IETF Logo Mail Archive

Re: [jose] POLL(s): header criticality

Prateek Mishra <prateek.mishra@oracle.com> Fri, 08 February 2013 21:07 UTC

Return-Path: <prateek.mishra@oracle.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BF57821F8A85 for <jose@ietfa.amsl.com>; Fri, 8 Feb 2013 13:07:41 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.598
X-Spam-Level:
X-Spam-Status: No, score=-6.598 tagged_above=-999 required=5 tests=[AWL=0.001, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AmAGuQJow+af for <jose@ietfa.amsl.com>; Fri, 8 Feb 2013 13:07:41 -0800 (PST)
Received: from aserp1040.oracle.com (aserp1040.oracle.com [141.146.126.69]) by ietfa.amsl.com (Postfix) with ESMTP id 3B28721F8629 for <jose@ietf.org>; Fri, 8 Feb 2013 13:07:40 -0800 (PST)
Received: from ucsinet22.oracle.com (ucsinet22.oracle.com [156.151.31.94]) by aserp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id r18L7aiF016574 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK) for <jose@ietf.org>; Fri, 8 Feb 2013 21:07:39 GMT
Received: from acsmt357.oracle.com (acsmt357.oracle.com [141.146.40.157]) by ucsinet22.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r18L7ZnU022856 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <jose@ietf.org>; Fri, 8 Feb 2013 21:07:36 GMT
Received: from abhmt112.oracle.com (abhmt112.oracle.com [141.146.116.64]) by acsmt357.oracle.com (8.12.11.20060308/8.12.11) with ESMTP id r18L7ZsA024466 for <jose@ietf.org>; Fri, 8 Feb 2013 15:07:35 -0600
Received: from [192.168.1.4] (/71.184.95.145) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Fri, 08 Feb 2013 13:07:35 -0800
Message-ID: <51156921.1070909@oracle.com>
Date: Fri, 08 Feb 2013 16:07:45 -0500
From: Prateek Mishra <prateek.mishra@oracle.com>
Organization: Oracle Corporation
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:17.0) Gecko/20130107 Thunderbird/17.0.2
MIME-Version: 1.0
To: jose@ietf.org
References: <510FCA42.5000704@isoc.org>
In-Reply-To: <510FCA42.5000704@isoc.org>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Source-IP: ucsinet22.oracle.com [156.151.31.94]
Subject: Re: [jose] POLL(s): header criticality
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Feb 2013 21:07:41 -0000

FIRST POLL : Yes

- cause JOSE headers are security artifacts; when present, they must not 
be ignored by a processor of JOSE objects

SECOND POLL: Yes

- the language here is a bit confusing, i think the distinction sought 
here is between a deployment instance versus a static component 
(library). If I understand the intent here,
the suggestion is that a deployment instance of a JOSE processor should 
treat JOSE-defined headers as critical.

THIRD POLL: C

- high-level list of ignorable headers (vs. adding annotation to each 
header)

> Folks,
>
> I am wrestling with how to help drive consensus on the topic of 
> criticality of headers. For background, please review the current 
> specification text, the minutes to the Atlanta meeting (IETF85), and 
> the mailing list (especially the discussion in December with (Subj: 
> Whether implementations must understand all JOSE header fields)). We 
> need to come to closure on this issue in order to progress the 
> specifications.
>
> As a tool to gather further information on determining a way forward, 
> the following polls have been created. Please respond before 11 
> February 2013.
>
> Thanks,
> Karen
>
> *******************
> FIRST POLL: Should all header fields be critical for implementations 
> to understand?
>
> YES – All header fields must continue to be understood by 
> implementations or the input must be rejected.
>
> NO – A means of listing that specific header fields may be safely 
> ignored should be defined.
>
> ********************
> SECOND POLL: Should the result of the first poll be "YES", should text 
> like the following be added? “Implementation Note: The requirement to 
> understand all header fields is a requirement on the system as a whole 
> – not on any particular level of library software. For instance, a 
> JOSE library could process the headers that it understands and then 
> leave the processing of the rest of them up to the application. For 
> those headers that the JOSE library didn’t understand, the 
> responsibility for fulfilling the ‘MUST understand’ requirement for 
> the remaining headers would then fall to the application.”
>
> YES – Add the text clarifying that the “MUST understand” requirement 
> is a requirement on the system as a whole – not specifically on JOSE 
> libraries.
>
> NO – Don’t add the clarifying text.
>
> ************************
> THIRD POLL: Should the result of the first poll be "NO", which syntax 
> would you prefer for designating the header fields that may be ignored 
> if not understood?
>
> A – Define a header field that explicitly lists the fields that may be 
> safely ignored if not understood.
>
> B – Introduce a second header, where implementations must understand 
> all fields in the first but they may ignore not-understood fields in 
> the second.
>
> C - Other??? (Please specify in detail.)
> _______________________________________________
> jose mailing list
> jose@ietf.org
> https://www.ietf.org/mailman/listinfo/jose

v2.23.0 | Report a Bug | By Email