[jose] Some requirements and non-requirements
Matt Miller <mamille2@cisco.com> Thu, 17 November 2011 09:08 UTC
Return-Path: <mamille2@cisco.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D70D921F94B4 for <jose@ietfa.amsl.com>; Thu, 17 Nov 2011 01:08:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.599
X-Spam-Level:
X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aDT+Y2L7YHU5 for <jose@ietfa.amsl.com>; Thu, 17 Nov 2011 01:08:47 -0800 (PST)
Received: from mtv-iport-3.cisco.com (mtv-iport-3.cisco.com [173.36.130.14]) by ietfa.amsl.com (Postfix) with ESMTP id 50F7A21F99F8 for <jose@ietf.org>; Thu, 17 Nov 2011 01:08:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=mamille2@cisco.com; l=5214; q=dns/txt; s=iport; t=1321520927; x=1322730527; h=from:subject:date:message-id:to:mime-version; bh=UbkZHj8S2UQ+XIJ8nPvlYDrbSnuxP6rqkYFZ2UNmJ5g=; b=jgz6n3doFUH3mzVjalEaWwpZfBwLwtcOIVAcOsBlufr1ptU7VHpKhmT4 Gi9pX7AZceoSEROnLjMa2ZcZ/1AJjZ46KXwkQ3SmgNTOhXlDgMrtza0Sh uxHXNRpt7Ec1dRZBrI4NgYWuVz80p2INEOE177WJYIH1ckQKHVgQW6eD0 g=;
X-Files: smime.p7s : 2214
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AkcFAGjOxE6rRDoJ/2dsb2JhbAA5CacZgmaBBYILAYEuG24im1qBJgGeOYZkEgyCMmMEiBOMIoU7jE4
X-IronPort-AV: E=Sophos; i="4.69,525,1315180800"; d="p7s'?scan'208"; a="14741345"
Received: from mtv-core-4.cisco.com ([171.68.58.9]) by mtv-iport-3.cisco.com with ESMTP; 17 Nov 2011 09:08:47 +0000
Received: from [10.21.76.31] ([10.21.76.31]) by mtv-core-4.cisco.com (8.14.3/8.14.3) with ESMTP id pAH98kqP032060 for <jose@ietf.org>; Thu, 17 Nov 2011 09:08:46 GMT
From: Matt Miller <mamille2@cisco.com>
Content-Type: multipart/signed; boundary="Apple-Mail-3--383657430"; protocol="application/pkcs7-signature"; micalg="sha1"
Date: Thu, 17 Nov 2011 17:08:46 +0800
Message-Id: <C50E4C20-762B-4B91-BB2C-1202FF3BBD4B@cisco.com>
To: jose@ietf.org
Mime-Version: 1.0 (Apple Message framework v1084)
X-Mailer: Apple Mail (2.1084)
Subject: [jose] Some requirements and non-requirements
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Nov 2011 09:08:58 -0000
A number of us had a short discussion in the hall in Taipei not-too-long ago, and came up with some needs (and non-needs) that differ from the current proposals. Some of this was stated in the meeting, some may not have been. My explanation and requirements/non-requirements follow; I'll let the others send their own comments. We (XMPP) have an asynchronous protocol that involves multiple hops (most often no more than 3), and have a need to protect this information end-to-end. However, the end-points are not guaranteed to be singular; the protocol allows for a single account or bare JID to have multiple simultaneous resources involved. It is possible that the sender will not know precisely which resource will ultimately receive a stanza, but it is possible that such a sender will know of all the possible recipients, and have asymmetric keys for each of these recipient end-points. Since one of our stanza kinds is intended for conversations, it would be desired (but not absolutely necessary) to be able to reuse a session key across multiple discreet payloads. Further, authenticity or integrity of the data is not always important. For various reasons, there is assurance in the asserted identity of each entity. That's not to say it's *never* important, but that there exists other factors that make it less important in a lot (I would say most) cases. With all of that, we have the following requirements: * Support multiple known recipients * data needs to be standalone XML safe And the following non-requirements: * data need not always be signed * data need not be URL safe * data need not be tightly coupled/interleaved with the meta-data - m&m Matt Miller - <mamille2@cisco.com> Collaboration Software Group - Cisco Systems, Inc.
- Re: [jose] Some requirements and non-requirements Richard Alimi
- Re: [jose] Some requirements and non-requirements Jim Schaad
- [jose] Some requirements and non-requirements Matt Miller
- Re: [jose] Some requirements and non-requirements Matt Miller