IETF Logo Mail Archive

Re: [core] [Anima] date-and-time and "created-on" field in constrained-voucher

Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de> Wed, 29 June 2022 01:54 UTC

Return-Path: <J.Schoenwaelder@jacobs-university.de>
X-Original-To: core@ietfa.amsl.com
Delivered-To: core@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7306BC15AAD6; Tue, 28 Jun 2022 18:54:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.909
X-Spam-Level:
X-Spam-Status: No, score=-6.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jacobsuniversity.onmicrosoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z_jI0CYBafno; Tue, 28 Jun 2022 18:54:37 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60049.outbound.protection.outlook.com [40.107.6.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 47F82C15AACD; Tue, 28 Jun 2022 18:54:34 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=EOy4dQfzc2cj4untqTuAZkOrTR4tK8nod2QE18AH/6JjYQrvNe0GMnfClstsm6zH0QYQju6BbDSunicf4WGiUcOQrIa3izehKtAKfJJ+d2/HH5zeau6N0lVoJ8i8HOZtNzxVJEAL0ciyFx+zhWxYx8DPU1NkBDgQx4yIKK1GfF5c9p3m3wNkhVBWGqzYGKhzCMOP5JWwwSBZSlsH26bZwVJw7pbSVKq9AKId5NmulFoC98biQMfL8VgoJbd1R2ro63KxjyLTsHLivyQrH5yXt9zv/6z1CknydzPVfrev3yqBYH+rL3JlQBqscP40Ht9mtMi5Do4n7OUKbgMH1Eef0Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=2t/TzbDdYWHjaLP5I307iABYR814z/AMEB8AFVLy3Zo=; b=QwSF8laVIFVKPZPvpfQYvCiHPZZYBhJA2y90V2gUaA1OW1sdZ0ewkKGY6MFBO2S+lNJFw1Gid2Biodr0dlTMVbH0Z8jGV6/2ytaJi6YboCV6l5yKZzt2NmqxrqW/4cuewVjHoJdVlgfOeKl+WNeSsWColEHNyljb169He1CT68p8aqSjBXD4VF+UeyLunhEKIV5M+W0I+hQ6fHjnNIeqDg++0GTETAfdraWiiRFSf786HXhoGH0Ed7XetC1F+Q8jW4z66z79pPjg5HDDHRUQPqbT9pMPcsSeQa5CwDdymjNJbFWv+eH5Jz42ITunJcshv70N+SWrHegZoWQyOQBIrA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=jacobs-university.de; dmarc=pass action=none header.from=jacobs-university.de; dkim=pass header.d=jacobs-university.de; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jacobsuniversity.onmicrosoft.com; s=selector2-jacobsuniversity-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=2t/TzbDdYWHjaLP5I307iABYR814z/AMEB8AFVLy3Zo=; b=jSNhclZ4Jmbdp00fGCm0+QILTuRCnyrVEwdaMuaa7Mpc/qAdJa3SrLoFdyosRY1uUg0I6i+qPL4j3mT6jwppFB44UUYK+bvlet2VZZPGyUY++VaST1jkMDUkKx43M19eVbvVShuhrjwjqHOQbI+JW6I0fN15KUd9Ws2K1XxWCsI=
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=jacobs-university.de;
Received: from GVXP190MB1991.EURP190.PROD.OUTLOOK.COM (2603:10a6:150:3::6) by AS4P190MB1854.EURP190.PROD.OUTLOOK.COM (2603:10a6:20b:505::7) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5373.15; Wed, 29 Jun 2022 01:54:31 +0000
Received: from GVXP190MB1991.EURP190.PROD.OUTLOOK.COM ([fe80::f059:b4f5:b262:d416]) by GVXP190MB1991.EURP190.PROD.OUTLOOK.COM ([fe80::f059:b4f5:b262:d416%9]) with mapi id 15.20.5373.018; Wed, 29 Jun 2022 01:54:31 +0000
Date: Wed, 29 Jun 2022 03:54:29 +0200
From: Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de>
To: Carsten Bormann <cabo@tzi.org>
Cc: Andy Bierman <andy@yumaworks.com>, anima@ietf.org, Core <core@ietf.org>
Message-ID: <20220629015429.vfps46mvcb7io67o@anna>
Reply-To: Jürgen Schönwälder <j.schoenwaelder@jacobs-university.de>
Mail-Followup-To: Carsten Bormann <cabo@tzi.org>, Andy Bierman <andy@yumaworks.com>, anima@ietf.org, Core <core@ietf.org>
References: <24048.1656352364@localhost> <25937.1656365067@localhost> <CABCOCHS6=F0tfESkVmOk1AFKvsu4tRfKu9A_Sgz5swVXv-eXCQ@mail.gmail.com> <26870.1656383550@localhost> <CABCOCHSkh95PEEM5E3YKe_yc5VmsY90XxT1D-z3AiJwwcG-HhA@mail.gmail.com> <7669.1656440710@localhost> <6DCC06F4-3799-4CC0-8780-21E6B12A4022@tzi.org> <CABCOCHQqtKw6cZ1o7nzDmQBN0zQP70CgeAAc6nFdRa_kB+-DBQ@mail.gmail.com> <09C66776-54C5-4C5D-9DFA-E164A1050170@tzi.org> <E51C95DD-0AC5-40E4-8609-E0B444E77786@tzi.org>
Content-Type: text/plain; charset="utf-8"
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <E51C95DD-0AC5-40E4-8609-E0B444E77786@tzi.org>
X-ClientProxiedBy: AM0PR03CA0025.eurprd03.prod.outlook.com (2603:10a6:208:14::38) To GVXP190MB1991.EURP190.PROD.OUTLOOK.COM (2603:10a6:150:3::6)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: a20a89c0-8563-472f-8418-08da59724eb8
X-MS-TrafficTypeDiagnostic: AS4P190MB1854:EE_
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:GVXP190MB1991.EURP190.PROD.OUTLOOK.COM; PTR:; CAT:NONE; SFS:(13230016)(7916004)(39850400004)(396003)(136003)(346002)(376002)(366004)(83380400001)(6486002)(3450700001)(8676002)(316002)(6506007)(41320700001)(4326008)(5660300002)(66574015)(478600001)(66556008)(1076003)(41300700001)(40140700001)(85182001)(33716001)(186003)(85202003)(66946007)(2906002)(38350700002)(53546011)(786003)(52116002)(54906003)(8936002)(26005)(6512007)(9686003)(6916009)(38100700002)(4744005)(86362001)(66476007); DIR:OUT; SFP:1101;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: jacobs-university.de
X-MS-Exchange-CrossTenant-Network-Message-Id: a20a89c0-8563-472f-8418-08da59724eb8
X-MS-Exchange-CrossTenant-AuthSource: GVXP190MB1991.EURP190.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 29 Jun 2022 01:54:30.9455 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: f78e973e-5c0b-4ab8-bbd7-9887c95a8ebd
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: G62JzKNswwnnQNZmcPp8SB9GAkpl1DUrHLG7fvBNByYEXke9pv0LiOGXK2oMXvOWIQ+HFlg0BKxB20COYaivyI6uRot4KdCIesU7lHyGb10=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AS4P190MB1854
Archived-At: <https://mailarchive.ietf.org/arch/msg/core/M33K1H8FF18MtODDYwrOw53rdu0>
Subject: Re: [core] [Anima] date-and-time and "created-on" field in constrained-voucher
X-BeenThere: core@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Constrained RESTful Environments \(CoRE\) Working Group list" <core.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/core>, <mailto:core-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/core/>
List-Post: <mailto:core@ietf.org>
List-Help: <mailto:core-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/core>, <mailto:core-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Jun 2022 01:54:41 -0000

On Tue, Jun 28, 2022 at 11:40:55PM +0200, Carsten Bormann wrote:
> On 2022-06-28, at 22:50, Carsten Bormann <cabo@tzi.org> wrote:
> > 
> > The alternative would be to trigger on the data, so any string that looks like 2022-06-28T20:48:15Z would turn into 1(1656449295).  That has some interesting security considerations, though.
> 
> Hmm, that is starting to become more attractive to me.
> 
> As long as we can make sure that the same string comes back out again, this can be safe even if we don’t get the typenames right.
> 
> Of course an efficient implementation might still be triggered by typenames, but it wouldn’t create a problem if that guesses wrong.
>

This sounds super scary. So how in CBOR would you make sure that the
timezone suffix Z remains Z and the suffix +00:00 remains +00:00?

/js

-- 
Jürgen Schönwälder              Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1 | 28759 Bremen | Germany
Fax:   +49 421 200 3103         <https://www.jacobs-university.de/>

v2.23.0 | Report a Bug | By Email