Re: [OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-token-binding-03.txt
Brian Campbell <bcampbell@pingidentity.com> Sat, 24 June 2017 13:37 UTC
Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4EA2312871F for <oauth@ietfa.amsl.com>; Sat, 24 Jun 2017 06:37:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.74
X-Spam-Level:
X-Spam-Status: No, score=-1.74 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, HTML_OBFUSCATE_05_10=0.26, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SVaCXTdNImzI for <oauth@ietfa.amsl.com>; Sat, 24 Jun 2017 06:37:02 -0700 (PDT)
Received: from mail-pg0-x234.google.com (mail-pg0-x234.google.com [IPv6:2607:f8b0:400e:c05::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C870A127735 for <oauth@ietf.org>; Sat, 24 Jun 2017 06:37:02 -0700 (PDT)
Received: by mail-pg0-x234.google.com with SMTP id f127so31602392pgc.0 for <oauth@ietf.org>; Sat, 24 Jun 2017 06:37:02 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=gmail; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=+/MFeOjt+Hslt4pUsQGG6umSh8+HfHj188AcZtSePZg=; b=DCWXxO9gaCVYxwzZJeP+BxcS1UP/TyOfo/jXUn7xYeN4Cfrki+Yh7+uen8OUq27BBj RpaqXsLKmUWQ+2sYwas5mXMBV85aQJ2JVkuKJzRDFlWyyhEj3stMkliZnx7Z8vnHkC6n 3/IH1TP7TNmb6TVC8sbnvwOGxl8nQy9ybzrrQ=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=+/MFeOjt+Hslt4pUsQGG6umSh8+HfHj188AcZtSePZg=; b=OqQO13SU+Lw7xcGMM6rPtq/c/skkez9yzkS7Knm6dYcIPUVvU5tbzAsId4n8RXCAD2 QXz1QCvmvQNWvcfn6JAr9bB5CIpP+8UHBr3zubYsSshiXWskJ+qT9bp08jY6k2S0jRtH 287fQJcG8tezggy50vRVSXeoqqar4y7K/ho6IXuJ4TMqsVmu3Kt5GtgJmBCeEkTNnwGt 0KeIvyadgKLiYuBWvwSWPoJbNuv6sSyQzyD1fDLRYkE7csarz7HiN76UutITWXzp1tcJ iug4VelcAlMik8nPMkbTxbMwym9q3DoghOCyyYCaM19DgL2jAiWGLs9h1CgppFvn4tjY /K2Q==
X-Gm-Message-State: AKS2vOyWpUevfiTZmnwSRK21dzFi7nkIJRGB+IFUoa+5oJH2Qs/KWnxS EtA6XsBLdVRQCJIglOIFFSJ/9ShphzOkDDc4+J/8h0JTb7W92Qd4IN7nzyHZB6rWfSl3oQnhg3+ ZJTjD
X-Received: by 10.99.44.206 with SMTP id s197mr13336054pgs.116.1498311422014; Sat, 24 Jun 2017 06:37:02 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.129.130 with HTTP; Sat, 24 Jun 2017 06:36:31 -0700 (PDT)
In-Reply-To: <CAGpwqP9kyo2xn8=AzBkr9AoBzUx8mn1geZQcottC6VtGgt6Lag@mail.gmail.com>
References: <149063228392.30557.3815696692412964113@ietfa.amsl.com> <CA+k3eCTG7RB6SD8756FpHm30DOJgRgWUko7Dtv1y6L_GhnxiKA@mail.gmail.com> <CAGpwqP9kyo2xn8=AzBkr9AoBzUx8mn1geZQcottC6VtGgt6Lag@mail.gmail.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Sat, 24 Jun 2017 08:36:31 -0500
Message-ID: <CA+k3eCQHdBDhDTjqggP=Xo8o65hsr45LGpkWQ7SbUMLVtA1Law@mail.gmail.com>
To: Takahiko Kawasaki <daru.tk@gmail.com>
Cc: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="001a1145a2dc12bd800552b4d03a"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/FyhzIGwxg9sW88TvMFB6K1GwQpk>
Subject: Re: [OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-token-binding-03.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 24 Jun 2017 13:37:05 -0000
Thanks Takahiko, fixed https://github.com/oauth-token-binding/i-d/commit/f0c61c19e02a54147c3b9280b1f5c41112de35a0 On Sat, Jun 24, 2017 at 1:46 AM, Takahiko Kawasaki <daru.tk@gmail.com> wrote: > Dear Brian, > > Just a small editorial issue on the 4th line in the 2nd paragraph in "*2.1. > Example Token Binding for Refresh Tokens".* "the" should be removed from > "the of PKCS is". > > Best Regards, > Takahiko Kawasaki > > > > 2017-03-28 1:32 GMT+09:00 Brian Campbell <bcampbell@pingidentity.com>: > >> -03 only fixes a few mistakes in and around the examples that I noticed >> preparing the slides for the IETF 98 Chicago meeting. >> >> ---------- Forwarded message ---------- >> From: <internet-drafts@ietf.org> >> Date: Mon, Mar 27, 2017 at 11:31 AM >> Subject: [OAUTH-WG] I-D Action: draft-ietf-oauth-token-binding-03.txt >> To: i-d-announce@ietf.org >> Cc: oauth@ietf.org >> >> >> >> A New Internet-Draft is available from the on-line Internet-Drafts >> directories. >> This draft is a work item of the Web Authorization Protocol of the IETF. >> >> Title : OAuth 2.0 Token Binding >> Authors : Michael B. Jones >> John Bradley >> Brian Campbell >> William Denniss >> Filename : draft-ietf-oauth-token-binding-03.txt >> Pages : 26 >> Date : 2017-03-27 >> >> Abstract: >> This specification enables OAuth 2.0 implementations to apply Token >> Binding to Access Tokens, Authorization Codes, and Refresh Tokens. >> This cryptographically binds these tokens to a client's Token Binding >> key pair, possession of which is proven on the TLS connections over >> which the tokens are intended to be used. This use of Token Binding >> protects these tokens from man-in-the-middle and token export and >> replay attacks. >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-ietf-oauth-token-binding/ >> >> There are also htmlized versions available at: >> https://tools.ietf.org/html/draft-ietf-oauth-token-binding-03 >> https://datatracker.ietf.org/doc/html/draft-ietf-oauth-token-binding-03 >> >> A diff from the previous version is available at: >> https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-token-binding-03 >> >> >> Please note that it may take a couple of minutes from the time of >> submission >> until the htmlized version and diff are available at tools.ietf.org. >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> _______________________________________________ >> OAuth mailing list >> OAuth@ietf.org >> https://www.ietf.org/mailman/listinfo/oauth >> >> >> _______________________________________________ >> OAuth mailing list >> OAuth@ietf.org >> https://www.ietf.org/mailman/listinfo/oauth >> >> > -- *CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited. If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.*
- [OAUTH-WG] I-D Action: draft-ietf-oauth-token-bin… internet-drafts
- [OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-toke… Brian Campbell
- Re: [OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-… Takahiko Kawasaki
- Re: [OAUTH-WG] Fwd: I-D Action: draft-ietf-oauth-… Brian Campbell