IETF Logo Mail Archive

Re: [jose] updated draft charter text incorporating AD's comments

Dick Hardt <dick.hardt@gmail.com> Fri, 05 April 2013 15:11 UTC

Return-Path: <dick.hardt@gmail.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C22C521F97CA for <jose@ietfa.amsl.com>; Fri, 5 Apr 2013 08:11:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.229
X-Spam-Level:
X-Spam-Status: No, score=-1.229 tagged_above=-999 required=5 tests=[AWL=-1.277, BAYES_00=-2.599, FH_HOST_EQ_D_D_D_D=0.765, RCVD_IN_PBL=0.905, RCVD_IN_SORBS_DUL=0.877, RDNS_DYNAMIC=0.1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fn-RTxg7IlJj for <jose@ietfa.amsl.com>; Fri, 5 Apr 2013 08:11:09 -0700 (PDT)
Received: from mail-da0-x233.google.com (mail-da0-x233.google.com [IPv6:2607:f8b0:400e:c00::233]) by ietfa.amsl.com (Postfix) with ESMTP id 4E56621F97C3 for <jose@ietf.org>; Fri, 5 Apr 2013 08:11:09 -0700 (PDT)
Received: by mail-da0-f51.google.com with SMTP id g27so1610973dan.24 for <jose@ietf.org>; Fri, 05 Apr 2013 08:11:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:content-type:mime-version:subject:from:in-reply-to:date :cc:content-transfer-encoding:message-id:references:to:x-mailer; bh=jC2CFFwxnY6U0AQHFwXBxS3PtbqJyp8ivg7yI5yYjyA=; b=BsQ8itKXMX8MoOeyiw+ALNYIkupCb1fpHVERLTyXCITrtvJOOwX70D7Zm5n4iff0sJ rBGxCRz4cI3yHCiVjccV4kPhEEoc/axaYXls3M4nVera5SISygH6cZdt+uvdEPULvQlT pst/ytzHjcsPdH/Vlq9iccKw9jpyGQTH4uQ45NrxCKHMdL8/ER19Bk1RXx3cNEv3jAep qHv0HJWdA0nr0qWNT41Gg5Ubt8xARfWXIZjsOmGj/gysoOFhXfrAnnCdVv7C0M2hD3QB TyaIXl8w1x0NX+nawB8nS7GpZ2PqicLT4dyfKTquJlITt4gAF0YovU9DxvSCOF/5kLxw cGEw==
X-Received: by 10.68.212.233 with SMTP id nn9mr14881475pbc.144.1365174669067; Fri, 05 Apr 2013 08:11:09 -0700 (PDT)
Received: from [10.0.0.80] (c-98-210-193-30.hsd1.ca.comcast.net. [98.210.193.30]) by mx.google.com with ESMTPS id yp2sm16381997pab.10.2013.04.05.08.11.06 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 05 Apr 2013 08:11:07 -0700 (PDT)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 6.3 \(1503\))
From: Dick Hardt <dick.hardt@gmail.com>
In-Reply-To: <CAC4RtVBw6Nqmcd5STHuq+LJJLP16FpKzHu+ONUd2HcxYu-Zj-w@mail.gmail.com>
Date: Fri, 05 Apr 2013 08:11:05 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <6D538EC7-B35B-4E85-9373-A65B885150B0@gmail.com>
References: <513CCD31.8050408@isoc.org> <515EC38F.2060703@ieca.com> <4E1F6AAD24975D4BA5B1680429673943675B77BC@TK5EX14MBXC283.redmond.corp.microsoft.com> <CAC4RtVBw6Nqmcd5STHuq+LJJLP16FpKzHu+ONUd2HcxYu-Zj-w@mail.gmail.com>
To: Barry Leiba <barryleiba@computer.org>
X-Mailer: Apple Mail (2.1503)
Cc: Mike Jones <Michael.Jones@microsoft.com>, Sean Turner <turners@ieca.com>, "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] updated draft charter text incorporating AD's comments
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Apr 2013 15:11:12 -0000

I'm with Mike on not being aligned on the new change. Here is my take on why yet-another-token-format was desired 

+ Ability to represent complex data
=> simple name/value pairs in URL query strings and and HTTP headers led to obtuse, overloaded representations
=> JSON

+ Easy to parse using readily available libraries
=> JSON

+ Easy to include in URLs and HTTP headers
=> the token did not require special encoding
=> the token was short
	=> URL base 64 encoding JSON and separating binary fields with '.' separator => easy to parse


On Apr 5, 2013, at 7:37 AM, Barry Leiba <barryleiba@computer.org> wrote:

>> For that reason, I believe we would be FAR better off to leave the first two
>> charter items exactly as they are at
>> http://datatracker.ietf.org/wg/jose/charter/ than to accept the new wording.
>> The current wording is:
>> 
>> 1) A Standards Track document specifying how to apply JSON-structured
>> integrity protection to data, including (but not limited to) JSON data
>> structures. "Integrity protection" includes public-key digital
>> signatures as well as symmetric-key MACs.
>> 
>> 2) A Standards Track document specifying how to apply a JSON-structured
>> encryption to data, including (but not limited to) JSON data structures.
> 
> The problem is that I do not understand what you mean by
> "JSON-structured integrity protection" and "JSON-structured
> encryption".  Sean's suggested wording is intended to say this in an
> understandable way; if it's not correct, please try to come up with an
> alternative.  The existing text doesn't work, because I don't
> understand how to apply the modifier "JSON-structured" to the noun
> "encryption" and get anything sensible out of it.  What does it mean
> for *encryption* to be "JSON-structured"?
> 
>> So yes, I strongly object to the new wording, as I don’t want to open the
>> door for the current representations to be rejected on charter grounds
>> later.  If it helps, you can reassure objectors that we ARE producing pure
>> JSON representations too, but that they’re not the only JSON-based
>> representations for integrity protected and encrypted content.
> 
> To be clear: what you're producing is not the issue.  It's an issue of
> the wording in the charter.
> 
> Barry
> _______________________________________________
> jose mailing list
> jose@ietf.org
> https://www.ietf.org/mailman/listinfo/jose

v2.23.0 | Report a Bug | By Email