Re: [COSE] [Cose]: RFC8152(bis) question(s) (draft-ietf-anima-constrained-voucher)
Carsten Bormann <cabo@tzi.org> Thu, 22 July 2021 16:20 UTC
Return-Path: <cabo@tzi.org>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 760EC3A064A; Thu, 22 Jul 2021 09:20:29 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.888
X-Spam-Level:
X-Spam-Status: No, score=-1.888 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, T_SPF_HELO_TEMPERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id G1d0oJ3wQdho; Thu, 22 Jul 2021 09:20:22 -0700 (PDT)
Received: from gabriel-smtp.zfn.uni-bremen.de (smtp.uni-bremen.de [134.102.50.15]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A92753A040C; Thu, 22 Jul 2021 09:20:22 -0700 (PDT)
Received: from smtpclient.apple (p548dcc89.dip0.t-ipconnect.de [84.141.204.137]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by gabriel-smtp.zfn.uni-bremen.de (Postfix) with ESMTPSA id 4GVyNM1Mwzz31Ml; Thu, 22 Jul 2021 18:20:19 +0200 (CEST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\))
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <20210722160135.GB55573@faui48e.informatik.uni-erlangen.de>
Date: Thu, 22 Jul 2021 18:20:18 +0200
Cc: cose@ietf.org, "draft-ietf-anima-constrained-voucher@ietf.org" <draft-ietf-anima-constrained-voucher@ietf.org>, Esko Dijk <esko.dijk@iotconsultancy.nl>
Content-Transfer-Encoding: quoted-printable
Message-Id: <DB7A84B4-29D1-4E2F-A821-1C78886C7866@tzi.org>
References: <20210722160135.GB55573@faui48e.informatik.uni-erlangen.de>
To: Toerless Eckert <tte@cs.fau.de>
X-Mailer: Apple Mail (2.3654.120.0.1.13)
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/1HwimgQGxIwhf3E5-dKoHshs29I>
Subject: Re: [COSE] [Cose]: RFC8152(bis) question(s) (draft-ietf-anima-constrained-voucher)
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Jul 2021 16:20:35 -0000
On 22. Jul 2021, at 18:01, Toerless Eckert <tte@cs.fau.de> wrote: > > As far as i could find, none of the examples > in appendix C nor in https://github.com/cose-wg/Examples do have > the "content type" (3:) field with a value and none seem to elaborate > about different type of payloads. I won’t try to answer the whole question, but let’s just look at one example: The European Digital Green Card (Covid pass) uses a CWT with claim -260. Given that the claim -260 is registered in the CWT registry [1], there is no need to provide any other semantics with the signed object. Similar with the FIDO entries there. If you do not use a CWT, you may want some other form of identification of what the payload is about, and the COSE content-type header parameter (3) is one of them. Grüße, Carsten [1]: https://www.iana.org/assignments/cwt/cwt.xhtml Scroll down to hcert
- [COSE] [Cose]: RFC8152(bis) question(s) (draft-ie… Toerless Eckert
- Re: [COSE] [Cose]: RFC8152(bis) question(s) (draf… Carsten Bormann
- Re: [COSE] [Cose]: RFC8152(bis) question(s) (draf… Toerless Eckert
- Re: [COSE] [Cose]: RFC8152(bis) question(s) (draf… Carsten Bormann