Re: [jose] [EXT] Re: [COSE] Multiple Suffixes with JOSE and COSE media types
Michael Richardson <mcr+ietf@sandelman.ca> Thu, 20 July 2023 22:51 UTC
Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 844B9C15152F; Thu, 20 Jul 2023 15:51:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.097
X-Spam-Level:
X-Spam-Status: No, score=-7.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sandelman.ca
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u0QdRNWF7tyE; Thu, 20 Jul 2023 15:51:36 -0700 (PDT)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2ACECC14CE47; Thu, 20 Jul 2023 15:51:23 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id 5864538993; Thu, 20 Jul 2023 18:51:22 -0400 (EDT)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavisd-new, port 10024) with LMTP id y-Y9GqNh244v; Thu, 20 Jul 2023 18:51:20 -0400 (EDT)
Received: from sandelman.ca (obiwan.sandelman.ca [209.87.249.21]) by tuna.sandelman.ca (Postfix) with ESMTP id AD3EF38991; Thu, 20 Jul 2023 18:51:20 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sandelman.ca; s=mail; t=1689893480; bh=0nxF5P4OPJyE4GL/yrjXtMvyiSrMbL7fbV1EK/+l0+M=; h=From:To:Subject:In-Reply-To:References:Date:From; b=BPqVZx0OJL4M6gXoCX6KLiP6W1vBrXn6sXAir7wjzKOv5YERvdmnF98QJn1GWkgz4 Zgfd4YeW4dUHjw/d097iRzvI5YfS90A3v8nzqnUrQVWFx2TF5Nd00XFMddN4s9DV8d +RTVKWZkGcbkvHjSuy3BVhqobvLcI8T3rbV5r3s4Wg9kmebTD/G+7hoHhv+fRQOe0r 20pZgaSlZ0TIPpC6gZpGzfVLUD8DaBFRZEEybiUL1RxpR5h/vSBqy+k+bw3xWW5SHc QB2s9z84kCke/xop1Tu6a1xi6stYRREmu2dajOdMhbPS+V/Qh+lYDVVFfJum+RUpJu t+JbcJisGPS7w==
Received: from localhost (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 6E80FC7A; Thu, 20 Jul 2023 18:51:20 -0400 (EDT)
From: Michael Richardson <mcr+ietf@sandelman.ca>
To: "media-types@ietf.org" <media-types@ietf.org>, JOSE WG <jose@ietf.org>, cose <cose@ietf.org>
In-Reply-To: <CAN8C-_J_8Tinx5sqjN__Wnzz8WaCMvjViaLTjSuKL=wwySuagg@mail.gmail.com>
References: <CAN8C-_JWY35sVKWH2Ly85c30_zHJuBLP9kO21MJfSFaMOv4PYQ@mail.gmail.com> <29331.1689803277@localhost> <CAN8C-_+_t-oLwFZf-X9jupwbmG_jMgiN54ToJ4PrG2bvZrUT=w@mail.gmail.com> <2381.1689809580@localhost> <CAN8C-_+baqRFa6vhQQ6mJbdwpQri6kNVOVOVJSyAHbRxpxNhUw@mail.gmail.com> <2228.1689815567@localhost> <CAN8C-_+_5KQPMRa11FTimVM7YD8TH7Mz6NjB1Lg9+iVOvjrDhA@mail.gmail.com> <30436.1689820710@localhost> <CAN8C-_LmdSF9T_UDPbTr1OLvBzd6AbSc_7PqhSVgJSUgJb4H6A@mail.gmail.com> <MN2PR13MB26083B8991A0AD480FCA37A8EE3EA@MN2PR13MB2608.namprd13.prod.outlook.com> <CAMBN2CT9Sps=K1zVQa7B=a_4oxktsmxjv0tWPuycmcs07HvhAA@mail.gmail.com> <CAN8C-_J_8Tinx5sqjN__Wnzz8WaCMvjViaLTjSuKL=wwySuagg@mail.gmail.com>
X-Mailer: MH-E 8.6+git; nmh 1.7+dev; GNU Emacs 27.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Thu, 20 Jul 2023 18:51:20 -0400
Message-ID: <13376.1689893480@localhost>
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/aEvGtirgW5T68h96Mr7sZG8bNRs>
Subject: Re: [jose] [EXT] Re: [COSE] Multiple Suffixes with JOSE and COSE media types
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jul 2023 22:51:40 -0000
Orie Steele <orie@transmute.industries> wrote: > `+jwt` secures `application/json` (already a registered structured > suffix) Yesish... but: > `+cwt` secures `application/cbor` ( registration requests exist... > https://www.ietf.org/archive/id/draft-ietf-rats-eat-media-type-02.html#section-6.1 > ) > `+cose` secures an envelope that is `application/cbor` and a payload of > type `content_type` ( > https://github.com/anima-wg/constrained-voucher/issues/264 ) Here I had a bit of pause. Eventually I understood/remembered that +cwt isn't secure application/cbor. Rather, it's securing application/cbor with a payload consisting of claims from the CWT registry. So while the underlying serialization is CBOR, it's not securing arbitrary CBOR. (And that's why constrained-voucher does not use +cwt, because our claims come from YANG, not from COSE) A similar statement applies to +jwt, I think. > `+jose` secures an envelope that is `application/json` and a payload of > type `cty` (AFAIK, nobody is planning to register this as of right > now). https://datatracker.ietf.org/doc/draft-ietf-anima-jws-voucher/ maybe. > You might consider these last 2 special cases of multipart content > types... when their headers include `content_type` or `cty`. I kinda get why you are saying multipart, but I don't really like it that way. I want to suggest that there are very few cases of real processing chains in my opinion. Except for debuggers. +gz -type suffixes are the small exception to this. -- ] Never tell me the odds! | ipv6 mesh networks [ ] Michael Richardson, Sandelman Software Works | IoT architect [ ] mcr@sandelman.ca http://www.sandelman.ca/ | ruby on rails [ -- Michael Richardson <mcr+IETF@sandelman.ca> . o O ( IPv6 IøT consulting ) Sandelman Software Works Inc, Ottawa and Worldwide
- [jose] Multiple Suffixes with JOSE and COSE media… Orie Steele
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Michael Richardson
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Orie Steele
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Michael Richardson
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Orie Steele
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Michael Richardson
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Orie Steele
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Michael Richardson
- Re: [jose] [COSE] Multiple Suffixes with JOSE and… Orie Steele
- Re: [jose] [EXT] Re: [COSE] Multiple Suffixes wit… Brent Zundel
- Re: [jose] [EXT] Re: [COSE] Multiple Suffixes wit… Manu Sporny
- Re: [jose] [EXT] Re: [COSE] Multiple Suffixes wit… Orie Steele
- Re: [jose] [EXT] Re: [COSE] Multiple Suffixes wit… Michael Richardson
- Re: [jose] [EXT] Re: [COSE] Multiple Suffixes wit… Orie Steele
- Re: [jose] [COSE] [EXT] Re: Multiple Suffixes wit… Brendan Moran
- Re: [jose] [COSE] [EXT] Re: Multiple Suffixes wit… Carsten Bormann
- Re: [jose] [COSE] [EXT] Re: Multiple Suffixes wit… Orie Steele