[OAUTH-WG] -03 IETF URN Sub-Namespace for OAuth published

Brian Campbell <bcampbell@pingidentity.com> Thu, 21 June 2012 18:35 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id AA9F021F877D for <oauth@ietfa.amsl.com>; Thu, 21 Jun 2012 11:35:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.877
X-Spam-Status: No, score=-5.877 tagged_above=-999 required=5 tests=[AWL=0.100, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id WQHBRib9nMI6 for <oauth@ietfa.amsl.com>; Thu, 21 Jun 2012 11:35:28 -0700 (PDT)
Received: from na3sys009aog107.obsmtp.com (na3sys009aog107.obsmtp.com []) by ietfa.amsl.com (Postfix) with ESMTP id C12FD21F8768 for <oauth@ietf.org>; Thu, 21 Jun 2012 11:35:27 -0700 (PDT)
Received: from mail-qa0-f48.google.com ([]) (using TLSv1) by na3sys009aob107.postini.com ([]) with SMTP ID DSNKT+Npb+ZTN/yzgxQ4MN4Wox6+Olm37WxV@postini.com; Thu, 21 Jun 2012 11:35:27 PDT
Received: by qadz32 with SMTP id z32so960782qad.14 for <oauth@ietf.org>; Thu, 21 Jun 2012 11:35:26 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:from:date:message-id:subject:to:cc:content-type :x-gm-message-state; bh=DmUyiJJiCJT9A5hpw8gHvYBa2dDTm41HHxnAj8bHFJk=; b=b9i6nI6beRS+WWr4QgHItGHAuVhCsM8rpXuHu4CRhR2S7+nYCuNsywqqNZnV1O3vGw aNSDXySKz4HlTx0hFD/fXj9ER3Fr60qVX9sE+E2GyBZWqm+XRievr50z8WGywnAS7zz7 /Qv5/R3s6R4DM3+ipOoCSLNfl2zzQbRMN0xBBBtjfY/24gpqK7C4SJ38yh9tk4ncQR98 lbBaUM1utTU4xKjbw3DLBpb8C1eR6VZdeRqQnJrsZ8OoFbFPPeaD1RGXBkxqSQGns6eZ wTqL1ejJMQykPqGlEq+YWT3khXWOQLOlfvetbH5nO0k+RHkiq3D6QVlLYlzf46KO3GFw K3Cw==
Received: by with SMTP id ca13mr1051157qab.60.1340303726573; Thu, 21 Jun 2012 11:35:26 -0700 (PDT)
MIME-Version: 1.0
Received: by with HTTP; Thu, 21 Jun 2012 11:34:56 -0700 (PDT)
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Thu, 21 Jun 2012 12:34:56 -0600
Message-ID: <CA+k3eCQiON20skmD6xhnts-PkUXuqtyJtBwLup-KDHc1aKd-zw@mail.gmail.com>
To: oauth <oauth@ietf.org>
Content-Type: text/plain; charset="ISO-8859-1"
X-Gm-Message-State: ALoCoQlCHGxMJOMLpz2QZePLF/EJaZWX7XmUsVr2rTlbf/DIMP8q8KhjN0T5Vcfo8hlk7oF92ln6
Cc: Barry Leiba <barryleiba@computer.org>
Subject: [OAUTH-WG] -03 IETF URN Sub-Namespace for OAuth published
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jun 2012 18:35:28 -0000

"An IETF URN Sub-Namespace for OAuth" draft -03 has been published and
is available at

Changes (listed below as well as in the document history) from the
previous version were made in response to AD review and the subsequent
discussion prompted by that review.

The intent of the document remains unchanged (to create and register
an IETF URN Sub-namespace of urn:ietf:params:oauth and allow OAuth
related specs to establish and use URIs underneath it) but the actual
text in the doc has changed significantly. So additional review
(particularly by those involved in the discussion yesterday) would be
very much appreciated.

draft-ietf-oauth-urn-sub-ns-03 changes:

   o  Changes to address comments in the message "AD review of
      draft-ietf-oauth-urn-sub-ns-02" at
      and subsequent messages in that thread

   o  Update area and workgroup (now Security and OAuth was Internet and

   o  Change from informational to standards-track

   o  Requesting new URNs now more lightweight by changing from 'RFC
      Required' to 'Expert Review' (RFC5226)

   o  Rework much of the document to be more clear about it registering
      the urn:ietf:params:oauth URN sub-namespace and separately how
      other documents are to request URNs under that sub-namespace.

   o  Removed everything about asking the IANA to generate any part of
      the URN.

   o  Added an Example Registration Request

   o  Added reference to OAuth security considerations in security

   o  Added Acknowledgements