IETF Logo Mail Archive

Re: I-D Action: draft-ietf-httpbis-message-signatures-13.txt

Justin Richer <jricher@mit.edu> Mon, 26 September 2022 15:59 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B4483C14F75F for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Mon, 26 Sep 2022 08:59:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.758
X-Spam-Level:
X-Spam-Status: No, score=-2.758 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, HTML_MESSAGE=0.001, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mit.edu
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id evtk7J-rlnYo for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Mon, 26 Sep 2022 08:59:13 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 722B6C14F74C for <httpbisa-archive-bis2Juki@lists.ietf.org>; Mon, 26 Sep 2022 08:59:12 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1ocqSz-005ly6-M2 for ietf-http-wg-dist@listhub.w3.org; Mon, 26 Sep 2022 15:56:21 +0000
Resent-Date: Mon, 26 Sep 2022 15:56:21 +0000
Resent-Message-Id: <E1ocqSz-005ly6-M2@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <jricher@mit.edu>) id 1ocqSx-005lx8-J6 for ietf-http-wg@listhub.w3.org; Mon, 26 Sep 2022 15:56:19 +0000
Received: from outgoing-exchange-1.mit.edu ([18.9.28.15]) by mimas.w3.org with esmtps (TLS1.2) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <jricher@mit.edu>) id 1ocqSw-003nLf-1o for ietf-http-wg@w3.org; Mon, 26 Sep 2022 15:56:19 +0000
Received: from oc11exedge1.exchange.mit.edu (OC11EXEDGE1.EXCHANGE.MIT.EDU [18.9.3.17]) by outgoing-exchange-1.mit.edu (8.14.7/8.12.4) with ESMTP id 28QFtq24001457; Mon, 26 Sep 2022 11:56:03 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mit.edu; s=outgoing; t=1664207765; bh=PBEbsZq4qBEO/JGv1E1Z/1AXrfnu1iJf2ErDOlhIFlU=; h=From:To:Subject:Date:References:In-Reply-To; b=GnUQRmxOEZetysovnGiQ89TtMafmMYOV+/cyTams1mfb7o65ttI+w1KN4OkiuV3ON 3Hf7n2hIpetbRjyM3j6rwyVq0KOn2gz3aYI3QYE4fSvUmMKoFT5+B9PuKeu+Dzlrvh M68KI0mxyZ9AxuCdAve0mIr0PpF5zbUo5j+Ri2XIvL2psWHHMvoyuy52HotZv8wNXy rowGosyljnYuHCGANRrHl4SUWDt3lac7cEXQqiGUkQqkOrWPgChsp0LE3hvo1Rrvsq vjyuplnGwsAFrxABkQn+hSjLdcTW1aHAF3THRDcoChee2kG4U8VZ55kUbisWb/Gt3x gqi+wVA/g7Bbw==
Received: from oc11expo32.exchange.mit.edu (18.9.4.113) by oc11exedge1.exchange.mit.edu (18.9.3.17) with Microsoft SMTP Server (TLS) id 15.0.1497.38; Mon, 26 Sep 2022 11:55:11 -0400
Received: from oc11exhyb1.exchange.mit.edu (18.9.1.60) by oc11expo32.exchange.mit.edu (18.9.4.113) with Microsoft SMTP Server (TLS) id 15.0.1497.23; Mon, 26 Sep 2022 11:55:46 -0400
Received: from NAM10-BN7-obe.outbound.protection.outlook.com (104.47.70.101) by oc11exhyb1.exchange.mit.edu (18.9.1.60) with Microsoft SMTP Server (TLS) id 15.0.1497.38 via Frontend Transport; Mon, 26 Sep 2022 11:55:46 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=K+pF+k/Viidhuf9IX20fvoRlurHxSthWUnCIHBcOw3QgIOkgsN6BknKGK1VQWG+3QCOZxh6pI28P3cEGUE+xOG6F34r29zLm0fhly8doOW4VT2IajoaOTHd3OXyc1niXArLiMT8RR7K19GSRoPzt5Sx4mAf0PlF5FdWp7dYwOq6mckFqHrceXmOBPL0hklODa94rrBW9vy1T4RWr5ymFuHZqbzmhpEMXwz9/7KzfX2ZoPZBeY4uwpAIV9hGSFTftzpb56J+IgWevnB0ETY/R9MX95LQH6WNspFbkJRugQO2GzMTaqkVrF0d5Ppheho0U2MC4kCXkSQ1dPPqMzgFg1Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=PBEbsZq4qBEO/JGv1E1Z/1AXrfnu1iJf2ErDOlhIFlU=; b=k+Se2oTP8H1ultn6VNesZO7ryuCSLFM/K1mGXHPN8flwGsoNcihdtOtfZfmZwaGwQ7bcm+KnuZZ1MdrcHw+lYfemIJZ46ivKfXHtI2QGNKv9UbbIZhqkQH549XE3aohulGvKarNDPwsHr/x+hwVgj70+jI0uLrCWPdn4t1rGRY0KrGmM4bUVpT8HMcL/seFwxTHFf/gXlUxuF0znxLwn5GND/U5dLTr67J5JzxMwybPEFxwGhIu11VZafC5FeQLVIw6JzrrB46u0Rc7DN1lsMpv7BfSn/8DB5WS8IH9a9GYffDFqf2SmW6NFRKPzRPqIhB3ntRUNl7/pfYboEpc+7A==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mit.edu; dmarc=pass action=none header.from=mit.edu; dkim=pass header.d=mit.edu; arc=none
Received: from DM6PR01MB4444.prod.exchangelabs.com (2603:10b6:5:78::15) by BN3PR01MB2163.prod.exchangelabs.com (2a01:111:e400:7bb8::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5654.14; Mon, 26 Sep 2022 15:55:45 +0000
Received: from DM6PR01MB4444.prod.exchangelabs.com ([fe80::8d15:cb5:cc17:1a59]) by DM6PR01MB4444.prod.exchangelabs.com ([fe80::8d15:cb5:cc17:1a59%5]) with mapi id 15.20.5654.026; Mon, 26 Sep 2022 15:55:44 +0000
From: Justin Richer <jricher@mit.edu>
To: "internet-drafts@ietf.org" <internet-drafts@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Thread-Topic: I-D Action: draft-ietf-httpbis-message-signatures-13.txt
Thread-Index: AQHY0a+y0svfDmBxg0mEKsCYEzXBmK3x3XK5
Date: Mon, 26 Sep 2022 15:55:44 +0000
Message-ID: <DM6PR01MB4444E34E126200B2C16903B0BD529@DM6PR01MB4444.prod.exchangelabs.com>
References: <166420035235.62474.2114150246980789416@ietfa.amsl.com>
In-Reply-To: <166420035235.62474.2114150246980789416@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=mit.edu;
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: DM6PR01MB4444:EE_|BN3PR01MB2163:EE_
x-ms-office365-filtering-correlation-id: 10904163-cdd3-453a-21e3-08da9fd79265
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:DM6PR01MB4444.prod.exchangelabs.com;PTR:;CAT:NONE;SFS:(13230022)(4636009)(366004)(396003)(136003)(376002)(346002)(39860400002)(451199015)(38070700005)(86362001)(166002)(38100700002)(33656002)(122000001)(2906002)(186003)(75432002)(5660300002)(55016003)(15650500001)(21615005)(26005)(41300700001)(478600001)(966005)(71200400001)(7696005)(6506007)(53546011)(9686003)(66574015)(83380400001)(316002)(110136005)(786003)(91956017)(64756008)(8676002)(66446008)(76116006)(66556008)(8936002)(66946007)(52536014)(66476007);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_DM6PR01MB4444E34E126200B2C16903B0BD529DM6PR01MB4444prod_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: DM6PR01MB4444.prod.exchangelabs.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 10904163-cdd3-453a-21e3-08da9fd79265
X-MS-Exchange-CrossTenant-originalarrivaltime: 26 Sep 2022 15:55:44.9076 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 64afd9ba-0ecf-4acf-bc36-935f6235ba8b
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: fSNffB0sbylNId35X1wdEnbWzeday9P0yHs0k28LcpwdmRxbqfht/d5eOOA7TMQ8
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BN3PR01MB2163
X-OriginatorOrg: mit.edu
X-W3C-Hub-DKIM-Status: validation passed: (address=jricher@mit.edu domain=mit.edu), signature is good
X-W3C-Hub-Spam-Status: No, score=-7.4
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_IRA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1ocqSw-003nLf-1o 3e5d444db0367b4b9a281a55031e183e
X-Original-To: ietf-http-wg@w3.org
Subject: Re: I-D Action: draft-ietf-httpbis-message-signatures-13.txt
Archived-At: <https://www.w3.org/mid/DM6PR01MB4444E34E126200B2C16903B0BD529@DM6PR01MB4444.prod.exchangelabs.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40413
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

TThis changes the "context" parameter name to "tag" and adds a new security considerations discussion from Annabelle.
________________________________
From: internet-drafts@ietf.org <internet-drafts@ietf.org>
Sent: Monday, September 26, 2022 9:52 AM
To: i-d-announce@ietf.org <i-d-announce@ietf.org>
Cc: ietf-http-wg@w3.org <ietf-http-wg@w3.org>
Subject: I-D Action: draft-ietf-httpbis-message-signatures-13.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the HTTP WG of the IETF.

        Title           : HTTP Message Signatures
        Authors         : Annabelle Backman
                          Justin Richer
                          Manu Sporny
  Filename        : draft-ietf-httpbis-message-signatures-13.txt
  Pages           : 101
  Date            : 2022-09-26

Abstract:
   This document describes a mechanism for creating, encoding, and
   verifying digital signatures or message authentication codes over
   components of an HTTP message.  This mechanism supports use cases
   where the full HTTP message may not be known to the signer, and where
   the message may be transformed (e.g., by intermediaries) before
   reaching the verifier.  This document also describes a means for
   requesting that a signature be applied to a subsequent HTTP message
   in an ongoing HTTP exchange.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-httpbis-message-signatures/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-httpbis-message-signatures-13.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-httpbis-message-signatures-13


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

v2.39.1 | Report a Bug | By Email | System Status