Re: [OAUTH-WG] [Errata Verified] RFC7800 (6187)

"Rob Wilton (rwilton)" <rwilton@cisco.com> Mon, 01 June 2020 13:24 UTC

Return-Path: <rwilton@cisco.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C4A03A1076; Mon, 1 Jun 2020 06:24:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.598
X-Spam-Level:
X-Spam-Status: No, score=-9.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=MprjY3xe; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=tJ5eLj00
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ICmtRJdLmbEP; Mon, 1 Jun 2020 06:24:02 -0700 (PDT)
Received: from rcdn-iport-9.cisco.com (rcdn-iport-9.cisco.com [173.37.86.80]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8DEFF3A1070; Mon, 1 Jun 2020 06:24:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6466; q=dns/txt; s=iport; t=1591017842; x=1592227442; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=U+j3EdO5RgwgR9poknD9BnGi9XE1WAOWOvYGUiOoNO8=; b=MprjY3xeFNRGx96i5EtlnhLLZeD5HK8M02dHmRJM3jaXapMHXMBceB3t UoBIqWgfVdYI8v1Bc3pYYK5umBMnIhNLZjDbLLlLNOP2dhleK5Ur2OdnQ 4wCMYvtDdTSXQYcqQssh2ByusHtMaJCHc57ISammhh74RXOa6t3SNrUJk Y=;
IronPort-PHdr: =?us-ascii?q?9a23=3Asrd+jB0EevGGvlGWsmDT+zVfbzU7u7jyIg8e44?= =?us-ascii?q?YmjLQLaKm44pD+JxWFvadmi1rRQJnW8bRDkeWF+6zjWGlV55GHvThCdZFXTB?= =?us-ascii?q?YKhI0QmBBoG8+KD0D3bZuIJyw3FchPThlpqne8N0UGE8H7f0DOr2f06iQdSV?= =?us-ascii?q?3zMANvLbHzHYjfx828y+G1/cjVZANFzDqwaL9/NlO4twLU48IXmoBlbK02z0?= =?us-ascii?q?jE?=
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AKEgCTANVe/5NdJa1mGgEBAQEBAQE?= =?us-ascii?q?BAQEDAQEBARIBAQEBAgIBAQEBQIFKgVBSB29YLywKhBuDRgOLFoIsmEyCUgN?= =?us-ascii?q?VCwEBAQwBASUIAgQBAYREAhc1AQSBVAIkOBMCAwEBCwEBBQEBAQIBBgRthVk?= =?us-ascii?q?MgimDSQEBAQEDEhERDAEBNwELBAIBCBEEAQEBAgImAgICMBUICAIEDgUIGoM?= =?us-ascii?q?FgksDLgEOolUCgTmIYXaBMoMBAQEFhRMYgg4JgQ4qgmSJPSYagUE/gRFDgk0?= =?us-ascii?q?+gQSBGkkBAQEBgWWDEjOCLY5qglA8oV0KgleZDYJmmzKSPZhugy4CBAIEBQI?= =?us-ascii?q?OAQEFgWoigSUbDwdwFRoXD3sdgRgBAQEIKQlHFwINkECDcoRZO4VCdAI1AgY?= =?us-ascii?q?IAQEDCXyLYwGBDwEB?=
X-IronPort-AV: E=Sophos;i="5.73,460,1583193600"; d="scan'208";a="685998615"
Received: from rcdn-core-11.cisco.com ([173.37.93.147]) by rcdn-iport-9.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 01 Jun 2020 13:24:00 +0000
Received: from XCH-RCD-004.cisco.com (xch-rcd-004.cisco.com [173.37.102.14]) by rcdn-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 051DO0g0011819 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=FAIL); Mon, 1 Jun 2020 13:24:00 GMT
Received: from xhs-rcd-002.cisco.com (173.37.227.247) by XCH-RCD-004.cisco.com (173.37.102.14) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 1 Jun 2020 08:24:00 -0500
Received: from xhs-rtp-003.cisco.com (64.101.210.230) by xhs-rcd-002.cisco.com (173.37.227.247) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 1 Jun 2020 08:23:59 -0500
Received: from NAM10-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xhs-rtp-003.cisco.com (64.101.210.230) with Microsoft SMTP Server (TLS) id 15.0.1497.2 via Frontend Transport; Mon, 1 Jun 2020 09:23:59 -0400
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=SAkb0DnN27wESnWpV3kc6FR8ii0Hawtbh7INYmAxa69cm/bQQaOPgV+gSmyDuh8Ejh8FozKWfv/iaoLI2WOaIxfeqM2/IONXaXuvA/YHilgXE+TNyf1ZcjJ7HRlzbT7a8lMIboo0lstto+YKmfidrUhhR2oJgQXpDgApLMCoEjGLZUMVWUjqXLAqzI0NHgMq48A7TbgOpY/dlMNmXIwKcALqw0m4VAlXVtrk2N89W6Esu0U1s6Jqgl+OL7+huEWXWzl7B6CbBaCWiaySR3P4vgPAzbRAMSxFyjeeWmE7xulv2NsYVnmvXr5wTJR8U2TTtIygCA3E1wmqU4SXUSnCSQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U+j3EdO5RgwgR9poknD9BnGi9XE1WAOWOvYGUiOoNO8=; b=dO6fXMCsnRBWHUGExwPVOqC11NqYjMzbcxUENfApkaQ1cfUiLW8fuiXSJMM2TlEkBLPpTfq+oc5tz4BNPtmvjuzxa0potfImkYr4OhZ8i93e9aYRdxWhFIrh/LvU2y41Xha+MkO5qYaEjEz9IgkuOtCaKbLzh+lVegh+IW2UVQfH71/45uTpvdwjdmQoscGF7PTWh3UK3Lbxgty1HAidaA3MDRQUv9Gjw/DcdrcNbptWv7IoiGE5JCJ7x4mJ+Enb026gF88Dfpcq4iUAQYeOfh+Qhgj1pBZSFT/R1/TlMaougOADrRJ/EsRuHzi7Vh4fELWQ5yyVh86/vdKRV3RdQg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U+j3EdO5RgwgR9poknD9BnGi9XE1WAOWOvYGUiOoNO8=; b=tJ5eLj00mv0kgnRJ0tc/vqsaDVZ0pJQlWUjyvk3hUDaZCazP31ckpVSK4CWVAqlMMXgL7kmavs2kZDgLgengz+8LPqNUZH16ZZs7ftenlpONJ6XMLAktM6Eu85vc3FvQ56Bfk2wbhfq4Woo8Zd07EjbJDplgtkV10N3UQCbhz6A=
Received: from MN2PR11MB4366.namprd11.prod.outlook.com (2603:10b6:208:190::17) by MN2PR11MB4661.namprd11.prod.outlook.com (2603:10b6:208:26b::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3045.19; Mon, 1 Jun 2020 13:23:58 +0000
Received: from MN2PR11MB4366.namprd11.prod.outlook.com ([fe80::e9d4:79b5:aef1:be18]) by MN2PR11MB4366.namprd11.prod.outlook.com ([fe80::e9d4:79b5:aef1:be18%5]) with mapi id 15.20.3045.024; Mon, 1 Jun 2020 13:23:58 +0000
From: "Rob Wilton (rwilton)" <rwilton@cisco.com>
To: Barry Leiba <barryleiba@computer.org>
CC: Benjamin Kaduk <kaduk@mit.edu>, Pete Resnick <resnick@episteme.net>, "mbj@microsoft.com" <mbj@microsoft.com>, "iesg@ietf.org" <iesg@ietf.org>, "ve7jtb@ve7jtb.com" <ve7jtb@ve7jtb.com>, "Hannes.Tschofenig@gmx.net" <Hannes.Tschofenig@gmx.net>, "oauth@ietf.org" <oauth@ietf.org>, "RFC Errata System" <rfc-editor@rfc-editor.org>
Thread-Topic: [Errata Verified] RFC7800 (6187)
Thread-Index: AQHWNuulQReviV4PKkaVPVtDH4tsaqjBkK2AgAAEBACAAhv7EIAADyMAgAAAtuA=
Date: Mon, 1 Jun 2020 13:23:58 +0000
Message-ID: <MN2PR11MB4366F01345E643D08575532EB58A0@MN2PR11MB4366.namprd11.prod.outlook.com>
References: <20200531013404.4528BF40721@rfc-editor.org> <AA62FB03-89F3-4931-AB7C-0BE281970A2E@episteme.net> <20200531040924.GM58497@kduck.mit.edu> <MN2PR11MB436654658A3926B05A9CC79BB58A0@MN2PR11MB4366.namprd11.prod.outlook.com> <CALaySJ+D0wfaj2=KbP-z8rka=HzdHRn5EV-8jbT2_g_tFy7L6A@mail.gmail.com>
In-Reply-To: <CALaySJ+D0wfaj2=KbP-z8rka=HzdHRn5EV-8jbT2_g_tFy7L6A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: computer.org; dkim=none (message not signed) header.d=none;computer.org; dmarc=none action=none header.from=cisco.com;
x-originating-ip: [64.103.40.27]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 681fe323-b838-49d7-8586-08d8062f0a8b
x-ms-traffictypediagnostic: MN2PR11MB4661:
x-microsoft-antispam-prvs: <MN2PR11MB466107D03B6017FC5B249C9EB58A0@MN2PR11MB4661.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 0421BF7135
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: BG92FEcWldduMK4VZ7fdfg5payoUeuL0piHed+Zq9YhJ0ztwoeUNAlf/yJRtHpzN0REjHG05gldWy7wrvxDHM8B5r5W2k9hQqZfwmb5i77yJ85vNETzISdwYkY/pekNhdZ21n1goH0dOru4cjTDmZDdKaVX52kknA5iuaLKi3w1dl8wupNyXS7CuMZLN2spRm4/8qhMOeOo7Mb+q03YpJy7S+nJ2u1XcDUEK1krjZ7vzlCaq3YMcnJsIpr7aO/BYYwrV5GYsjrJFlc3Kv059n8tX4VaCca7357OYcEPkT/RRhuCCtL1iOKAbTe/z+sCxJs++pjri9bq2tAkWGs+gwdx2UXALMLPdQaK1DrgEbzrLcwbLxi+fZeDqrofAtimB35jc7phd11sgR057losslA==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:MN2PR11MB4366.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFTY:; SFS:(4636009)(39860400002)(396003)(376002)(366004)(136003)(346002)(86362001)(2906002)(83380400001)(66476007)(15650500001)(26005)(53546011)(6506007)(66946007)(76116006)(478600001)(9686003)(966005)(71200400001)(52536014)(54906003)(66446008)(45080400002)(316002)(8676002)(5660300002)(186003)(55016002)(66556008)(33656002)(7696005)(64756008)(6916009)(8936002)(4326008); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: ebTBX1p54jllt8B7VyvlQgMLi2tlYDySeh3F2mpUl6TZJTEYsLwXtBnE0Xp/Jj96z6OPU9S32dow+6to1sb+QTX5n5/5jSyzyNpgGOf5RwpHLRU5lfnNVmfSIVNPBOOyn7Meob5UgN8H3cSormf+HEsaRyQuwmnAzZ0I1E994CqPSocs/GKaJs/EldFeghAgSDe3gu9zNGlb1DCJsp+t88b9p5ACW71R+Ye509/hO27vu6numcBwjp5w+uNNh7jDG0SA6QUWckRZ4E54JUjSyM2Z2zS1WmCORh3OX8EUKE+tTb1fHZEOlh72OmF5qS8/QfkvumwtDUOjH4o4ZEGJp5SOwMrTtt0XWdtn1Pb6AeruelrCnE0vAoo5xAB9pIr4rmqNYugZ8M7DpfxTUM4atKNhaaH+QlAwJ1XsXtSAwp5bKELgaPb5RI+v5qF4E0UxX8V8tvPSeNEcJg3p3XyQ6BC9J3D5OoJypLr+FIbsq7U=
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 681fe323-b838-49d7-8586-08d8062f0a8b
X-MS-Exchange-CrossTenant-originalarrivaltime: 01 Jun 2020 13:23:58.1391 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: 5Drp+3b1ccw7gpW5YpstUGdV/VTZAJkSRuzVdUDVKH1uD0sj0SQp4ixWr/mnDbrnSk8NKq2pkMkaKVbdBWoAkg==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4661
X-OriginatorOrg: cisco.com
X-Outbound-SMTP-Client: 173.37.102.14, xch-rcd-004.cisco.com
X-Outbound-Node: rcdn-core-11.cisco.com
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/5bPOfv6s6TsjmT2YVB_0yisoGlE>
Subject: Re: [OAUTH-WG] [Errata Verified] RFC7800 (6187)
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Jun 2020 13:24:12 -0000

Okay, so the distinction is already there.

As the errata rules are written then I would have done the same as Pete suggested and marked this as HFDU under point (2) of https://www.ietf.org/about/groups/iesg/statements/processing-rfc-errata/.

However, I also take Ben's point that it would be useful if this errata showed up inline (as per https://www.rfc-editor.org/rfc/inline-errata/rfc7800.html), which is why I think that we might want to change the guidance for point (2) so that they become verified (editorial) rather than HFDU.

Regards,
Rob


> -----Original Message-----
> From: Barry Leiba <barryleiba@computer.org>
> Sent: 01 June 2020 14:16
> To: Rob Wilton (rwilton) <rwilton@cisco.com>
> Cc: Benjamin Kaduk <kaduk@mit.edu>du>; Pete Resnick <resnick@episteme.net>et>;
> mbj@microsoft.com; iesg@ietf.org; ve7jtb@ve7jtb.com;
> Hannes.Tschofenig@gmx.net; oauth@ietf.org; RFC Errata System <rfc-
> editor@rfc-editor.org>
> Subject: Re: [Errata Verified] RFC7800 (6187)
> 
> That's what the "technical" vs "editorial" distinction is supposed to be
> for.
> 
> Barry
> 
> On Mon, Jun 1, 2020 at 8:27 AM Rob Wilton (rwilton)
> <rwilton=40cisco.com@dmarc.ietf.org> wrote:
> >
> >
> >
> > > -----Original Message-----
> > > From: iesg <iesg-bounces@ietf.org> On Behalf Of Benjamin Kaduk
> > > Sent: 31 May 2020 05:09
> > > To: Pete Resnick <resnick@episteme.net>
> > > Cc: mbj@microsoft.com; iesg@ietf.org; ve7jtb@ve7jtb.com;
> > > Hannes.Tschofenig@gmx.net; oauth@ietf.org; RFC Errata System <rfc-
> > > editor@rfc-editor.org>
> > > Subject: Re: [Errata Verified] RFC7800 (6187)
> > >
> > > The new text is clearly the right thing, and there is no need
> > > to debate it if/when the document gets updated.  "Don't hold
> > > it; do it now", so to speak -- and noting that (my
> > > understanding/recollection of) the plan for
> > > https://www.rfc-editor.org/rfc/inline-errata/rfc7800.html is that only
> > > verified errata, not those in other states, will be displayed.
> > [RW]
> >
> > If this ends up being the plan, then I think that we may wish to modify
> the RFC guidance, or possibly have two different verified states:
> >  (i) Verified, could impact implementations
> >  (ii) Verified, editorial only.
> >
> > Certainly, it seems to be makes sense for these sorts of errata to be
> displayed.
> >
> > Regards,
> > Rob
> >
> >
> > >
> > > (Yes, that link 404s at the moment, I assume a caching issue.)
> > >
> > > -Ben
> > >
> > > On Sat, May 30, 2020 at 10:55:01PM -0500, Pete Resnick wrote:
> > > > "Verified", not "Hold For Document Update"?
> > > >
> > > > pr
> > > >
> > > > On 30 May 2020, at 20:34, RFC Errata System wrote:
> > > >
> > > > > The following errata report has been verified for RFC7800,
> > > > > "Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)".
> > > > >
> > > > > --------------------------------------
> > > > > You may review the report below and at:
> > > > > https://www.rfc-editor.org/errata/eid6187
> > > > >
> > > > > --------------------------------------
> > > > > Status: Verified
> > > > > Type: Editorial
> > > > >
> > > > > Reported by: Pete Resnick <resnick@episteme.net>
> > > > > Date Reported: 2020-05-26
> > > > > Verified by: Benjamin Kaduk (IESG)
> > > > >
> > > > > Section: 7.1
> > > > >
> > > > > Original Text
> > > > > -------------
> > > > >    [JWK]      Jones, M., "JSON Web Key (JWK)", RFC 7517,
> > > > >               DOI 10.17487/RFC7157, May 2015,
> > > > >               <http://www.rfc-editor.org/info/rfc7517>.
> > > > >
> > > > >
> > > > > Corrected Text
> > > > > --------------
> > > > >    [JWK]      Jones, M., "JSON Web Key (JWK)", RFC 7517,
> > > > >               DOI 10.17487/RFC7517, May 2015,
> > > > >               <http://www.rfc-editor.org/info/rfc7517>.
> > > > >
> > > > >
> > > > > Notes
> > > > > -----
> > > > > DOI has a typo: 7157 instead of 7517.
> > > > >
> > > > > --------------------------------------
> > > > > RFC7800 (draft-ietf-oauth-proof-of-possession-11)
> > > > > --------------------------------------
> > > > > Title               : Proof-of-Possession Key Semantics for JSON
> Web
> > > > > Tokens (JWTs)
> > > > > Publication Date    : April 2016
> > > > > Author(s)           : M. Jones, J. Bradley, H. Tschofenig
> > > > > Category            : PROPOSED STANDARD
> > > > > Source              : Web Authorization Protocol
> > > > > Area                : Security
> > > > > Stream              : IETF
> > > > > Verifying Party     : IESG
> > > >
> > > >
> > > > --
> > > > Pete Resnick https://www.episteme.net/
> > > > All connections to the world are tenuous at best
> >