[OAUTH-WG] Genart last call review of draft-ietf-oauth-jwt-introspection-response-05

Linda Dunbar via Datatracker <noreply@ietf.org> Mon, 05 August 2019 21:22 UTC

Return-Path: <noreply@ietf.org>
X-Original-To: oauth@ietf.org
Delivered-To: oauth@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id B8F8E120091; Mon, 5 Aug 2019 14:22:57 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Linda Dunbar via Datatracker <noreply@ietf.org>
To: gen-art@ietf.org
Cc: draft-ietf-oauth-jwt-introspection-response.all@ietf.org, ietf@ietf.org, oauth@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 6.100.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: Linda Dunbar <Linda.dunbar@huawei.com>
Message-ID: <156504017769.2046.13239300457018910370@ietfa.amsl.com>
Date: Mon, 05 Aug 2019 14:22:57 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/G9xCZruX20GoozDXuSN0AdWqCj4>
Subject: [OAUTH-WG] Genart last call review of draft-ietf-oauth-jwt-introspection-response-05
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Aug 2019 21:22:58 -0000

Reviewer: Linda Dunbar
Review result: Ready

I am the assigned Gen-ART reviewer for this draft. The General Area
Review Team (Gen-ART) reviews all IETF documents being processed
by the IESG for the IETF Chair.  Please treat these comments just
like any other last call comments.

For more information, please see the FAQ at


Document: draft-ietf-oauth-jwt-introspection-response-05
Reviewer: Linda Dunbar
Review Date: 2019-08-05
IETF LC End Date: 2019-08-07
IESG Telechat date: Not scheduled for a telechat

This draft specifies an additional JSON Web Token (JWT) based response for
OAuth 2.0 Token Introspection, specify the signed JWT and signed & encrypted
JWT response. The document has very thorough analysis from many aspects in the
security consideration section.

Major issues: None

Minor issues: None

Nits/editorial comments: