Re: [OAUTH-WG] Call for agenda items

n-sakimura <n-sakimura@nri.co.jp> Thu, 08 March 2018 01:52 UTC

Return-Path: <n-sakimura@nri.co.jp>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 633F6120227 for <oauth@ietfa.amsl.com>; Wed, 7 Mar 2018 17:52:45 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.79
X-Spam-Level:
X-Spam-Status: No, score=-1.79 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIM_INVALID=0.01] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=nri365.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oZ_Hp0pigVvP for <oauth@ietfa.amsl.com>; Wed, 7 Mar 2018 17:52:43 -0800 (PST)
Received: from nrifs02.index.or.jp (nrigw01.index.or.jp [133.250.250.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87CDB1200E5 for <oauth@ietf.org>; Wed, 7 Mar 2018 17:52:42 -0800 (PST)
Received: from nrimmfm052.index.or.jp (unknown [172.19.246.144]) by nrifs02.index.or.jp (Postfix) with ESMTP id DC87E19685B; Thu, 8 Mar 2018 10:52:41 +0900 (JST)
Received: from index.or.jp (unknown [172.19.246.151]) by nrimmfm052.index.or.jp (Postfix) with ESMTP id B690D4E0046; Thu, 8 Mar 2018 10:52:41 +0900 (JST)
Received: from nriea05.index.or.jp (localhost.localdomain [127.0.0.1]) by pps.mf051 (8.15.0.59/8.15.0.59) with SMTP id w281mb6j012290; Thu, 8 Mar 2018 10:52:41 +0900
Received: from nrims00b.nri.co.jp ([192.50.135.12]) by nriea05.index.or.jp with ESMTP id w281qfEG016580; Thu, 08 Mar 2018 10:52:41 +0900
Received: from nrims00b.nri.co.jp (localhost.localdomain [127.0.0.1]) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id w281qfFG064690; Thu, 8 Mar 2018 10:52:41 +0900
Received: (from mailnull@localhost) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.0/Submit) id w281qf23064688; Thu, 8 Mar 2018 10:52:41 +0900
X-Authentication-Warning: nrims00b.nri.co.jp: mailnull set sender to n-sakimura@nri.co.jp using -f
Received: from nrizmf12.index.or.jp ([172.100.25.21]) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id w281qf5j064685; Thu, 8 Mar 2018 10:52:41 +0900
Received: from CUEXE01PA.cu.nri.co.jp (192.51.23.31) by CUEXM05PA.cu.nri.co.jp (172.159.253.47) with Microsoft SMTP Server (TLS) id 15.0.1293.2; Thu, 8 Mar 2018 10:52:40 +0900
Received: from JPN01-TY1-obe.outbound.protection.outlook.com (23.103.139.180) by ex.nri.co.jp (192.51.23.31) with Microsoft SMTP Server (TLS) id 15.0.1293.2; Thu, 8 Mar 2018 10:52:37 +0900
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nri365.onmicrosoft.com; s=selector1-cu-nri-co-jp; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=jpK2+RZ/T9+AvgF6u4/7Scs0NO2T094B5QXr/SaAa9A=; b=DuqgrW+VubKBFiA/H96qGHpsD60OG3xfUos96AgytYRgcA6C+0vNKfH3s8uocR6L77h+mVuu5Str9csMquHHOGHLvpl64MWwfi5euEACHxDG4bej6U0MVti3nP0u8RVEUgoxnfVBU5tSMHSXndcuDJdHmYYqECXfSWo/tvawZlk=
Received: from TY1PR01MB1054.jpnprd01.prod.outlook.com (10.174.225.12) by TY1PR01MB1296.jpnprd01.prod.outlook.com (10.174.226.151) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.548.13; Thu, 8 Mar 2018 01:52:38 +0000
Received: from TY1PR01MB1054.jpnprd01.prod.outlook.com ([10.174.225.12]) by TY1PR01MB1054.jpnprd01.prod.outlook.com ([10.174.225.12]) with mapi id 15.20.0548.016; Thu, 8 Mar 2018 01:52:38 +0000
From: n-sakimura <n-sakimura@nri.co.jp>
To: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>, n-sakimura <n-sakimura@nri.co.jp>
CC: Brian Campbell <bcampbell@pingidentity.com>, oauth <oauth@ietf.org>
Thread-Topic: [OAUTH-WG] Call for agenda items
Thread-Index: AdOZokfkKl3QavjXR5+VNijf+3VIVAbDb1oAAA3y6gAAHchUAAACZoYAAB5NaXAAC0wAgAAcFChA
Date: Thu, 8 Mar 2018 01:52:38 +0000
Message-ID: <TY1PR01MB1054C1D6EBB6B6180E31F610F9DF0@TY1PR01MB1054.jpnprd01.prod.outlook.com>
References: <AM4PR0801MB270614990E501071CDB3A2F9FAE40@AM4PR0801MB2706.eurprd08.prod.outlook.com> <CAAP42hAy8iFHDa9hQxNMxytiWjf=MyrCDRzZ4MjvRq8xi0+Baw@mail.gmail.com> <CABzCy2DzJUL86MVTA9xL4Cpv4=ooZyZJ3N1QNS0QKvgr8DJHgA@mail.gmail.com> <CAGL6epLa0J0-JH8-cZX_WZ5Ztficz0_n+C9dOP80Gkbp_jvPFQ@mail.gmail.com> <CA+k3eCSVdUWu2Cz1N6tF_V1wVJS_+v8UudvWyosc9W6DLt9HkA@mail.gmail.com> <TY1PR01MB1054A105034F55F6B810D7C3F9D80@TY1PR01MB1054.jpnprd01.prod.outlook.com> <CAGL6epKe5rWdqCio9-feoMoNa11_H7s7HfHAM8GZ2r3gUhv02A@mail.gmail.com>
In-Reply-To: <CAGL6epKe5rWdqCio9-feoMoNa11_H7s7HfHAM8GZ2r3gUhv02A@mail.gmail.com>
Accept-Language: ja-JP, en-US
Content-Language: ja-JP
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailadviser: 20170719
authentication-results: spf=none (sender IP is ) smtp.mailfrom=n-sakimura@cu.nri.co.jp;
x-originating-ip: [180.43.136.41]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; TY1PR01MB1296; 7:3Ko3AaA5bG2tp6BN0GOrZoXcVnvKiPVJJiGWrcTeuzYiU0QoojFN6DPmq20lqm5N3BkbZMsMY8bRqd5g2Nx4INhQmhrcN4ciB6ZZ+hscWajp8OeVSEdWiubsto3jP27JTJauEwNAsQkHyPTF1Wiyue9zNy7lcDNpjF7URfl/GFPp80zRT9g8hInDllQKBkeTzke+Arql1/HR1mbIw7MgaxVHTw55swqYeRI02mKwZAnQYMH6IUsB1Rk7aWwx/O20
x-ms-exchange-antispam-srfa-diagnostics: SSOS;
x-ms-office365-filtering-correlation-id: 2fe7461a-3e2d-4288-baa8-08d5849745d4
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(5600026)(4604075)(3008032)(4534165)(4627221)(201703031133081)(201702281549075)(2017052603328)(7153060)(7193020); SRVR:TY1PR01MB1296;
x-ms-traffictypediagnostic: TY1PR01MB1296:
x-microsoft-antispam-prvs: <TY1PR01MB12965751ED163A1C9D857B68F9DF0@TY1PR01MB1296.jpnprd01.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(28532068793085)(180628864354917)(192374486261705)(85827821059158)(211936372134217)(100405760836317)(153496737603132)(21748063052155);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040501)(2401047)(5005006)(8121501046)(10201501046)(3231220)(944501244)(52105095)(3002001)(93006095)(93001095)(6041288)(20161123558120)(20161123562045)(20161123564045)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:TY1PR01MB1296; BCL:0; PCL:0; RULEID:; SRVR:TY1PR01MB1296;
x-forefront-prvs: 060503E79B
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(366004)(346002)(376002)(39380400002)(396003)(39840400004)(189003)(199004)(53754006)(40434004)(36304003)(97736004)(59450400001)(8936002)(26005)(5890100001)(2950100002)(77096007)(186003)(93886005)(8676002)(105586002)(3846002)(86362001)(2906002)(7736002)(5660300001)(2900100001)(33656002)(3280700002)(53546011)(6506007)(102836004)(81166006)(74316002)(81156014)(6116002)(229853002)(54906003)(966005)(110136005)(99286004)(316002)(7696005)(39060400002)(53936002)(4326008)(236005)(6306002)(6246003)(606006)(54896002)(55016002)(25786009)(6436002)(74482002)(68736007)(76176011)(9686003)(53946003)(3660700001)(478600001)(106356001)(14454004)(66066001); DIR:OUT; SFP:1102; SCL:1; SRVR:TY1PR01MB1296; H:TY1PR01MB1054.jpnprd01.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:0; LANG:en;
received-spf: None (protection.outlook.com: cu.nri.co.jp does not designate permitted sender hosts)
x-microsoft-antispam-message-info: hNHGQVherPPMFUN+sOGTbxSKtWnFsXfYr0tMxXT1vqY1sbo5x9YcWRe2Arw5tDPKXrxxXmxcnaVpFpjVO8EV38P0tizN+d5Ll7Y81kB3Bb4h4Rt/wHT4YR1U+9V1J6/q/ACmetRdasM81y87juvM/hc+AymDeOWS58c4ob73W9bRPeDPJOAhxANlOqjgdMJyXuf02ksYaYZ5eO+TORoQBf5ZVenfUqxCuokeSnIhqYulzGAE3a5bB5TK9edxFw7QwlVjY9MyRxq6NAG4K/Wi5rlK6U0da0+HuDJLE7xtiTz03N9W/imp1XONwwn+IXtPv2igLsRhcRVBKNelqFeRxg==
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_TY1PR01MB1054C1D6EBB6B6180E31F610F9DF0TY1PR01MB1054jpnp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 2fe7461a-3e2d-4288-baa8-08d5849745d4
X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Mar 2018 01:52:38.8509 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: e3e360d9-7e7f-48d5-ac33-3c5de61f0a75
X-MS-Exchange-Transport-CrossTenantHeadersStamped: TY1PR01MB1296
X-OrganizationHeadersPreserved: TY1PR01MB1296.jpnprd01.prod.outlook.com
X-CrossPremisesHeadersPromoted: CUEXE01PA.cu.nri.co.jp
X-CrossPremisesHeadersFiltered: CUEXE01PA.cu.nri.co.jp
X-OriginatorOrg: cu.nri.co.jp
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/88apsjOthD_ju1RDoSoxGUs7w-4>
Subject: Re: [OAUTH-WG] Call for agenda items
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 08 Mar 2018 01:52:45 -0000

No, not really. I was thinking of more informal thing. The session is supposed to be Wednesday afternoon, so I was thinking that it might be a good idea to do a bit of recap among contributors to draw up a battle plan towards IETF 102.

Nat

From: Rifaat Shekh-Yusef [mailto:rifaat.ietf@gmail.com]
Sent: Wednesday, March 07, 2018 9:22 PM
To: n-sakimura <n-sakimura@nri.co.jp>
Cc: Brian Campbell <bcampbell@pingidentity.com>om>; oauth <oauth@ietf.org>
Subject: Re: [OAUTH-WG] Call for agenda items

Nat,

Are you asking for an interim meeting?
We could schedule the Distributed OAuth discussion for the Wednesday meeting; that will give you guys sometime to discuss these face-to-face in London.

Regards,
 Rifaat



On Wed, Mar 7, 2018 at 2:00 AM, n-sakimura <n-sakimura@nri.co.jp<mailto:n-sakimura@nri.co.jp>> wrote:
Then let us do it. We need to put all the proposals on the table and strategize the design.
Perhaps we need a side meeting as well.

nat

From: OAuth [mailto:oauth-bounces@ietf.org<mailto:oauth-bounces@ietf.org>] On Behalf Of Brian Campbell
Sent: Wednesday, March 07, 2018 1:31 AM
To: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com<mailto:rifaat.ietf@gmail.com>>
Cc: oauth <oauth@ietf.org<mailto:oauth@ietf.org>>
Subject: Re: [OAUTH-WG] Call for agenda items

I hadn't previously been planning on it but am happy to do so.

On Tue, Mar 6, 2018 at 8:22 AM, Rifaat Shekh-Yusef <rifaat.ietf@gmail.com<mailto:rifaat.ietf@gmail.com>> wrote:
Nat,

During the interim meeting, 3 drafts mentioned in the context of Distributed OAuth:

https://tools.ietf.org/html/draft-sakimura-oauth-meta-08
https://tools.ietf.org/html/draft-campbell-oauth-resource-indicators-02
https://tools.ietf.org/html/draft-tschofenig-oauth-audience-00


Brian, Hannes,

Are you planning on presenting your documents?

Regards,
 Rifaat






On Mon, Mar 5, 2018 at 8:09 PM, Nat Sakimura <sakimura@gmail.com<mailto:sakimura@gmail.com>> wrote:
I would be interested in hearing that.

Also, as part of "Distributed OAuth", can we do a bit of re-cap on some of the previous drafts on the similar topic as we discussed in the interim? i.e., Brian's draft (where is the link now?) and my draft (draft-sakimura-oauth-meta<https://tools.ietf.org/id/draft-sakimura-oauth-meta-08.txt>)?

Best,

Nat

On Tue, Mar 6, 2018 at 3:30 AM William Denniss <wdenniss@google.com<mailto:wdenniss@google.com>> wrote:
Hannes & Rifaat,

I would like the opportunity to present on OAuth 2.0 Incremental Authorization (draft-wdenniss-oauth-incremental-auth) [an update for which will be posted today] and "OAuth 2.0 Device Posture Signals" (draft-wdenniss-oauth-device-posture).

I can also give an update on the status of Device Flow (draft-ietf-oauth-device-flow). I expect that to be short now that WGLC has concluded and the document has advanced.

Little late to this thread and I see we already have 2 sessions in the draft agenda, but I'd like to add my support to keeping both sessions, there's always a lot to discuss and in the past we've been able to use any spare time to discuss the security topics of the day.

Regards,
William



On Tue, Jan 30, 2018 at 4:40 AM Hannes Tschofenig <Hannes.Tschofenig@arm.com<mailto:Hannes.Tschofenig@arm.com>> wrote:
Hi all,

It is time already to think about the agenda for the next IETF meeting. Rifaat and I were wondering whether we need one or two sessions. We would like to make the decision based on the topics we will discuss. Below you can find a first version of the agenda with a few remarks. Let us know if you have comments or suggestions for additional agenda items.

Ciao
Hannes & Rifaat

OAuth Agenda
------------

- Welcome and Status Update  (Chairs)

  * OAuth Security Workshop Report

  * Documents in IESG processing
     # draft-ietf-oauth-device-flow-07
     # draft-ietf-oauth-discovery-08
     # draft-ietf-oauth-jwsreq-15
     # draft-ietf-oauth-token-exchange-11

       Remark: Status updates only if needed.

-  JSON Web Token Best Current Practices
   # draft-ietf-oauth-jwt-bcp-00

   Remark: We are lacking reviews on this document.
   Most likely we will not get them during the f2f meeting
   but rather by reaching out to individuals ahead of time.

-  OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access Tokens
   # draft-ietf-oauth-mtls-06

   Remark: Could be completed by the time of the IETF meeting.

- OAuth Security Topics
  # draft-ietf-oauth-security-topics-04

  Remark: We could do a consensus call on parts of the document soon.

- OAuth 2.0 Token Binding
  # draft-ietf-oauth-token-binding-05

  Remark: Document is moving along but we are lacking implementations.

- OAuth 2.0 Device Posture Signals
  # draft-wdenniss-oauth-device-posture-01

  Remark: Interest in the work but we are lacking content (maybe even
  expertise in the group)

- Reciprocal OAuth
  # draft-hardt-oauth-mutual-02

  Remark: We had a virtual interim meeting on this topic and there is
  interest in this work and apparently no competing solutions. The plan
  is to run a call for adoption once we are allowed to add a new milestone
  to our charter.

- Distributed OAuth
  # draft-hardt-oauth-distributed-00

  Remark: We had a virtual interim meeting on this topic and there is
  interest in this work. Further work on the scope is needed.
IMPORTANT NOTICE: The contents of this email and any attachments are confidential and may also be privileged. If you are not the intended recipient, please notify the sender immediately and do not disclose the contents to any other person, use it for any purpose, or store or copy the information in any medium. Thank you.
_______________________________________________
OAuth mailing list
OAuth@ietf.org<mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth
_______________________________________________
OAuth mailing list
OAuth@ietf.org<mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth
--

Nat Sakimura

Chairman of the Board, OpenID Foundation

_______________________________________________
OAuth mailing list
OAuth@ietf.org<mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth


_______________________________________________
OAuth mailing list
OAuth@ietf.org<mailto:OAuth@ietf.org>
https://www.ietf.org/mailman/listinfo/oauth


CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.