IETF Logo Mail Archive

Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

"Hjelm, Bjorn" <Bjorn.Hjelm@VerizonWireless.com> Fri, 02 August 2019 22:36 UTC

Return-Path: <Bjorn.Hjelm@verizonwireless.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 808E5120077; Fri, 2 Aug 2019 15:36:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=verizonwireless.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id p54sLWtFP418; Fri, 2 Aug 2019 15:35:57 -0700 (PDT)
Received: from smtpout2-tdc.verizon.com (smtpout2-tdc.verizon.com [137.188.104.134]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D137E1200A4; Fri, 2 Aug 2019 15:35:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=verizonwireless.com; i=@verizonwireless.com; q=dns/txt; s=prodmail; t=1564785357; x=1596321357; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=z5QdceGyvT3YW++LeYmWYyve7nPzHzGucT2mSgriYqQ=; b=ngVeMOVBk9i55DU5XX9B4oIEKyLI+YIv2p70FJDs+wkzaTN9syJohwuq oB7MetopcaJrZuMS4oNbV3pGnKvkMO99CsOZhbJswPeTl7hvV1S4uhYU9 qVLADpMVcYrhYmedM8yw5FkE1iyNu77s825vVXz8IBXiR8FswDl9WsnAv U=;
Received: from tbwexch03apd.uswin.ad.vzwcorp.com ([153.114.162.27]) by smtpout2-tdc.verizon.com with ESMTP/TLS/ECDHE-RSA-AES256-SHA384; 02 Aug 2019 22:35:55 +0000
Received: from scwexch18apd.uswin.ad.vzwcorp.com (153.114.130.37) by tbwexch03apd.uswin.ad.vzwcorp.com (153.114.162.27) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 2 Aug 2019 18:35:54 -0400
Received: from scwexch25apd.uswin.ad.vzwcorp.com (153.114.130.44) by scwexch18apd.uswin.ad.vzwcorp.com (153.114.130.37) with Microsoft SMTP Server (TLS) id 15.0.1473.3; Fri, 2 Aug 2019 15:35:53 -0700
Received: from scwexch25apd.uswin.ad.vzwcorp.com ([153.114.130.44]) by scwexch25apd.uswin.ad.vzwcorp.com ([153.114.130.44]) with mapi id 15.00.1473.003; Fri, 2 Aug 2019 15:35:53 -0700
From: "Hjelm, Bjorn" <Bjorn.Hjelm@VerizonWireless.com>
To: Mike Jones <Michael.Jones=40microsoft.com@dmarc.ietf.org>, "Richard Backman, Annabelle" <richanna=40amazon.com@dmarc.ietf.org>, Dick Hardt <dick.hardt@gmail.com>
CC: "id-event@ietf.org" <id-event@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>
Thread-Topic: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt
Thread-Index: AQHVSYDtYtjWIan+6kittZTEWxmE5qbocjgQ
Date: Fri, 02 Aug 2019 22:35:53 +0000
Message-ID: <66afb2c31b824a2b86c12ca68b527c71@scwexch25apd.uswin.ad.vzwcorp.com>
References: <156400473292.14631.1343409782640781856@ietfa.amsl.com> <E270751A-9735-426A-90DD-55C3F7B57FE8@amazon.com> <CAD9ie-s=HdJa4QRYsvEz5-pBBhM-s5Z4xuxXq1ZtTf0vJw=TGg@mail.gmail.com> <919795C8-731F-4200-9641-A1C4838B9161@amazon.com> <DM6PR00MB0572220C896100D4722206E9F5D90@DM6PR00MB0572.namprd00.prod.outlook.com>
In-Reply-To: <DM6PR00MB0572220C896100D4722206E9F5D90@DM6PR00MB0572.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.11.60.250]
Content-Type: multipart/alternative; boundary="_000_66afb2c31b824a2b86c12ca68b527c71scwexch25apduswinadvzwc_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/qj5qChDS8xIPPxJXCsIYg-adF9o>
Subject: Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Aug 2019 22:36:00 -0000

I would agree with Mike.

BR,
Bjorn

From: Id-event [mailto:id-event-bounces@ietf.org] On Behalf Of Mike Jones
Sent: Friday, August 02, 2019 3:23 PM
To: Richard Backman, Annabelle; Dick Hardt
Cc: id-event@ietf.org; i-d-announce@ietf.org
Subject: [E] Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

The registered OpenID Connect claim name is phone_number.  I’d use underscores so the names match.

                                                                -- Mike

From: Id-event <id-event-bounces@ietf.org> On Behalf Of Richard Backman, Annabelle
Sent: Friday, August 2, 2019 3:18 PM
To: Dick Hardt <dick.hardt@gmail.com>
Cc: id-event@ietf.org; i-d-announce@ietf.org
Subject: Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

I believe the “-“ delimiter in subject identifier types is a carryover from RISC, where it matches the delimiters used in event types (“-“ since those appear as part of full event type URIs). Since we’re standardizing subject identifiers outside of RISC’s profile of SET, I’d be fine with switching “iss-sub” and “phone-number” to “iss_sub” and “phone_number”, respectively.

--
Annabelle Richard Backman
AWS Identity


From: Dick Hardt <dick.hardt@gmail.com<mailto:dick.hardt@gmail.com>>
Date: Wednesday, July 24, 2019 at 3:06 PM
To: "Richard Backman, Annabelle" <richanna@amazon.com<mailto:richanna@amazon.com>>
Cc: "i-d-announce@ietf.org<mailto:i-d-announce@ietf.org>" <i-d-announce@ietf.org<mailto:i-d-announce@ietf.org>>, "id-event@ietf.org<mailto:id-event@ietf.org>" <id-event@ietf.org<mailto:id-event@ietf.org>>
Subject: [UNVERIFIED SENDER] Re: [Id-event] I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

What was the reason to have a dash in the type “phone-number” rather than an underscore “phone_number”?

On Wed, Jul 24, 2019 at 4:54 PM Richard Backman, Annabelle <richanna=40amazon..com@dmarc.ietf.org<mailto:40amazon.com@dmarc.ietf.org>> wrote:
This update to the Subject Identifiers for Security Event Tokens draft addresses comments raised at the secevents working group session this week. Specifically:

* Renamed the "phone" type to "phone-number" and its "phone" claim

to "phone_number".

—
Annabelle Backman
AWS Identity

On Jul 24, 2019, at 5:46 PM, "internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>" <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> wrote:

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Security Events WG of the IETF.

       Title           : Subject Identifiers for Security Event Tokens
       Authors         : Annabelle Backman
                         Marius Scurtescu
   Filename        : draft-ietf-secevent-subject-identifiers-05.txt
   Pages           : 15
   Date            : 2019-07-24

Abstract:
  Security events communicated within Security Event Tokens may support
  a variety of identifiers to identify the subject and/or other
  principals related to the event.  This specification formalizes the
  notion of subject identifiers as named sets of well-defined claims
  describing the subject, a mechanism for representing subject
  identifiers within a [JSON] object such as a JSON Web Token [JWT] or
  Security Event Token [SET], and a registry for defining and
  allocating names for these claim sets.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-secevent-subject-identifiers/<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttps-253A-252F-252Fdatatracker.ietf.org-252Fdoc-252Fdraft-2Dietf-2Dsecevent-2Dsubject-2Didentifiers-252F-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743497680-26sdata-3DoWTA1nb9ERYx568GdSZQIwfpkduPS4S2KScql7IqSDM-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=LO2iqd3fJVE2mlQ_TrNVVcZPjlrLcbJMlaW009POUrg&e=>

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-secevent-subject-identifiers-05<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttps-253A-252F-252Ftools.ietf.org-252Fhtml-252Fdraft-2Dietf-2Dsecevent-2Dsubject-2Didentifiers-2D05-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743507672-26sdata-3DdDdIX1beEaUgQoJES4Cg0C5IXzBZsa1ZXfpfvUNAhCg-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=uZ_E5YGb3Uqx7apob6FPRYkV5DqBbvzoA8MlRYdTdaY&e=>
https://datatracker.ietf.org/doc/html/draft-ietf-secevent-subject-identifiers-05<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttps-253A-252F-252Fdatatracker.ietf.org-252Fdoc-252Fhtml-252Fdraft-2Dietf-2Dsecevent-2Dsubject-2Didentifiers-2D05-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743507672-26sdata-3DNgsPxBYezXy92OYZgWgLQ6HPtq4Eamy-252Fo1nbu-252FD-252BPgY-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=NsrpcLW-IC0s5BKBsov4J6fJ4j1duq0Dd9-m-RHXLwo&e=>

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-secevent-subject-identifiers-05<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttps-253A-252F-252Fwww.ietf.org-252Frfcdiff-253Furl2-253Ddraft-2Dietf-2Dsecevent-2Dsubject-2Didentifiers-2D05-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743517669-26sdata-3DBdYDGuypPEmgY7ctUO3tfwi2puwM7rIBbClyqK8cTIY-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=7WBy_jqSOq66nyl6_dQaepzjbom9Omsm2plXamJWd4s&e=>


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttp-253A-252F-252Ftools.ietf.org-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743527665-26sdata-3DuWqmGEKnY-252BD8Y6-252BC568NSs7BwtwJv-252BFcvoDbjEB9Vl4-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=1lQHW0t04wu34o9ydIBoBj8VRsEAWACdQS-55cIwE6M&e=>.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/<https://urldefense.proofpoint.com/v2/url?u=ftp-3A__ftp.ietf.org_internet-2Ddrafts_&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=5aK_0MpJbWBG20HMK1kcMt67Km2IZCg0tFjHWjQ7wWA&e=>

_______________________________________________
Id-event mailing list
Id-event@ietf.org<mailto:Id-event@ietf.org>
https://www.ietf.org/mailman/listinfo/id-event<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttps-253A-252F-252Fwww.ietf.org-252Fmailman-252Flistinfo-252Fid-2Devent-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743527665-26sdata-3DFPDo8uBEspfIqb9SU06VzKPFQqMnuMt0yvdrvZYeCNw-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=JS1JGcK3nUZWcEAgN_bgxn2AIeVLPGVPl285OJfsrRA&e=>
_______________________________________________
Id-event mailing list
Id-event@ietf.org<mailto:Id-event@ietf.org>
https://www.ietf.org/mailman/listinfo/id-event<https://urldefense.proofpoint.com/v2/url?u=https-3A__nam06.safelinks.protection.outlook.com_-3Furl-3Dhttps-253A-252F-252Fwww.ietf.org-252Fmailman-252Flistinfo-252Fid-2Devent-26data-3D02-257C01-257CMichael.Jones-2540microsoft.com-257Caba6951b02954371797708d7179741d7-257C72f988bf86f141af91ab2d7cd011db47-257C1-257C0-257C637003810743537659-26sdata-3DkLDzInm04yegWEjNttjFV-252BowU7anUKdKv9jPq1W0ivc-253D-26reserved-3D0&d=DwMGaQ&c=udBTRvFvXC5Dhqg7UHpJlPps3mZ3LRxpb6__0PomBTQ&r=NMZJHCV8pjvGIH2fTx9z6l7g7-V-a2xW7ISf9uHdz0A&m=nx7vF4rpVFkVWXwmV7LX6e8Yx7uc8VqWwE7w_5XNLas&s=Gk_opYq5aajJX1Cox0K3BShMJnS4ha8rPL838Kw5czM&e=>

v2.23.0 | Report a Bug | By Email