Re: [OAUTH-WG] DPoP - Impementations

Giuseppe De Marco <demarcog83@gmail.com> Thu, 11 August 2022 14:18 UTC

Return-Path: <demarcog83@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E58F8C13CCFE for <oauth@ietfa.amsl.com>; Thu, 11 Aug 2022 07:18:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.854
X-Spam-Level:
X-Spam-Status: No, score=-1.854 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kzMb0i9Ado4K for <oauth@ietfa.amsl.com>; Thu, 11 Aug 2022 07:18:19 -0700 (PDT)
Received: from mail-ej1-x636.google.com (mail-ej1-x636.google.com [IPv6:2a00:1450:4864:20::636]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5F498C13CCD3 for <oauth@ietf.org>; Thu, 11 Aug 2022 07:18:19 -0700 (PDT)
Received: by mail-ej1-x636.google.com with SMTP id qn6so21951229ejc.11 for <oauth@ietf.org>; Thu, 11 Aug 2022 07:18:19 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc; bh=kG4jcscI9zmXNOeCPObkBk4lKdGBy7hiKPzbmON0RbU=; b=oR0OO5tq7gjRCEv4DC5d2CxqxN8sV/+IFVuW4TKW+yu3jkCTJ7Tx7giRW/0MYdoJE6 RcYb8Yj0Zdvyg96VdiGxOyzMK4C5LYBBhTM52+0Y5qx7u3Z8ln1t3nXbwmW+GS5bbwRm oArldpVKmQrJrxojGwa8nfvdC6J152RIxFDMJDkcuoYiJdol7cbYt++VOWVW5Xm/lHk8 ygpFFufyw25KLcOCxSl7GGnEV2I0tbW3MW6VfQ3/YFYD1W1ghU3wstHSLXki7dWiJXku iKhReYN2PfGVUyLqioJnJRkZ7c6xbvU3ASyCpGljGUcvcyEgFp6TlfN9c4SyIhUIqSf3 N7cQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc; bh=kG4jcscI9zmXNOeCPObkBk4lKdGBy7hiKPzbmON0RbU=; b=evYLHgdH/orb43YBiXSWZUNZEBa7mwQR99gFrezQnMocQWdvdoT8b9MgWch7kmA1kn CXWbhggvlqXGfKv/aEzU/izwaYl553/wbBnMuHV0HRk5TUuR1Fdqyp+hSAOAcoKfqZcS MEGXt1HISo4LodYNRIaZE0+BZu4FjE9VaWmR3SC0ak2ZC0rns/bnT8irxtwxrnaW98cv huKV/WIcCpiZx+yfcj5YZE90n/YJL5ushfdFbGNZ3dUXitK91ejVntU/7EUT4aaOCi7v PFU9oNl0iYQKm+zblbuTuAOvadyR3f8l2PG+Q5l99zB4avX7FhIQA6sQt6bHr2rLpAdS zA8A==
X-Gm-Message-State: ACgBeo0OPASiqbSu5L7yIY64tcquEc5cuNVIVpux0ascHHBUBqVkKKPc 9X+uirmh34sVg4jGPuYhcmknqt/RYZmbo4iKEck=
X-Google-Smtp-Source: AA6agR72gB40uaUx3urvKItxjMxABYht5dSALFE+mk82/0hoFtygwCXuPyYzEwLeusiQN7oAER6ZBoSaSmWwvauj/xE=
X-Received: by 2002:a17:906:98c7:b0:730:e4be:7497 with SMTP id zd7-20020a17090698c700b00730e4be7497mr23475718ejb.347.1660227497775; Thu, 11 Aug 2022 07:18:17 -0700 (PDT)
MIME-Version: 1.0
References: <CADNypP-agKP45tAW7es0M5S_y_Rm_V42obWDTCSPWcXt9h5J1g@mail.gmail.com>
In-Reply-To: <CADNypP-agKP45tAW7es0M5S_y_Rm_V42obWDTCSPWcXt9h5J1g@mail.gmail.com>
From: Giuseppe De Marco <demarcog83@gmail.com>
Date: Thu, 11 Aug 2022 16:18:06 +0200
Message-ID: <CAP_qYykWWfKRnOd3Je3F6Q+GKTTVVj1hahvYPBQAVHE6y03B3w@mail.gmail.com>
To: Rifaat Shekh-Yusef <rifaat.s.ietf@gmail.com>
Cc: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000040564205e5f7d656"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/0cmHUAhGoBaj4-wXnov8Fe-oFPk>
Subject: Re: [OAUTH-WG] DPoP - Impementations
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Aug 2022 14:18:20 -0000

Hi Riifat,

In italy DPoP was adopted in the Attribute Authority Infrastructure, below
a quick overview with few details
https://docs.google.com/document/d/11KQPEs7sln7DbxLN7r7q3j2PymBSrYNlx5o-W3xHQsw/
<https://docs.google.com/document/d/11KQPEs7sln7DbxLN7r7q3j2PymBSrYNlx5o-W3xHQsw/>

the italian delegation in the EU eidas expert group has developed, with
several contributions of the OIDC community, a Credential Issuance flow
adopting DPoP. This work is under discussion with other member states and
it will be shared as soon as possible.

Anyway, I want to confirm here that DPoP is a very important security
device for the italian eID infrastructure,

best regards

Il giorno mer 10 ago 2022 alle ore 23:40 Rifaat Shekh-Yusef <
rifaat.s.ietf@gmail.com> ha scritto:

> All,
>
> As part of the shepherd write-up for the *DPoP* document, we are looking
> for information about implementations of this draft.
> https://datatracker.ietf.org/doc/draft-ietf-oauth-dpop/
>
> Please, reply to this email on the mailing list with any
> implementations that you are aware of to support this document.
>
> Regards,
>  Rifaat & Hannes
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>