Re: [jose] Barry Leiba's No Objection on draft-ietf-jose-json-web-encryption-32: (with COMMENT)
Mike Jones <Michael.Jones@microsoft.com> Sat, 18 October 2014 22:28 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 379351A1B57; Sat, 18 Oct 2014 15:28:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 11aAR40zUOJa; Sat, 18 Oct 2014 15:28:32 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bon0748.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::1:748]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BE4EF1A1B44; Sat, 18 Oct 2014 15:28:31 -0700 (PDT)
Received: from BY2PR03CA049.namprd03.prod.outlook.com (10.141.249.22) by BN3PR0301MB1203.namprd03.prod.outlook.com (25.161.207.156) with Microsoft SMTP Server (TLS) id 15.0.1054.13; Sat, 18 Oct 2014 22:28:07 +0000
Received: from BY2FFO11FD034.protection.gbl (2a01:111:f400:7c0c::134) by BY2PR03CA049.outlook.office365.com (2a01:111:e400:2c5d::22) with Microsoft SMTP Server (TLS) id 15.0.1054.13 via Frontend Transport; Sat, 18 Oct 2014 22:28:07 +0000
Received: from mail.microsoft.com (131.107.125.37) by BY2FFO11FD034.mail.protection.outlook.com (10.1.14.219) with Microsoft SMTP Server (TLS) id 15.0.1039.16 via Frontend Transport; Sat, 18 Oct 2014 22:28:07 +0000
Received: from TK5EX14MBXC286.redmond.corp.microsoft.com ([169.254.1.93]) by TK5EX14MLTC103.redmond.corp.microsoft.com ([157.54.79.174]) with mapi id 14.03.0210.003; Sat, 18 Oct 2014 22:27:34 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Jim Schaad <ietf@augustcellars.com>, 'Barry Leiba' <barryleiba@computer.org>
Thread-Topic: [jose] Barry Leiba's No Objection on draft-ietf-jose-json-web-encryption-32: (with COMMENT)
Thread-Index: Ac/nrA4E9oLwr/BIQBOStfxiBOaJIQDVL1AAAAhDXsA=
Date: Sat, 18 Oct 2014 22:27:33 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739439BB18D9B@TK5EX14MBXC286.redmond.corp.microsoft.com>
References: <4E1F6AAD24975D4BA5B16804296739439BB0D0F1@TK5EX14MBXC286.redmond.corp.microsoft.com> <009a01cfeb00$cbe93760$63bba620$@augustcellars.com>
In-Reply-To: <009a01cfeb00$cbe93760$63bba620$@augustcellars.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.35]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:131.107.125.37; CTRY:US; IPV:CAL; IPV:NLI; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(438002)(51704005)(199003)(189002)(51444003)(64706001)(92726001)(92566001)(15202345003)(97736003)(47776003)(76176999)(54356999)(50986999)(55846006)(66066001)(31966008)(68736004)(26826002)(6806004)(21056001)(80022003)(84676001)(69596002)(44976005)(46102003)(15975445006)(87936001)(19580395003)(2656002)(50466002)(4396001)(86362001)(85852003)(85806002)(76482002)(85306004)(23756003)(107046002)(77096002)(106466001)(20776003)(230783001)(81156004)(86612001)(33656002)(120916001)(95666004)(104016003)(99396003); DIR:OUT; SFP:1102; SCL:1; SRVR:BN3PR0301MB1203; H:mail.microsoft.com; FPR:; MLV:ovrnspm; PTR:InfoDomainNonexistent; A:1; MX:1; LANG:en;
X-Microsoft-Antispam: UriScan:;
X-Microsoft-Antispam: BCL:0;PCL:0;RULEID:;SRVR:BN3PR0301MB1203;
X-O365ENT-EOP-Header: Message processed by - O365_ENT: Allow from ranges (Engineering ONLY)
X-Forefront-PRVS: 0368E78B5B
Received-SPF: Pass (protection.outlook.com: domain of microsoft.com designates 131.107.125.37 as permitted sender) receiver=protection.outlook.com; client-ip=131.107.125.37; helo=mail.microsoft.com;
Authentication-Results: spf=pass (sender IP is 131.107.125.37) smtp.mailfrom=Michael.Jones@microsoft.com;
X-OriginatorOrg: microsoft.onmicrosoft.com
Archived-At: http://mailarchive.ietf.org/arch/msg/jose/VsdMkyD7CXpAyYifOCCZaEqt9Xg
Cc: "draft-ietf-jose-json-web-encryption@tools.ietf.org" <draft-ietf-jose-json-web-encryption@tools.ietf.org>, "jose-chairs@tools.ietf.org" <jose-chairs@tools.ietf.org>, 'The IESG' <iesg@ietf.org>, "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] Barry Leiba's No Objection on draft-ietf-jose-json-web-encryption-32: (with COMMENT)
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 18 Oct 2014 22:28:34 -0000
> > The intent is b. I propose that the words "This member MUST be
> > present, even if the array elements contain only the empty JSON object
> > "{}"" be changed to "This member MUST be present with exactly one
> > array element per recipient, even if some or all of the array element
> > values are the empty JSON object {}". Would that be clearer?
>
> I think that would have helped me. Again, another small point.
>
> OK
>
> [JLS] I think that this language may not be correct. Did you mean to imply that the following is a legal value for the "recipients" property. "[{},{}]"
> It appears that there can be any number of empty array elements can be present.
>
> If this is not the case I will try and look at proposing some text.
The full text about the recipients array at http://tools.ietf.org/html/draft-ietf-jose-json-web-encryption-35#section-7.2 is:
recipients
The "recipients" member value MUST be an array of JSON objects.
Each object contains information specific to a single recipient.
This member MUST be present with exactly one array element per
recipient, even if some or all of the array element values are the
empty JSON object "{}" (which can happen when all Header Parameter
values are shared between all recipients and when no encrypted key
is used, such as when doing Direct Encryption).
So it's not that any number of empty array elements can be present. It's that exactly one JSON object must be present in the array per recipient, some of which may be empty because of the parameter choices made.
-- Mike
- Re: [jose] Barry Leiba's No Objection on draft-ie… Mike Jones
- Re: [jose] Barry Leiba's No Objection on draft-ie… Barry Leiba
- Re: [jose] Barry Leiba's No Objection on draft-ie… Mike Jones
- Re: [jose] Barry Leiba's No Objection on draft-ie… Mike Jones
- Re: [jose] Barry Leiba's No Objection on draft-ie… Jim Schaad
- Re: [jose] Barry Leiba's No Objection on draft-ie… Mike Jones
- Re: [jose] Barry Leiba's No Objection on draft-ie… Jim Schaad
- Re: [jose] Barry Leiba's No Objection on draft-ie… Mike Jones