Re: [jose] #27: member names MUST be unique needs additional text

Carsten Bormann <cabo@tzi.org> Thu, 27 June 2013 07:16 UTC

Mime-Version: 1.0 (Mac OS X Mail 6.5 $1508$)
Content-Type: text/plain; charset="iso-8859-1"
From: Carsten Bormann <cabo@tzi.org>
In-Reply-To: <255B9BB34FB7D647A506DC292726F6E1151BE456D2@WSMSG3153V.srv.dir.telstra.com>
Date: Thu, 27 Jun 2013 09:16:10 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <EE290511-7365-4815-A99A-481F8699CC37@tzi.org>
References: <061.bb7bbe0b618ec6b74904f48bdb9bb312@trac.tools.ietf.org> <076.a597050ecb4fb25084cec65f7174dc7e@trac.tools.ietf.org> <033b01ce729b$26ff5c90$74fe15b0$@augustcellars.com> <4E1F6AAD24975D4BA5B16804296739436789B4CC@TK5EX14MBXC283.redmond.corp.microsoft.com> <03b401ce72e5$002c65f0$008531d0$@augustcellars.com> <255B9BB34FB7D647A506DC292726F6E1151BE456D2@WSMSG3153V.srv.dir.telstra.com>
To: "Manger, James H" <James.H.Manger@team.telstra.com>
Cc: Jim Schaad <ietf@augustcellars.com>, 'Mike Jones' <Michael.Jones@microsoft.com>, "jose@ietf.org" <jose@ietf.org>, "draft-ietf-jose-json-web-signature@tools.ietf.org" <draft-ietf-jose-json-web-signature@tools.ietf.org>
Subject: Re: [jose] #27: member names MUST be unique needs additional text
Precedence: list

On Jun 27, 2013, at 07:26, "Manger, James H" <James.H.Manger@team.telstra.com> wrote:

> each recipient MUST either reject messages with duplicate names or accept only the last name.

Maybe only gatekeeper functions need validating parsers?

gatekeeper function: A processing step that derives (makes/validates)
an assertion from a JOSE object and then moves forward that JOSE
object unchanged to the next processing step (e.g., to preserve a
signature)

validating parser: A JSON parser that rejects JSON that might be
interpreted differently by another JSON parser

Are we sure that the duplicate key issue is the only one that needs to
be checked by a validating parser?  A number of candidate issues:

http://www.ietf.org/mail-archive/web/json/current/msg01068.html

E.g., what about issue 3.8?  If a gatekeeper function derives an
asssertion about a JOSE object mentioning twitter ID
10765432100123456789, but the next step thinks it is about
10765432100123458000?

https://dev.twitter.com/docs/twitter-ids-json-and-snowflake

The list in msg01068 also is not complete for our purposes, e.g., it
mentions normalization issues only in passing.  A validating parser
sure wants to reject anything that isn't already normalized Unicode.

Maybe gatekeeper functions are not such a bright idea?

Grüße, Carsten

[jose] #27: member names MUST be unique needs add… jose issue tracker
Re: [jose] #27: member names MUST be unique needs… jose issue tracker
Re: [jose] #27: member names MUST be unique needs… Jim Schaad
Re: [jose] #27: member names MUST be unique needs… Mike Jones
Re: [jose] #27: member names MUST be unique needs… Jim Schaad
Re: [jose] #27: member names MUST be unique needs… Mike Jones
Re: [jose] #27: member names MUST be unique needs… Tim Bray
Re: [jose] #27: member names MUST be unique needs… Manger, James H
Re: [jose] #27: member names MUST be unique needs… Manger, James H
Re: [jose] #27: member names MUST be unique needs… Tim Bray
Re: [jose] #27: member names MUST be unique needs… Manger, James H
Re: [jose] #27: member names MUST be unique needs… Carsten Bormann
Re: [jose] #27: member names MUST be unique needs… Manger, James H
Re: [jose] #27: member names MUST be unique needs… Tim Bray
Re: [jose] #27: member names MUST be unique needs… John Bradley
Re: [jose] #27: member names MUST be unique needs… Mike Jones
Re: [jose] #27: member names MUST be unique needs… Jim Schaad
Re: [jose] #27: member names MUST be unique needs… Jim Schaad
Re: [jose] #27: member names MUST be unique needs… Jim Schaad
Re: [jose] #27: member names MUST be unique needs… Richard Barnes
Re: [jose] #27: member names MUST be unique needs… Richard Barnes
Re: [jose] #27: member names MUST be unique needs… Mike Jones
Re: [jose] #27: member names MUST be unique needs… Mike Jones
Re: [jose] #27: member names MUST be unique needs… Richard Barnes
Re: [jose] #27: member names MUST be unique needs… Mike Jones
Re: [jose] #27: member names MUST be unique needs… jose issue tracker