IETF Logo Mail Archive

Re: [Id-event] IETF 100 draft agenda

Dick Hardt <dick.hardt@gmail.com> Wed, 01 November 2017 04:22 UTC

Return-Path: <dick.hardt@gmail.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC12913F966 for <id-event@ietfa.amsl.com>; Tue, 31 Oct 2017 21:22:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.009
X-Spam-Level:
X-Spam-Status: No, score=-0.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H4Oysb0PBBMY for <id-event@ietfa.amsl.com>; Tue, 31 Oct 2017 21:22:24 -0700 (PDT)
Received: from mail-pf0-x22a.google.com (mail-pf0-x22a.google.com [IPv6:2607:f8b0:400e:c00::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1806613F954 for <id-event@ietf.org>; Tue, 31 Oct 2017 21:22:24 -0700 (PDT)
Received: by mail-pf0-x22a.google.com with SMTP id p87so989393pfj.3 for <id-event@ietf.org>; Tue, 31 Oct 2017 21:22:24 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=8bL5Y/XFornyhqJfvU5hIBEv44W6XOa4bObjViFtqUI=; b=ckoDFlO89wmPdhZlBMj0uxJqTEKbmWc/pxbkgpXL+a+ACxzfR36Jqn92cH7t8kriJA FCwbGT821Cbn1uyhCzTMF+4JAfYU4PNZdHMB/EzHpJ4DOGltzhRUJh9HwzYt1uzQQUL0 JMOIj4jBffDSZKUdhBFG1Yf6aWLdDJQfT5eElykaS2d+Njkr/YDoXV2Q2WQcRHZJQJOi ysNFqHc8LsSftHoJ8vo71eeNdOlZkeWdPXtFkOTBHsPL5l9IW5U+m/vefT+49NAx4MF9 PybwTnGI4cIrK0pERoWx/p9uuhr6UHSLUhLd8kRFbWLYIJorfthfs6QmQIi09SS6Ew5C cr8A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=8bL5Y/XFornyhqJfvU5hIBEv44W6XOa4bObjViFtqUI=; b=I3E2Pz6t6j0WcZOiMyp9R46jH96U0MTvV2aFxUFk+eHizKJ+Ll0iwERVPJhzr5hV+y txJkwelnhy42PSYtMQNQFLrSW7FlgO/XIQXnArsEVGuDt/S0kbLgNdcoH+Bd1CFCghE0 e1/G20bn+WWIr8233Z5Q4sw5H/6EXyCg4vZsJUndFWT2yQPNprDQANK+f6d/n75kBaw5 iKq2c4BzOmp4zAAJbm8EY4i6WxpGkjKGzKweHKeUkO1012UM2fehOWuW6kD21jdv+yjW jVmPfy5e+G0yP4dLEnbP4qZCGfy5Tmo1q5d7COAEBCYomJC2Fco3RjiJJ1WHOIwX0a2F vUDQ==
X-Gm-Message-State: AMCzsaVOMcrBZCsfo/3zfef+ttOS5Vq3QYg293eJ/zWiFmKOOYjQ0A54 hLo37VG19O/gzQoMAZJBBBtDgOQtZO9qDk6MEyQ=
X-Google-Smtp-Source: ABhQp+TOOGNqpeO/9e9WdS44yi64wpUK0JVw+L06zPnvt/wdoHSTi/UaykQUljEwgYXL3kNN4e+hco0EvcWbmGc1m8Q=
X-Received: by 10.98.163.193 with SMTP id q62mr4909337pfl.276.1509510143375; Tue, 31 Oct 2017 21:22:23 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.128.78 with HTTP; Tue, 31 Oct 2017 21:22:02 -0700 (PDT)
In-Reply-To: <CAOJhRMZiyZ5c=GX0gz4JSjWEtvRA_quMijTBcZSz_3tw7x+3sw@mail.gmail.com>
References: <CAD9ie-u-P2Cs=yetVAiHDLvUPXkzfuVOYpZV41wQAPd_5RjS5w@mail.gmail.com> <67C37F1B-B6F2-4F00-AF39-CF9C526236A0@oracle.com> <CAD9ie-tJZPo0pKPqXndugaWdzy7az9fhZcDJHGapG78jh5FofQ@mail.gmail.com> <CAOJhRMZiyZ5c=GX0gz4JSjWEtvRA_quMijTBcZSz_3tw7x+3sw@mail.gmail.com>
From: Dick Hardt <dick.hardt@gmail.com>
Date: Tue, 31 Oct 2017 21:22:02 -0700
Message-ID: <CAD9ie-tk9k1rH5B5=VYyuRhczjVwB2ECCGOGekbcaX=bVcuHDw@mail.gmail.com>
To: Adam Dawes <adawes@google.com>
Cc: "Phil Hunt (IDM)" <phil.hunt@oracle.com>, Mike Jones <michael.jones@microsoft.com>, Annabelle Richard <richanna@amazon.com>, SecEvent <id-event@ietf.org>, Marius Scurtescu <mscurtescu@google.com>
Content-Type: multipart/alternative; boundary="001a11405920e17ed6055ce4374d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/io5C23fXX33aEHdcLtjYRV0k6fI>
Subject: Re: [Id-event] IETF 100 draft agenda
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 01 Nov 2017 04:22:27 -0000

Hi Adam

Thanks for raising these points. I think all of them will be covered in the
agenda, but I will clarify where they will be covered.

The agenda is set up for both management APIs to be presented, and then I
have a slot for the WG to discuss how to proceed.
I expect the issues wrt. the SET document will be addressed in the time
allotted for SET, similarly for the "toe" attribute.
The authorization header I would expect to be covered in the SET Delivery
time slot.

wrt. composite object, that also should be discussed in the SET time slot
-- I think the proposal is that subjects NOT be in SET, and that each
profile defines how subjects are represented.

Phil: would you confirm you will be covering these topics in your slot on
SET?

Marius: same for the authorization header in the Delivery discussion?

/Dick


On Tue, Oct 31, 2017 at 12:20 AM, Adam Dawes <adawes@google.com> wrote:

> Thanks for sending out the agenda.
>
> From our perspective, there are two important issues that are blocking
> implementation and I think it would be very helpful to shift the agenda a
> bit so we have more time to discuss these. It would be very beneficial to
> implementors if we could resolve these issues so we can finish our services
> and start to receive operational feedback on the specs.
>
>    - Management API resolution. We have two approaches (Phil's
>    <https://tools.ietf.org/html/draft-hunt-secevent-stream-mgmt-00>  and
>    Marius/Annabelle's
>    <https://datatracker.ietf.org/doc/draft-scurtescu-secevent-event-stream-mgmt-api/>).
>    The management API is the key to being able to scale our implementation and
>    start interop with multiple providers. Perhaps Phil and Marius/Annabelle
>    can each provide a summary of their drafts and we can have try to reach
>    consensus.
>    - Single/multiple event per SET
>    This is currently being discussed on list and within RISC working
>    group. It would be helpful to also nail this down to free up our engineers
>    to build this right the first time instead of making a guessing and having
>    the community later choose differently.
>
> In addition, but less critically, we'd like to propose the following
> topics too:
>
>    - "toe" SET attribute
>    - authorization header for push delivery
>       - receiver configures full authorization header as static/bearer
>       header
>    - composite subject claim defined in SET
>       - present RISC approach as example
>
>
> On Mon, Oct 30, 2017 at 2:39 PM, Dick Hardt <dick.hardt@gmail.com> wrote:
>
>> Hey Phil, Thanks! I'll slot you in for the SET slot. Let's see if one of
>> the other authors will do the Delivery.
>>
>> On Mon, Oct 30, 2017 at 2:32 PM, Phil Hunt (IDM) <phil.hunt@oracle.com>
>> wrote:
>>
>>> Dick,
>>>
>>> I believe Mike won't be able to make the monday meeting. so Mike and I
>>> are working on a presentation for the current state of set that I will do.
>>>
>>> Not much has happened with delivery other than removing verify event
>>> (because that was going in control plane). I can do that very quickly.
>>>
>>> I do have concerns about config on control planes and delivery streams
>>> when firewalls are involved. I will include a couple of slides on this that
>>> may be important to control plane discussion.
>>>
>>> I can do my control plane ID draft proposal after marius/annabelle's. It
>>> will be similar to the deck we discussed at the amazon hq f2f.
>>>
>>> Phil
>>>
>>> On Oct 30, 2017, at 2:09 PM, Dick Hardt <dick.hardt@gmail.com> wrote:
>>>
>>> Here is the draft agenda. Mike, Phil, Marius, Annabelle - please let me
>>> know who is presenting what where it is xxx
>>>
>>> Thanks!
>>>
>>> Here are the documents we will be discussing:
>>>
>>> https://datatracker.ietf.org/doc/draft-ietf-secevent-delivery/
>>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dietf-2Dsecevent-2Ddelivery_&d=DwMFaQ&c=RoP1YumCXCgaWHvlZYR8PZh8Bv7qIrMUB65eapI_JnE&r=na5FVzBTWmanqWNy4DpctyXPpuYqPkAI1aLcLN4KZNA&m=Uluwi3dKSdNUwdiLtSP9giOhZid7jXJ9EYVbh2QL6vs&s=X8effseMjaVrorik11cxrRI-bs3SnJC8dZrtyE_Frzc&e=>
>>> https://datatracker.ietf.org/doc/draft-ietf-secevent-token/
>>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dietf-2Dsecevent-2Dtoken_&d=DwMFaQ&c=RoP1YumCXCgaWHvlZYR8PZh8Bv7qIrMUB65eapI_JnE&r=na5FVzBTWmanqWNy4DpctyXPpuYqPkAI1aLcLN4KZNA&m=Uluwi3dKSdNUwdiLtSP9giOhZid7jXJ9EYVbh2QL6vs&s=Bhsx1KCP0LaIZS2Ds3UTMnMSAoCVbo24WpxlSgTwW3M&e=>
>>> https://datatracker.ietf.org/doc/draft-scurtescu-secevent-ev
>>> ent-stream-mgmt-api/
>>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dscurtescu-2Dsecevent-2Devent-2Dstream-2Dmgmt-2Dapi_&d=DwMFaQ&c=RoP1YumCXCgaWHvlZYR8PZh8Bv7qIrMUB65eapI_JnE&r=na5FVzBTWmanqWNy4DpctyXPpuYqPkAI1aLcLN4KZNA&m=Uluwi3dKSdNUwdiLtSP9giOhZid7jXJ9EYVbh2QL6vs&s=mcaEERiRwA93hAlqRNn-7upsprLemACARBfCG88a_KY&e=>
>>> https://datatracker.ietf.org/doc/draft-hunt-secevent-stream-mgmt/
>>> <https://urldefense.proofpoint.com/v2/url?u=https-3A__datatracker.ietf.org_doc_draft-2Dhunt-2Dsecevent-2Dstream-2Dmgmt_&d=DwMFaQ&c=RoP1YumCXCgaWHvlZYR8PZh8Bv7qIrMUB65eapI_JnE&r=na5FVzBTWmanqWNy4DpctyXPpuYqPkAI1aLcLN4KZNA&m=Uluwi3dKSdNUwdiLtSP9giOhZid7jXJ9EYVbh2QL6vs&s=bqT3s9Srdn6iMJDjWvSk_nZL7qud6yrBD6LH5Qr09cA&e=>
>>>
>>> /Dick
>>>
>>> -----
>>> IETF 100 Singapore
>>> Bras Basah Monday Nov 13, 2017, 13:30 - 15:30
>>>
>>> Agenda Setting                          Dick Hardt (chair)        13:30
>>> - 13:40
>>> Security Event Token (SET)              xxx                       13:40
>>> - 14:00
>>> SET Delivery using HTTP                 xxx                       14:00
>>> - 14:20
>>> Chair Slides on Managment APIs          Dick Hardt (chair)        14:20
>>> - 14:30
>>> Management API for SET Event Streams    xxx                       14:30
>>> - 14:50
>>> SET Stream Managment and Provisioning   Phil Hunt                 14:50
>>> - 15:10
>>> Management API Discussion               Dick Hardt (chair)        15:10
>>> - 15:20
>>> AOB                                     Dick Hardt (chair)        15:20
>>> - 15:30
>>>
>>>
>>>
>>>
>>
>>
>> --
>> Subscribe to the HARDTWARE <http://hardtware.com/> mail list to learn
>> about projects I am working on!
>>
>> _______________________________________________
>> Id-event mailing list
>> Id-event@ietf.org
>> https://www.ietf.org/mailman/listinfo/id-event
>>
>>
>
>
> --
> Adam Dawes | Sr. Product Manager | adawes@google.com | +1 650-214-2410
> <(650)%20214-2410>
>
>


-- 
Subscribe to the HARDTWARE <http://hardtware.com/> mail list to learn about
projects I am working on!

v2.23.0 | Report a Bug | By Email