Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Security: OAuth Open Redirector

Roland Hedberg <roland.hedberg@umu.se> Thu, 04 February 2016 08:08 UTC

Return-Path: <roland.hedberg@umu.se>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7DA751A1AE8 for <oauth@ietfa.amsl.com>; Thu, 4 Feb 2016 00:08:25 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.851
X-Spam-Level:
X-Spam-Status: No, score=-3.851 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vcIINiYKVNy1 for <oauth@ietfa.amsl.com>; Thu, 4 Feb 2016 00:08:22 -0800 (PST)
Received: from smtp5.umu.se (smtp5.umu.se [130.239.8.142]) by ietfa.amsl.com (Postfix) with ESMTP id 99DED1A1AE1 for <oauth@ietf.org>; Thu, 4 Feb 2016 00:08:21 -0800 (PST)
X-IronPort-AV: E=Sophos;i="5.22,393,1449529200"; d="asc'?scan'208";a="86014716"
X-IPAS-Result: A2CoBAB8BrNW/8sN74JeGQEBAQEPAQEBAYJffW0GiFWycAUFFwqFbAKCBgEBAQEBAYEAC4RBAQEBAQIBAQEBGlELBQcEAgEIEQQBASgHJwsUCQgCBA4FDogFCAENwFgBAQEBAQEBAQEBAQEBAQEBAQEBAQENBASGEoFtgkqEOIMlgQ8FlnGCfIFjaolfhEKIVIpug1Jig2Rqhy4BewEBAQ
Received: from umu-ex03.ad.umu.se (HELO mail.ad.umu.se) ([130.239.13.203]) by smtp5.umu.se with ESMTP; 04 Feb 2016 09:08:19 +0100
Received: from UMU-EX03.ad.umu.se (2002:82ef:dcb::82ef:dcb) by UMU-EX03.ad.umu.se (2002:82ef:dcb::82ef:dcb) with Microsoft SMTP Server (TLS) id 15.0.1130.7; Thu, 4 Feb 2016 09:08:14 +0100
Received: from UMU-EX03.ad.umu.se ([fe80::708f:f02f:c850:d133]) by UMU-EX03.ad.umu.se ([fe80::708f:f02f:c850:d133%24]) with mapi id 15.00.1130.005; Thu, 4 Feb 2016 09:08:14 +0100
From: Roland Hedberg <roland.hedberg@umu.se>
To: "oauth@ietf.org" <oauth@ietf.org>
Thread-Topic: [OAUTH-WG] Call for Adoption: OAuth 2.0 Security: OAuth Open Redirector
Thread-Index: AQHRXyMxrHhh1YBYA0a+dfjLJesF2Q==
Date: Thu, 4 Feb 2016 08:08:13 +0000
Message-ID: <3127F900-918A-4C65-9D8C-DA1FC388BC4F@adm.umu.se>
References: <569E2260.4080904@gmx.net> <BY2PR03MB442FAFCF5D669C0E584B6FFF5D10@BY2PR03MB442.namprd03.prod.outlook.com>
In-Reply-To: <BY2PR03MB442FAFCF5D669C0E584B6FFF5D10@BY2PR03MB442.namprd03.prod.outlook.com>
Accept-Language: en-US, sv-SE
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-pgp-agent: GPGMail 2.5.2
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [130.239.200.165]
Content-Type: multipart/signed; boundary="Apple-Mail=_07BB6AA0-D61B-40E3-82D8-118BD92C0847"; protocol="application/pgp-signature"; micalg=pgp-sha256
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/Ka5VaiSJD0kO3LTkqHjMpX2prNE>
Subject: Re: [OAUTH-WG] Call for Adoption: OAuth 2.0 Security: OAuth Open Redirector
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Feb 2016 08:08:25 -0000

+1

> 4 feb 2016 kl. 07:25 skrev Mike Jones <Michael.Jones@microsoft.com>om>:
> 
> I support adoption of this document by the working group.
> 
> 				-- Mike
> 
> -----Original Message-----
> From: OAuth [mailto:oauth-bounces@ietf.org] On Behalf Of Hannes Tschofenig
> Sent: Tuesday, January 19, 2016 3:48 AM
> To: oauth@ietf.org
> Subject: [OAUTH-WG] Call for Adoption: OAuth 2.0 Security: OAuth Open Redirector
> 
> Hi all,
> 
> this is the call for adoption of OAuth 2.0 Security: OAuth Open Redirector, see
> https://tools.ietf.org/html/draft-bradley-oauth-open-redirector-02
> 
> Please let us know by Feb 2nd whether you accept / object to the adoption of this document as a starting point for work in the OAuth working group.
> 
> Note: At the IETF Yokohama we asked for generic feedback about doing security work in the OAuth working group and there was very positive feedback. However, for the adoption call we need to ask for individual documents. Hence, you need to state your view again.
> 
> Ciao
> Hannes & Derek
> 
> 
> 
> 
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth