IETF Logo Mail Archive

Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

Mike Jones <Michael.Jones@microsoft.com> Fri, 02 August 2019 22:23 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 89EB9120059; Fri, 2 Aug 2019 15:23:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.801
X-Spam-Level:
X-Spam-Status: No, score=-1.801 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URI_HEX=0.1] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YJxUMm3k-Q6y; Fri, 2 Aug 2019 15:23:26 -0700 (PDT)
Received: from NAM06-DM3-obe.outbound.protection.outlook.com (mail-eopbgr640138.outbound.protection.outlook.com [40.107.64.138]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D76B1200A4; Fri, 2 Aug 2019 15:23:26 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Vj86awzbDBBk7rGDYNuXqgxOZxc8oJSQotVTfxLSyVB7yx++eBfM4Xq887gN+7HCJonUKaz4Kdoo64le246G/w9uBdyZeZGszGdYwivnoguznfMoFzxWDl0ufe6pp+k+wWhtrYfJ3051P876N52au/V41zf8AcOmjKzrxxaSkHLsC6T5qG42vjEGbwtInRNW3b2VNHQTSRPZ+GAjQkGQgJ/6YVgIHQQyX4sEke++fNL8W1ztbK8U1AooCrn1bv/N2uuSCmBv8caHNVnkRhtq50j9oWqnmuNWQZvK0wubWeMwzKHuFwq3ywpcOaNHN6a+E7LNNb4bL4zc870dVsBJow==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SYoKqrjWiBHwu/UWHftXSpslOnOFyMxN3v/Q3x4ipjI=; b=YX21FYwYG1ty4maLd7Dyge9pVT8DPFaRm8NQ9vMlEoNDW6E5uo3Fc0WFQejhNz8O5IECmlNSBd3xn+La/Mx4JIJxxCu+TVp33Z+jFUhW+0BRPdqZn81T94OmmaB/UrRylfoqBLLa8P722nzlRHDhU4ImUYiLnh0zoyD3Fy0xGKQNExUMw1BMRz/0UvQtsoMn9OfB8bAsOrWeQ8j0QsJoPEnejAbP/KVEBk7J9csvmmaQ04NZgRPiDJ1d7M/dmNoz6gVjZ53RbpRsjGHrFpZwvzOv/VK/zob7Y5DTISZkfcDvbqEdH3shMY0Gxsu/ksFdpM749L+SUr/yMB3LmM+0mA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SYoKqrjWiBHwu/UWHftXSpslOnOFyMxN3v/Q3x4ipjI=; b=P4fz7BM+kH4EGjKV0PdWbFs9a19HByrdABCwoLi36AVWbygA0MEbRYxw1rBfF/QpDIsWsaDwPrGC//bjX94z3GL6CyCgVg61BucxjUD3PZs9boKzSz5dPC6mLGqUL6e2zsJ0ieIjFa2nhJoAeQJalE+2/+D7b4wLnuf5j4kvly8=
Received: from DM6PR00MB0572.namprd00.prod.outlook.com (20.179.51.15) by DM6PR00MB0587.namprd00.prod.outlook.com (20.179.51.206) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2178.0; Fri, 2 Aug 2019 22:23:24 +0000
Received: from DM6PR00MB0572.namprd00.prod.outlook.com ([fe80::e421:fe1d:ff5f:d2ae]) by DM6PR00MB0572.namprd00.prod.outlook.com ([fe80::e421:fe1d:ff5f:d2ae%4]) with mapi id 15.20.2178.000; Fri, 2 Aug 2019 22:23:24 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "Richard Backman, Annabelle" <richanna=40amazon.com@dmarc.ietf.org>, Dick Hardt <dick.hardt@gmail.com>
CC: "id-event@ietf.org" <id-event@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>
Thread-Topic: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt
Thread-Index: AQHVSYAixXen83N9lkCoY9A39EGb16bobo/g
Date: Fri, 02 Aug 2019 22:23:23 +0000
Message-ID: <DM6PR00MB0572220C896100D4722206E9F5D90@DM6PR00MB0572.namprd00.prod.outlook.com>
References: <156400473292.14631.1343409782640781856@ietfa.amsl.com> <E270751A-9735-426A-90DD-55C3F7B57FE8@amazon.com> <CAD9ie-s=HdJa4QRYsvEz5-pBBhM-s5Z4xuxXq1ZtTf0vJw=TGg@mail.gmail.com> <919795C8-731F-4200-9641-A1C4838B9161@amazon.com>
In-Reply-To: <919795C8-731F-4200-9641-A1C4838B9161@amazon.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=feedf96a-0518-4c21-b0a6-000030c4232c; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-08-02T22:22:33-0800; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [2001:4898:80e8:2:788e:cc58:9fc8:1b5e]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 22935f39-3e13-4579-70e4-08d71798088c
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:DM6PR00MB0587;
x-ms-traffictypediagnostic: DM6PR00MB0587:
x-ms-exchange-purlcount: 6
x-microsoft-antispam-prvs: <DM6PR00MB05871C013187DDF2B29BBB9FF5D90@DM6PR00MB0587.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:4941;
x-forefront-prvs: 011787B9DD
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(396003)(136003)(39860400002)(366004)(376002)(346002)(199004)(189003)(7736002)(8676002)(71190400001)(102836004)(8936002)(64756008)(66476007)(66556008)(66574012)(66446008)(256004)(66946007)(186003)(81166006)(71200400001)(7696005)(6246003)(5660300002)(46003)(6506007)(14444005)(81156014)(25786009)(52536014)(14454004)(74316002)(4326008)(316002)(76176011)(6436002)(9686003)(2906002)(476003)(8990500004)(236005)(478600001)(55016002)(966005)(76116006)(110136005)(486006)(53546011)(54906003)(6306002)(790700001)(6116002)(54896002)(86362001)(22452003)(229853002)(68736007)(99286004)(10290500003)(53936002)(10090500001)(33656002)(11346002)(446003)(606006); DIR:OUT; SFP:1102; SCL:1; SRVR:DM6PR00MB0587; H:DM6PR00MB0572.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: vKLgEvCw1rOCKc5VR6HikiYUgbOzBKWwQw295bpPzC7hQCgXQ1nQnUHMnRMqH+RPfTlCJSt6iarJZN6kTVmligRdHU/ZVIgAkeRMBX4hVBQFrr5HcmHtdslX6LErqUmR/kL8o9Q5xzAEzLVJUBZ9ruYEEox3K/th0niv4jcizg2PtPxVE1L/qXsfKCuMYFVsVnmm96aSuEZj6KQuzHLZZdmtYH6PNvdIEKYx+N4swDg4gStBO4e25bFVKYZMpe963ink+LYzTAcp9wBGUhQ9AsEIy8jDH9Vu1DSnNrN/yY+T7jRmbga0axzdIynrBDq9VgHwKH1ikMMEWM/bqJsElY8TWim/JgoqHNH5bo56CUgxRB9kuljpYAwZVFWvWKrinHZJVpqDZMRV37sCekxn9YhO2GQvLpm41jBaWUlGqHM=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_DM6PR00MB0572220C896100D4722206E9F5D90DM6PR00MB0572namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 22935f39-3e13-4579-70e4-08d71798088c
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Aug 2019 22:23:23.9061 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: zV5emfcoJh3IoLuhi/vEftd1NRKNV0JOIjKkQnqYIoF6IkZHC6Y3byf0TGMRSO91Ybu792qLk2KQTB7e9ozPQQ==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR00MB0587
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/MXl-IfWBDZ4EYQwLbbHLda4TCbw>
Subject: Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Aug 2019 22:23:29 -0000

The registered OpenID Connect claim name is phone_number.  I’d use underscores so the names match.

                                                                -- Mike

From: Id-event <id-event-bounces@ietf.org> On Behalf Of Richard Backman, Annabelle
Sent: Friday, August 2, 2019 3:18 PM
To: Dick Hardt <dick.hardt@gmail.com>
Cc: id-event@ietf.org; i-d-announce@ietf.org
Subject: Re: [Id-event] [UNVERIFIED SENDER] Re: I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

I believe the “-“ delimiter in subject identifier types is a carryover from RISC, where it matches the delimiters used in event types (“-“ since those appear as part of full event type URIs). Since we’re standardizing subject identifiers outside of RISC’s profile of SET, I’d be fine with switching “iss-sub” and “phone-number” to “iss_sub” and “phone_number”, respectively.

--
Annabelle Richard Backman
AWS Identity


From: Dick Hardt <dick.hardt@gmail.com<mailto:dick.hardt@gmail.com>>
Date: Wednesday, July 24, 2019 at 3:06 PM
To: "Richard Backman, Annabelle" <richanna@amazon.com<mailto:richanna@amazon.com>>
Cc: "i-d-announce@ietf.org<mailto:i-d-announce@ietf.org>" <i-d-announce@ietf.org<mailto:i-d-announce@ietf.org>>, "id-event@ietf.org<mailto:id-event@ietf.org>" <id-event@ietf.org<mailto:id-event@ietf.org>>
Subject: [UNVERIFIED SENDER] Re: [Id-event] I-D Action: draft-ietf-secevent-subject-identifiers-05.txt

What was the reason to have a dash in the type “phone-number” rather than an underscore “phone_number”?

On Wed, Jul 24, 2019 at 4:54 PM Richard Backman, Annabelle <richanna=40amazon..com@dmarc.ietf.org<mailto:40amazon.com@dmarc.ietf.org>> wrote:
This update to the Subject Identifiers for Security Event Tokens draft addresses comments raised at the secevents working group session this week. Specifically:

* Renamed the "phone" type to "phone-number" and its "phone" claim

to "phone_number".

—
Annabelle Backman
AWS Identity

On Jul 24, 2019, at 5:46 PM, "internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>" <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> wrote:

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Security Events WG of the IETF.

       Title           : Subject Identifiers for Security Event Tokens
       Authors         : Annabelle Backman
                         Marius Scurtescu
   Filename        : draft-ietf-secevent-subject-identifiers-05.txt
   Pages           : 15
   Date            : 2019-07-24

Abstract:
  Security events communicated within Security Event Tokens may support
  a variety of identifiers to identify the subject and/or other
  principals related to the event.  This specification formalizes the
  notion of subject identifiers as named sets of well-defined claims
  describing the subject, a mechanism for representing subject
  identifiers within a [JSON] object such as a JSON Web Token [JWT] or
  Security Event Token [SET], and a registry for defining and
  allocating names for these claim sets.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-secevent-subject-identifiers/<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-secevent-subject-identifiers%2F&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743497680&sdata=oWTA1nb9ERYx568GdSZQIwfpkduPS4S2KScql7IqSDM%3D&reserved=0>

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-secevent-subject-identifiers-05<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-secevent-subject-identifiers-05&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743507672&sdata=dDdIX1beEaUgQoJES4Cg0C5IXzBZsa1ZXfpfvUNAhCg%3D&reserved=0>
https://datatracker.ietf.org/doc/html/draft-ietf-secevent-subject-identifiers-05<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-secevent-subject-identifiers-05&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743507672&sdata=NgsPxBYezXy92OYZgWgLQ6HPtq4Eamy%2Fo1nbu%2FD%2BPgY%3D&reserved=0>

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-secevent-subject-identifiers-05<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Frfcdiff%3Furl2%3Ddraft-ietf-secevent-subject-identifiers-05&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743517669&sdata=BdYDGuypPEmgY7ctUO3tfwi2puwM7rIBbClyqK8cTIY%3D&reserved=0>


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org<https://nam06.safelinks.protection.outlook.com/?url=http%3A%2F%2Ftools.ietf.org&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743527665&sdata=uWqmGEKnY%2BD8Y6%2BC568NSs7BwtwJv%2BFcvoDbjEB9Vl4%3D&reserved=0>.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
Id-event mailing list
Id-event@ietf.org<mailto:Id-event@ietf.org>
https://www.ietf.org/mailman/listinfo/id-event<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fid-event&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743527665&sdata=FPDo8uBEspfIqb9SU06VzKPFQqMnuMt0yvdrvZYeCNw%3D&reserved=0>
_______________________________________________
Id-event mailing list
Id-event@ietf.org<mailto:Id-event@ietf.org>
https://www.ietf.org/mailman/listinfo/id-event<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fid-event&data=02%7C01%7CMichael.Jones%40microsoft.com%7Caba6951b02954371797708d7179741d7%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637003810743537659&sdata=kLDzInm04yegWEjNttjFV%2BowU7anUKdKv9jPq1W0ivc%3D&reserved=0>

v2.23.0 | Report a Bug | By Email