IETF Logo Mail Archive

Re: [OAUTH-WG] Agenda for IETF#87 Meeting

Mike Jones <Michael.Jones@microsoft.com> Wed, 17 July 2013 23:18 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 333CA21F9655 for <oauth@ietfa.amsl.com>; Wed, 17 Jul 2013 16:18:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.23
X-Spam-Level:
X-Spam-Status: No, score=-3.23 tagged_above=-999 required=5 tests=[AWL=-0.631, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1fzHTfYLSwrr for <oauth@ietfa.amsl.com>; Wed, 17 Jul 2013 16:17:58 -0700 (PDT)
Received: from db9outboundpool.messaging.microsoft.com (mail-db9lp0251.outbound.messaging.microsoft.com [213.199.154.251]) by ietfa.amsl.com (Postfix) with ESMTP id 2ACC021F9477 for <oauth@ietf.org>; Wed, 17 Jul 2013 16:17:54 -0700 (PDT)
Received: from mail12-db9-R.bigfish.com (10.174.16.229) by DB9EHSOBE006.bigfish.com (10.174.14.69) with Microsoft SMTP Server id 14.1.225.22; Wed, 17 Jul 2013 23:17:52 +0000
Received: from mail12-db9 (localhost [127.0.0.1]) by mail12-db9-R.bigfish.com (Postfix) with ESMTP id 7955CB80241; Wed, 17 Jul 2013 23:17:52 +0000 (UTC)
X-Forefront-Antispam-Report: CIP:131.107.125.8; KIP:(null); UIP:(null); IPV:NLI; H:TK5EX14HUBC107.redmond.corp.microsoft.com; RD:autodiscover.service.exchange.microsoft.com; EFVD:NLI
X-SpamScore: -36
X-BigFish: VS-36(zz154cP9371I542Ic25dL4015I14ffIdb82hzz1f42h208ch1ee6h1de0h1fdah2073h1202h1e76h1d1ah1d2ah1fc6hzz1de098h1033IL17326ah1de097h1de096h1954cbh8275dhz2fh2a8h668h839h944hd25hf0ah1220h1288h12a5h12a9h12bdh137ah13b6h1441h1504h1537h153bh15d0h162dh1631h1758h18e1h1946h19b5h19ceh1b0ah1d0ch1d2eh1d3fh1dfeh1dffh1e1dh1155h)
Received-SPF: pass (mail12-db9: domain of microsoft.com designates 131.107.125.8 as permitted sender) client-ip=131.107.125.8; envelope-from=Michael.Jones@microsoft.com; helo=TK5EX14HUBC107.redmond.corp.microsoft.com ; icrosoft.com ;
Received: from mail12-db9 (localhost.localdomain [127.0.0.1]) by mail12-db9 (MessageSwitch) id 1374103069470880_17450; Wed, 17 Jul 2013 23:17:49 +0000 (UTC)
Received: from DB9EHSMHS030.bigfish.com (unknown [10.174.16.227]) by mail12-db9.bigfish.com (Postfix) with ESMTP id 6DBD26C0047; Wed, 17 Jul 2013 23:17:49 +0000 (UTC)
Received: from TK5EX14HUBC107.redmond.corp.microsoft.com (131.107.125.8) by DB9EHSMHS030.bigfish.com (10.174.14.40) with Microsoft SMTP Server (TLS) id 14.16.227.3; Wed, 17 Jul 2013 23:17:49 +0000
Received: from TK5EX14MBXC283.redmond.corp.microsoft.com ([169.254.2.146]) by TK5EX14HUBC107.redmond.corp.microsoft.com ([157.54.80.67]) with mapi id 14.03.0136.001; Wed, 17 Jul 2013 23:17:06 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: Hannes Tschofenig <hannes.tschofenig@gmx.net>, "oauth@ietf.org WG" <oauth@ietf.org>
Thread-Topic: [OAUTH-WG] Agenda for IETF#87 Meeting
Thread-Index: AQHOgxRucJ2k0hVMW0CWZMHTFxGv7JlpfE7w
Date: Wed, 17 Jul 2013 23:17:05 +0000
Message-ID: <4E1F6AAD24975D4BA5B16804296739436B6CE825@TK5EX14MBXC283.redmond.corp.microsoft.com>
References: <E6346ECC-ECCB-4B5C-81F4-273EBCFBD365@gmx.net>
In-Reply-To: <E6346ECC-ECCB-4B5C-81F4-273EBCFBD365@gmx.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [157.54.51.34]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-FOPE-CONNECTOR: Id%0$Dn%*$RO%0$TLS%0$FQDN%$TlsDn%
Subject: Re: [OAUTH-WG] Agenda for IETF#87 Meeting
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jul 2013 23:18:03 -0000

Hannes - you wrote "Goal: Get draft-ietf-oauth-v2-http-mac to WGLC".  I believe that there are questions we need to answer as a working group before assuming that that's our goal.  Previously, for instance, we'd discussed that it might be appropriate to replace the MAC draft with work on a holder-of-key token type.  There's also a question of whether it's even needed, given OAuth 1.0 fulfills the same requirements.

Therefore, if the MAC draft is discussed at all, I believe that these are some of the questions we need to address:

(1)  Should the working group recommend the use of OAuth 1.0 when a body signature is wanted, and explicitly stop the work on v2-http-mac?

(2)  (If the answer to (1) is "no")  Should the working group focus its resources on a holder-of-key specification, instead of v2-http-mac?

(3)  (If the answers to (1) and (2) are all "no")  Should we hold the v2-http-mac work until the shape of the holder-of-key work is known, so we know whether v2-http-mac should use the holder-of-key work or not?

(4) (Only if the answers to (1), (2), and (3) are all "no")  What needs to happen for v2-http-mac to progress to WGLC?

				Thanks,
				-- Mike

-----Original Message-----
From: oauth-bounces@ietf.org [mailto:oauth-bounces@ietf.org] On Behalf Of Hannes Tschofenig
Sent: Wednesday, July 17, 2013 10:38 AM
To: oauth@ietf.org WG
Subject: [OAUTH-WG] Agenda for IETF#87 Meeting

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi all, 

it is time to discuss the agenda for the meeting. Here is a strawman proposal. Let us know if you would like to add a topic to the agenda:

- --------

Web Authorization Protocol (OAuth)
==================================

Date: WEDNESDAY, July 31, 2013
Time: 0900-1130 CEST
Room: Tiergarten 1/2


Agenda:

 * Dynamic Client Registration (TBD)
 https://datatracker.ietf.org/doc/draft-ietf-oauth-dyn-reg/
 https://datatracker.ietf.org/doc/draft-hunt-oauth-scim-client-reg/
 
 Goal: Discuss open issues with the WG document and determine  whether there is interest to adopt the SCIM proposal in the WG.  
 
 * JWT (Mike Jones) -- if necessary
 https://datatracker.ietf.org/doc/draft-ietf-oauth-json-web-token/
 
 Background: This work depends on the progress in the JOSE WG. 
 JOSE made some progress and so the question is whether this  document can enter WGLC (soon). What are the open issues? 
 
 * Assertions (Mike Jones) -- if necessary  https://datatracker.ietf.org/doc/draft-ietf-oauth-assertions/
 https://datatracker.ietf.org/doc/draft-ietf-oauth-jwt-bearer/
 https://datatracker.ietf.org/doc/draft-ietf-oauth-saml2-bearer/
 
 Goal: If there are still open issues we should discuss them. 
 Expectation is that the documents are back with the IESG  the week before the IETF meeting. 
 
 * Security (Hannes Tschofenig)
 https://datatracker.ietf.org/doc/draft-ietf-oauth-v2-http-mac/
 https://datatracker.ietf.org/doc/draft-tschofenig-oauth-audience/
 
 Goal: Get draft-ietf-oauth-v2-http-mac to WGLC. 
 
 * Other items? Rechartering? 

- --------


The latest version of the agenda can be found here: 
http://www.ietf.org/proceedings/87/agenda/agenda-87-oauth


Ciao
Hannes & Derek

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.19 (Darwin)
Comment: GPGTools - http://gpgtools.org

iQEcBAEBCgAGBQJR5tZqAAoJEGhJURNOOiAtMe0IAIjKEHfkLgMW5TJonwuRcVat
2cNpc0eIQiiTIj1GnELb6QY3GvxmYyB680UtjIg3eY50bbmMd0v+iW1aSdTWAHLz
H3eCnMjeVLJnjYPzklNxYcjxvN1F2tC+oBk6o4jJYrGRHizf7nSIt9rbCbFU7T9M
kl8Z7dASnTWQYPQ21Jr41Wp/fmUhgq2OvMrpSzFEcYp1DIRz94AeZuTac7Q4buKE
5PV0XWFq6n2iixnGdHmYI9uMyiSw77k48NGngvdPiefQghG0BqZIgSDvgt+3Thee
vXWMOCTtxn8/eBe3lvDSiGwi/2PIJztPH06Fc3+szfUnWEdFGdNt8wWk4g6tV9M=
=rsLq
-----END PGP SIGNATURE-----
_______________________________________________
OAuth mailing list
OAuth@ietf.org
https://www.ietf.org/mailman/listinfo/oauth

v2.23.0 | Report a Bug | By Email