Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07
Yaron Sheffer <yaronf.ietf@gmail.com> Tue, 13 April 2021 16:40 UTC
Return-Path: <yaronf.ietf@gmail.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE0063A1E35 for <id-event@ietfa.amsl.com>; Tue, 13 Apr 2021 09:40:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.995
X-Spam-Level:
X-Spam-Status: No, score=-1.995 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KA3mSRqlE14e for <id-event@ietfa.amsl.com>; Tue, 13 Apr 2021 09:40:01 -0700 (PDT)
Received: from mail-wr1-x431.google.com (mail-wr1-x431.google.com [IPv6:2a00:1450:4864:20::431]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4632D3A1E33 for <id-event@ietf.org>; Tue, 13 Apr 2021 09:40:01 -0700 (PDT)
Received: by mail-wr1-x431.google.com with SMTP id j5so16130725wrn.4 for <id-event@ietf.org>; Tue, 13 Apr 2021 09:40:01 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :references:in-reply-to:mime-version; bh=IA4BFhPC+5WvFD9R+SQc0zFDt6kU8vbTlUrdKryizzg=; b=MzpA5+ATxUoJA9sP0sCQe4S7SL514eaLqGO1qo1vZposazII0kE9B3xjTYqiwe0ELx iPKY0L479JM49/gkORXTokz7NtL1HCw2ZTXGGWR8j/cklmbzLR18jOoGMSbdbmU23shH Um68tU7u9xkqwa3d7CraZ81I+s/YFPFCWbtJyqq59rf494HZ6dsrpWswdo6s/crvhjSq QRqQ7lRAm37fzPrYawh1Fj9rIqToJf6QLfHhK4mBQB0J62MdAJ52dwxk62l4ULU5E2W3 t6PKfznV3m+VOdAqbCTk0wLAe9r2W+pzgyoZWET6C0vXy2/uTUP/K+pIWDGsK6vMRXek GOqQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:references:in-reply-to:mime-version; bh=IA4BFhPC+5WvFD9R+SQc0zFDt6kU8vbTlUrdKryizzg=; b=Yi+izr2dpW6TKbUvdLepp4S0m2Y19nGRWX+XFnhSW7l8qwC4066JoihJo9dGKWRTn1 noKCMdA0KYCfpVBhmNjBcJMzkYynpvBIUIeva1Kp6lrSYdw/wZhAr80D1EywhTRYcp4r Pis48x4+zBAn2VD66TLB+kNnegre8Olmxx/KVNj/Uex42TckweXYUWJZllufFAzygw48 faQYSGj4jBNNlSfl4LMXq9mebfREKRrZNNaYnEKn2UWAnEC1hTnqqsmxKjWZtEEwBAeU MlkmMWsWPTnTESMq/7SD67dXq7RrGNLjgI4Hp69TeANe97R1/fKWBJw19ZdxAYhYT6d1 valQ==
X-Gm-Message-State: AOAM530k59FwD7uSXeI4uysS5zeCKe4o28r735hIL8vO/DM5lV/lVGGY NzaqzDr9XF9Wb5VLt2hOIYk=
X-Google-Smtp-Source: ABdhPJxvkVkVSTQT7WoHc0liiVekpOP5Hp5xeWeiuoETf/BDGDvca5YZJPCiF0QiRB+BGGlfxnYtmA==
X-Received: by 2002:a05:6000:1:: with SMTP id h1mr39275797wrx.29.1618331998871; Tue, 13 Apr 2021 09:39:58 -0700 (PDT)
Received: from [172.26.49.35] (pub-corp-42-8.intuit.com. [91.102.42.8]) by smtp.gmail.com with ESMTPSA id e18sm18350412wrc.85.2021.04.13.09.39.57 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 13 Apr 2021 09:39:58 -0700 (PDT)
User-Agent: Microsoft-MacOutlook/16.47.21031401
Date: Tue, 13 Apr 2021 19:39:56 +0300
From: Yaron Sheffer <yaronf.ietf@gmail.com>
To: Justin Richer <jricher@mit.edu>, Tim Cappalli <Tim.Cappalli@microsoft.com>
CC: "id-event@ietf.org" <id-event@ietf.org>, "richanna=40amazon.com@dmarc.ietf.org" <richanna=40amazon.com@dmarc.ietf.org>
Message-ID: <09CF6423-5B3F-4189-A7BB-BBE1F7258C64@gmail.com>
Thread-Topic: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07
References: <53698407-2007-4BD5-AF33-4B9F68B78534@amazon.com> <DE61D721-ECC0-4497-B129-AD7D890DE6AB@mit.edu> <642F2C9F-63FE-4126-B893-F3C901F520FA@mit.edu> <DM6PR00MB0650FC62579754D826250A5195919@DM6PR00MB0650.namprd00.prod.outlook.com> <043200F5-21E6-4F43-ABC7-CFBCB4A3EB07@mit.edu> <8725543C-6BC6-438A-9D8C-5B65BA5A382F@mit.edu>
In-Reply-To: <8725543C-6BC6-438A-9D8C-5B65BA5A382F@mit.edu>
Mime-version: 1.0
Content-type: multipart/alternative; boundary="B_3701187597_380802168"
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/ABjeoq7qg3o66BIoPDMMH8iRobo>
Subject: Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Apr 2021 16:40:06 -0000
(Hats off) I support this addition. Thanks, Yaron From: Id-event <id-event-bounces@ietf.org> on behalf of Justin Richer <jricher@mit.edu> Date: Tuesday, April 13, 2021 at 18:22 To: Tim Cappalli <Tim.Cappalli@microsoft.com> Cc: "id-event@ietf.org" <id-event@ietf.org>, "richanna=40amazon.com@dmarc.ietf.org" <richanna=40amazon.com@dmarc.ietf.org> Subject: Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07 After speaking with the DID working group in the W3C, I’ve submitted a PR to add the DID method: https://github.com/richanna/secevent/pull/2 — Justin On Apr 7, 2021, at 9:10 AM, Justin Richer <jricher@mit.edu> wrote: Annabelle and chairs, any updates on these items? Thanks, — Justin On Mar 10, 2021, at 1:42 PM, Tim Cappalli <Tim.Cappalli@microsoft.com> wrote: +1 Justin From: Id-event <id-event-bounces@ietf.org> on behalf of Justin Richer <jricher@mit.edu> Sent: Wednesday, March 10, 2021 13:39 To: Richard Backman, Annabelle <richanna=40amazon.com@dmarc.ietf.org> Cc: id-event@ietf.org <id-event@ietf.org> Subject: Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07 One more thought: Distributed Identifiers (DIDs) are being finalized in the W3C and their use is becoming more widespread. https://www.w3.org/TR/did-core/ I would like to see “did” as a defined format in this spec. If we don’t define it now, it would be an early entry to the extension registry, so it probably makes sense to define it here. What do you and the chairs think? — Justin On Mar 9, 2021, at 4:16 PM, Justin Richer <jricher@mit.edu> wrote: Annabelle, I just read through this draft, and this is great work! It always amazes me how such a small changing in framing can drastically improve a technical work. It’s much clearer as to what it’s for and how it’s used. I’m curious if this syntax change affects the existing use of this work in RISC, though? I’m not directly familiar with that group’s status. Also, the “opaque” identifier format is precisely what we need for another project, so I’m really glad to see that included in the core. Personally, I think this draft is ready for WGLC and on to publication. — Justin On Mar 8, 2021, at 8:46 PM, Richard Backman, Annabelle <richanna=40amazon.com@dmarc.ietf.org> wrote: Hello Security Events Working Group, I have just published an update to the Subject Identifiers draft, making the following notable changes: The term "Subject Identifier Type" has been replaced with "Identifier Format", and the `subject_type` member has been changed to `format`. This is part of an attempt to further emphasize the difference the fact that Subject Identifiers and Identifier Formats relate to identifiers themselves, not the subjects they identify. Note that this change applies to the IANA registry as well. Added a section for considerations for specifications that define Identifier Formats, prohibiting them from defining rules that make assertions or declarations about the subject, rather than about the identifier. A new format, `opaque` has been added. This is intended for scenarios where an opaque string is used as the identifier, and no additional semantics are asserted about it. (e.g., it is not to be parsed or interpreted as anything other than an identifier) Clarified that "subject" is used in a generic sense, i.e., not specifically referring to subjects of JWTs. Also defined the term "JWT Subject" for the specific case, and updated the draft to use that when referring specifically to a subject of a JWT. URL: https://www.ietf.org/archive/id/draft-ietf-secevent-subject-identifiers-07.txt Status: https://datatracker.ietf.org/doc/draft-ietf-secevent-subject-identifiers/ Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-secevent-subject-identifiers Htmlized: https://tools.ietf.org/html/draft-ietf-secevent-subject-identifiers-07 Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-secevent-subject-identifiers-07 Abstract: Security events communicated within Security Event Tokens may support a variety of identifiers to identify subjects related to the event. This specification formalizes the notion of subject identifiers as structured information that describe a subject, and named formats that define the syntax and semantics for encoding subject identifiers as JSON objects. It also defines a registry for defining and allocating names for such formats, as well as the "sub_id" JSON Web Token (JWT) claim. – Annabelle Backman (she/her) richanna@amazon.com _______________________________________________ Id-event mailing list Id-event@ietf.org https://www.ietf.org/mailman/listinfo/id-event _______________________________________________ Id-event mailing list Id-event@ietf.org https://www.ietf.org/mailman/listinfo/id-event _______________________________________________ Id-event mailing list Id-event@ietf.org https://www.ietf.org/mailman/listinfo/id-event _______________________________________________ Id-event mailing list Id-event@ietf.org https://www.ietf.org/mailman/listinfo/id-event
- [Id-event] New revision: draft-ietf-secevent-subj… Richard Backman, Annabelle
- Re: [Id-event] New revision: draft-ietf-secevent-… Justin Richer
- Re: [Id-event] New revision: draft-ietf-secevent-… Justin Richer
- Re: [Id-event] New revision: draft-ietf-secevent-… Justin Richer
- Re: [Id-event] New revision: draft-ietf-secevent-… Justin Richer
- Re: [Id-event] New revision: draft-ietf-secevent-… Yaron Sheffer