[jose] #74: Section 3.5 - "x5u" (X.509 URL) Header Parameter
"jose issue tracker" <trac+jose@trac.tools.ietf.org> Sun, 18 August 2013 19:44 UTC
Return-Path: <trac+jose@trac.tools.ietf.org>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0245E21F9D23 for <jose@ietfa.amsl.com>; Sun, 18 Aug 2013 12:44:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UJql72G+Ye50 for <jose@ietfa.amsl.com>; Sun, 18 Aug 2013 12:44:13 -0700 (PDT)
Received: from grenache.tools.ietf.org (grenache.tools.ietf.org [IPv6:2a01:3f0:1:2::30]) by ietfa.amsl.com (Postfix) with ESMTP id 4ED1E21F9D0D for <jose@ietf.org>; Sun, 18 Aug 2013 12:44:13 -0700 (PDT)
Received: from localhost ([127.0.0.1]:39752 helo=grenache.tools.ietf.org ident=www-data) by grenache.tools.ietf.org with esmtp (Exim 4.80) (envelope-from <trac+jose@trac.tools.ietf.org>) id 1VB8tM-0003D5-Ft; Sun, 18 Aug 2013 21:44:01 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: jose issue tracker <trac+jose@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: draft-ietf-jose-json-web-key@tools.ietf.org, ietf@augustcellars.com
X-Trac-Project: jose
Date: Sun, 18 Aug 2013 19:44:00 -0000
X-URL: http://tools.ietf.org/jose/
X-Trac-Ticket-URL: https://grenache.tools.ietf.org/wg/jose/trac/ticket/74
Message-ID: <061.de6cc989f186d2424013c9673476611e@trac.tools.ietf.org>
X-Trac-Ticket-ID: 74
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Rcpt-To: draft-ietf-jose-json-web-key@tools.ietf.org, ietf@augustcellars.com, jose@ietf.org
X-SA-Exim-Mail-From: trac+jose@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on grenache.tools.ietf.org); SAEximRunCond expanded to false
Resent-To: mbj@microsoft.com
Resent-Message-Id: <20130818194413.4ED1E21F9D0D@ietfa.amsl.com>
Resent-Date: Sun, 18 Aug 2013 12:44:13 -0700
Resent-From: trac+jose@trac.tools.ietf.org
Cc: jose@ietf.org
Subject: [jose] #74: Section 3.5 - "x5u" (X.509 URL) Header Parameter
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Aug 2013 23:23:07 -0000
#74: Section 3.5 - "x5u" (X.509 URL) Header Parameter A. Move the 5280 reference to before the 'or' B. Who is the MUST requirement on for the identified resource - is this something that the consumer needs to verify is true? Is there a reason to require consumers to do the chain building so that more complicated bags may be present? What action does the consumer perform is this is not true? C. What happens if this JWK has only an x5u member in it? Is this a legal construct? How does one say that this matches the bare public key? D. The middle clause of the semi-colons should be a parenthetical on the first clause. E. There are additional requirements imposed on the representation of members in the JWK and the contents of the certificate. For example the use and alg need to be compatible. F. Need to make a trust statement about a key obtained this way. As the URL is not authenticated in any way, it cannot be used to build an association between a subject and a key. G. Need to note that the fact that a certificate chain has been returned does not mean anything about making a trust decision in the certificate. -- -------------------------+------------------------------------------------- Reporter: | Owner: draft-ietf-jose-json-web- ietf@augustcellars.com | key@tools.ietf.org Type: defect | Status: new Priority: major | Milestone: Component: json-web- | Version: key | Keywords: Severity: - | -------------------------+------------------------------------------------- Ticket URL: <https://grenache.tools.ietf.org/wg/jose/trac/ticket/74> jose <http://tools.ietf.org/jose/>
- [jose] #74: Section 3.5 - "x5u" (X.509 URL) Heade… jose issue tracker
- Re: [jose] #74: Section 3.5 - "x5u" (X.509 URL) H… jose issue tracker
- Re: [jose] #74: Section 3.5 - "x5u" (X.509 URL) H… jose issue tracker
- Re: [jose] #74: Section 3.5 - "x5u" (X.509 URL) H… jose issue tracker