[OAUTH-WG] Fwd: New Version Notification for draft-ietf-oauth-dpop-04.txt
Brian Campbell <bcampbell@pingidentity.com> Mon, 04 October 2021 22:11 UTC
Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E72793A0B0C for <oauth@ietfa.amsl.com>; Mon, 4 Oct 2021 15:11:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qUShxnLpYX2U for <oauth@ietfa.amsl.com>; Mon, 4 Oct 2021 15:11:11 -0700 (PDT)
Received: from mail-lf1-x12e.google.com (mail-lf1-x12e.google.com [IPv6:2a00:1450:4864:20::12e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CFFD53A0B4C for <oauth@ietf.org>; Mon, 4 Oct 2021 15:11:10 -0700 (PDT)
Received: by mail-lf1-x12e.google.com with SMTP id u18so77891415lfd.12 for <oauth@ietf.org>; Mon, 04 Oct 2021 15:11:10 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=MDOte455idgH99fVB7pyPDQmluspZ954E7ldBS8GPQU=; b=J/4nbJf9MYVviqjhDh64NaS7s44SxU5YAKFDrZHxcQpRmNRrp7RX9/V7C6WbJxNjuV Xh3mY8ScUPD6J5nFsEvEcsTU8pWbrpQlnK0jqeDBq/hiYVBIq8+wImJfpnW2wG2ZBQf0 iEzx3NglkscCvlgbjYe0Qeq5O3Hek2g98VfrNFCSXwwz5EMwlhXYJEe4vxR1hEI6Klox UkvzTkr4no8vXC9OFNg506I6oNl3WUObC/jmblHLjVoK9CJ8m/WO84A2xFKQFDDWOZb7 BFpjj7Kn9RRGk6eWP++lb/XELv8mP90KTPsBPc0iBieei0mP9Lp+sku1pfRpptfJp/U7 dimg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=MDOte455idgH99fVB7pyPDQmluspZ954E7ldBS8GPQU=; b=Veb8HuwXFpd8cHeVx4QHnrCV9uL+xDZmrWVStmGCsA4tVMCo54hhahztmEWmpn8sn1 oiXtDK81O5dHV/z++0wE+KAgahaDKEWqm0O5sB8XRGqSilkkCwjvZNVOPeyl8/ceBYHl YFLP/5KA2uuNWFDbrCw8JsNxhaU9Zr5FS8YMLW2HlRu8z/0XzRJnOGCuTlttzM3Xu8JU W0ftSgZ+S9r7N6j7hjQ6QIztci7H78bKxGWRJmRU/ec3ASFZXvzhoSXxOrT6W1Le4Zra jzsjvJ1AoWnw3B596zuAx84HQ6LFwlHzFsDogN7kcZVU9You8xDt6Xhuk7WRn360AtaE 8vRg==
X-Gm-Message-State: AOAM533ap6VGMtX2nCkkiamGaRcH1GNKfy+WAbcaKprH4lCKT1cm88W0 p1DD0mJ297dqUy2Gtt6zYYW2WhFmO3cZ+Nh32bPfHkU+Kr5BMXF0ioie4hEvHvHiv1o5cofIy8l F4Um43zaZceVGjw+URsz3jA==
X-Google-Smtp-Source: ABdhPJxZMk5z1muluaVV6loQIFnTAoMM9mniYEzbxuGwtoV81r/s2mg/XVnWxpUyVxRlCGDVkKv+FWxOGDTK6Sq0a7g=
X-Received: by 2002:a2e:5705:: with SMTP id l5mr19412119ljb.456.1633385466846; Mon, 04 Oct 2021 15:11:06 -0700 (PDT)
MIME-Version: 1.0
References: <163338511749.19990.6425515964389007949@ietfa.amsl.com>
In-Reply-To: <163338511749.19990.6425515964389007949@ietfa.amsl.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Mon, 04 Oct 2021 16:10:39 -0600
Message-ID: <CA+k3eCRFiXgTTKPBFP_t5QH1c2m+zN8Btat_O-Kqs5ALSh2DUA@mail.gmail.com>
To: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000008875cf05cd8e308d"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/66qD3yoIhVz37wiX4frR9BhD5OY>
Subject: [OAUTH-WG] Fwd: New Version Notification for draft-ietf-oauth-dpop-04.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Oct 2021 22:11:16 -0000
WG,
The collective DPoP co-authors are pleased to announce that a new -04
revision of DPoP has been published. The doc history snippet is copied
below for quick/easy reference. The main change here is the addition of an
option for a server-provided nonce in the DPoP proof.
-04
* Added the option for a server-provided nonce in the DPoP proof.
* Registered the invalid_dpop_proof and use_dpop_nonce error codes.
* Removed fictitious uses of realm from the examples, as they added
no value.
* State that if the introspection response has a token_type, it has
to be DPoP.
* Mention that RFC7235 allows multiple authentication schemes in
WWW-Authenticate with a 401.
* Editorial fixes.
---------- Forwarded message ---------
From: <internet-drafts@ietf.org>
Date: Mon, Oct 4, 2021 at 4:05 PM
Subject: New Version Notification for draft-ietf-oauth-dpop-04.txt
To: ...
A new version of I-D, draft-ietf-oauth-dpop-04.txt
has been successfully submitted by Brian Campbell and posted to the
IETF repository.
Name: draft-ietf-oauth-dpop
Revision: 04
Title: OAuth 2.0 Demonstrating Proof-of-Possession at the
Application Layer (DPoP)
Document date: 2021-10-04
Group: oauth
Pages: 37
URL: https://www.ietf.org/archive/id/draft-ietf-oauth-dpop-04.txt
Status: https://datatracker.ietf.org/doc/draft-ietf-oauth-dpop/
Html:
https://www.ietf.org/archive/id/draft-ietf-oauth-dpop-04.html
Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-oauth-dpop
Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-dpop-04
Abstract:
This document describes a mechanism for sender-constraining OAuth 2.0
tokens via a proof-of-possession mechanism on the application level.
This mechanism allows for the detection of replay attacks with access
and refresh tokens.
The IETF Secretariat
--
_CONFIDENTIALITY NOTICE: This email may contain confidential and privileged
material for the sole use of the intended recipient(s). Any review, use,
distribution or disclosure by others is strictly prohibited. If you have
received this communication in error, please notify the sender immediately
by e-mail and delete the message and any file attachments from your
computer. Thank you._
- [OAUTH-WG] Fwd: New Version Notification for draf… Brian Campbell
- Re: [OAUTH-WG] Fwd: New Version Notification for … Mike Jones
- Re: [OAUTH-WG] Fwd: New Version Notification for … Neil Madden
- Re: [OAUTH-WG] Fwd: New Version Notification for … Brian Campbell
- Re: [OAUTH-WG] New Version Notification for draft… Neil Madden
- Re: [OAUTH-WG] New Version Notification for draft… Brian Campbell