[jose] JWP analogy
Mike Jones <Michael.Jones@microsoft.com> Thu, 28 July 2022 19:20 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1646C15C50C for <jose@ietfa.amsl.com>; Thu, 28 Jul 2022 12:20:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.688
X-Spam-Level:
X-Spam-Status: No, score=-7.688 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.582, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KY8r1oyG2XhQ for <jose@ietfa.amsl.com>; Thu, 28 Jul 2022 12:20:46 -0700 (PDT)
Received: from na01-obe.outbound.protection.outlook.com (mail-cusazon11020018.outbound.protection.outlook.com [52.101.61.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8274C15C50A for <jose@ietf.org>; Thu, 28 Jul 2022 12:20:46 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=H00WpEX1h214pvfYVd2XOoZWaIg4XtHVgp+X0Sed+Hc+8VzQZRBVpWp2131TeJrjRRKVf0UQ9dD/xQmWlKKVJHjfwWIt2oUI2gmqCTZmD11F48vhRqiNqhKzgAx+sZok++TpN/k7MaigEn3XJQJvvXKk0iCrj+ZmbvguMsIcLTZ+yye7tCJbfUkC8KxqTeaSBEAgEZtcZV23HqWSTDVTvx/hvWPqT9zs9IlVRTqAqqp4kp3wW7cY4g/VwztjDMzIdwOoDgtTxG+YBfU2tYLLMBHI4xWChhWDwFzu1NV2duRVPJRQdru4VuEYL3+6e00fl4WXVTi9ocKougs2wY3iYw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=0MFO+RlEGzqabEGb65g/d+w1d8v8LFLZzWrzHYkcHv8=; b=McXHfTZA9HfSIl7LfMKKe8QSXF3sEocJ2w2SaWu/hGGAvog3dRLs5/1PM3EEifNBCZ1AB5NBLjHK/Qmnqg+NXUc6YRqcjRwdWS5y5rj0rdfBR6c0L7JV3CeQDQjijm+/PvBAAdCrE680Ht7ER2G9BOw9QWuB52woNPmF1hmfnZj98S47SGoOEvTcx9CaF4bH+ZlnWJxc74Y34Q4f3Kz/FibursQTm/+GT99lNtDSNjnpbJk8EtBVBrCMuzEyOaX9b3C1xITZ+6zC9/vxhI01TSH/hGhIL8SKyMIJZ46lagZU3kyW+aeD1aY9ePHt5RxQ0ZZjmpWI3bH+uawXDNctDA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=0MFO+RlEGzqabEGb65g/d+w1d8v8LFLZzWrzHYkcHv8=; b=N+NT1UFcx6yXB6elf1Vb9FZipK7vfJ9mEcQRgFd3ZmZ18T9qE91/32vWjWwh4xSZ5GVKMAbLFYARpCceIoF5SZL5jDCShUxTecPw+BJveM5pCaHFBQBzod8KulGQ/HDnVgZzxg5xmvch9VEGTf/ONOJhDSDLnr1XKSMobvcG+FA=
Received: from CO1PR00MB0996.namprd00.prod.outlook.com (2603:10b6:303:97::16) by PH0PR00MB1395.namprd00.prod.outlook.com (2603:10b6:510:d2::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5510.0; Thu, 28 Jul 2022 19:20:20 +0000
Received: from CO1PR00MB0996.namprd00.prod.outlook.com ([fe80::9d8:dd33:681b:19ba]) by CO1PR00MB0996.namprd00.prod.outlook.com ([fe80::9d8:dd33:681b:19ba%8]) with mapi id 15.20.5526.000; Thu, 28 Jul 2022 19:20:20 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "jose@ietf.org" <jose@ietf.org>
Thread-Topic: JWP analogy
Thread-Index: AdiisxHVX2ihtBWUQIKLb/B2QUcHBg==
Date: Thu, 28 Jul 2022 19:20:20 +0000
Message-ID: <CO1PR00MB099675CF6652137A9BAA5E31F5969@CO1PR00MB0996.namprd00.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2022-07-28T18:51:20Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=0cd62bc0-12eb-43c8-a6ce-9aeee182d924; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0
authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=microsoft.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 7d119d11-6f1b-482a-03aa-08da70ce366f
x-ms-traffictypediagnostic: PH0PR00MB1395:EE_
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CO1PR00MB0996.namprd00.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230016)(4636009)(136003)(346002)(39860400002)(396003)(366004)(376002)(451199009)(38070700005)(82950400001)(71200400001)(10290500003)(82960400001)(64756008)(8676002)(166002)(66476007)(66556008)(66446008)(38100700002)(7116003)(86362001)(66946007)(76116006)(122000001)(316002)(9686003)(6506007)(8990500004)(5660300002)(3480700007)(478600001)(55016003)(83380400001)(8936002)(7696005)(52536014)(33656002)(41300700001)(2906002)(6916009)(186003); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: multipart/alternative; boundary="_000_CO1PR00MB099675CF6652137A9BAA5E31F5969CO1PR00MB0996namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR00MB1395
Archived-At: <https://mailarchive.ietf.org/arch/msg/jose/780fr2ZRQ2K3I4jmbHXpRA5n2aw>
Subject: [jose] JWP analogy
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2022 19:20:47 -0000
Three parties are involved when using your physical driver's license: * The Issuer - such as the Washington State Department of Motor Vehicles * The Holder - the person to whom the license was issued (you) * The Verifier - the party you're showing the license to, such as a grocery store or policeman A key point is that you don't have to (and don't want to) involve the issuer every time you use the license. The DMV doesn't need to know where and when I'm making age-restricted purchases. You don't "call home". Finally, the license is holder-bound; it is not a bearer token. Even if you're in possession of my license, you're unable to use it (unless you look just like me!). JWP enables these same properties in the online world. It uses the three roles. Presentation to a verifier doesn't involve the issuer. Issued tokens are holder-bound. And unlike my physical driver's license, where everyone I show it to can see all the information - including my home address, JWPs enable selective disclosure, so that only necessary claims are released. Many parties, both during the BoF<https://datatracker.ietf.org/doc/bofreq-miller-json-web-proofs/> and on this list, have expressed needs for this functionality backed by real-world business use cases. I urge you to talk to them, understand their needs, and understand how JWP will meet them. Let's (re)create the working group and get going on the needed standards work! -- Mike
- [jose] JWP analogy Mike Jones
- Re: [jose] JWP analogy Richard Barnes