Re: [dispatch] JCS - Abandoning the DISPATCH path
Anders Rundgren <anders.rundgren.net@gmail.com> Sat, 08 June 2019 07:28 UTC
Return-Path: <anders.rundgren.net@gmail.com>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E494C120108 for <dispatch@ietfa.amsl.com>; Sat, 8 Jun 2019 00:28:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.998
X-Spam-Level:
X-Spam-Status: No, score=-0.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, LOTS_OF_MONEY=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rkeyQhmLiaPd for <dispatch@ietfa.amsl.com>; Sat, 8 Jun 2019 00:28:46 -0700 (PDT)
Received: from mail-wr1-x444.google.com (mail-wr1-x444.google.com [IPv6:2a00:1450:4864:20::444]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E966F1200E9 for <dispatch@ietf.org>; Sat, 8 Jun 2019 00:28:45 -0700 (PDT)
Received: by mail-wr1-x444.google.com with SMTP id n4so4182860wrw.13 for <dispatch@ietf.org>; Sat, 08 Jun 2019 00:28:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:subject:to:cc:references:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=omeyld6IhoXicRTEnUoWyRpvMCpWqPPR8qc6XDPCgVM=; b=ODUIeH8s7PXfEay0hU1wlPyzzMmwEKvVb83Hd3Be2OFq58cyHNudtC5+DVuDNCQkrR Kdnfjh9N6scaURdf8nsUsQr66oPCPr5hPBVkGtRA+/Z7+/HpDvoNOwusGgM9zY3I9dc5 PQKdi4Wen7/fMlSODrvUc1t58g312+C62DHagvE2KA/hxpTyRRcseYN+VYZcCjX8Ynbl Ui3I04sEmEe7kKkNsxkgpcA7z0hkh/v6IxyVWrojUrtTcbpaBe+O+Ej/A2+uR/bbfa5z s1g0n/s/57RVo+CBMkmcRoK3o+RxpEeT3uOB8o1w83AgmqIBxi2ejo2uNmdAHQx692KM YySA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:subject:to:cc:references:message-id:date :user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=omeyld6IhoXicRTEnUoWyRpvMCpWqPPR8qc6XDPCgVM=; b=sgt5iS4of2k2MeiMX3VmqRB06PPdx6f1cdXnKmh+Gbnv57SEpUGXQanT3aS/4sNa6T iWFyB5IUeg0dCd7cV+SsWmweGXUDnqKq5s5uL2K3CnjumjFmQ5F2ffvJoGaOjIre4ioh 89Cpe5PGw5SM0rigR48/3ibCVu5BZHIRuc2UGRizousdxZDhKPlLBJYtKpqQq331i7Nq 7F9p++nLkYAwDVWcZPA8aKv2M6146X+AEvVcHqCsqKq8/WJKNRYrP66h0JjSYUd1/RkO yTT7jJDyRiGC4M64tHhs0ejZSAUpalTYnRv6voi5haCfln16Mc8W7yw2mXLLtEGpMZVN ZJrA==
X-Gm-Message-State: APjAAAVYgeIaTDTvrIH5nolsjyl2CtJjQ3tzWrnalnYHDj1r0yNcSaWu u1pOuiq/2k/TPhiWPezVaEw=
X-Google-Smtp-Source: APXvYqyZ7F7Bcddaa7w1OEld40BO/2Hh5rJsG/Pumehw6UgKg0fdYWeNzcm7DJjUxoWYT2Qf3PXjWg==
X-Received: by 2002:adf:efcb:: with SMTP id i11mr37953178wrp.188.1559978924405; Sat, 08 Jun 2019 00:28:44 -0700 (PDT)
Received: from [192.168.1.79] (25.131.146.77.rev.sfr.net. [77.146.131.25]) by smtp.googlemail.com with ESMTPSA id 11sm4324131wmd.23.2019.06.08.00.28.42 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 08 Jun 2019 00:28:43 -0700 (PDT)
From: Anders Rundgren <anders.rundgren.net@gmail.com>
To: Mary Barnes <mary.ietf.barnes@gmail.com>
Cc: Michael Jones <michael.jones@microsoft.com>, DISPATCH <dispatch@ietf.org>, Anders Rundgren <anders.rundgren.net@gmail.com>
References: <dc94cdf7-10de-91ea-47a7-ebf26b23f96a@gmail.com> <57502C4F-01A2-4E1A-96DB-1B718F9F0FA7@gmail.com> <CAHBDyN7CXiZrixB0+sGzPrwqauYc5Xv5jmw1-STo8C8kTsAyVQ@mail.gmail.com>
Message-ID: <525fc19f-79d1-bf47-e6c4-e7b292e3b276@gmail.com>
Date: Sat, 08 Jun 2019 09:28:40 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.7.0
MIME-Version: 1.0
In-Reply-To: <CAHBDyN7CXiZrixB0+sGzPrwqauYc5Xv5jmw1-STo8C8kTsAyVQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dispatch/lKUKk5jG1rpAtEUN75eJnLivq9U>
Subject: Re: [dispatch] JCS - Abandoning the DISPATCH path
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Jun 2019 07:28:48 -0000
Hi Mary, We are apparently forced taking another path although there are no documented technical issues (except for the constraints declared in the draft) and the intended use cases are anything but marginal. Possibly my assertion that one of the most high-profile IT-projects ever (Open Banking), without exception rejected the "right" solution made a bunch of well-known IETF profiles step out of their engineering role and rather turn to politics. In politics there is hardly ever consensus. BTW, VmWare have patented the core idea: https://patentimages.storage.googleapis.com/68/be/70/582930ff11703d/US20150341176A1.pdf However, in this particular case the critics' references to XML are indeed applicable; namely as "prior art" indicators. Other comparisons with XML is mostly unverifiable "noise" since JCS [deliberately] is much more limited. There must also be major misunderstandings how JCS actually works. Microsoft's Mike Jones co-authored a precursor to JCS https://tools.ietf.org/html/draft-erdtman-jose-cleartext-jws-01 but rejected JCS although the change only involved a trivial sorting mechanism. The sorting suddenly made it possible creating compatible implementations for just about any platform with ease while the original design would have forced "a total rewrite of everything". This revision as well as well as other fundamental parts of JCS were initially proposed by other IETFers. Regards, Anders On 2019-06-07 20:08, Mary Barnes wrote: > Hi Bret, > > In IETF, we don't do counts per se. We have the notion of rough consensus. The method that WG chairs use has some very basic guidelines, but there is a lot that's left to the discretion of the chairs. Here's a document that describes some of this: https://tools.ietf.org/html/rfc7282 I think a key point from that document is around the notion that consensus can be gained if there objections, if all those can be addressed in some way. With this topic, that does not seem possible given the nature of the meeting and mailing list discussions. > > As a chair, what I took away from the discussions were very strong disagreements about the value of this work. There were indeed a few supporters. But, there did not appear to be broad interest such that this is something the IETF should take on. And, If we were to decide to progress this work in IETF, it is very, very likely that those that disagree with it right now, would continue to raise the same concerns (per the point about objections being addressed if you want consensus) and ultimately it's the IESG that judges whether a WG has consensus. Our AD, Barry Leiba has already stated his position on this. And, you do have an alternative publication path via the ISE. > > Regards, > Mary > DISPATCH WG co-chair > > > On Wed, Jun 5, 2019 at 2:01 PM Bret Jordan <jordan.ietf@gmail.com <mailto:jordan.ietf@gmail.com>> wrote: > > This is really sad and a loss for the IETF. I would like to know how much interest needs to be given for an idea for it to be accepted and worked on. Is it 5, 10, 20, 50, 100, ?? People? And how is consensus achieved, meaning what percentage of people need to be against the work to prevent it? > > > Thanks, > Bret > PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 > "Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg." > >> On Jun 5, 2019, at 12:24 PM, Anders Rundgren <anders.rundgren.net@gmail.com <mailto:anders.rundgren.net@gmail.com>> wrote: >> >> Due to the lack interest ("active disinterest") we have been advised to not pursue JCS through DISPATCH. >> >> Personally I will continue with JCS in contexts like Open Banking since it obvious (based on existing practice) that Base64Url-encoding of business messages will continue to be a hard sell. The ability simply taking a hash of a JSON object is also a pretty useful feature not supported by any IETF standard. >> >> For the authors, >> Anders Rundgren >> >> Current draft: https://tools.ietf.org/html/draft-rundgren-json-canonicalization-scheme-06 >> On-line lab combining JWS and JCS: https://mobilepki.org/jws-jcs/home >> IETF-104 report: https://cyberphone.github.io/ietf-json-canon/ietf-104-report.html >> >> _______________________________________________ >> dispatch mailing list >> dispatch@ietf.org <mailto:dispatch@ietf.org> >> https://www.ietf.org/mailman/listinfo/dispatch > > _______________________________________________ > dispatch mailing list > dispatch@ietf.org <mailto:dispatch@ietf.org> > https://www.ietf.org/mailman/listinfo/dispatch >
- [dispatch] JCS - Abandoning the DISPATCH path Anders Rundgren
- Re: [dispatch] JCS - Abandoning the DISPATCH path Bret Jordan
- Re: [dispatch] JCS - Abandoning the DISPATCH path Mary Barnes
- Re: [dispatch] JCS - Abandoning the DISPATCH path Anders Rundgren