Protocol Action: 'Push-Based Security Event Token (SET) Delivery Using HTTP' to Proposed Standard (draft-ietf-secevent-http-push-14.txt)

The IESG <iesg-secretary@ietf.org> Mon, 29 June 2020 21:53 UTC

Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B60A3A0DA3; Mon, 29 Jun 2020 14:53:00 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Push-Based Security Event Token (SET) Delivery Using HTTP' to Proposed Standard (draft-ietf-secevent-http-push-14.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 7.6.0
Auto-Submitted: auto-generated
Precedence: bulk
Cc: yaronf.ietf@gmail.com, secevent-chairs@ietf.org, kaduk@mit.edu, id-event@ietf.org, rfc-editor@rfc-editor.org, The IESG <iesg@ietf.org>, draft-ietf-secevent-http-push@ietf.org, Yaron Sheffer <yaronf.ietf@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <159346758002.25559.8211588453047574944@ietfa.amsl.com>
Date: Mon, 29 Jun 2020 14:53:00 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/-W9uFETgLQ2fZ9-u0abMDrYYhGM>
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce/>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Jun 2020 21:53:00 -0000

The IESG has approved the following document:
- 'Push-Based Security Event Token (SET) Delivery Using HTTP'
  (draft-ietf-secevent-http-push-14.txt) as Proposed Standard

This document is the product of the Security Events Working Group.

The IESG contact persons are Benjamin Kaduk and Roman Danyliw.

A URL of this Internet Draft is:
https://datatracker.ietf.org/doc/draft-ietf-secevent-http-push/




Technical Summary

This document defines an HTTP push-based protocol for delivery of Security Event
Tokens (SETs, RFC 8417). This is one of the two options the working group is working
on: push- vs. poll-based delivery.

Working Group Summary

The protocol is a simple and straightforward way to transmit SETs, and the working group
supports it. Since we only have a small core of active participants, we ran into a problem
while requesting formal indication of support, but eventually received enough messages
in favor of publication to demonstrate consensus.

Document Quality

There are multiple implementations, including one in production by
Google (https://developers.google.com/identity/risc).
The shepherd reviewed the document thoroughly as well.

Personnel

The document shepherd is Yaron Sheffer.
The responsible Area Director is Ben Kaduk.