Re: [Jwt-reg-review] Review requested: draft-ietf-sipcore-rejected

Mike Jones <Michael.Jones@microsoft.com> Fri, 21 June 2019 07:35 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: jwt-reg-review@ietfa.amsl.com
Delivered-To: jwt-reg-review@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1FB68120153; Fri, 21 Jun 2019 00:35:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.02
X-Spam-Level:
X-Spam-Status: No, score=-0.02 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=1.989, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mUAdUmaqBKki; Fri, 21 Jun 2019 00:35:05 -0700 (PDT)
Received: from NAM06-DM3-obe.outbound.protection.outlook.com (mail-eopbgr640130.outbound.protection.outlook.com [40.107.64.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CC71B12006F; Fri, 21 Jun 2019 00:35:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=+x0PXZbqdztE5+32+x2HY4eLKmsAM23OsA32uSrGXkA=; b=oNBbUQ8qUX4RAJaL3wpRQyL2kcF/So8aYYwuhjCQ7ppLpx66QzsoqrtOTNFRCnPnVCA7WDi13KxoSAV31dD1/el2KkD//lEDa7YEPGcw7MhfQ+scEpQoikNJBfp31acPbum5r1BtJ6mwOFHsgaPH1JrwYEq6meE+dfZ3xZICvMU=
Received: from SN6PR00MB0301.namprd00.prod.outlook.com (52.132.117.155) by SN6PR00MB0351.namprd00.prod.outlook.com (52.132.118.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2049.0; Fri, 21 Jun 2019 07:35:01 +0000
Received: from SN6PR00MB0301.namprd00.prod.outlook.com ([fe80::ed73:9556:db4c:a610]) by SN6PR00MB0301.namprd00.prod.outlook.com ([fe80::ed73:9556:db4c:a610%8]) with mapi id 15.20.2044.000; Fri, 21 Jun 2019 07:35:01 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Brian Campbell <bcampbell=40pingidentity.com@dmarc.ietf.org>, Eric Burger <eburger@standardstrack.com>
CC: "jwt-reg-review@ietf.org" <jwt-reg-review@ietf.org>, "sipcore-chairs@ietf.org" <sipcore-chairs@ietf.org>
Thread-Topic: [Jwt-reg-review] Review requested: draft-ietf-sipcore-rejected
Thread-Index: AQHUz7KUk1C73MYC2EmoddiVIpHHc6X4S9DggAASGACAntfcgIANPp6AgAFRfoCAAJ+T0A==
Date: Fri, 21 Jun 2019 07:25:15 +0000
Message-ID: <SN6PR00MB03012DD81580FBE90BF3488CF5E70@SN6PR00MB0301.namprd00.prod.outlook.com>
References: <f918480f-afe7-b695-9132-35afc63d77b3@nostrum.com> <MW2PR00MB029815694580C2D9FB14C2F1F5770@MW2PR00MB0298.namprd00.prod.outlook.com> <CA+k3eCRYZj7NKSVWLV29rqiMLXrFvGvc+ZvRreX0Pphj=nbHfw@mail.gmail.com> <CA+k3eCQJ7cD90htTx-XpMA9bMFRXtvgjY01NfpPThGQw_xbALQ@mail.gmail.com> <6B435767-CB2F-42F2-9E39-1067040425C2@standardstrack.com> <CA+k3eCT9JLhFDGGk+BY=9048gny-FpLxyuwdx2FvbfjqW3n1qg@mail.gmail.com>
In-Reply-To: <CA+k3eCT9JLhFDGGk+BY=9048gny-FpLxyuwdx2FvbfjqW3n1qg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=0cae5f7f-7b1b-4911-a57a-000044af80c3; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-06-21T07:24:56-0800; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [217.159.212.50]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 46fa0b3c-98a7-41f6-06e8-08d6f61af876
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(7168020)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020); SRVR:SN6PR00MB0351;
x-ms-traffictypediagnostic: SN6PR00MB0351:
x-ms-exchange-purlcount: 6
x-microsoft-antispam-prvs: <SN6PR00MB03514B3B95BA7D67392E8E57F5E70@SN6PR00MB0351.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:6108;
x-forefront-prvs: 0075CB064E
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(396003)(366004)(39860400002)(136003)(376002)(346002)(189003)(199004)(13464003)(8936002)(22452003)(64756008)(54906003)(110136005)(7736002)(256004)(10090500001)(14454004)(71200400001)(71190400001)(26005)(66446008)(68736007)(76116006)(6116002)(66556008)(3846002)(446003)(52536014)(8676002)(55016002)(6436002)(6666004)(73956011)(10290500003)(478600001)(790700001)(66946007)(86362001)(316002)(33656002)(11346002)(966005)(606006)(8990500004)(486006)(55236004)(9686003)(81166006)(236005)(476003)(81156014)(6306002)(66476007)(54896002)(4326008)(5660300002)(7696005)(6506007)(66066001)(53936002)(74316002)(76176011)(72206003)(6246003)(5024004)(14444005)(2906002)(99286004)(53546011)(102836004)(186003)(25786009)(229853002); DIR:OUT; SFP:1102; SCL:1; SRVR:SN6PR00MB0351; H:SN6PR00MB0301.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: mA0RRw3uIJzScfRbcT9J2wgLD9ff/W7nxdiNqJ6icbyOeCwlIz/Ds9W/GZdc5kSadLSZlUHPMNV0HuS3NUFLol8WSwcSnngLrYa7nswcTf5TAtB6nTelJsqDdf6Amy8cyVpTOWJt3CC4AYF8AsMybQ6Tfjc3NLCQIO8ZahIJZ9hKtUSFUqVDmw8kIcT2NHNQVdOfEQvThf/XpOez2kg8SMujY0mTqx/34I3vGk4iNa52PyRm3OiUqXDpJMuUrt6lL6NxYcglIiVMWKWLt05TNpFE5EKfJRHuqHvMs7iEWvrrGpDvGhGPjCoMskv93JKoxttfI6blumQjVbcBxCmIf/qKyEw2kW01EPrRQo4fkZhmmTdnzH7ZwstvD+NegIOtasyky0Cu5E82w4bfymM/YZTCa2VQtrAU25x1lG+Bvp0=
Content-Type: multipart/alternative; boundary="_000_SN6PR00MB03012DD81580FBE90BF3488CF5E70SN6PR00MB0301namp_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 46fa0b3c-98a7-41f6-06e8-08d6f61af876
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Jun 2019 07:25:15.1117 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: mbj@microsoft.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: SN6PR00MB0351
Archived-At: <https://mailarchive.ietf.org/arch/msg/jwt-reg-review/ghDxQyc1_Fk2xyQYYUmRlQhiZr8>
Subject: Re: [Jwt-reg-review] Review requested: draft-ietf-sipcore-rejected
X-BeenThere: jwt-reg-review@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Expert review of proposed IANA registrations for JSON Web Token \(JWT\) claims." <jwt-reg-review.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/jwt-reg-review>, <mailto:jwt-reg-review-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/jwt-reg-review/>
List-Post: <mailto:jwt-reg-review@ietf.org>
List-Help: <mailto:jwt-reg-review-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/jwt-reg-review>, <mailto:jwt-reg-review-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Jun 2019 07:35:08 -0000

+1

From: Brian Campbell <bcampbell=40pingidentity.com@dmarc.ietf.org>;
Sent: Thursday, June 20, 2019 2:54 PM
To: Eric Burger <eburger@standardstrack.com>;
Cc: Mike Jones <Michael.Jones@microsoft.com>;; jwt-reg-review@ietf.org; sipcore-chairs@ietf.org
Subject: Re: [Jwt-reg-review] Review requested: draft-ietf-sipcore-rejected

I think a reference is good. I was looking for or expecting just a brief statement in sec 3.3 along the lines of 'the value of the "jcard" claim is a JSON array conforming to the JSON jCard data format defined in RFC7095' or something like that.

On Wed, Jun 19, 2019 at 7:45 PM Eric Burger <eburger@standardstrack.com<mailto:eburger@standardstrack..com>> wrote:
Would having a reference to jCard suffice, or do we need a detailed explanation of what a jCard is?


On Jun 11, 2019, at 11:30 AM, Brian Campbell <bcampbell@pingidentity.com<mailto:bcampbell@pingidentity.com>> wrote:

Looking again at this and the more recent revision of the draft, I do think the jcard claim registration is okay in general.

However, the IANA Considerations registration request at https://tools.ietf.org/html/draft-ietf-sipcore-rejected-08#section-5.3<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-sipcore-rejected-08%23section-5.3&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634466340&sdata=6EuttKU84uyginhv4s7zezlyVKIZwnQssc5lXrvi3pc%3D&reserved=0> points to https://tools.ietf.org/html/draft-ietf-sipcore-rejected-08#section-3.2.2<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-sipcore-rejected-08%23section-3.2.2&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634476335&sdata=zY4w%2BMYxUvLhx0UxOFcpystg8DbLem71%2BGq5aGeO34Q%3D&reserved=0>;, which I think could do a little better job of describing what the value of the jcard claim will be - particularly for folks like myself who are unfamiliar with jCard. The link back to section-5.3 is just circular and isn't particularly helpful. So I went looking to the examples to see a jcard claim to help me understand and I noticed the JWS header in https://tools.ietf.org/html/draft-ietf-sipcore-rejected-08#section-4.1<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-sipcore-rejected-08%23section-4.1&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634476335&sdata=Sm9ph0Ul01v%2FQ175%2BAL66nBpxJ0A3EcjPYLRfiySzKs%3D&reserved=0> isn't valid JOSE/JWS, which should probably be fixed. The 'alg', 'typ', and 'x5u' header parameters should all be top level members of the JSON rather than wrapped in extra {}'s. See https://tools.ietf.org/html/rfc7515#appendix-A.1.1<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Frfc7515%23appendix-A.1.1&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634486334&sdata=rkxS6tOndNCI8Kc%2FMUkRWnVQYg2WhjzZDiWLvvy7CiY%3D&reserved=0> for example.

On Sat, Mar 2, 2019 at 6:48 AM Brian Campbell <bcampbell@pingidentity.com<mailto:bcampbell@pingidentity.com>> wrote:
also approve

On Sat, Mar 2, 2019 at 5:44 AM Mike Jones <Michael.Jones=40microsoft.com@dmarc.ietf.org<mailto:40microsoft.com@dmarc.ietf.org>> wrote:
In my role as a Designated Expert, I approve this registration request.

                                -- Mike

-----Original Message-----
From: Jwt-reg-review <jwt-reg-review-bounces@ietf.org<mailto:jwt-reg-review-bounces@ietf.org>> On Behalf Of A. Jean Mahoney
Sent: Thursday, February 28, 2019 2:11 PM
To: jwt-reg-review@ietf.org<mailto:jwt-reg-review@ietf.org>
Cc: draft-ietf-sipcore-rejected@ietf.org<mailto:draft-ietf-sipcore-rejected@ietf.org>; sipcore-chairs@ietf.org<mailto:sipcore-chairs@ietf.org>
Subject: [Jwt-reg-review] Review requested: draft-ietf-sipcore-rejected

Hi JWT Registration Review Team,

Please review the JWT claim registration request found in Section 5.3 of draft-ietf-sipcore-rejected [1]. The draft has just finished WGLC.

Thanks!

Jean, as Doc Shepherd

[1] https://tools.ietf.org/html/draft-ietf-sipcore-rejected-03#section-5.3<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-sipcore-rejected-03%23section-5.3&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634496326&sdata=cDSLiKWWqDyxdFaSU%2Fp3mB3uOWYYeQsvrKrtAXI6dzw%3D&reserved=0>

------------------

 From the draft:


5.3.  JSON Web Token Claim

    This document defines the new JSON Web Token claim in the "JSON Web
    Token Claims" sub-registry created by [RFC7519].  Section 3.2.2
    defines the syntax.  The required information is:

    Claim Name:  jcard

    Claim Description:  jCard data

    Change Controller:  IESG

    Reference:  [RFCXXXX], [RFC7095]

_______________________________________________
Jwt-reg-review mailing list
Jwt-reg-review@ietf.org<mailto:Jwt-reg-review@ietf.org>
https://www.ietf.org/mailman/listinfo/jwt-reg-review<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fjwt-reg-review&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634496326&sdata=v78QgrzLM8aorZwFar6itcZqxzqGLekzxqlhrVr4O1g%3D&reserved=0>

_______________________________________________
Jwt-reg-review mailing list
Jwt-reg-review@ietf.org<mailto:Jwt-reg-review@ietf.org>
https://www.ietf.org/mailman/listinfo/jwt-reg-review<https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fjwt-reg-review&data=02%7C01%7CMichael.Jones%40microsoft.com%7C56475904f05d4e95c46808d6f5c9da8b%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C636966644634506327&sdata=1X6E91FIj7iiN31z1f4VEB10erdeM3sCyTyuTOwkGTA%3D&reserved=0>

CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.


CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited..  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.