Re: [OAUTH-WG] Call for Adoption: Mutual TLS Profiles for OAuth Clients

William Denniss <wdenniss@google.com> Mon, 24 April 2017 07:02 UTC

Return-Path: <wdenniss@google.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C133D128BA2 for <oauth@ietfa.amsl.com>; Mon, 24 Apr 2017 00:02:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.691
X-Spam-Level:
X-Spam-Status: No, score=-2.691 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DYMIoLcu73EV for <oauth@ietfa.amsl.com>; Mon, 24 Apr 2017 00:02:56 -0700 (PDT)
Received: from mail-it0-x235.google.com (mail-it0-x235.google.com [IPv6:2607:f8b0:4001:c0b::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 46E3E1286B2 for <oauth@ietf.org>; Mon, 24 Apr 2017 00:02:56 -0700 (PDT)
Received: by mail-it0-x235.google.com with SMTP id 70so47125729ita.0 for <oauth@ietf.org>; Mon, 24 Apr 2017 00:02:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=xnZ5RVln/cxI4aieH6SaRD54K9NfxmYqoHxuGqZ7dY8=; b=ej30OyRl3x3LJgfbLqx/xG/WQPAE+DLGJaKNpBht+8Fsk3jEF8ttbMEDcdzN2u0syU dOVwEJNRQXyRoOPG3KFzzoP/rLBquhpTnkIXEimOwc/Pt5Edb0xMSLKefXVoa0tFsdBj QJNNq6xmXLhFG4JA/WXuP98sHp3v7lTTCZIKzrcw1qjJCUE7wOgbgFrMPGDYNV9d1wOY V3wYHI0daBU4RGMSpYU8ej5rK76Ud1fJI5d0PnCFjVc1iXdfvISDmFyRzoH5Uch1loHd sQzLXCFuB9tl6ZeIu2peyGXWtPhzvjIXB9pbXfA3K3hqXYOll87Taz6RTXXdB0DQd9gb UaQg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=xnZ5RVln/cxI4aieH6SaRD54K9NfxmYqoHxuGqZ7dY8=; b=SZxqCoQatE91dJH0adaFRKEUY4JCgCf/QteNcJEy8Ltarnwwvjdy6XyEXFhxzCnnBv 85T86h/0+hKN7HMt7mgEEAKTdLPG2XW3tHYGOgzd6ghbgYRKOjPh4vhOsgxkOYB4h+kW ncUx6ezejkynVgwBWMnuf275gZ4xEKRw2DnTR6EW2fDcXOnhh6Si2Fpa3UHRcEzCIFHi 7Au8JSLS9ix3WgeslAfutZFQ9r5dvN2YOKrzJM3NrXlMS48HyHoV/qJzWDkDqDyfc8Qj KbQo+I0ATcuMtWLFXOpqtjAdGrCfpohgxlps8D8HZ42IOuXyd5rT5PFkrTCSZlUx9Etp ENkQ==
X-Gm-Message-State: AN3rC/6235qNmBsiKuRImFFi+/87jEoxhjtnq182E6yFjz7x1rWrVbrr EA7JodwYBbTdiC/gQL3tQpYVXH9FLTDyVyE=
X-Received: by 10.36.21.195 with SMTP id 186mr11530297itq.115.1493017375078; Mon, 24 Apr 2017 00:02:55 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.79.156.210 with HTTP; Mon, 24 Apr 2017 00:02:34 -0700 (PDT)
In-Reply-To: <B5CF3EF4-1C91-41FF-A0D8-61FFFC1056E1@lodderstedt.net>
References: <95776354-79e3-caa7-ba60-84cfec7f899f@gmx.net> <CAP-T6TSMn-hsNG1XL+SEkKQWmqxPa8EckEWU5+9mG6RSZjhLJw@mail.gmail.com> <CABzCy2B_U2E5qEL=f4w9HAwZi+BWrf_Nt+aanwHdBE9Xd_B3zw@mail.gmail.com> <B5CF3EF4-1C91-41FF-A0D8-61FFFC1056E1@lodderstedt.net>
From: William Denniss <wdenniss@google.com>
Date: Mon, 24 Apr 2017 00:02:34 -0700
Message-ID: <CAAP42hCrTm80HFFZCm8UzYMJBs6wjfNpjEEV8CxCqyooLavT+A@mail.gmail.com>
To: Torsten Lodderstedt <torsten@lodderstedt.net>
Cc: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary=001a11449c264949ef054de4323a
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/L6OcHv01XccfBdpKY0FOv9ev4oE>
Subject: Re: [OAUTH-WG] Call for Adoption: Mutual TLS Profiles for OAuth Clients
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 24 Apr 2017 07:02:59 -0000

I support the adoption of this draft by the working group.

On Sun, Apr 23, 2017 at 9:11 AM, Torsten Lodderstedt <
torsten@lodderstedt.net>; wrote:

> +1 for adoption
>
> Am 21.04.2017 um 21:43 schrieb Nat Sakimura <sakimura@gmail.com>;:
>
> +1 for adoption
>
> On Apr 21, 2017 9:32 PM, "Dave Tonge" <dave.tonge@momentumft.co.uk>; wrote:
>
>> I support adoption of draft-campbell-oauth-mtls
>>
>> As previously mentioned this spec will be very useful for Europe where
>> there is legislation requiring the use of certificate-based authentication
>> and many financial groups and institutions are considering OAuth2.
>>
>> The UK Open Banking Implementation Entity has a strong interest in using
>> this spec.
>>
>> Dave
>>
>> On 20 April 2017 at 17:32, Hannes Tschofenig <hannes.tschofenig@gmx.net>;
>> wrote:
>>
>>> Hi all,
>>>
>>> based on the strong support for this document at the Chicago IETF
>>> meeting we are issuing a call for adoption of the "Mutual TLS Profiles
>>> for OAuth Clients" document, see
>>> https://tools.ietf.org/html/draft-campbell-oauth-mtls-01
>>>
>>> Please let us know by May 4th whether you accept / object to the
>>> adoption of this document as a starting point for work in the OAuth
>>> working group.
>>>
>>> Ciao
>>> Hannes & Rifaat
>>>
>>>
>>> _______________________________________________
>>> OAuth mailing list
>>> OAuth@ietf.org
>>> https://www.ietf.org/mailman/listinfo/oauth
>>>
>>>
>>
>>
>> --
>> Dave Tonge
>> CTO
>> [image: Moneyhub Enterprise]
>> <http://www.google.com/url?q=http%3A%2F%2Fmoneyhubenterprise.com%2F&sa=D&sntz=1&usg=AFQjCNGUnR5opJv5S1uZOVg8aISwPKAv3A>
>> 10 Temple Back, Bristol, BS1 6FL
>> t: +44 (0)117 280 5120 <+44%20117%20280%205120>
>>
>> Moneyhub Enterprise is a trading style of Momentum Financial Technology
>> Limited which is authorised and regulated by the Financial Conduct
>> Authority ("FCA"). Momentum Financial Technology is entered on the
>> Financial Services Register (FRN 561538) at fca.org.uk/register.
>> Momentum Financial Technology is registered in England & Wales, company
>> registration number 06909772 © . Momentum Financial Technology Limited
>> 2016. DISCLAIMER: This email (including any attachments) is subject to
>> copyright, and the information in it is confidential. Use of this email or
>> of any information in it other than by the addressee is unauthorised and
>> unlawful. Whilst reasonable efforts are made to ensure that any attachments
>> are virus-free, it is the recipient's sole responsibility to scan all
>> attachments for viruses. All calls and emails to and from this company may
>> be monitored and recorded for legitimate purposes relating to this
>> company's business. Any opinions expressed in this email (or in any
>> attachments) are those of the author and do not necessarily represent the
>> opinions of Momentum Financial Technology Limited or of any other group
>> company.
>>
>> _______________________________________________
>> OAuth mailing list
>> OAuth@ietf.org
>> https://www.ietf.org/mailman/listinfo/oauth
>>
>> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>
>
>
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>
>