IETF Logo Mail Archive

Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07

Justin Richer <jricher@mit.edu> Tue, 13 April 2021 15:22 UTC

Return-Path: <jricher@mit.edu>
X-Original-To: id-event@ietfa.amsl.com
Delivered-To: id-event@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 850EF3A1AFD; Tue, 13 Apr 2021 08:22:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.795
X-Spam-Level:
X-Spam-Status: No, score=-1.795 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JXvJm9uzrYXu; Tue, 13 Apr 2021 08:22:19 -0700 (PDT)
Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1603B3A1AED; Tue, 13 Apr 2021 08:22:18 -0700 (PDT)
Received: from [192.168.1.22] (static-71-174-62-56.bstnma.fios.verizon.net [71.174.62.56]) (authenticated bits=0) (User authenticated as jricher@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 13DFMGqQ023690 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 13 Apr 2021 11:22:17 -0400
From: Justin Richer <jricher@mit.edu>
Message-Id: <8725543C-6BC6-438A-9D8C-5B65BA5A382F@mit.edu>
Content-Type: multipart/alternative; boundary="Apple-Mail=_7983AB32-4AA5-47EE-8B2D-52A3EACE948C"
Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.4\))
Date: Tue, 13 Apr 2021 11:22:16 -0400
In-Reply-To: <043200F5-21E6-4F43-ABC7-CFBCB4A3EB07@mit.edu>
Cc: "id-event@ietf.org" <id-event@ietf.org>, "richanna=40amazon.com@dmarc.ietf.org" <richanna=40amazon.com@dmarc.ietf.org>
To: Tim Cappalli <Tim.Cappalli@microsoft.com>
References: <53698407-2007-4BD5-AF33-4B9F68B78534@amazon.com> <DE61D721-ECC0-4497-B129-AD7D890DE6AB@mit.edu> <642F2C9F-63FE-4126-B893-F3C901F520FA@mit.edu> <DM6PR00MB0650FC62579754D826250A5195919@DM6PR00MB0650.namprd00.prod.outlook.com> <043200F5-21E6-4F43-ABC7-CFBCB4A3EB07@mit.edu>
X-Mailer: Apple Mail (2.3608.120.23.2.4)
Archived-At: <https://mailarchive.ietf.org/arch/msg/id-event/t_wUsHDvlIfw7ioNXQgzzn-YDx0>
Subject: Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07
X-BeenThere: id-event@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "A mailing list to discuss the potential solution for a common identity event messaging format and distribution system." <id-event.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/id-event>, <mailto:id-event-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/id-event/>
List-Post: <mailto:id-event@ietf.org>
List-Help: <mailto:id-event-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/id-event>, <mailto:id-event-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Apr 2021 15:22:24 -0000

After speaking with the DID working group in the W3C, I’ve submitted a PR to add the DID method:

https://github.com/richanna/secevent/pull/2 <https://github.com/richanna/secevent/pull/2>

 — Justin

> On Apr 7, 2021, at 9:10 AM, Justin Richer <jricher@mit.edu> wrote:
> 
> Annabelle and chairs, any updates on these items?
> 
> Thanks,
>  — Justin
> 
>> On Mar 10, 2021, at 1:42 PM, Tim Cappalli <Tim.Cappalli@microsoft.com <mailto:Tim.Cappalli@microsoft.com>> wrote:
>> 
>> +1 Justin
>> From: Id-event <id-event-bounces@ietf.org <mailto:id-event-bounces@ietf.org>> on behalf of Justin Richer <jricher@mit.edu <mailto:jricher@mit.edu>>
>> Sent: Wednesday, March 10, 2021 13:39
>> To: Richard Backman, Annabelle <richanna=40amazon.com@dmarc.ietf.org <mailto:richanna=40amazon.com@dmarc.ietf.org>>
>> Cc: id-event@ietf.org <mailto:id-event@ietf.org> <id-event@ietf.org <mailto:id-event@ietf.org>>
>> Subject: Re: [Id-event] New revision: draft-ietf-secevent-subject-identifiers-07
>>  
>> One more thought:
>> 
>> Distributed Identifiers (DIDs) are being finalized in the W3C and their use is becoming more widespread.
>> 
>> https://www.w3.org/TR/did-core/ <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.w3.org%2FTR%2Fdid-core%2F&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795201447%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=LXfaNWKpO0SEcXPYZsf8SRgO48S9BQIKgLmVlBiZUL0%3D&reserved=0>
>> 
>> I would like to see “did” as a defined format in this spec. If we don’t define it now, it would be an early entry to the extension registry, so it probably makes sense to define it here. What do you and the chairs think?
>> 
>>  — Justin
>> 
>>> On Mar 9, 2021, at 4:16 PM, Justin Richer <jricher@mit.edu <mailto:jricher@mit.edu>> wrote:
>>> 
>>> Annabelle,
>>> 
>>> I just read through this draft, and this is great work! It always amazes me how such a small changing in framing can drastically improve a technical work. It’s much clearer as to what it’s for and how it’s used. I’m curious if this syntax change affects the existing use of this work in RISC, though? I’m not directly familiar with that group’s status.
>>> 
>>> Also, the “opaque” identifier format is precisely what we need for another project, so I’m really glad to see that included in the core.
>>> 
>>> Personally, I think this draft is ready for WGLC and on to publication.
>>> 
>>>  — Justin
>>> 
>>>> On Mar 8, 2021, at 8:46 PM, Richard Backman, Annabelle <richanna=40amazon.com@dmarc.ietf.org <mailto:richanna=40amazon.com@dmarc.ietf.org>> wrote:
>>>> 
>>>> Hello Security Events Working Group,
>>>> 
>>>> I have just published an update to the Subject Identifiers draft, making the following notable changes:
>>>> 
>>>> The term "Subject Identifier Type" has been replaced with "Identifier Format", and the `subject_type` member has been changed to `format`. This is part of an attempt to further emphasize the difference the fact that Subject Identifiers and Identifier Formats relate to identifiers themselves, not the subjects they identify.
>>>> 
>>>> Note that this change applies to the IANA registry as well.
>>>> 
>>>> Added a section for considerations for specifications that define Identifier Formats, prohibiting them from defining rules that make assertions or declarations about the subject, rather than about the identifier.
>>>> 
>>>> A new format, `opaque` has been added. This is intended for scenarios where an opaque string is used as the identifier, and no additional semantics are asserted about it. (e.g., it is not to be parsed or interpreted as anything other than an identifier)
>>>> 
>>>> Clarified that "subject" is used in a generic sense, i.e., not specifically referring to subjects of JWTs. Also defined the term "JWT Subject" for the specific case, and updated the draft to use that when referring specifically to a subject of a JWT.
>>>> 
>>>> URL:            https://www.ietf.org/archive/id/draft-ietf-secevent-subject-identifiers-07.txt <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Farchive%2Fid%2Fdraft-ietf-secevent-subject-identifiers-07.txt&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795201447%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=xaxH694j1XVyDYkr3EAEDE9bLitSOBf5VjcbK%2BQhYuw%3D&reserved=0>
>>>> Status:         https://datatracker.ietf.org/doc/draft-ietf-secevent-subject-identifiers/ <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-secevent-subject-identifiers%2F&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795211444%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=Y%2Fr1LNE0Vu0jaDzy%2F9YGVUUdjeOkjMp2ZytQg8JXVPg%3D&reserved=0>
>>>> Htmlized:       https://datatracker.ietf.org/doc/html/draft-ietf-secevent-subject-identifiers <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-secevent-subject-identifiers&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795211444%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=QffCgYCX6QJcZVHccIcQrUnij0dhHGHy6e14s6EGjXY%3D&reserved=0>
>>>> Htmlized:       https://tools.ietf.org/html/draft-ietf-secevent-subject-identifiers-07 <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-secevent-subject-identifiers-07&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795221435%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=gnfOJBPGysU5o63lXkFnDOq%2B2378Dl7bXJXlefcix8s%3D&reserved=0>
>>>> Diff:           https://www.ietf.org/rfcdiff?url2=draft-ietf-secevent-subject-identifiers-07 <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Frfcdiff%3Furl2%3Ddraft-ietf-secevent-subject-identifiers-07&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795221435%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=NrhBT%2FhVsgcz7hTAsvKxlgflFKMbpheiBS3oqmZzzWw%3D&reserved=0>
>>>> 
>>>> Abstract:
>>>>   Security events communicated within Security Event Tokens may support
>>>>   a variety of identifiers to identify subjects related to the event.
>>>>   This specification formalizes the notion of subject identifiers as
>>>>   structured information that describe a subject, and named formats
>>>>   that define the syntax and semantics for encoding subject identifiers
>>>>   as JSON objects.  It also defines a registry for defining and
>>>>   allocating names for such formats, as well as the "sub_id" JSON Web
>>>>   Token (JWT) claim.
>>>> 
>>>> –
>>>> Annabelle Backman (she/her)
>>>> richanna@amazon.com <mailto:richanna@amazon.com>_______________________________________________
>>>> Id-event mailing list
>>>> Id-event@ietf.org <mailto:Id-event@ietf.org>
>>>> https://www.ietf.org/mailman/listinfo/id-event <https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fid-event&data=04%7C01%7Ctim.cappalli%40microsoft.com%7C7dd8131cacb54f0137f408d8e3f3db55%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637509983795231432%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=h6tuMBhHECWGfWtXY7298EfEyfOxvOXHtaCE0%2BZaQdI%3D&reserved=0>
>>> 
>>> _______________________________________________
>>> Id-event mailing list
>>> Id-event@ietf.org <mailto:Id-event@ietf.org>
>>> https://www.ietf.org/mailman/listinfo/id-event <https://www.ietf.org/mailman/listinfo/id-event>
> _______________________________________________
> Id-event mailing list
> Id-event@ietf.org
> https://www.ietf.org/mailman/listinfo/id-event

v2.23.0 | Report a Bug | By Email