[jose] #77: Section 3.7 "x5c" (X.509 Certificate Chain) Parameter
"jose issue tracker" <trac+jose@trac.tools.ietf.org> Sun, 18 August 2013 19:47 UTC
Return-Path: <trac+jose@trac.tools.ietf.org>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1708E21F9D0D for <jose@ietfa.amsl.com>; Sun, 18 Aug 2013 12:47:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bIdA+WvwdPz5 for <jose@ietfa.amsl.com>; Sun, 18 Aug 2013 12:47:06 -0700 (PDT)
Received: from grenache.tools.ietf.org (grenache.tools.ietf.org [IPv6:2a01:3f0:1:2::30]) by ietfa.amsl.com (Postfix) with ESMTP id 5C0AA21F9D04 for <jose@ietf.org>; Sun, 18 Aug 2013 12:47:06 -0700 (PDT)
Received: from localhost ([127.0.0.1]:40212 helo=grenache.tools.ietf.org ident=www-data) by grenache.tools.ietf.org with esmtp (Exim 4.80) (envelope-from <trac+jose@trac.tools.ietf.org>) id 1VB8wK-0007oR-3b; Sun, 18 Aug 2013 21:47:04 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: jose issue tracker <trac+jose@trac.tools.ietf.org>
X-Trac-Version: 0.12.3
Precedence: bulk
Auto-Submitted: auto-generated
X-Mailer: Trac 0.12.3, by Edgewall Software
To: draft-ietf-jose-json-web-key@tools.ietf.org, ietf@augustcellars.com
X-Trac-Project: jose
Date: Sun, 18 Aug 2013 19:47:04 -0000
X-URL: http://tools.ietf.org/jose/
X-Trac-Ticket-URL: http://trac.tools.ietf.org/wg/jose/trac/ticket/77
Message-ID: <061.64be8e18ed91ced2474af6cbff88b7a3@trac.tools.ietf.org>
X-Trac-Ticket-ID: 77
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Rcpt-To: draft-ietf-jose-json-web-key@tools.ietf.org, ietf@augustcellars.com, jose@ietf.org
X-SA-Exim-Mail-From: trac+jose@trac.tools.ietf.org
X-SA-Exim-Scanned: No (on grenache.tools.ietf.org); SAEximRunCond expanded to false
Resent-To: mbj@microsoft.com
Resent-Message-Id: <20130818194706.5C0AA21F9D04@ietfa.amsl.com>
Resent-Date: Sun, 18 Aug 2013 12:47:06 -0700
Resent-From: trac+jose@trac.tools.ietf.org
Cc: jose@ietf.org
Subject: [jose] #77: Section 3.7 "x5c" (X.509 Certificate Chain) Parameter
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Aug 2013 23:23:07 -0000
#77: Section 3.7 "x5c" (X.509 Certificate Chain) Parameter A. Why are these base64 encoded and not base64url encoded? This would appear to break the Mike Jones rule that there be only one way to do things. I.e. you should not have two base64 encoding algorithms. B. What happens if the chain is out of order? C. What happens if this is not a complete chain? D. Eliminate the word "bare" as it is not useful. E. There are additional requirements imposed on the representation of members in the JWK and the contents of the certificate. For example the use and alg need to be compatible. F. There is a violation of the one way to do things rule here - x5u produces a PEM encoded item while this is an array of things. Does this need to be resolved/explained? -- -------------------------+------------------------------------------------- Reporter: | Owner: draft-ietf-jose-json-web- ietf@augustcellars.com | key@tools.ietf.org Type: defect | Status: new Priority: Editorial | Milestone: Component: json-web- | Version: key | Keywords: Severity: - | -------------------------+------------------------------------------------- Ticket URL: <http://trac.tools.ietf.org/wg/jose/trac/ticket/77> jose <http://tools.ietf.org/jose/>
- [jose] #77: Section 3.7 "x5c" (X.509 Certificate … jose issue tracker
- Re: [jose] #77: Section 3.7 "x5c" (X.509 Certific… jose issue tracker
- Re: [jose] #77: Section 3.7 "x5c" (X.509 Certific… jose issue tracker