Re: [jose] Ben Campbell's No Objection on draft-ietf-jose-jws-signing-input-options-07: (with COMMENT)

Mike Jones <Michael.Jones@microsoft.com> Thu, 17 December 2015 01:00 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 453BD1A899B; Wed, 16 Dec 2015 17:00:55 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.002
X-Spam-Level:
X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LVeKfL8Snyy7; Wed, 16 Dec 2015 17:00:53 -0800 (PST)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bon0722.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::1:722]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9FCC31A8A17; Wed, 16 Dec 2015 17:00:48 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:To:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=e/zQNr1XGBVlELWLujXhoUeQ25mR4F2t/0pm+S0mUKM=; b=PypERzjnXV6bOqbOBpujYL2abqZ3NwqMnVtQS7ikmDCXtuJbCUPS4JmYeHO50Arvmg+KZZEf7mVDOW0nmrzE9AubVM8F8jV2CV2G9dH7KpMTRFDepnoPZuqlAkRYBVdDj47s3rq0HdAyvUpDK0/SAqWyqa7dAQfB555NYBHCCPA=
Received: from BL2PR03MB433.namprd03.prod.outlook.com (10.141.92.19) by BL2PR03MB435.namprd03.prod.outlook.com (10.141.92.24) with Microsoft SMTP Server (TLS) id 15.1.355.16; Thu, 17 Dec 2015 01:00:30 +0000
Received: from BL2PR03MB433.namprd03.prod.outlook.com ([10.141.92.19]) by BL2PR03MB433.namprd03.prod.outlook.com ([10.141.92.19]) with mapi id 15.01.0355.012; Thu, 17 Dec 2015 01:00:30 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Ben Campbell <ben@nostrum.com>, The IESG <iesg@ietf.org>
Thread-Topic: Ben Campbell's No Objection on draft-ietf-jose-jws-signing-input-options-07: (with COMMENT)
Thread-Index: AQHROFfKWGQxcPcTvkOVafGo9krzSp7OVxgQ
Date: Thu, 17 Dec 2015 01:00:30 +0000
Message-ID: <BL2PR03MB433BCAE9592760A4EEDC544F5E00@BL2PR03MB433.namprd03.prod.outlook.com>
References: <20151216231624.29134.40161.idtracker@ietfa.amsl.com>
In-Reply-To: <20151216231624.29134.40161.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [188.92.133.18]
x-microsoft-exchange-diagnostics: 1; BL2PR03MB435; 5:yQiS72QTlHZWndd3IdzXEv1hzsK8xWCH0XQuZyhEMvh7kBP2YPwPa7jW+KsKKBbUBz2Y4AvY4gPLT6d8GGI6QAHB5QmQBo7uoOdMxLp39jXtV+KFX44gE6AkdkM+O8oyvyKOTAlrYxNbxWGtSQ4Aqw==; 24:oGySp0QrSDkFJD1w6hL313ax+8I0N/UN2z946g/FmG3mdvmOMKswPWPoj7HNNSTEWhFvqkI7ZBFdaJJLSolaaGo83JEzZdezzDSrotuADSI=
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BL2PR03MB435;
x-microsoft-antispam-prvs: <BL2PR03MB43591F311C922FA41CDCB58F5E00@BL2PR03MB435.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(601004)(2401047)(520078)(5005006)(8121501046)(10201501046)(3002001)(61426038)(61427038); SRVR:BL2PR03MB435; BCL:0; PCL:0; RULEID:; SRVR:BL2PR03MB435;
x-forefront-prvs: 07935ACF08
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(13464003)(52044002)(43784003)(199003)(189002)(377454003)(122556002)(33656002)(1096002)(40100003)(6116002)(102836003)(3846002)(92566002)(1220700001)(74316001)(76576001)(66066001)(99286002)(106356001)(101416001)(19580405001)(19580395003)(54356999)(586003)(105586002)(106116001)(2900100001)(77096005)(15975445007)(87936001)(5001770100001)(5004730100002)(81156007)(50986999)(10090500001)(86362001)(10290500002)(11100500001)(2950100001)(5008740100001)(97736004)(5003600100002)(10400500002)(86612001)(5002640100001)(76176999)(5001960100002)(189998001)(230783001)(5005710100001)(8990500004); DIR:OUT; SFP:1102; SCL:1; SRVR:BL2PR03MB435; H:BL2PR03MB433.namprd03.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:23
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 Dec 2015 01:00:30.7084 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR03MB435
Archived-At: <http://mailarchive.ietf.org/arch/msg/jose/l6e3D81GUnAHv3ol5xzcd86wVyM>
Cc: "ietf@augustcellars.com" <ietf@augustcellars.com>, "jose-chairs@ietf.org" <jose-chairs@ietf.org>, "draft-ietf-jose-jws-signing-input-options@ietf.org" <draft-ietf-jose-jws-signing-input-options@ietf.org>, "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] Ben Campbell's No Objection on draft-ietf-jose-jws-signing-input-options-07: (with COMMENT)
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 17 Dec 2015 01:00:55 -0000

Hi Ben.  Thanks for your useful review.

> -----Original Message-----
> From: Ben Campbell [mailto:ben@nostrum.com]
> Sent: Thursday, December 17, 2015 12:16 AM
> To: The IESG <iesg@ietf.org>
> Cc: draft-ietf-jose-jws-signing-input-options@ietf.org; Mike Jones
> <Michael.Jones@microsoft.com>om>; Jim Schaad <ietf@augustcellars.com>om>;
> jose-chairs@ietf.org; ietf@augustcellars.com; jose@ietf.org
> Subject: Ben Campbell's No Objection on draft-ietf-jose-jws-signing-input-
> options-07: (with COMMENT)
> 
> Ben Campbell has entered the following ballot position for
> draft-ietf-jose-jws-signing-input-options-07: No Objection
> 
> When responding, please keep the subject line intact and reply to all email
> addresses included in the To and CC lines. (Feel free to cut this introductory
> paragraph, however.)
> 
> 
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
> 
> 
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-jose-jws-signing-input-options/
> 
> 
> 
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
> 
> -7, last paragraph:
> 
> " Thus, method 1 -
>    requiring support for this extension - is the preferred approach and
>    the only means for this extension to be practically useful to
>    applications."
> 
> One might wonder why method 2 and 3 are included. I assume it is to allow
> existing apps to migrate to method 1 over time? If so, some guidance on app
> migration might be useful.

Methods 2 and 3 are not about application functionality migration.  In both of these cases, the application doesn't work if it doesn't support the extension, so there's no migration path enabled by them.  They're there strictly to describe how to ensure that JWSs that would be misunderstood by recipients not implementing the extension are cleanly rejected by those implementations, rather being processed with incorrect payloads.  I'll look into adding text to that effect in the draft.

> Editorial:
> 
> -6, last paragraph:
> It’s confusing to see "(JWT) [JWT]" . I suggest either removing (JWT), or
> changing the anchor for the citation to use [RFC7519]

Barry made the same observation. :-)  Will do.

				Thanks again,
				-- Mike