IETF Logo Mail Archive

Call for Adoption: draft-richanna-http-message-signatures

Mark Nottingham <mnot@mnot.net> Thu, 09 January 2020 04:36 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AEA42120639 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 8 Jan 2020 20:36:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, MAILING_LIST_MULTI=-1, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=GvPuFBO1; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=xFLUlJ5W
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8hixqWMu9uh3 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 8 Jan 2020 20:36:10 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [IPv6:2603:400a:ffff:804:801e:34:0:38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 79FEE120020 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 8 Jan 2020 20:36:10 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.89) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1ipPVh-0000ZP-5S for ietf-http-wg-dist@listhub.w3.org; Thu, 09 Jan 2020 04:33:29 +0000
Resent-Date: Thu, 09 Jan 2020 04:33:29 +0000
Resent-Message-Id: <E1ipPVh-0000ZP-5S@frink.w3.org>
Received: from titan.w3.org ([2603:400a:ffff:804:801e:34:0:4c]) by frink.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.89) (envelope-from <mnot@mnot.net>) id 1ipPVf-0000Ye-SP for ietf-http-wg@listhub.w3.org; Thu, 09 Jan 2020 04:33:27 +0000
Received: from wout2-smtp.messagingengine.com ([64.147.123.25]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <mnot@mnot.net>) id 1ipPVc-0007us-KA for ietf-http-wg@w3.org; Thu, 09 Jan 2020 04:33:27 +0000
Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.west.internal (Postfix) with ESMTP id 9155099F; Wed, 8 Jan 2020 23:33:20 -0500 (EST)
Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Wed, 08 Jan 2020 23:33:20 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=from :content-type:content-transfer-encoding:mime-version:subject :message-id:date:cc:to; s=fm1; bh=R8EXW2s4oAmjQc7GZvLN/O3QFeAGvj 7VDqVVCJrEqaQ=; b=GvPuFBO1HBHRm4iWEirSDHcM8qKKbVf8vbN5aEgl+36+HJ jlv/pRlseSd0MN1gMwlvtKclpZBICdGIQ0HasUy/E/7UxUFyUxrdvjgHn5EAihz5 pHYEA3BiRnc5JmMtA/0VwRIyDsBY+2jMk0BvVtAz0layaBzu1FoNaX5jfWLE4C+U NKwdJJSudLkoey8l9MXPbScnA6b2ecu82u/BS2NyG0TnoCVCN/Oja54Wkae87hBG KqV6LWymwiXu/wj6v5S94zYb5zkpTm/AUWaZJhapVe0dPfaJAEVoT0jRCK/hCPCh wZZj4u4We0nSked1Ek9EsquhA8Dp64f8kaBBNOnw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:message-id:mime-version:subject:to:x-me-proxy :x-me-proxy:x-me-sender:x-me-sender:x-sasl-enc; s=fm1; bh=R8EXW2 s4oAmjQc7GZvLN/O3QFeAGvj7VDqVVCJrEqaQ=; b=xFLUlJ5WCk1RdNYl6XDMU5 jwU30hs5qGXaxqiEE1K6bCQoUp3sp1CzJ8lVROZf7ADjlPLcbUhhosfxiQceKXVu ULMS/0aYRXxTf9AV087qMeZBLlYVQ+HXw9Z7A5FDhLTsbDOkD/0NoWW97SNeUk+L 7YfRJM5VaWbsEYXttzgrxkiQ5XTbNCwoVavlS8tBXNBMbb9KiQjnO5bdzBRSp33U nSQBTLTHsoZZV7CAeduM6L86eFFf8jXRuFv1m+Zu6MBtzLH/NsurfWNNxCWnyXxP RFOajVwmPPHhlV5GAS5oLYfHhQG4NIrzNFsMRmkgYRhAS+BKKDmhOoB8vfozQXMQ ==
X-ME-Sender: <xms:D60WXoKn-7SzprFpgXWeAvAmJHa8ffHd0DYZ4xxOffWTKdSEkAD6Pw>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedufedrvdehledgieegucetufdoteggodetrfdotf fvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdfqfgfvpdfurfetoffkrfgpnffqhgen uceurghilhhouhhtmecufedttdenucesvcftvggtihhpihgvnhhtshculddquddttddmne cujfgurhephfgtgfgguffkfffvofesthhqmhdthhdtvdenucfhrhhomhepofgrrhhkucfp ohhtthhinhhghhgrmhcuoehmnhhothesmhhnohhtrdhnvghtqeenucffohhmrghinhepih gvthhfrdhorhhgpdhhthhtphhmvghsshgrghgvshhfohhrshhomhgvthhimhgvrdgrthdp mhhnohhtrdhnvghtnecukfhppeduudelrddujedrudehkedrvdehudenucfrrghrrghmpe hmrghilhhfrhhomhepmhhnohhtsehmnhhothdrnhgvthenucevlhhushhtvghrufhiiigv pedt
X-ME-Proxy: <xmx:D60WXkcLKBFhDniOa9GmDMZlV90u7L7MmlkPGnaVtitHWlICEq1YDA> <xmx:D60WXregoU4M6Zof02wBCyWZAvf_a6XbY6OjMdae7xObwJdJRREVQA> <xmx:D60WXnN3fWQhYQIZyk4Xv0Gg8T5R78EPbWkXpq64eHY9Igfu5_VVLw> <xmx:EK0WXoLZ5gjKqWZvKlEjhI-mkHiGvnw5csT7qody_CeEeRaZ0zHrEw>
Received: from macbook-pro.mnot.net (unknown [119.17.158.251]) by mail.messagingengine.com (Postfix) with ESMTPA id 5139A80062; Wed, 8 Jan 2020 23:33:18 -0500 (EST)
From: Mark Nottingham <mnot@mnot.net>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 13.0 \(3608.40.2.2.4\))
Message-Id: <76565D7E-C7F5-4D5D-BE3A-6E686E096B14@mnot.net>
Date: Thu, 09 Jan 2020 15:33:14 +1100
Cc: Tommy Pauly <tpauly@apple.com>
To: HTTP Working Group <ietf-http-wg@w3.org>
X-Mailer: Apple Mail (2.3608.40.2.2.4)
Received-SPF: pass client-ip=64.147.123.25; envelope-from=mnot@mnot.net; helo=wout2-smtp.messagingengine.com
X-W3C-Hub-Spam-Status: No, score=-6.8
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_DB=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1ipPVc-0007us-KA 06c1ec84b97d63067e2512fa435edaa9
X-Original-To: ietf-http-wg@w3.org
Subject: Call for Adoption: draft-richanna-http-message-signatures
Archived-At: <https://www.w3.org/mid/76565D7E-C7F5-4D5D-BE3A-6E686E096B14@mnot.net>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/37237
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Hello everyone,

We've discussed mechanisms for signing HTTP messages for some time. At IETF106, this draft was presented in the SECDISPATCH Working Group:
  https://tools.ietf.org/html/draft-richanna-http-message-signatures-00

See also the presentation given there:
  https://datatracker.ietf.org/meeting/106/materials/slides-106-secdispatch-http-signing

In discussion there (and with the relevant ADs), it was felt that the most obvious place for this work to land in the IETF would be in this WG. So, while this specific draft has not been discussed extensively here, we have expressed interest in this topic for quite some time, and it seems appropriate to see if we're willing to take it on.

To that end, this is a Call for Adoption of draft-richanna-http-message-signatures-00. Since there hasn't been extensive discussion yet, we're looking for more confirmation than just absence of objection; we'd like folks to read the document and state explicitly whether they support it as a starting point for a work item.

As with all of our drafts, it will only be a starting point; we're not looking for consensus to publish this draft as-is, just confirmation that this is an area we want to start work in.

In particular, if folks could state whether they're willing to contribute to discussion and review drafts, that would be helpful.

To give time to read and consider the draft, this CfA will be for a longer than usual period; we'll make a decision no earlier than 31 January.

Cheers,

P.S. As a reminder, this isn't a call to start discussing specific issues in the draft; we'll have plenty of time for that later.

--
Mark Nottingham   https://www.mnot.net/

v2.23.0 | Report a Bug | By Email