, whereas the public key used for encryption can be announced in > the FCI.DelegatedCredentials. > > Christoph > > -----Original Message----- > From: CDNi <cdni-bounces@ietf.org> On Behalf Of internet-drafts@ietf.org > Sent: Thursday, October 5, 2023 9:54 AM > To: i-d-announce@ietf.org > Cc: cdni@ietf.org > Subject: [CDNi] I-D Action: > draft-ietf-cdni-https-delegation-subcerts-05.txt > > Internet-Draft draft-ietf-cdni-https-delegation-subcerts-05.txt is now > available. It is a work item of the Content Delivery Networks > Interconnection > (CDNI) WG of the IETF. > > Title: CDNI Metadata for Delegated Credentials > Authors: Frederic Fieau > Emile Stephan > Guillaume Bichot > Christoph Neumann > Name: draft-ietf-cdni-https-delegation-subcerts-05.txt > Pages: 12 > Dates: 2023-10-05 > > Abstract: > > The delivery of content over HTTPS involving multiple CDNs raises > credential management issues. This document defines metadata in the > CDNI Control and Metadata interface to setup HTTPS delegation using > Delegated Credentials from an Upstream CDN (uCDN) to a Downstream CDN > (dCDN). > > The IETF datatracker status page for this Internet-Draft is: > https://datatracker.ietf.org/doc/draft-ietf-cdni-https-delegation-subcerts/ > > There is also an HTMLized version available at: > > https://datatracker.ietf.org/doc/html/draft-ietf-cdni-https-delegation-subcerts-05 > > A diff from the previous version is available at: > > https://author-tools.ietf.org/iddiff?url2=draft-ietf-cdni-https-delegation-subcerts-05 > > Internet-Drafts are also available by rsync at: > rsync.ietf.org::internet-drafts > > > _______________________________________________ > CDNi mailing list > CDNi@ietf.org > https://www.ietf.org/mailman/listinfo/cdni > Broadpeak, S.A. Registered offices at 15 rue Claude Chappe, Zone des > Champs Blancs, 35510 Cesson-Sévigné, France | Rennes > Trade Register: 524 473 063 > This e-mail and its attachments contain confidential information from > Broadpeak S.A. and/or its affiliates (Broadpeak), which is intended only > for the person to whom it is addressed. > If you are not the intended recipient of this email, please notify > immediately the sender by phone or email and delete it. Any use of the > information contained herein in any way, including, but not limited to, > total or partial disclosure, reproduction, or dissemination, by persons > other than the intended recipient(s) is prohibited, unless expressly > authorized by Broadpeak. Broadpeak, S.A. and its affiliates respect privacy > laws, and is committed to the protection of personal data. Emails and/or > attachments thereof exchanged between us may include your personal data > which may be processed by Broadpeak and/or its affiliates according to > applicable privacy laws & regulations. > In compliance with Regulation (EU) 2016/679 (GDPR) and applicable > implementation in local legislations, you can exercise at any time your > rights of access, rectification or erasure of your personal data, as well > as your rights to restriction, portability or object to the processing. > For such purpose, or to know more about how Broadpeak processes your > personal data, you may contact Broadpeak by email privacy@broadpeak.tv. > Local authority : Commission Nationale Informatique et Libertés (CNIL): 3 > Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07 or > http://www.cnil.fr/ > _______________________________________________ > CDNi mailing list > CDNi@ietf.org > https://www.ietf.org/mailman/listinfo/cdni >
- [CDNi] I-D Action: draft-ietf-cdni-https-delegati… internet-drafts
- Re: [CDNi] I-D Action: draft-ietf-cdni-https-dele… Christoph Neumann
- Re: [CDNi] [E] Re: I-D Action: draft-ietf-cdni-ht… Mishra, Sanjay
- Re: [CDNi] I-D Action: draft-ietf-cdni-https-dele… Kevin Ma
- Re: [CDNi] [EXTERNAL] Re: I-D Action: draft-ietf-… Mike Ounsworth
- Re: [CDNi] [EXTERNAL] Re: I-D Action: draft-ietf-… Kevin J. Ma