Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt
Mike Jones <Michael.Jones@microsoft.com> Sun, 29 December 2013 02:35 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jose@ietfa.amsl.com
Delivered-To: jose@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DD4B31AE4BA for <jose@ietfa.amsl.com>; Sat, 28 Dec 2013 18:35:36 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rQG6_q5E1A6F for <jose@ietfa.amsl.com>; Sat, 28 Dec 2013 18:35:33 -0800 (PST)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1blp0187.outbound.protection.outlook.com [207.46.163.187]) by ietfa.amsl.com (Postfix) with ESMTP id 6072F1AE4B7 for <jose@ietf.org>; Sat, 28 Dec 2013 18:35:33 -0800 (PST)
Received: from BLUPR03MB067.namprd03.prod.outlook.com (10.255.209.155) by BLUPR03MB614.namprd03.prod.outlook.com (10.255.124.42) with Microsoft SMTP Server (TLS) id 15.0.842.7; Sun, 29 Dec 2013 02:35:26 +0000
Received: from BLUPR03CA035.namprd03.prod.outlook.com (10.141.30.28) by BLUPR03MB067.namprd03.prod.outlook.com (10.255.209.155) with Microsoft SMTP Server (TLS) id 15.0.842.7; Sun, 29 Dec 2013 02:35:24 +0000
Received: from BY2FFO11FD018.protection.gbl (2a01:111:f400:7c0c::150) by BLUPR03CA035.outlook.office365.com (2a01:111:e400:879::28) with Microsoft SMTP Server (TLS) id 15.0.842.7 via Frontend Transport; Sun, 29 Dec 2013 02:35:24 +0000
Received: from mail.microsoft.com (131.107.125.37) by BY2FFO11FD018.mail.protection.outlook.com (10.1.14.106) with Microsoft SMTP Server (TLS) id 15.0.837.10 via Frontend Transport; Sun, 29 Dec 2013 02:35:24 +0000
Received: from TK5EX14MBXC287.redmond.corp.microsoft.com ([169.254.2.241]) by TK5EX14MLTC102.redmond.corp.microsoft.com ([157.54.79.180]) with mapi id 14.03.0158.002; Sun, 29 Dec 2013 02:35:16 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Richard Barnes <rlb@ipv.sx>, Sean Turner <turners@ieca.com>
Thread-Topic: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt
Thread-Index: AQHPAzkPSH1cqGWcy0ysQzyTcguw85poa7UAgABov7CAAWqhAIAAN68y
Date: Sun, 29 Dec 2013 02:35:15 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739437CD6D31C@TK5EX14MBXC287.redmond.corp.microsoft.com>
References: <20131227192151.425.70057.idtracker@ietfa.amsl.com> <CAL02cgSNmKuB-heAE1xvSHHwgGiT7e4z8z2vNPmPUrh=wfKK2Q@mail.gmail.com> <4E1F6AAD24975D4BA5B16804296739437CD6993B@TK5EX14MBXC287.redmond.corp.microsoft.com>, <CAL02cgTquafgZ3tYBMSgODvF+hNXJfCtnZfjYk6f4gc2XATNLQ@mail.gmail.com>
In-Reply-To: <CAL02cgTquafgZ3tYBMSgODvF+hNXJfCtnZfjYk6f4gc2XATNLQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Content-Type: multipart/alternative; boundary="_000_4E1F6AAD24975D4BA5B16804296739437CD6D31CTK5EX14MBXC287r_"
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-Forefront-Antispam-Report: CIP:131.107.125.37; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10009001)(199002)(189002)(24454002)(65554003)(164054003)(377454003)(377424004)(81686001)(74366001)(81542001)(31966008)(81342001)(15975445006)(80976001)(50986001)(20776003)(74706001)(71186001)(87936001)(6806004)(83322001)(74876001)(76796001)(76482001)(74502001)(14971765001)(81816001)(87266001)(74662001)(2656002)(69226001)(47446002)(4396001)(16236675002)(80022001)(56776001)(47976001)(49866001)(85306002)(16601075003)(59766001)(56816005)(15202345003)(44976005)(63696002)(15395725003)(33656001)(19580405001)(47736001)(54316002)(19580395003)(85852003)(83072002)(79102001)(77096001)(54356001)(55846006)(77982001)(76786001)(65816001)(84326002)(90146001)(51856001)(46102001)(53806001)(403724002); DIR:OUT; SFP:1101; SCL:1; SRVR:BLUPR03MB067; H:mail.microsoft.com; CLIP:131.107.125.37; FPR:; RD:InfoDomainNonexistent; A:1; MX:1; LANG:en;
X-O365ENT-EOP-Header: Message processed by - O365_ENT: Allow from ranges (Engineering ONLY)
X-Forefront-PRVS: 0075CB064E
X-OriginatorOrg: microsoft.com
Cc: "jose@ietf.org" <jose@ietf.org>
Subject: Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt
X-BeenThere: jose@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Javascript Object Signing and Encryption <jose.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jose>, <mailto:jose-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/jose/>
List-Post: <mailto:jose@ietf.org>
List-Help: <mailto:jose-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jose>, <mailto:jose-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 29 Dec 2013 02:35:37 -0000
Drafts are cheap. Why not just quickly publish a corrected one? It will only take you about 1/2 hour, and unlike an editor's note, the result can be easily proofread by the working group - so things like this can be caught. Thanks, -- Mike ________________________________ From: Richard Barnes<mailto:rlb@ipv.sx> Sent: 12/28/2013 3:16 PM To: Mike Jones<mailto:Michael.Jones@microsoft.com>; Sean Turner<mailto:turners@ieca.com> Cc: jose@ietf.org<mailto:jose@ietf.org> Subject: Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt Shoot, I thought I had fixed the ordering issue in -06. Sean: Can we just handle both of these in an RFC Editor note? On Fri, Dec 27, 2013 at 8:46 PM, Mike Jones <Michael.Jones@microsoft.com<mailto:Michael.Jones@microsoft.com>> wrote: Hi Richard, I’d like to raise two issues with the current draft that I believe should be addressed in a quick -07 draft. First, the three lists in Section 2 (http://tools.ietf.org/html/draft-ietf-jose-use-cases-06#section-2) that should have parallel orders do not, which is unnecessarily confusing. I believe that they should all be in the order: 1. Integrity-protected object format 2. Confidentiality-protected object format 3. A format for expressing keys The second parallel list should be in the order: “signed object format” “encrypted object format” “key format” The third parallel list should be in the order: JWS JWE JWK To fix this, you’ll need to reverse the current order of the first two items in the first two lists. (The third list is already in the correct order.) Second, I’d sent you a private note a few months ago asking you to update the OpenID Connect reference, since the OpenID.Messages spec has been replaced with OpenID.Core. You’d agreed to do this, but it didn’t happen. Please replace the OpenID.Messages reference with this: <reference anchor="OpenID.Core"> <front> <title>OpenID Connect Core 1.0</title> <author fullname="Nat Sakimura" initials="N." surname="Sakimura"> <organization abbrev="NRI">Nomura Research Institute, Ltd.</organization> </author> <author fullname="John Bradley" initials="J." surname="Bradley"> <organization abbrev="Ping Identity">Ping Identity</organization> </author> <author fullname="Michael B. Jones" initials="M.B." surname="Jones"> <organization abbrev="Microsoft">Microsoft</organization> </author> <author fullname="Breno de Medeiros" initials="B." surname="de Medeiros"> <organization abbrev="Google">Google</organization> </author> <author fullname="Chuck Mortimore" initials="C." surname="Mortimore"> <organization abbrev="Salesforce">Salesforce</organization> </author> <date day="18" month="December" year="2013"/> </front> <format target="http://openid.net/specs/openid-connect-core-1_0.html" type="HTML" /> </reference> Thank you, -- Mike From: jose [mailto:jose-bounces@ietf.org<mailto:jose-bounces@ietf.org>] On Behalf Of Richard Barnes Sent: Friday, December 27, 2013 11:23 AM To: jose@ietf.org<mailto:jose@ietf.org> Subject: Re: [jose] I-D Action: draft-ietf-jose-use-cases-06.txt This is a very minor update to address some wording changes suggested by the IESG. --Richard On Fri, Dec 27, 2013 at 2:21 PM, <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> wrote: A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Javascript Object Signing and Encryption Working Group of the IETF. Title : Use Cases and Requirements for JSON Object Signing and Encryption (JOSE) Author : Richard Barnes Filename : draft-ietf-jose-use-cases-06.txt Pages : 26 Date : 2013-12-27 Abstract: Many Internet applications have a need for object-based security mechanisms in addition to security mechanisms at the network layer or transport layer. For many years, the Cryptographic Message Syntax (CMS) has provided a binary secure object format based on ASN.1. Over time, binary object encodings such as ASN.1 have become less common than text-based encodings, for example JavaScript Object Notation. This document defines a set of use cases and requirements for a secure object format encoded using JavaScript Object Notation (JSON), drawn from a variety of application security mechanisms currently in development. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-jose-use-cases/ There's also a htmlized version available at: http://tools.ietf.org/html/draft-ietf-jose-use-cases-06 A diff from the previous version is available at: http://www.ietf.org/rfcdiff?url2=draft-ietf-jose-use-cases-06 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ _______________________________________________ jose mailing list jose@ietf.org<mailto:jose@ietf.org> https://www.ietf.org/mailman/listinfo/jose
- [jose] I-D Action: draft-ietf-jose-use-cases-06.t… internet-drafts
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Richard Barnes
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Mike Jones
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Richard Barnes
- Re: [jose] I-D Action: draft-ietf-jose-use-cases-… Mike Jones