Re: [Id-event] I-D Action: draft-ietf-secevent-token-01.txt
Phil Hunt <phil.hunt@oracle.com> Fri, 10 March 2017 05:42 UTC
Return-Path: <phil.hunt@oracle.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1B94F1295B5 for <id-event@ietfa.amsl.com>; Thu, 9 Mar 2017 21:42:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.702
X-Spam-Level:
X-Spam-Status: No, score=-3.702 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_SORBS_SPAM=0.5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cC7qlTzwril5 for <id-event@ietfa.amsl.com>; Thu, 9 Mar 2017 21:42:33 -0800 (PST)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 65CC012941C for <id-event@ietf.org>; Thu, 9 Mar 2017 21:42:33 -0800 (PST)
Received: from userv0022.oracle.com (userv0022.oracle.com [156.151.31.74]) by userp1040.oracle.com (Sentrion-MTA-4.3.2/Sentrion-MTA-4.3.2) with ESMTP id v2A5gWTr015222 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <id-event@ietf.org>; Fri, 10 Mar 2017 05:42:33 GMT
Received: from userv0122.oracle.com (userv0122.oracle.com [156.151.31.75]) by userv0022.oracle.com (8.14.4/8.14.4) with ESMTP id v2A5gWUp019646 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for <id-event@ietf.org>; Fri, 10 Mar 2017 05:42:32 GMT
Received: from abhmp0018.oracle.com (abhmp0018.oracle.com [141.146.116.24]) by userv0122.oracle.com (8.14.4/8.14.4) with ESMTP id v2A5gWwx017287 for <id-event@ietf.org>; Fri, 10 Mar 2017 05:42:32 GMT
Received: from [10.0.1.7] (/24.86.190.97) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Thu, 09 Mar 2017 21:42:32 -0800
From: Phil Hunt <phil.hunt@oracle.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_FA28ADFB-F131-4082-A2D8-7A7D9FF83A33"
Message-Id: <F951B7AD-B753-4A0C-A125-2431D12D24A3@oracle.com>
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
Date: Thu, 09 Mar 2017 21:42:30 -0800
References: <148912292495.5730.8052084943020099623@ietfa.amsl.com>
To: ID Events Mailing List <id-event@ietf.org>
In-Reply-To: <148912292495.5730.8052084943020099623@ietfa.amsl.com>
X-Mailer: Apple Mail (2.3124)
X-Source-IP: userv0022.oracle.com [156.151.31.74]
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/WHhBRYgToOxOwe1ukGS5p5YHquA>
Subject: Re: [Id-event] I-D Action: draft-ietf-secevent-token-01.txt
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Mar 2017 05:42:35 -0000
After a fair amount of feedback from the Seoul meeting and some feeback from the RISC group plus the recent discussions on the list, I did a substantial re-working of the editorial text. Changes include: * Adopting Transmitter/Receiver/Stream terminology * Re-working of the sections into Data Plane vs. Control plane with new introductory text showing the relationship between transmitters and receivers (simplex and duplex). * The Control Planes MTI only includes the GET request necessary for Receivers to check for errors. * The SCIM create and update features are moved to a separate OPTIONAL section The optionality was also in aid to help some pilots get started. Some people would like to begin exchanging SETs and doing that with the GET was a simple way to get started. Regarding the optionality of Create/Update in the Control Plane — there is some discussion in the group as to whether stream provisioning be automated or done through out-of-band administrative UIs. The early thinking in the RISC group was the number of relationships is small, so not a big priority. However some of us are exploring other event distribution systems and do have concerns about how IDPs and RPs tend to fan out in a hub and spoke fashion. There may also some mobile scenarios. This draft does not include any specific proposals (yet) for handling the subject enrolment requirement Dick has brought forward. I’d like to work through the use case some more before adding it. Phil Oracle Corporation, Identity Cloud Architect & Standards @independentid www.independentid.com <http://www.independentid.com/>phil.hunt@oracle.com <mailto:phil.hunt@oracle.com> > On Mar 9, 2017, at 9:15 PM, internet-drafts@ietf.org wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts directories. > This draft is a work item of the Security Events of the IETF. > > Title : Security Event Token (SET) > Authors : Phil Hunt > William Denniss > Morteza Ansari > Michael B. Jones > Filename : draft-ietf-secevent-token-01.txt > Pages : 18 > Date : 2017-03-09 > > Abstract: > This specification defines the Security Event Token, which may be > distributed via a protocol such as HTTP. The Security Event Token > (SET) specification profiles the JSON Web Token (JWT), which can be > optionally signed and/or encrypted. A SET describes a statement of > fact from the perspective of an issuer that it intends to share with > one or more receivers. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-secevent-token/ > > There's also a htmlized version available at: > https://tools.ietf.org/html/draft-ietf-secevent-token-01 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-secevent-token-01 > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > Id-event mailing list > Id-event@ietf.org > https://www.ietf.org/mailman/listinfo/id-event
- [Id-event] I-D Action: draft-ietf-secevent-token-… internet-drafts
- Re: [Id-event] I-D Action: draft-ietf-secevent-to… Phil Hunt
- [Id-event] draft-hunt-secevent-distribution-01, w… Yaron Sheffer