IETF Logo Mail Archive

Re: [Id-event] Draft-06 issue re: subject principal grouping

Justin Richer <jricher@mit.edu> Wed, 30 September 2020 20:51 UTC

Return-Path: <jricher@mit.edu>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F40313A095D; Wed, 30 Sep 2020 13:51:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.896
X-Spam-Level:
X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M4dgdgcS26bP; Wed, 30 Sep 2020 13:51:08 -0700 (PDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D35323A0B8B; Wed, 30 Sep 2020 13:51:04 -0700 (PDT)
Received: from [192.168.1.11] (static-71-174-62-56.bstnma.fios.verizon.net [71.174.62.56]) (authenticated bits=0) (User authenticated as jricher@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 08UKp14T030745 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 30 Sep 2020 16:51:03 -0400
From: Justin Richer <jricher@mit.edu>
Message-Id: <33AA53B6-D6E1-498C-AC47-470ABB558BDB@mit.edu>
Content-Type: multipart/alternative; boundary="Apple-Mail=_AC846E37-D53E-4EF7-B0BD-94AAE95AC3D4"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.1\))
Date: Wed, 30 Sep 2020 16:51:01 -0400
In-Reply-To: <CAMCkG5u5YjqNrQu=Uth7F=QPvAy9-BwBCoQcMXd=ihMFjcHcmw@mail.gmail.com>
Cc: SecEvent <id-event@ietf.org>
To: Atul Tulshibagwale <atultulshi=40google.com@dmarc.ietf.org>
References: <CAMCkG5u5YjqNrQu=Uth7F=QPvAy9-BwBCoQcMXd=ihMFjcHcmw@mail.gmail.com>
X-Mailer: Apple Mail (2.3608.120.23.2.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/jut8N2A5_hejPA3jJZog00Xlk-E>
Subject: Re: [Id-event] Draft-06 issue re: subject principal grouping
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 30 Sep 2020 20:51:10 -0000

Atul,

I raised this in my review as well. I think the goal of the restriction was to make the subject identifier objects compact and easily processed without getting a bunch of arbitrary stuff strung onto them, but I think the MUST NOT might go too far toward that.


I would like to see the requirement relaxed but also have guidance as to how and when to add additional members to the object. Maybe the subject_type field determines the REQUIRED fields and their semantics, but extensions MAY add new fields? And that a receiver MUST ignore fields they don’t understand? 



 — Justin

> On Sep 29, 2020, at 8:28 PM, Atul Tulshibagwale <atultulshi=40google.com@dmarc.ietf.org> wrote:
> 
> Hi Annabelle,
> After reviewing the draft 06 <https://github.com/richanna/secevent/blob/master/draft-ietf-secevent-subject-identifiers.txt> (document dated Sep 04), there's one issue that I feel needs to be addressed:
> 
> The sentence on line 246 ("A Subject Identifier MUST NOT contain any members...") has the consequence that if we need to add claims in a specific subject identifier type (e.g. email), then we will need to define new subject identifier types.
> 
> As discussed earlier, I am interested in adding a "Subject Principal Administrative Grouping" or SPAG as a property of any subject identifier. This is important because the same principal may appear in different administrative groupings, and without the disambiguation, it will be impossible to figure out which SPAG the event that includes a subject identifier applies to.
> 
> For example, if the user "a@b.com <mailto:a@b.com>" is present in two tenants of a service that acts as a SSE Receiver. Say the tenant names in which this user occurs is "B.com" and "C.com". This can happen if "a@b.com <mailto:a@b.com>" is an employee of the tenant B.com, but is on a contract for a project that is run by the tenant "C.com".
> 
> If the event received only has the subject:
> "subject" : {
>   "subject_type" : "email",
>   "email" : "a@b.com <mailto:a@b.com>"
> }
> 
> Then it will be impossible for the receiver to determine whether the event applies to the tenant B.com or C.com. If on the other hand, an optional claim "spag_id" is added, then the subject looks like:
> 
> "subject" : {
>   "subject_type" : "email",
>   "email" : "a@b.com <mailto:a@b.com>",
>   "spag_id" : "B.com"
> }
> 
> This disambiguates the particular grouping that the event applies to.
> 
> So, I feel there are at least two ways of addressing this concern:
> Include SPAGs as a concept in the Subject Identifiers spec and allow a "spag_id" claim in any subject identifier
> Drop the requirement on line 246, and allow subject identifiers to have additional claims, which may be defined elsewhere.
> Thanks,
> Atul
> 
> _______________________________________________
> Id-event mailing list
> Id-event@ietf.org
> https://www.ietf.org/mailman/listinfo/id-event

v2.23.0 | Report a Bug | By Email