IETF Logo Mail Archive

[jose] JWK Thumbprint spec incorporating feedback from IETF 90

Mike Jones <Michael.Jones@microsoft.com> Wed, 23 July 2014 15:13 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E465B1B291F for <jose@ietfa.amsl.com>; Wed, 23 Jul 2014 08:13:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.387
X-Spam-Level:
X-Spam-Status: No, score=-0.387 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_RHS_DOB=1.514] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2k9NSxNC3YB7 for <jose@ietfa.amsl.com>; Wed, 23 Jul 2014 08:13:56 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (dns-bn1lp0143.outbound.protection.outlook.com [207.46.163.143]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EA9791B290C for <jose@ietf.org>; Wed, 23 Jul 2014 08:13:55 -0700 (PDT)
Received: from DM2PR03CA009.namprd03.prod.outlook.com (10.141.52.157) by DM2PR0301MB0687.namprd03.prod.outlook.com (25.160.96.25) with Microsoft SMTP Server (TLS) id 15.0.985.8; Wed, 23 Jul 2014 15:13:54 +0000
Received: from BN1BFFO11FD028.protection.gbl (2a01:111:f400:7c10::1:199) by DM2PR03CA009.outlook.office365.com (2a01:111:e400:2414::29) with Microsoft SMTP Server (TLS) id 15.0.990.7 via Frontend Transport; Wed, 23 Jul 2014 15:13:54 +0000
Received: from mail.microsoft.com (131.107.125.37) by BN1BFFO11FD028.mail.protection.outlook.com (10.58.144.91) with Microsoft SMTP Server (TLS) id 15.0.980.11 via Frontend Transport; Wed, 23 Jul 2014 15:13:53 +0000
Received: from TK5EX14MBXC294.redmond.corp.microsoft.com ([169.254.3.103]) by TK5EX14MLTC101.redmond.corp.microsoft.com ([157.54.79.193]) with mapi id 14.03.0195.002; Wed, 23 Jul 2014 15:13:19 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "jose@ietf.org" <jose@ietf.org>
Thread-Topic: JWK Thumbprint spec incorporating feedback from IETF 90
Thread-Index: Ac+miKNuBtxfut2OQbOQnkt0qFG0jQ==
Date: Wed, 23 Jul 2014 15:13:18 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739439ADDDB5B@TK5EX14MBXC294.redmond.corp.microsoft.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.34]
Content-Type: multipart/alternative; boundary="_000_4E1F6AAD24975D4BA5B16804296739439ADDDB5BTK5EX14MBXC294r_"
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:131.107.125.37; CTRY:US; IPV:CAL; IPV:NLI; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(448002)(199002)(189002)(99396002)(107886001)(19580395003)(81342001)(85306003)(26826002)(86362001)(107046002)(95666004)(83322001)(2351001)(21056001)(66066001)(87936001)(84676001)(19300405004)(50986999)(69596002)(229853001)(4396001)(92566001)(85326001)(19617315012)(44976005)(15202345003)(2656002)(86612001)(77096002)(55846006)(64706001)(46102001)(16297215004)(19625215002)(97736001)(92726001)(512954002)(74662001)(85852003)(77982001)(76482001)(81156004)(68736004)(79102001)(16236675004)(106466001)(33656002)(80022001)(54356999)(84326002)(110136001)(74502001)(81542001)(71186001)(20776003)(6806004)(31966008)(104016003)(83072002)(15975445006)(6606295002); DIR:OUT; SFP:; SCL:1; SRVR:DM2PR0301MB0687; H:mail.microsoft.com; FPR:; MLV:ovrnspm; PTR:InfoDomainNonexistent; MX:1; LANG:en;
X-Microsoft-Antispam: BCL:0;PCL:0;RULEID:
X-O365ENT-EOP-Header: Message processed by - O365_ENT: Allow from ranges (Engineering ONLY)
X-Forefront-PRVS: 028166BF91
Received-SPF: PermError (: domain of microsoft.com used an invalid SPF mechanism)
Authentication-Results: spf=permerror (sender IP is 131.107.125.37) smtp.mailfrom=Michael.Jones@microsoft.com;
X-OriginatorOrg: microsoft.onmicrosoft.com
Archived-At: http://mailarchive.ietf.org/arch/msg/jose/YCxPy0b2DLKL4E-8ilzQl4CNlQQ
Subject: [jose] JWK Thumbprint spec incorporating feedback from IETF 90
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Jul 2014 15:13:58 -0000

I've updated the JSON Web Key (JWK) Thumbprint specification to incorporate the JOSE working group feedback on the -00 draft from IETF 90<http://www.ietf.org/meeting/90/>.  The two changes were:

*        Said that the result is undefined if characters requiring escaping are needed in the hash input.

*        Added instructions for representing integer numeric values in the hash input.

If a canonical JSON representation standard is ever adopted, this specification could be revised to use it, resulting in unambiguous definitions for those values (which are unlikely to ever occur in JWKs) as well.  (Defining a complete canonical JSON representation is very much out of scope for this work!)

The specification is available at:

*        http://tools.ietf.org/html/draft-jones-jose-jwk-thumbprint-01

An HTML formatted version is also available at:

*        https://self-issued.info/docs/draft-jones-jose-jwk-thumbprint-01.html

                                                            -- Mike

P.S.  This notice was also posted at http://self-issued.info/?p=1259 and as @selfissued.

v2.34.0 | Report a Bug | By Email | System Status