Re: [jose] Open Issue for WG Discussion: Disposition of JSON Serialization Functionality
John Bradley <ve7jtb@ve7jtb.com> Mon, 09 April 2012 16:41 UTC
Return-Path: <ve7jtb@ve7jtb.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0262C21F8581 for <jose@ietfa.amsl.com>; Mon, 9 Apr 2012 09:41:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.573
X-Spam-Level:
X-Spam-Status: No, score=-3.573 tagged_above=-999 required=5 tests=[AWL=0.025, BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cMzzSLCW8EXC for <jose@ietfa.amsl.com>; Mon, 9 Apr 2012 09:41:56 -0700 (PDT)
Received: from mail-yw0-f44.google.com (mail-yw0-f44.google.com [209.85.213.44]) by ietfa.amsl.com (Postfix) with ESMTP id 0AFDF21F8575 for <jose@ietf.org>; Mon, 9 Apr 2012 09:41:55 -0700 (PDT)
Received: by yhkk25 with SMTP id k25so2133284yhk.31 for <jose@ietf.org>; Mon, 09 Apr 2012 09:41:55 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=subject:mime-version:content-type:from:in-reply-to:date:cc :message-id:references:to:x-mailer:x-gm-message-state; bh=86UnOt++Gb1qI2rPr4udkHzwEkvlx8+oQVuF7GG+aQA=; b=Lb6Xo14bKVFdCy6m3mh6BMncXssayQk5c8+MuQPcxlC1JJQQxuFhOLpGKNcje3stcP Jat/LT9br08S7eTNMymXCnGjHLZYPfD2czysv00P3r0v0hWJ1ejhPbm9RDNwjkqdTiFy 02Fvfefo7hUxcssJsYe2j7uMnMsKl8FSwRkm8jhsR9rHtcgHkVI4tkcaTP59jHxfb00i 5WVR9UKaSr9WOaYtnmFEoQJQeFrPriIYogNgK6iVGJ5vS61mpBU9Fady7Kw6Y6CKV4li 76ZwSJJUR40pI6SXz50fjzEIDbxGWLOVfBfNiU1EQ4/11+HjOeSqQySeItOKGXTyeINO 9hQw==
Received: by 10.236.82.134 with SMTP id o6mr6783233yhe.51.1333989715449; Mon, 09 Apr 2012 09:41:55 -0700 (PDT)
Received: from [192.168.1.213] (190-20-49-231.baf.movistar.cl. [190.20.49.231]) by mx.google.com with ESMTPS id g49sm67706755yhk.20.2012.04.09.09.41.52 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 09 Apr 2012 09:41:53 -0700 (PDT)
Mime-Version: 1.0 (Apple Message framework v1257)
Content-Type: multipart/signed; boundary="Apple-Mail=_BD689EC4-10CE-4175-A7E2-A3B64C8A0E2A"; protocol="application/pkcs7-signature"; micalg="sha1"
From: John Bradley <ve7jtb@ve7jtb.com>
In-Reply-To: <4E1F6AAD24975D4BA5B16804296739436645F6F6@TK5EX14MBXC283.redmond.corp.microsoft.com>
Date: Mon, 09 Apr 2012 13:41:20 -0300
Message-Id: <0A1F4C01-6F1C-409A-ABCC-A0F09729B45B@ve7jtb.com>
References: <4E1F6AAD24975D4BA5B16804296739436645F6F6@TK5EX14MBXC283.redmond.corp.microsoft.com>
To: Mike Jones <Michael.Jones@microsoft.com>
X-Mailer: Apple Mail (2.1257)
X-Gm-Message-State: ALoCoQlneBCKIvR2o8drWPa5Rnvfl/wGsdMdr9EqRPgeMcbS45LfWVwFpimANDrrEEHQ97N0i86q
Cc: "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] Open Issue for WG Discussion: Disposition of JSON Serialization Functionality
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Apr 2012 16:41:57 -0000
Inline On 2012-04-09, at 1:25 PM, Mike Jones wrote: > You’ll recall that I created JSON Serialization drafts in response to WG input that use the same cryptographic operations as JWS and JWE, but that serialize the results into a JSON objects, rather than base64url encoded values separated by periods. These representations also enable multiple signatures/HMACs to be used and content to be encrypted to multiple recipients. The current versions of these drafts are: > · http://tools.ietf.org/html/draft-jones-json-web-signature-json-serialization-01 > · http://tools.ietf.org/html/draft-jones-json-web-encryption-json-serialization-01 > > It was decided in Paris that the disposition of this functionality should be discussed by the WG on the list. I think the questions we need to decide are: > > 1. Is the working group interested in pursuing this functionality? (Evidence to date is that the answer to this question is “yes”.) > Yes > 2. If the answer to (1) is “yes”, would the working group like to have this functionality be in working group documents at this time (rather than being described in individual submissions, as at present)? Yes > > 3. If the answer to (2) is “yes”, should working group -00 versions of the JSON Serialization documents be created or should this functionality be folded into the existing JWS and JWE specs? > Create WG documents separate from the JWS and JWE and consider merging them later after some more maturity. John B. > Arguments for keeping this functionality separate for now are: > - Different level of maturity: I’m aware of over a dozen implementations of JWS a few of JWE, but I know of no implementations of JWS-JS or JWE-JS. There’s an argument that we should keep this new functionality separate until we have “rough consensus and running code”. > - Document simplicity for the Compact Serialization use case. Not describing a second serialization in the JWS and JWE documents makes the documents somewhat easier to read if all the implementer needs is the Compact Serialization. > > Arguments for merging it in now are: > - Fewer documents needed to provide comprehensive treatment of the material. > > Opinions from the Working Group? > > Thanks, > -- Mike > > _______________________________________________ > jose mailing list > jose@ietf.org > https://www.ietf.org/mailman/listinfo/jose
- [jose] Open Issue for WG Discussion: Disposition … Mike Jones
- Re: [jose] Open Issue for WG Discussion: Disposit… John Bradley
- Re: [jose] Open Issue for WG Discussion: Disposit… Nat Sakimura
- Re: [jose] Open Issue for WG Discussion: Disposit… Jeremy Laurenson (jlaurens)