IETF Logo Mail Archive

Re: [OAUTH-WG] Call for agenda items

Rifaat Shekh-Yusef <rifaat.ietf@gmail.com> Tue, 06 March 2018 15:22 UTC

Return-Path: <rifaat.ietf@gmail.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 14AF2124D68 for <oauth@ietfa.amsl.com>; Tue, 6 Mar 2018 07:22:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wn-3gOjXuYG7 for <oauth@ietfa.amsl.com>; Tue, 6 Mar 2018 07:22:34 -0800 (PST)
Received: from mail-ua0-x22f.google.com (mail-ua0-x22f.google.com [IPv6:2607:f8b0:400c:c08::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B3A0120454 for <oauth@ietf.org>; Tue, 6 Mar 2018 07:22:34 -0800 (PST)
Received: by mail-ua0-x22f.google.com with SMTP id f5so13283986uam.5 for <oauth@ietf.org>; Tue, 06 Mar 2018 07:22:34 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=BE3QAJQK9zHO7DCO2NZTQmuuVy0TikJ4LTGQOuK7nDs=; b=oDZnNz5c3hHYbS0YGE9jo31QhJfvW72KJXfOYKJZAMwH4ifUdlXhNyKUtTKLh59/qi VAgxauQCZm/9kreT6rD5Vewm45+jMqeL28FGsJQfoiIyl+ovSNd7S1DgXG0pwr8/1+vJ ZKECUvawRUjlVmEdgrHi06JoA2IkrQMZWOPyhMHxtMp2OdtTY53SfcOVbCeiqke9SXd0 IHXKdeGSXd4dWNAbme8br6RyFwp1VkiWOa1mXPxjuhu3htCz+mkAinBB0Zk+zBANyamt myFivWH2ysv28HIi37TSOJY8y2+CKRExGl2kLUI4vjmbFAU5pMtpcuEseVtjMbuGkyFs HGfg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=BE3QAJQK9zHO7DCO2NZTQmuuVy0TikJ4LTGQOuK7nDs=; b=nCcRJfIPVwiOoARjgi78OckxrenFZGqJIVlGw9tm799gt8beURXhxHaX5pg2PIu/lJ 03pfrRhd9dTftZC86f1G5QjoNrqnV+ne5qJQlCeRLrG1maP7imtsegIFhOSgb/b7Zuxi QYmNGaopEI2xNMw4oLoQSbdKqD+mUYfXDcr+9NdzXWF3kQtycMVYTSzW0kdguCa5nhoe +QI9/RQGdTSBGgPSIE/aNy+GRHO56laZ72T84PPW3s11BwpH15/3RzQWY+5m+RY9FsE7 I5CMvZTgXE8BA4nX5P91N61sbCaEHlIJQPtqVgEVxM5Q2PIEvmEH2f/haWCPdccS+bdH DKbw==
X-Gm-Message-State: APf1xPAw2EVY7W9rHpuBC5zcGkDlaeRDyjI3Bin45YjfsXw3bRFfYEbh hBNAQkTOjdvTpD6Rny97pAKTY7nWkLFlT70Vuf4=
X-Google-Smtp-Source: AG47ELtmWGBDzOgeE8AzcUsytUvFiAuy9iiJL5vVFTS8Lvqznzy1/vlMme+janze/JpEiGGtj6oEhTaoSAgPzKBhpRI=
X-Received: by 10.176.73.145 with SMTP id e17mr13729695uad.157.1520349753266; Tue, 06 Mar 2018 07:22:33 -0800 (PST)
MIME-Version: 1.0
Received: by 10.159.45.148 with HTTP; Tue, 6 Mar 2018 07:22:32 -0800 (PST)
In-Reply-To: <CABzCy2DzJUL86MVTA9xL4Cpv4=ooZyZJ3N1QNS0QKvgr8DJHgA@mail.gmail.com>
References: <AM4PR0801MB270614990E501071CDB3A2F9FAE40@AM4PR0801MB2706.eurprd08.prod.outlook.com> <CAAP42hAy8iFHDa9hQxNMxytiWjf=MyrCDRzZ4MjvRq8xi0+Baw@mail.gmail.com> <CABzCy2DzJUL86MVTA9xL4Cpv4=ooZyZJ3N1QNS0QKvgr8DJHgA@mail.gmail.com>
From: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>
Date: Tue, 06 Mar 2018 10:22:32 -0500
Message-ID: <CAGL6epLa0J0-JH8-cZX_WZ5Ztficz0_n+C9dOP80Gkbp_jvPFQ@mail.gmail.com>
To: Nat Sakimura <sakimura@gmail.com>
Cc: Hannes Tschofenig <Hannes.Tschofenig@arm.com>, William Denniss <wdenniss@google.com>, oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="001a1144fd04fa57f50566c0021c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/3NHvLqqI4XtRqy0Pa1mbhAoDctU>
Subject: Re: [OAUTH-WG] Call for agenda items
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Mar 2018 15:22:37 -0000

Nat,

During the interim meeting, 3 drafts mentioned in the context of *Distributed
OAuth*:

https://tools.ietf.org/html/draft-sakimura-oauth-meta-08
https://tools.ietf.org/html/draft-campbell-oauth-resource-indicators-02
https://tools.ietf.org/html/draft-tschofenig-oauth-audience-00


*Brian, Hannes,*

Are you planning on presenting your documents?

Regards,
 Rifaat






On Mon, Mar 5, 2018 at 8:09 PM, Nat Sakimura <sakimura@gmail.com> wrote:

> I would be interested in hearing that.
>
> Also, as part of "Distributed OAuth", can we do a bit of re-cap on some of
> the previous drafts on the similar topic as we discussed in the interim?
> i.e., Brian's draft (where is the link now?) and my draft (
> draft-sakimura-oauth-meta
> <https://tools.ietf.org/id/draft-sakimura-oauth-meta-08.txt>)?
>
> Best,
>
> Nat
>
> On Tue, Mar 6, 2018 at 3:30 AM William Denniss <wdenniss@google.com>
> wrote:
>
>> Hannes & Rifaat,
>>
>> I would like the opportunity to present on OAuth 2.0 Incremental
>> Authorization (draft-wdenniss-oauth-incremental-auth) [an update for
>> which will be posted today] and "OAuth 2.0 Device Posture Signals"
>> (draft-wdenniss-oauth-device-posture).
>>
>> I can also give an update on the status of Device Flow
>> (draft-ietf-oauth-device-flow). I expect that to be short now that WGLC
>> has concluded and the document has advanced.
>>
>> Little late to this thread and I see we already have 2 sessions in the
>> draft agenda, but I'd like to add my support to keeping both sessions,
>> there's always a lot to discuss and in the past we've been able to use any
>> spare time to discuss the security topics of the day.
>>
>> Regards,
>> William
>>
>>
>>
>>
>> On Tue, Jan 30, 2018 at 4:40 AM Hannes Tschofenig <
>> Hannes.Tschofenig@arm.com> wrote:
>>
>>> Hi all,
>>>
>>>
>>>
>>> It is time already to think about the agenda for the next IETF meeting.
>>> Rifaat and I were wondering whether we need one or two sessions. We would
>>> like to make the decision based on the topics we will discuss. Below you
>>> can find a first version of the agenda with a few remarks. Let us know if
>>> you have comments or suggestions for additional agenda items.
>>>
>>>
>>>
>>> Ciao
>>> Hannes & Rifaat
>>>
>>>
>>>
>>> OAuth Agenda
>>>
>>> ------------
>>>
>>>
>>>
>>> - Welcome and Status Update  (Chairs)
>>>
>>>
>>>
>>>   * OAuth Security Workshop Report
>>>
>>>
>>>
>>>   * Documents in IESG processing
>>>
>>>      # draft-ietf-oauth-device-flow-07
>>>
>>>      # draft-ietf-oauth-discovery-08
>>>
>>>      # draft-ietf-oauth-jwsreq-15
>>>
>>>      # draft-ietf-oauth-token-exchange-11
>>>
>>>
>>>
>>>        Remark: Status updates only if needed.
>>>
>>>
>>>
>>> -  JSON Web Token Best Current Practices
>>>
>>>    # draft-ietf-oauth-jwt-bcp-00
>>>
>>>
>>>
>>>    Remark: We are lacking reviews on this document.
>>>
>>>    Most likely we will not get them during the f2f meeting
>>>
>>>    but rather by reaching out to individuals ahead of time.
>>>
>>>
>>>
>>> -  OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound
>>> Access Tokens
>>>
>>>    # draft-ietf-oauth-mtls-06
>>>
>>>
>>>
>>>    Remark: Could be completed by the time of the IETF meeting.
>>>
>>>
>>>
>>> - OAuth Security Topics
>>>
>>>   # draft-ietf-oauth-security-topics-04
>>>
>>>
>>>
>>>   Remark: We could do a consensus call on parts of the document soon.
>>>
>>>
>>>
>>> - OAuth 2.0 Token Binding
>>>
>>>   # draft-ietf-oauth-token-binding-05
>>>
>>>
>>>
>>>   Remark: Document is moving along but we are lacking implementations.
>>>
>>>
>>>
>>> - OAuth 2.0 Device Posture Signals
>>>
>>>   # draft-wdenniss-oauth-device-posture-01
>>>
>>>
>>>
>>>   Remark: Interest in the work but we are lacking content (maybe even
>>>
>>>   expertise in the group)
>>>
>>>
>>>
>>> - Reciprocal OAuth
>>>
>>>   # draft-hardt-oauth-mutual-02
>>>
>>>
>>>
>>>   Remark: We had a virtual interim meeting on this topic and there is
>>>
>>>   interest in this work and apparently no competing solutions. The plan
>>>
>>>   is to run a call for adoption once we are allowed to add a new
>>> milestone
>>>
>>>   to our charter.
>>>
>>>
>>>
>>> - Distributed OAuth
>>>
>>>   # draft-hardt-oauth-distributed-00
>>>
>>>
>>>
>>>   Remark: We had a virtual interim meeting on this topic and there is
>>>
>>>   interest in this work. Further work on the scope is needed.
>>> IMPORTANT NOTICE: The contents of this email and any attachments are
>>> confidential and may also be privileged. If you are not the intended
>>> recipient, please notify the sender immediately and do not disclose the
>>> contents to any other person, use it for any purpose, or store or copy the
>>> information in any medium. Thank you.
>>> _______________________________________________
>>> OAuth mailing list
>>> OAuth@ietf.org
>>> https://www.ietf.org/mailman/listinfo/oauth
>>>
>> _______________________________________________
>> OAuth mailing list
>> OAuth@ietf.org
>> https://www.ietf.org/mailman/listinfo/oauth
>>
> --
>
> Nat Sakimura
>
> Chairman of the Board, OpenID Foundation
>
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>
>

v2.23.0 | Report a Bug | By Email