Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt
Richard Barnes <rlb@ipv.sx> Sat, 28 December 2013 23:16 UTC
Return-Path: <rlb@ipv.sx>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E44DB1AE3DF for <jose@ietfa.amsl.com>; Sat, 28 Dec 2013 15:16:06 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.977
X-Spam-Level:
X-Spam-Status: No, score=-1.977 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AJmtN4XtUJSk for <jose@ietfa.amsl.com>; Sat, 28 Dec 2013 15:16:04 -0800 (PST)
Received: from mail-ob0-f182.google.com (mail-ob0-f182.google.com [209.85.214.182]) by ietfa.amsl.com (Postfix) with ESMTP id 015A51AE3E6 for <jose@ietf.org>; Sat, 28 Dec 2013 15:16:03 -0800 (PST)
Received: by mail-ob0-f182.google.com with SMTP id wp4so10654296obc.27 for <jose@ietf.org>; Sat, 28 Dec 2013 15:15:58 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=LVfvweWaujARSXY03BiJQpbJfreZnvGUSwqC2yR6pdA=; b=iE/kBiGT3t+K9d6hzkmoBck5ho+ikFMpDds4jdLX0l66hPyA6CQOE2J0AM5Moh2ZJP D0/6JD64X2gT9mfM+H3k+Ge6wSjsRBK8n/++DnOgOT+KAFVmOyo46ACtHYBohFqRDnZr NIFFuSdcTW0JEpAZNUbOEGkMO788GzVfOycQMIJRsCAbDTxd9jZsuuVBQ+D/4LkYhEby 0R2bpKEToPinsHd/hM+PtkjUOLJFtWFWpNRnAm82ixBVwE+8RdOax4OR62c0+RC7GuZj sheC3y3WsKa7obfhfLnH3pDKgXFHHoZy8VFSvAnYzVu4Nco6iN9RL8rEd6drsxWVf8+L o19Q==
X-Gm-Message-State: ALoCoQleCRAPZeGCYAT1t21QKbo048LQ2GPgI0VQuy3na+qtXiV7Y1WKnnUtRHk9Ytn8dTDenNAv
MIME-Version: 1.0
X-Received: by 10.60.63.235 with SMTP id j11mr10980478oes.61.1388272558568; Sat, 28 Dec 2013 15:15:58 -0800 (PST)
Received: by 10.60.54.65 with HTTP; Sat, 28 Dec 2013 15:15:58 -0800 (PST)
In-Reply-To: <4E1F6AAD24975D4BA5B16804296739437CD6993B@TK5EX14MBXC287.redmond.corp.microsoft.com>
References: <20131227192151.425.70057.idtracker@ietfa.amsl.com> <CAL02cgSNmKuB-heAE1xvSHHwgGiT7e4z8z2vNPmPUrh=wfKK2Q@mail.gmail.com> <4E1F6AAD24975D4BA5B16804296739437CD6993B@TK5EX14MBXC287.redmond.corp.microsoft.com>
Date: Sat, 28 Dec 2013 18:15:58 -0500
Message-ID: <CAL02cgTquafgZ3tYBMSgODvF+hNXJfCtnZfjYk6f4gc2XATNLQ@mail.gmail.com>
From: Richard Barnes <rlb@ipv.sx>
To: Mike Jones <Michael.Jones@microsoft.com>, Sean Turner <turners@ieca.com>
Content-Type: multipart/alternative; boundary="001a11c24dbcb5596504eea06453"
Cc: "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 28 Dec 2013 23:16:07 -0000
Shoot, I thought I had fixed the ordering issue in -06. Sean: Can we just handle both of these in an RFC Editor note? On Fri, Dec 27, 2013 at 8:46 PM, Mike Jones <Michael.Jones@microsoft.com>wrote: > Hi Richard, > > > > I’d like to raise two issues with the current draft that I believe should > be addressed in a quick -07 draft. > > > > First, the three lists in Section 2 ( > http://tools.ietf.org/html/draft-ietf-jose-use-cases-06#section-2) that > should have parallel orders do not, which is unnecessarily confusing. I > believe that they should all be in the order: > > > > 1. Integrity-protected object format > > 2. Confidentiality-protected object format > > 3. A format for expressing keys > > > > The second parallel list should be in the order: > > “signed object format” > > “encrypted object format” > > “key format” > > > > The third parallel list should be in the order: > > JWS > > JWE > > JWK > > > > To fix this, you’ll need to reverse the current order of the first two > items in the first two lists. (The third list is already in the correct > order.) > > > > Second, I’d sent you a private note a few months ago asking you to update > the OpenID Connect reference, since the OpenID.Messages spec has been > replaced with OpenID.Core. You’d agreed to do this, but it didn’t happen. > Please replace the OpenID.Messages reference with this: > > > > <reference anchor="OpenID.Core"> > > <front> > > <title>OpenID Connect Core 1.0</title> > > > > <author fullname="Nat Sakimura" initials="N." surname="Sakimura"> > > <organization abbrev="NRI">Nomura Research Institute, > Ltd.</organization> > > </author> > > > > <author fullname="John Bradley" initials="J." surname="Bradley"> > > <organization abbrev="Ping Identity">Ping > Identity</organization> > > </author> > > > > <author fullname="Michael B. Jones" initials="M.B." > surname="Jones"> > > <organization abbrev="Microsoft">Microsoft</organization> > > </author> > > > > <author fullname="Breno de Medeiros" initials="B." surname="de > Medeiros"> > > <organization abbrev="Google">Google</organization> > > </author> > > > > <author fullname="Chuck Mortimore" initials="C." > surname="Mortimore"> > > <organization > abbrev="Salesforce">Salesforce</organization> > > </author> > > > > <date day="18" month="December" year="2013"/> > > </front> > > > > <format target=" > http://openid.net/specs/openid-connect-core-1_0.html" > > type="HTML" /> > > </reference> > > > > Thank you, > > -- Mike > > > > *From:* jose [mailto:jose-bounces@ietf.org] *On Behalf Of *Richard Barnes > *Sent:* Friday, December 27, 2013 11:23 AM > *To:* jose@ietf.org > *Subject:* Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt > > > > This is a very minor update to address some wording changes suggested by > the IESG. > > --Richard > > > > On Fri, Dec 27, 2013 at 2:21 PM, <internet-drafts@ietf.org> wrote: > > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Javascript Object Signing and Encryption > Working Group of the IETF. > > Title : Use Cases and Requirements for JSON Object > Signing and Encryption (JOSE) > Author : Richard Barnes > Filename : draft-ietf-jose-use-cases-06.txt > Pages : 26 > Date : 2013-12-27 > > Abstract: > Many Internet applications have a need for object-based security > mechanisms in addition to security mechanisms at the network layer or > transport layer. For many years, the Cryptographic Message Syntax > (CMS) has provided a binary secure object format based on ASN.1. > Over time, binary object encodings such as ASN.1 have become less > common than text-based encodings, for example JavaScript Object > Notation. This document defines a set of use cases and requirements > for a secure object format encoded using JavaScript Object Notation > (JSON), drawn from a variety of application security mechanisms > currently in development. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-jose-use-cases/ > > There's also a htmlized version available at: > http://tools.ietf.org/html/draft-ietf-jose-use-cases-06 > > A diff from the previous version is available at: > http://www.ietf.org/rfcdiff?url2=draft-ietf-jose-use-cases-06 > > > Please note that it may take a couple of minutes from the time of > submission > until the htmlized version and diff are available at tools.ietf.org. > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > _______________________________________________ > jose mailing list > jose@ietf.org > https://www.ietf.org/mailman/listinfo/jose > > >
- [jose] I-D Action: draft-ietf-jose-use-cases-06.t… internet-drafts
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Richard Barnes
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Mike Jones
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Richard Barnes
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Mike Jones