IETF Logo Mail Archive

Re: [jose] way forward for two remaining drafts

Prabath Siriwardena <prabath@wso2.com> Thu, 16 July 2015 04:07 UTC

Return-Path: <prabath@wso2.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E1071B3009 for <jose@ietfa.amsl.com>; Wed, 15 Jul 2015 21:07:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.368
X-Spam-Level:
X-Spam-Status: No, score=-1.368 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001, T_FILL_THIS_FORM_SHORT=0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xI8v1ySI517J for <jose@ietfa.amsl.com>; Wed, 15 Jul 2015 21:07:23 -0700 (PDT)
Received: from mail-oi0-x22e.google.com (mail-oi0-x22e.google.com [IPv6:2607:f8b0:4003:c06::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C09A91B3006 for <jose@ietf.org>; Wed, 15 Jul 2015 21:07:22 -0700 (PDT)
Received: by oige126 with SMTP id e126so42647686oig.0 for <jose@ietf.org>; Wed, 15 Jul 2015 21:07:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wso2.com; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=rfXrtKnice+G1I0XD3AGy9CnkiHYb+CpRAo2kWIONn4=; b=S7PfbCf9Vg+RfvrzKWezKdoP2PKtj/pnlsiaQFi+gI+E8CU5Xsllzze+9iRBkO4/iC 3EdFwy+HsqExbQd9z5u9Cv44+xtpRzPRvZMrRGrHWmgPgBvkDZu+1WrK4p48lpZodf89 FYlS9dQaq6rRZILM635qzTpn0GpalsPsSP9xY=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=rfXrtKnice+G1I0XD3AGy9CnkiHYb+CpRAo2kWIONn4=; b=NYdrA5afey9wV55CEbfByjMNWSaoxFuh13HbcTWBXnEklLKcmU4soGuGjWI/WC3Oxo Qvlo0Pz349I64pH1rzyoRbLOLmqWOkdC+ORnP/OWNfAinPOPngjoPjRLSggJWvgW5aY8 f579/ceXfHzoGp9t1MwBNTGAWX2HXD5u0DaPX909Grj9aerfxfB6w1K/IIXil+BglLVv QfaMjS24z51e86kVj9UP5x5u+Y0M9VYAbN9O0B9muY/So0ngamBN6+2gMMWtvVIJ/EKO BwZAGGrNuNAmBCD69v7k2VZbyXyj0BzlGi6tWTvWn38Q8na0nvR+6KwLuClFFg6zQ8V/ H9sw==
X-Gm-Message-State: ALoCoQm7EEZEVw/zbWDOiP4ADViUaLgOtlpoYagkX1m0Smpw7tkvE5uxklmaTz/k7kw+BcbXL+8g
MIME-Version: 1.0
X-Received: by 10.182.76.100 with SMTP id j4mr6571768obw.14.1437019642270; Wed, 15 Jul 2015 21:07:22 -0700 (PDT)
Received: by 10.202.210.9 with HTTP; Wed, 15 Jul 2015 21:07:22 -0700 (PDT)
In-Reply-To: <CAJV9qO9WQrftBuwry3ZVyGt7fEdh0aUyBaRP8_hc9BZA-yuC7w@mail.gmail.com>
References: <CABzCy2A_yxx+WFSLJiw5ZBPfGaR5de5Lf0uaPFbaMGOnzWSnpg@mail.gmail.com> <1984212955.1265704.1436807438162.JavaMail.yahoo@mail.yahoo.com> <9823EFCA-CE49-4AD5-BC6A-BCD15A1C765E@gmail.com> <CAJV9qO9WQrftBuwry3ZVyGt7fEdh0aUyBaRP8_hc9BZA-yuC7w@mail.gmail.com>
Date: Wed, 15 Jul 2015 21:07:22 -0700
Message-ID: <CAJV9qO9UrmV8Mz-Ty11EgXN8NJkRcc6rhd-TZGmyAfQrK7CaAQ@mail.gmail.com>
From: Prabath Siriwardena <prabath@wso2.com>
To: Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="047d7b672924502df6051af6355d"
Archived-At: <http://mailarchive.ietf.org/arch/msg/jose/Y6214I5jlJBs0nUBJ5jbUZZdTtw>
Cc: Mike Jones <Michael.Jones@microsoft.com>, Nat Sakimura <sakimura@gmail.com>, Karen O'Donoghue <odonoghue@isoc.org>, "jose@ietf.org" <jose@ietf.org>, Edmund Jay <ejay@mgi1.com>
Subject: Re: [jose] way forward for two remaining drafts
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Jul 2015 04:07:25 -0000

On Wed, Jul 15, 2015 at 9:06 PM, Prabath Siriwardena <prabath@wso2.com>
wrote:

> I intend to review both the drafts and will post the results here in next
> couple of works. ..
>

works --> weeks


>
> Thanks & regards,
> -Prabath
>
> On Mon, Jul 13, 2015 at 11:24 AM, Kathleen Moriarty <
> kathleen.moriarty.ietf@gmail.com> wrote:
>
>> Hello,
>>
>> It's good too see that a few people do support these drafts.  Will each
>> of you be sending reviews and comments to the list shortly on these
>> drafts?  If the chairs think it's reasonable to accept the drafts, they
>> will also need to know there will be active support.
>>
>> Thanks,
>> Kathleen
>>
>> Sent from my iPhone
>>
>> On Jul 13, 2015, at 1:10 PM, Edmund Jay <ejay@mgi1.com> wrote:
>>
>> +1
>>
>>
>>   ------------------------------
>>  *From:* Nat Sakimura <sakimura@gmail.com>
>> *To:* Kathleen Moriarty <kathleen.moriarty.ietf@gmail.com>
>> *Cc:* Mike Jones <Michael.Jones@microsoft.com>; Karen O'Donoghue <
>> odonoghue@isoc.org>; "jose@ietf.org" <jose@ietf.org>
>> *Sent:* Sunday, July 12, 2015 10:32 AM
>> *Subject:* Re: [jose] way forward for two remaining drafts
>>
>> Sorry to chime in so late. I have been completely under water for
>> sometime now.
>>
>> Like Phil, I do see that draft-jones-jose-jws-signing-input-options sort
>> of thing can be very useful, though I may want to have slightly different
>> way of encoding the things. Being able to do detached signature is quite
>> attractive.
>>
>> Best,
>>
>> Nat
>>
>> 2015-07-10 2:37 GMT+09:00 Kathleen Moriarty <
>> kathleen.moriarty.ietf@gmail.com>:
>>
>>
>>
>> Hi,
>>
>> Sent from my iPhone
>>
>> On Jul 9, 2015, at 1:16 PM, Mike Jones <Michael.Jones@microsoft.com>
>> wrote:
>>
>>  About
>> https://tools.ietf.org/html/draft-jones-jose-jws-signing-input-options-00,
>> I’ll add that this addresses the requests make by Jim Schaad and Richard
>> Barnes in JOSE Issues #26 “Allow for signature payload to not be base64
>> encoded” and #23 http://trac.tools.ietf.org/wg/jose/trac/ticket/23 “Make
>> crypto independent of binary encoding (base64)”.
>>
>> About
>> https://tools.ietf.org/html/draft-jones-jose-key-managed-json-web-signature-01,
>> I’ll add that this addresses the request made by Jim Schaad in JOSE Issue
>> #2 http://trac.tools.ietf.org/wg/jose/trac/ticket/2 “No key management
>> for MAC”.
>>
>> Also, there’s a highly relevant discussion about key management for MACs
>> going on in the COSE working group.  See the thread “[Cose] Key
>> management for MACs (was Re: Review of draft-schaad-cose-msg-01)” –
>> especially
>> https://mailarchive.ietf.org/arch/msg/cose/aUehU6O7Ui8CXcGxy3TquZOxWH4
>> and
>> https://mailarchive.ietf.org/arch/msg/cose/ouOIdAOe2P-W8BjGLJ7BNvvRr10.
>>
>> One could take the view that our decision on the JOSE key management
>> draft should be informed by the related decision in COSE.  Specifically,
>> that if COSE decides to support key management for MACs, the same reasoning
>> likely should apply to our decision on whether to define a standard
>> mechanism for supporting key management for MACs in JOSE.
>>
>>
>> Key management is explicitly out-of-scope for COSE as stated in the
>> charter.  The discussion referenced had this point at the close of that
>> discussion.
>>
>> I'm not seeing much support for these drafts moving forward in JOSE.  I'm
>> also not seeing enough to justify standards track and AD sponsored.  If you
>> think these are important to have move forward in the WG or as standards
>> track, please say so soon.  They can still go forward through the
>> Independent submission process through the ISE.
>>
>> Thank you,
>> Kathleen
>>
>>                                                             -- Mike
>>
>>  *From:* jose [mailto:jose-bounces@ietf.org <jose-bounces@ietf.org>] *On
>> Behalf Of *Karen O'Donoghue
>> *Sent:* Wednesday, July 01, 2015 8:38 AM
>> *To:* jose@ietf.org
>> *Subject:* [jose] way forward for two remaining drafts
>>
>> Folks,
>>
>>  With the thumbprint draft progressing through the process, we have two
>> remaining individual drafts to decide what to do with. The options include:
>> 1) adopt as working group drafts; 2) ask for AD sponsorship of individual
>> drafts; or 3) recommend that they not be published. Please express your
>> thoughts on what we should do with these drafts. Jim, Kathleen, and I would
>> like to make a decision in the Prague timeframe, so please respond by 15
>> July.
>>
>>
>> https://tools.ietf.org/id/draft-jones-jose-jws-signing-input-options-00.txt
>>
>>
>> https://tools.ietf.org/id/draft-jones-jose-key-managed-json-web-signature-01.txt
>>
>>  Thanks,
>>  Karen
>>
>> _______________________________________________
>> jose mailing list
>> jose@ietf.org
>> https://www.ietf.org/mailman/listinfo/jose
>>
>>
>> _______________________________________________
>> jose mailing list
>> jose@ietf.org
>> https://www.ietf.org/mailman/listinfo/jose
>>
>>
>>
>>
>> --
>> Nat Sakimura (=nat)
>> Chairman, OpenID Foundation
>> http://nat.sakimura.org/
>> @_nat_en
>>
>> _______________________________________________
>> jose mailing list
>> jose@ietf.org
>> https://www.ietf.org/mailman/listinfo/jose
>>
>>
>>
>> _______________________________________________
>> jose mailing list
>> jose@ietf.org
>> https://www.ietf.org/mailman/listinfo/jose
>>
>>
>
>
> --
> Thanks & Regards,
> Prabath
>
> Twitter : @prabath
> LinkedIn : http://www.linkedin.com/in/prabathsiriwardena
>
> Mobile : +1 650 625 7950
>
> http://blog.facilelogin.com
> http://blog.api-security.org
>



-- 
Thanks & Regards,
Prabath

Twitter : @prabath
LinkedIn : http://www.linkedin.com/in/prabathsiriwardena

Mobile : +1 650 625 7950

http://blog.facilelogin.com
http://blog.api-security.org

v2.23.0 | Report a Bug | By Email