IETF Logo Mail Archive

Bikeshed: "context" parameter for signatures

Justin Richer <jricher@mit.edu> Thu, 22 September 2022 14:44 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0937EC14F74C for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 22 Sep 2022 07:44:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.761
X-Spam-Level:
X-Spam-Status: No, score=-7.761 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mit.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tjSsTASckQ3b for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Thu, 22 Sep 2022 07:43:59 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EB11AC14F745 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Thu, 22 Sep 2022 07:43:53 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1obNNi-00Cc5x-7r for ietf-http-wg-dist@listhub.w3.org; Thu, 22 Sep 2022 14:40:50 +0000
Resent-Date: Thu, 22 Sep 2022 14:40:50 +0000
Resent-Message-Id: <E1obNNi-00Cc5x-7r@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <jricher@mit.edu>) id 1obNNg-00Cc50-5J for ietf-http-wg@listhub.w3.org; Thu, 22 Sep 2022 14:40:48 +0000
Received: from outgoing-exchange-7.mit.edu ([18.9.28.58]) by mimas.w3.org with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <jricher@mit.edu>) id 1obNNe-0020sb-Ig for ietf-http-wg@w3.org; Thu, 22 Sep 2022 14:40:47 +0000
Received: from oc11exedge2.exchange.mit.edu (OC11EXEDGE2.EXCHANGE.MIT.EDU [18.9.3.18]) by outgoing-exchange-7.mit.edu (8.14.7/8.12.4) with ESMTP id 28MEeOp6001960 for <ietf-http-wg@w3.org>; Thu, 22 Sep 2022 10:40:36 -0400
Received: from oc11expo32.exchange.mit.edu (18.9.4.113) by oc11exedge2.exchange.mit.edu (18.9.3.18) with Microsoft SMTP Server (TLS) id 15.0.1497.38; Thu, 22 Sep 2022 10:40:08 -0400
Received: from oc11exhyb7.exchange.mit.edu (18.9.1.112) by oc11expo32.exchange.mit.edu (18.9.4.113) with Microsoft SMTP Server (TLS) id 15.0.1497.23; Thu, 22 Sep 2022 10:40:21 -0400
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.106) by oc11exhyb7.exchange.mit.edu (18.9.1.112) with Microsoft SMTP Server (TLS) id 15.0.1497.36 via Frontend Transport; Thu, 22 Sep 2022 10:40:21 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=b+36T5BXqKE8cj+f+gXN6rETHP1jqjYjcfTfVrP38DV5wxRCPdAJc8cRzew7ejsLdUNfvxqFg1aYTqu5DO6YxpqWoqAOYrsEyvmUgAEGWOux0fc0FUksVZOOuZGwnHxS1nHGG+SHfOwXOlvnGKtDLUyayjvI7D/1r2XV+xkZKUdAPiO5frZFHjcbbFpd5ekCzTJY5EciKllKe1Gq0ad5mEdqkgDKz9yVTreDsIr1HWtGpjUtoIU4mmrhdhlO5m9I5WFfYnJoOD72+cDqUdZsWe/l6M3sftgrqj263dQomvJAoVV3e3yMF2n8lN8O1+JYqkClruqGQtQS/AQTFO8xMw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=X3IZ2hu/39ZHuPpDDUq09oh4bSxolsdNXsZOuaT3DJQ=; b=VZyrkjfBVyuy8488GILxXVR/F0rMv9EX34G5uImB0A9G9I8hy1ZGOTi2cvKnXhcrbhc90DzhSALs2XepcZF3uc7neHoOlzQW9wMN4NW03SLRlCsPIyLrChAIwasN/Ge4m6d7GDs4Gs23gsBZafkCKsjlmjileBwZOWUShiHLeBfkZoWg71LaUm+Z4SyY0Dp8rsxEnGFwjkatumV2rxSOmluYdsg9Hb3r4kqe53wJA6ZROZsaQiZzrBmlO7Awm54ObHt5YqcasqSbgWsLjH27ZylsQrohJkmI5JtJyntkC4xk40bUREx6nFeg9C4SCNS97dAyQx9i3TaF0qHQPr7OUg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mit.edu; dmarc=pass action=none header.from=mit.edu; dkim=pass header.d=mit.edu; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=X3IZ2hu/39ZHuPpDDUq09oh4bSxolsdNXsZOuaT3DJQ=; b=lQmlh9m4UbL7HDJ6y+LpsSegT817rau1jwJ+4Z8XGWZlFMc9Uek7n7O7A1Y9ioaw2cgnwYLmm7pbQio6KqY+xfZxl1Mq3KfwuYVophvdABWELISKqVS4IBtNqZ2Y+E6w76tEXRO5CKV9gwBJyn3fAkgholQ2NT0NgcdK/nayNKI=
Received: from DM6PR01MB4444.prod.exchangelabs.com (2603:10b6:5:78::15) by PH0PR01MB6748.prod.exchangelabs.com (2603:10b6:510:76::22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5654.16; Thu, 22 Sep 2022 14:40:20 +0000
Received: from DM6PR01MB4444.prod.exchangelabs.com ([fe80::8d7a:9afa:1e48:eac0]) by DM6PR01MB4444.prod.exchangelabs.com ([fe80::8d7a:9afa:1e48:eac0%4]) with mapi id 15.20.5654.018; Thu, 22 Sep 2022 14:40:20 +0000
From: Justin Richer <jricher@mit.edu>
To: HTTP Working Group <ietf-http-wg@w3.org>
Thread-Topic: Bikeshed: "context" parameter for signatures
Thread-Index: AQHYzpE9JwpGDSCAwEyEG0z5hQZDTg==
Date: Thu, 22 Sep 2022 14:40:20 +0000
Message-ID: <54FD011B-AD69-4354-A1A1-D6F019DCB541@mit.edu>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=mit.edu;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR01MB4444:EE_|PH0PR01MB6748:EE_
x-ms-office365-filtering-correlation-id: 8cdb2f0c-896f-4870-1283-08da9ca85fe8
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: DEGMRoesyY1Wix8CfIe80fWrZ90iaggIQGXEKuLKV+SoN65xEunDaFc2k2mayb60BUcT51lYuM2xQvfY+pQeTV2M1vXtkXoqs7+/SKx2SPrAHc0vOnAch4xFaAiJ84VYfUTMDY/HrClW5Ok4Ac12MyzOi7xomdUvqwGe2Z2RMbEBAgzB/8mnpne/AYlTuqsLFda3kU+nz8ULBnN7ud13ci64HM75GtEC1Wq6pK2sFJ8InSSNkxV5aS0K0g/t7cuVS/BDq4o2pByY3zVCCJaIC8dlKJlP3oo2dklI+3gnKi/vRe9gqxl1yqKmga3symu7JjzsgHaBTtt2Tz7nrb737KhMCzu+F5u0mGNfjuPbiufvEEspCyncAKJT/KWVsQ7hRpqXysrtzAF6fH1LyC0d47FNfWqcYWhobnKHVwTNnIrnYplr9Cq4cvmGgfv6RFaPks6dfp+IrtHiFCq+xOfm+gK/StgyJmuf9Nz3qrPu/WsEjtbOTMYccTCnn5Oz1rwxneqcaDivbX3aK4giVImX87iwrtDK8UYaTqMaRVBGn/o/8dpfG73rILbfkG44S0J2Pw24w2/HGSio5Ggs+hB6sJCloVwU+ygQiZ1jFr/TUvBzJlgi0DVAIDHwUyVaKZo47sjgXE4rbtqrUcyEzX2f0+H6UTBM6KiYpHgHJhTjOQsA0kBYLSA4DvD1CKwME/+XTlqorlO6TuonjI6EcoFHTBpPfd+wujoyKfzpZX2tEZTe4nataB66Tge/SMF4gDDzS6gZgrUFtkyYkTJyC58WTWmaFTlIL21pS2G1o4gzLZ4=
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DM6PR01MB4444.prod.exchangelabs.com;PTR:;CAT:NONE;SFS:(13230022)(4636009)(136003)(39860400002)(366004)(376002)(346002)(396003)(451199015)(4744005)(33656002)(316002)(6916009)(5660300002)(786003)(41300700001)(91956017)(8936002)(76116006)(86362001)(8676002)(64756008)(66446008)(66476007)(66556008)(38100700002)(122000001)(66946007)(966005)(75432002)(6486002)(6506007)(6512007)(166002)(38070700005)(186003)(478600001)(71200400001)(2616005)(26005)(2906002)(36756003);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_54FD011BAD694354A1A1D6F019DCB541mitedu_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR01MB4444.prod.exchangelabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 8cdb2f0c-896f-4870-1283-08da9ca85fe8
X-MS-Exchange-CrossTenant-originalarrivaltime: 22 Sep 2022 14:40:20.3673 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: jvkdHOh6gFF188PYyRBA270TnLEm0nPFGmBqDsDC5ZXWUbaYVAJ9hs/9mK+I9Zk0
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR01MB6748
X-OriginatorOrg: mit.edu
X-W3C-Hub-DKIM-Status: validation passed: (address=jricher@mit.edu domain=mit.edu), signature is good
X-W3C-Hub-Spam-Status: No, score=-7.4
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1obNNe-0020sb-Ig e874e0e5e596363fe818ce95c10af7e7
X-Original-To: ietf-http-wg@w3.org
Subject: Bikeshed: "context" parameter for signatures
Archived-At: <https://www.w3.org/mid/54FD011B-AD69-4354-A1A1-D6F019DCB541@mit.edu>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40399
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

I missed an issue that had been filed (but not tagged) prior to the publication of signatures-12, and it asks a pretty simple question:

We added a “context” parameter to allow applications to put a specific string that the application can recognize into the signature parameter set, so that (for example) an authz protocol can declare that a specific value be used or a cloud deployment can have all of its proxies use the same value. However, the term “context” is used in other ways in the spec, so it’s not the best term to use for this new parameter. The proposal is to change “context” to “application” or even the shorter “app”:

https://github.com/httpwg/http-extensions/issues/2249


I’d like to do a quick bike shed on this parameter name here, for anyone who has an opinion. Since it’s newer, existing libraries mostly don’t have it supported yet so if we’re going to change it we should change it right now.


Thanks,
 — Justin

v2.23.0 | Report a Bug | By Email