Re: [COSE] Murray Kucherawy's No Objection on draft-ietf-cose-typ-header-parameter-04: (with COMMENT)
Michael Jones <michael_b_jones@hotmail.com> Wed, 03 April 2024 04:47 UTC
Return-Path: <michael_b_jones@hotmail.com>
X-Original-To: cose@ietfa.amsl.com
Delivered-To: cose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8ECBCC15106E; Tue, 2 Apr 2024 21:47:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.223
X-Spam-Level:
X-Spam-Status: No, score=-6.223 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FORGED_HOTMAIL_RCVD2=0.874, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hotmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SNmmlrdcVL68; Tue, 2 Apr 2024 21:47:49 -0700 (PDT)
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (mail-bn7nam10olkn2082.outbound.protection.outlook.com [40.92.40.82]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9B384C14F6BE; Tue, 2 Apr 2024 21:47:49 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=JcyhtPh7CBntEgtT+Ww7g9EneabD9ztWriMDXySUGSN2HLQkh1qutSoEQi5cPq+lZwx0/NaaIIXGKNHR9iSmnFOJ48SB2VGxToCpgS9UE8ZCMIxugfklBSezPaPplKDsGZfJKSHCv7Y02uaucEw297mPTqlPRt3cNVpIpaKVOWT3HxMHqVDLgsaYX2vXIhwnSXz9dZp+N/EdnlqeVUp8oPnt/+U8QYxdpEhjUO9jYV/rMjDbEWcrpJaN1ryONwyJ+BK0alcucUfsx5cYlx5zQ2xgls+LR5y8ru6scle68cIkdhuRq5qH79WC3lopAtp8HlQ/LA0QLHtfs1bgrPHlYQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=BdxeNC18i2FrvEXwSdHHtOA/CpQOsUw5sn/RAMP/4kI=; b=S5RK7DjHmDcC9jnvZX895E5TSLx0i2xS+OdXkihPHB8DIWUEZ3uzd1I4/5ex1RJKDn2MTenxUaq7e0W/GZJ90JIcyTnt29NgBgLDlliXnJDbaYroNvVSuupAMzYlTzEVgcq7n/bm0tHwHwrn7cTMN3JOLBfXnXFYs8JOIqPyf0pdGSQhf1wUI1bJm4aw4U1bT40gPlziYfQ+c72KgGzTDpGMtJAd67SBmp3fTuwWzaWvBNQ6p5ap7OxhGBMGk2Fc3QnsSs207DXOng3byDTAMa+m0nkA6pVieHoG/fzUWK9iQ7stAIpIQNRuja1NjfF/PgnQYL0FaIbyxKrNxGz5Bg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hotmail.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=BdxeNC18i2FrvEXwSdHHtOA/CpQOsUw5sn/RAMP/4kI=; b=uy2i0YmWagCNI1lem/cLcbpOQ3qP27mDUeZ9Y13CAUdNlGZXOvD/pY84N8YUfsGLIvZDQFf4rfbMnICgUz9YujTZyi4sy5gCwmZlkRzVxIjrDka1KpCGcRNK0NrXCYtydg52f+Nkb/ove4GuvpctdbPBPSs7WqtR8dJtufQfQvh3/u90lOcfv5PIbIpCNOtGMrtPl39K4DMWbZIGEE0ErusEqc00D9Wlzv0PcRjZ6StVDcxo4CzoKpIXhloUlPnPFJm7vcjmMO1gsX/Oq+OyHSXJJSoaGkShHlGtxR2UzrsTSS3lQuZKdFxFSXKxWZBj8SOwzuZcYfqdzt4hSJLc3g==
Received: from SJ0PR02MB7439.namprd02.prod.outlook.com (2603:10b6:a03:295::14) by BY5PR02MB7044.namprd02.prod.outlook.com (2603:10b6:a03:232::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.46; Wed, 3 Apr 2024 04:47:47 +0000
Received: from SJ0PR02MB7439.namprd02.prod.outlook.com ([fe80::7c2c:4b2:7be3:4f66]) by SJ0PR02MB7439.namprd02.prod.outlook.com ([fe80::7c2c:4b2:7be3:4f66%4]) with mapi id 15.20.7409.042; Wed, 3 Apr 2024 04:47:47 +0000
From: Michael Jones <michael_b_jones@hotmail.com>
To: Murray Kucherawy <superuser@gmail.com>, The IESG <iesg@ietf.org>
CC: "draft-ietf-cose-typ-header-parameter@ietf.org" <draft-ietf-cose-typ-header-parameter@ietf.org>, "cose-chairs@ietf.org" <cose-chairs@ietf.org>, "cose@ietf.org" <cose@ietf.org>, "ivaylopetrov@google.com" <ivaylopetrov@google.com>
Thread-Topic: Murray Kucherawy's No Objection on draft-ietf-cose-typ-header-parameter-04: (with COMMENT)
Thread-Index: AQHag9whHKIU8MJXn0SI7ID/bETl27FV9Z6w
Date: Wed, 03 Apr 2024 04:47:47 +0000
Message-ID: <SJ0PR02MB7439DEA42EFEE1E546228B97B73D2@SJ0PR02MB7439.namprd02.prod.outlook.com>
References: <171193844126.32008.17496227658374956638@ietfa.amsl.com>
In-Reply-To: <171193844126.32008.17496227658374956638@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-tmn: [hRjfmfSUs5fqfn+cuR94hf3E57e/MuV5d+StGlCHWzcasCYZl6HnqNsaeKjcpNDomrlV5g5XpMY=]
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: SJ0PR02MB7439:EE_|BY5PR02MB7044:EE_
x-ms-office365-filtering-correlation-id: d4cdc509-14c5-4fc0-93cf-08dc53993582
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: sct-15-20-4755-11-msonline-outlook-99c3d.templateTenant
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: SJ0PR02MB7439.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-CrossTenant-Network-Message-Id: d4cdc509-14c5-4fc0-93cf-08dc53993582
X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-CrossTenant-originalarrivaltime: 03 Apr 2024 04:47:47.2466 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR02MB7044
Archived-At: <https://mailarchive.ietf.org/arch/msg/cose/QLt8UsPRplwN2A8GB0FvtXlHZE0>
Subject: Re: [COSE] Murray Kucherawy's No Objection on draft-ietf-cose-typ-header-parameter-04: (with COMMENT)
X-BeenThere: cose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: CBOR Object Signing and Encryption <cose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/cose>, <mailto:cose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cose/>
List-Post: <mailto:cose@ietf.org>
List-Help: <mailto:cose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/cose>, <mailto:cose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Apr 2024 04:47:53 -0000
Hi Murray,
Thanks for taking the time to review the specification.
You raise an interesting question about protocol usage of the "typ" header parameter. Strictly speaking, this spec is defining a data structure element. But as Gunter Van de Velde points out, this BCP-like language in the Security Considerations provides suggestions for usage:
"COSE applications employing explicit typing should reject COSE objects with a type header parameter value different than values that they expect in that application context. They should also reject COSE objects without a type header parameter when one is expected."
The language goes to the core of what the header parameter is for, so I'm good with it. But I'm open to suggestions that would clarify the intent further.
For what it's worth, there are multiple independent implementations of the "typ" header parameter.
I'm not sure what you're referring to when you wrote "Then it gives only a partial answer to the document status question."
Best wishes,
-- Mike
P.S. Changes resulting from the other two reviews are in https://github.com/selfissued/draft-ietf-cose-typ-header-parameter/pull/10. I plan to merge it and publish mid-day Wednesday US Pacific Time unless I hear objections so that the new draft is ready for Thursday's IESG telechat.
-----Original Message-----
From: Murray Kucherawy via Datatracker <noreply@ietf.org>
Sent: Sunday, March 31, 2024 7:27 PM
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-cose-typ-header-parameter@ietf.org; cose-chairs@ietf.org; cose@ietf.org; ivaylopetrov@google.com
Subject: Murray Kucherawy's No Objection on draft-ietf-cose-typ-header-parameter-04: (with COMMENT)
Murray Kucherawy has entered the following ballot position for
draft-ietf-cose-typ-header-parameter-04: No Objection
When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.)
Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.
The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-cose-typ-header-parameter/
----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------
The shepherd writeup says "This is not a protocol document", yet it registers a
header parameter used in a protocol. Then it gives only a partial answer to
the document status question. I'm confused.
- [COSE] Murray Kucherawy's No Objection on draft-i… Murray Kucherawy via Datatracker
- Re: [COSE] Murray Kucherawy's No Objection on dra… Michael Jones