Re: [jose] WGLC for draft-ietf-jose-crfg-curves
Mike Jones <Michael.Jones@microsoft.com> Tue, 05 July 2016 23:51 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BF53E12B00D for <jose@ietfa.amsl.com>; Tue, 5 Jul 2016 16:51:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dM2MaReXY9lo for <jose@ietfa.amsl.com>; Tue, 5 Jul 2016 16:51:09 -0700 (PDT)
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (mail-bl2nam02on0093.outbound.protection.outlook.com [104.47.38.93]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B52D912B02F for <jose@ietf.org>; Tue, 5 Jul 2016 16:42:44 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=CaLd03MJODRQsKOj1GwyG4diU86EcssobYauQ2ECC4U=; b=OvlhCX9X3PVYlACb53+42lTGC7MjDSb5Wqi43DgPW+6WB2MDJA0sHMwpub/txw1jZvrFQ/ml7WW29cgS7hDRRrmBHHa3B1tms/ywwPe+cnWrph16yhP194hsm1z2rGgwVXhQT8Q6287PrPfrSc2vqzoMYj8yhoWrY3tYIxu9MXc=
Received: from SN1PR0301MB1645.namprd03.prod.outlook.com (10.162.130.139) by SN1PR0301MB1648.namprd03.prod.outlook.com (10.162.130.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.523.12; Tue, 5 Jul 2016 23:42:42 +0000
Received: from SN1PR0301MB1645.namprd03.prod.outlook.com ([10.162.130.139]) by SN1PR0301MB1645.namprd03.prod.outlook.com ([10.162.130.139]) with mapi id 15.01.0523.028; Tue, 5 Jul 2016 23:42:42 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "Matt Miller (mamille2)" <mamille2@cisco.com>, "jose@ietf.org" <jose@ietf.org>
Thread-Topic: [jose] WGLC for draft-ietf-jose-crfg-curves
Thread-Index: AdG9qTd0cy11MRtqTY+kBtinHwpD+wFzAaWABOhh0YAAAAfzAA==
Date: Tue, 05 Jul 2016 23:42:42 +0000
Message-ID: <SN1PR0301MB1645FD9E16BDA49ABD8E2CBAF5390@SN1PR0301MB1645.namprd03.prod.outlook.com>
References: <006b01d1bda9$684acbb0$38e06310$@augustcellars.com> <074301d1c375$3ed288f0$bc779ad0$@augustcellars.com> <C9880193-8D67-41D7-A6DD-D76AFAD1241B@cisco.com>
In-Reply-To: <C9880193-8D67-41D7-A6DD-D76AFAD1241B@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [2001:4898:80e8:3::650]
x-ms-office365-filtering-correlation-id: 5e6378a8-b29f-4c45-df19-08d3a52e0eb3
x-microsoft-exchange-diagnostics: 1; SN1PR0301MB1648; 6:M7vfTqz1ghkFJwoNW6tn17hT6io/xTrU+M6KBO/oVaBqwEw4WAYY+ko+B92EX0sGPnh3Miknel0j+YHKeT0E1QLKHNLdzuhU5ZWdSOxlPGnUfPaq9IdPHdZvMx9y5faPwsPAbPHMSeQDzSYfQIy0zzonTpi0nKjn3yWaTxA9yMHwJbJprFjrBUT+Lm/5pUcBu3DgaY6zpFw+db27yWqxUQPLjMKPgA1bpwwY1cNXckcrV4I7sh8VJ4OcxvKdSf+lPo4TjxmqI1/1kSblvH1YUK3mhN7gak1tdbPtN434riHC8I/0ujCYXsPHC8gmrDt+xKh8YyVpsMryVNFLIpX72w==; 5:j407zdGB4Dg+1HLtVXHcPAQ0jasI+eOyAS7hS7Doi+klxV8YJYTgjtjAj4TDQAeL+mYOgbmUlNF1MWYngMkOem44suCVUOyGIryjhUiG0q6RY7oPvEImYdu/Dn2qUOJ6c6J5pCpEmzyOG7uMnXsFpA==; 24:q4q5wvoFnn+zfgk1crz3yrX5tvM1QIU3qx+dwxJv3Xl2jveMrNnBlUlER9uHYoqk/3LcspWHvJvkIJucOcLVzWD+bPcl9YWIeph8NqGN//A=; 7:+uciMHhv3r4OgcSzBu1TtCbLt9k7Q0YJVVpxQ1rs1pGyaKdoRS794BPd3JNUeGygjMXFv+bjLXKZozxRms9l9Pw38Va3YjfnDItT4ON2JNmGYw2ieAoiY19Q5fkG2lQ/eNVXKfHu+rC7LmFYKokpRwHsKo7bThFt2hp5RvVjDphLbBaxyFR8Ln13XEO+XGsbCsZVXa+8oOfT8RoOtjtYk4ErwCe8Xua5aklrsQe4/H8VKS61Vb+Yjcr2zRi7uVR/
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:SN1PR0301MB1648;
x-microsoft-antispam-prvs: <SN1PR0301MB16486F6DA036957965BCC7C8F5390@SN1PR0301MB1648.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(601004)(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026)(61426038)(61427038); SRVR:SN1PR0301MB1648; BCL:0; PCL:0; RULEID:; SRVR:SN1PR0301MB1648;
x-forefront-prvs: 0994F5E0C5
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(199003)(189002)(24454002)(377454003)(13464003)(81156014)(3280700002)(86612001)(8676002)(5002640100001)(5005710100001)(10400500002)(10290500002)(76576001)(86362001)(87936001)(7846002)(8990500004)(2906002)(74316002)(305945005)(586003)(101416001)(77096005)(9686002)(6116002)(68736007)(102836003)(106356001)(5003600100003)(8936002)(7696003)(81166006)(7736002)(105586002)(99286002)(2950100001)(11100500001)(122556002)(19580405001)(2501003)(230783001)(2900100001)(107886002)(19580395003)(5001770100001)(189998001)(97736004)(15975445007)(92566002)(10090500001)(3660700001)(33656002)(54356999)(76176999)(50986999)(3826002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN1PR0301MB1648; H:SN1PR0301MB1645.namprd03.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Jul 2016 23:42:42.1758 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN1PR0301MB1648
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/W3Wd9YbeoSO3JnEnp0ppnEsRtXw>
Subject: Re: [jose] WGLC for draft-ietf-jose-crfg-curves
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Jul 2016 23:51:11 -0000
+1 to these comments -----Original Message----- From: jose [mailto:jose-bounces@ietf.org] On Behalf Of Matt Miller (mamille2) Sent: Tuesday, July 5, 2016 4:42 PM To: jose@ietf.org Subject: Re: [jose] WGLC for draft-ietf-jose-crfg-curves My apologies for the tardiness of these last call comments. Overall, I think draft-ietf-jose-cfrg-curves-03 needs a little more editorial work before it is ready to be published. * It seems odd that RFC7515 and RFC7516 are not referenced at all. It seems appropriate to at least informatively reference that the signature portion of this document relates to RFC7515 and the ECDH portion relate to RFC7516. However, I think at least RFC7515 needs to be a normative reference; I don't think someone can implement the signing/verifying portions of this document without knowing what "JWS Signing Input" means (see bullet #N). * It seems odd that RFC7517, RFC7518, and RFC7638 are informative references rather than normative. I'm especially not sure one can implement the ECDH portion of this document without understanding at least RFC 7518 § 4.6. * This document is using terms from RFC7515, RFC7517, and RFC7518, yet this is not mentioned at all. It seems to me § 1.1 ought to state this document is using terms from those documents. -- - m&m Matt Miller Cisco Systems, Inc. > On Jun 10, 2016, at 18:07, Jim Schaad <ietf@augustcellars.com> wrote: > > I have not seen any reviews yet except mine. Part of the reason why > this work is being done in the JOSE working group is because we have a > better understanding of how it should work in JOSE. If we get to the > end of the last call and there are not "a sufficient number" reviews, > I will talk with the AD about bouncing it to the CURDLE working group for completion. > > Jim > > >> -----Original Message----- >> From: jose [mailto:jose-bounces@ietf.org] On Behalf Of Jim Schaad >> Sent: Friday, June 03, 2016 8:06 AM >> To: jose@ietf.org >> Subject: [jose] WGLC for draft-ietf-jose-crfg-curves >> >> This starts a (roughly) two-week last call on this document. >> >> Last call will end on 20 June. Please read the document and give >> comments even if it is as simple as "I did not see any problems with this draft". >> >> Thanks >> >> Jim >> >> >> _______________________________________________ >> jose mailing list >> jose@ietf.org >> https://www.ietf.org/mailman/listinfo/jose > > _______________________________________________ > jose mailing list > jose@ietf.org > https://www.ietf.org/mailman/listinfo/jose
- Re: [jose] WGLC for draft-ietf-jose-crfg-curves Matt Miller (mamille2)
- Re: [jose] WGLC for draft-ietf-jose-crfg-curves Ilari Liusvaara
- Re: [jose] WGLC for draft-ietf-jose-crfg-curves Mike Jones
- Re: [jose] WGLC for draft-ietf-jose-crfg-curves Matt Miller (mamille2)
- [jose] WGLC for draft-ietf-jose-crfg-curves Jim Schaad
- Re: [jose] WGLC for draft-ietf-jose-crfg-curves Jim Schaad
- Re: [jose] WGLC for draft-ietf-jose-crfg-curves Jim Schaad