Re: [jose] comments on draft-jones-json-web-signature and draft-jones-json-web-encryption

Leif Johansson <leifj@mnt.se> Thu, 17 November 2011 01:55 UTC

Return-Path: <leifj@mnt.se>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 02B051F0C69 for <jose@ietfa.amsl.com>; Wed, 16 Nov 2011 17:55:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.357
X-Spam-Level:
X-Spam-Status: No, score=-3.357 tagged_above=-999 required=5 tests=[AWL=-0.758, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BvhTH9si65Fk for <jose@ietfa.amsl.com>; Wed, 16 Nov 2011 17:55:11 -0800 (PST)
Received: from backup-server.nordu.net (backup-server.nordu.net [IPv6:2001:948:4:1::66]) by ietfa.amsl.com (Postfix) with ESMTP id 143C21F0C48 for <jose@ietf.org>; Wed, 16 Nov 2011 17:55:10 -0800 (PST)
Received: from [130.129.8.54] (dhcp-9036.meeting.ietf.org [130.129.8.54]) (authenticated bits=0) by backup-server.nordu.net (8.14.3/8.14.3) with ESMTP id pAH1t2xD027682 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <jose@ietf.org>; Thu, 17 Nov 2011 02:55:08 +0100 (CET)
Message-ID: <4EC46975.50301@mnt.se>
Date: Thu, 17 Nov 2011 02:55:01 +0100
From: Leif Johansson <leifj@mnt.se>
User-Agent: Mozilla/5.0 (X11; Linux i686; rv:7.0.1) Gecko/20110929 Thunderbird/7.0.1
MIME-Version: 1.0
To: jose@ietf.org
References: <9509AB72-10CC-4BA6-A61C-AD9C4AC7944A@cisco.com>
In-Reply-To: <9509AB72-10CC-4BA6-A61C-AD9C4AC7944A@cisco.com>
X-Enigmail-Version: 1.3.3
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Subject: Re: [jose] comments on draft-jones-json-web-signature and draft-jones-json-web-encryption
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Nov 2011 01:55:12 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


> "JSON Web Signature" -> "JSON Web Authentication" "sign" ->
> "authenticate" "signing" -> "authenticating" "signature" ->
> "authentication data"

I don't think this is quite right. Signature != public key signature
so I don't think the terminology issue is that serous. However saying
authentication carries other connotations that would be confusing.

I suggest leave the terms as they are.

	Cheers Leif

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk7EaXUACgkQ8Jx8FtbMZndMkQCdHVITzlYOhgdAzNLC13SnXlNk
s+cAoIpVIlw7w4rA+YLKWQ2hUHGxt0uT
=wP1B
-----END PGP SIGNATURE-----