IETF Logo Mail Archive

Re: [OAUTH-WG] Paul Wouters' No Objection on draft-ietf-oauth-dpop-14: (with COMMENT)

Michael Jones <michael_b_jones@hotmail.com> Thu, 13 April 2023 02:33 UTC

Return-Path: <michael_b_jones@hotmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E8FDC1782B1; Wed, 12 Apr 2023 19:33:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.222
X-Spam-Level:
X-Spam-Status: No, score=-1.222 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FORGED_HOTMAIL_RCVD2=0.874, FREEMAIL_FROM=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=hotmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V5gnhpDm-9I3; Wed, 12 Apr 2023 19:33:40 -0700 (PDT)
Received: from NAM04-DM6-obe.outbound.protection.outlook.com (mail-dm6nam04olkn20825.outbound.protection.outlook.com [IPv6:2a01:111:f400:7e8b::825]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C567BC13737C; Wed, 12 Apr 2023 19:33:40 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Y5ua4yJG41ye8HNa1s8MCPNdYtzdqtLtWMmoox8w/MfoUngz3auhtcfhvdiX5JJ9OPRkcypR6nLIaG+AX/kQ/DrWEC5FtJ2kezAoxc03AlMi+y9en0UZmei4A5ihMF5tuPoMbGhlYdaYw1y8RAWFPLdn6av9ZC8OMnwl/0Zw7IdzT8F5IKqI/4Nm0UsiJzvtAaBPTBwhUGOt2NgUkxYBnRjfSv3Vha8akoZOPEiZ8EaJPEO/1PAmmyKzPxrSyInBvvzcSzMnYoHdXJBitCSnnTZTDScy6dJoS53ZgWZJTkqbr0y78XL2VSmWyxhsoR44ygO3wLt35v/BlJ46/HOaog==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=uDXQAQJgtyWJtuPMeg2i+OO0ppRK8xMDDdg5CwXXc5Q=; b=HvNOrUb0ae3Wm04+xIp+9XenBdClbytfNIicKn28DcKh42JDV2Jr7C3huPBTDPYDuh+E1nYO4oSTuXqxmPeHxesY8RMb7KDYi28MQvnwmRbALyhiwjnrSgNE0xHMgiwjZQsHqBHpChXFR2EYKTcruwQ0/RWA/KPGZ4zuIqezmmMqQxrHQgNUY6lkSn5nz4VAw2s+1jQZz7hSB+bFl9oVpVAE3LdEgF0Gu2R7sGD9+yn4LOPQLTJO6BPQnLOy9vIrC0wjVJOlW9AGufNsBRdLF11Fq7Vwb5Tv3qPeuzT/T0Osar4I+m1pNrxpnw2MmLsHuih+OBNjZp1khcRbRDodPw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=none; dmarc=none; dkim=none; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=hotmail.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=uDXQAQJgtyWJtuPMeg2i+OO0ppRK8xMDDdg5CwXXc5Q=; b=S9dK3tI59MkJ66kh7kKmCbj8rEXW6/GagQLjdB+Ia1g1QQWmCr/v/BaYI5BkkpxS+SX3dfPQvsh8Hjo3ZSOjPIGHGGYwLj4+QJtsOo1GRW8nqMSgM01rh+AmuONpUfL0frSWA3VjdwxyhdZljbkJT5p/K/e5pXd25LyhNAbLAJ8yYHv+TqkPM7Ulgy+Xdayj9m9jk5yk41ZsXVTCaRITNFbnK58ZKXO/OsuUj1oEteGLJL+ziuwAX7uSu3zJDwziKvXM4O+O731VDbU0FmIRPzNZXHucnupIWMDqlQvVTQXmHwdDLa4yzvdl2qKiMnXtBWe/+T/dMRtV/dR2l0Cidg==
Received: from MW4PR02MB7428.namprd02.prod.outlook.com (2603:10b6:303:71::5) by BY5PR02MB7090.namprd02.prod.outlook.com (2603:10b6:a03:21e::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.6298.30; Thu, 13 Apr 2023 02:33:38 +0000
Received: from MW4PR02MB7428.namprd02.prod.outlook.com ([fe80::ccd2:5243:4319:77dc]) by MW4PR02MB7428.namprd02.prod.outlook.com ([fe80::ccd2:5243:4319:77dc%3]) with mapi id 15.20.6277.038; Thu, 13 Apr 2023 02:33:38 +0000
From: Michael Jones <michael_b_jones@hotmail.com>
To: Paul Wouters <paul.wouters@aiven.io>, The IESG <iesg@ietf.org>
CC: "draft-ietf-oauth-dpop@ietf.org" <draft-ietf-oauth-dpop@ietf.org>, "oauth-chairs@ietf.org" <oauth-chairs@ietf.org>, "oauth@ietf.org" <oauth@ietf.org>
Thread-Topic: [OAUTH-WG] Paul Wouters' No Objection on draft-ietf-oauth-dpop-14: (with COMMENT)
Thread-Index: AQHZbaRZI6VDSNH4MEu27irojk6Mb68ohN7A
Date: Thu, 13 Apr 2023 02:33:37 +0000
Message-ID: <MW4PR02MB74282D80AD4CAC6F1C59F9BDB7989@MW4PR02MB7428.namprd02.prod.outlook.com>
References: <168134804482.47509.312238462181099864@ietfa.amsl.com>
In-Reply-To: <168134804482.47509.312238462181099864@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-tmn: [T6fXxmQ7Bv2OSDwwKCQ7Mx5mzyDynKT1O8HEbSeasASCDoV70QM2bUiRdRYX22+hw0jYIOAhSgo=]
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: MW4PR02MB7428:EE_|BY5PR02MB7090:EE_
x-ms-office365-filtering-correlation-id: 4ad649ff-e9f1-4931-4bda-08db3bc77cbb
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: xvoVOtIVgBW8z3BSzTvBYetR6ZiDxZggsRDCOsiD4qKgSCwkUlkPZedtayrgU8TPKqYEHGfiZ3F2U76xotxS/hg7alOEPNM5SmRCBJDc7JEMba1QAVsnV4rliQ1nkq88UepPWoENWvgQrfvWcqihPeTQOSil4+/fLc5hkrdglqDKlEvCx8MhY6QJER+4KG+V8F4n+hAi6x/JrpsNuZJIR5wnQO/kAyoU1ph7MMm948FqgT0KwNJFRpCNaV1ESsVqQnL5xKVS51YOWNPHP/7SYBPOn5PSNvR3ss+jvRZQTcxnwokRfa0G30fsy8g3XmIGeJQCvE/dOnV59pi1mUPYWT2MayyS8+GzciKON/4Krmw/YBB07MedExqmKeLySJxdvNxa5O5eWvR60ayS1Pp0IdEGrXPqrGbDl4mTzaQ0BK8g50hjTqyuCJ1GJ6yBE+YlwsScUqfX/zqfvRY4XDaLzcuCwqAsmHRt21aGmHv0r+UVni0HNafCQzzx9lnVD5P9Xe5slmvBPukGRMjp2v9hPiIST8ksJIVWYohT1PfEyxKAvyQUYmQgGsnmXGczFyNK8K9SzUjdd4yGSK5CjiAvMLuBtUThfjg4SfKVaJykFXwvNsEXXFJCjiOImNrwP1ZW2sk5d4X+GEzVYb9ZOcVTKQ==
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: 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
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: sct-15-20-4755-11-msonline-outlook-99c3d.templateTenant
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: MW4PR02MB7428.namprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-RMS-PersistedConsumerOrg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-CrossTenant-Network-Message-Id: 4ad649ff-e9f1-4931-4bda-08db3bc77cbb
X-MS-Exchange-CrossTenant-originalarrivaltime: 13 Apr 2023 02:33:37.9939 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 84df9e7f-e9f6-40af-b435-aaaaaaaaaaaa
X-MS-Exchange-CrossTenant-rms-persistedconsumerorg: 00000000-0000-0000-0000-000000000000
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR02MB7090
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/06Sl-PB70sOYYzS9nvkRwQ2ckfU>
Subject: Re: [OAUTH-WG] Paul Wouters' No Objection on draft-ietf-oauth-dpop-14: (with COMMENT)
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Apr 2023 02:33:44 -0000

Thanks for reviewing the specification, Paul.

The authors agree it is too late in the game to change the name of "nonce".

FYI, I plan to dial into the telechat and listen in on mute, in case anyone wants to ask questions during the call.

                                Best wishes,
                                -- Mike

-----Original Message-----
From: OAuth <oauth-bounces@ietf.org> On Behalf Of Paul Wouters via Datatracker
Sent: Wednesday, April 12, 2023 6:07 PM
To: The IESG <iesg@ietf.org>
Cc: draft-ietf-oauth-dpop@ietf.org; oauth-chairs@ietf.org; oauth@ietf.org
Subject: [OAUTH-WG] Paul Wouters' No Objection on draft-ietf-oauth-dpop-14: (with COMMENT)

Paul Wouters has entered the following ballot position for
draft-ietf-oauth-dpop-14: No Objection

When responding, please keep the subject line intact and reply to all email addresses included in the To and CC lines. (Feel free to cut this introductory paragraph, however.)


Please refer to https://www.ietf.org/about/groups/iesg/statements/handling-ballot-positions/
for more information about how to handle DISCUSS and COMMENT positions.


The document, along with other ballot positions, can be found here:
https://datatracker.ietf.org/doc/draft-ietf-oauth-dpop/



----------------------------------------------------------------------
COMMENT:
----------------------------------------------------------------------

Thanks for the clear specification.

While I agree with Ben Schwartz comment in the secdir review that the term
"nonce" is wrong in the document, and that it should really be called "cookie",
I think it is too late in the game to change this.



_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email