[OAUTH-WG] OAuth Proof-of-Possession Work
Hannes Tschofenig <hannes.tschofenig@gmx.net> Tue, 15 July 2014 16:12 UTC
Return-Path: <hannes.tschofenig@gmx.net>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 749A71B28CF for <oauth@ietfa.amsl.com>; Tue, 15 Jul 2014 09:12:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.551
X-Spam-Level:
X-Spam-Status: No, score=-2.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.651, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id huYdG7f5lJWf for <oauth@ietfa.amsl.com>; Tue, 15 Jul 2014 09:12:02 -0700 (PDT)
Received: from mout.gmx.net (mout.gmx.net [212.227.15.19]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 80F671B287F for <oauth@ietf.org>; Tue, 15 Jul 2014 09:12:02 -0700 (PDT)
Received: from [172.16.254.119] ([80.92.116.212]) by mail.gmx.com (mrgmx003) with ESMTPSA (Nemesis) id 0LjIBr-1WZPXr2ket-00dY5U for <oauth@ietf.org>; Tue, 15 Jul 2014 18:12:00 +0200
Message-ID: <53C552D0.4080902@gmx.net>
Date: Tue, 15 Jul 2014 18:12:00 +0200
From: Hannes Tschofenig <hannes.tschofenig@gmx.net>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: "oauth@ietf.org" <oauth@ietf.org>
X-Enigmail-Version: 1.5.2
OpenPGP: id=4D776BC9
Content-Type: multipart/signed; micalg="pgp-sha512"; protocol="application/pgp-signature"; boundary="k7SD6Rkvr5qS2VsDQ875rLPKTe05V1l6v"
X-Provags-ID: V03:K0:YrO3MyOq1x9VokycXgA5ZZp7tj1bBzSFV3xUlX1ZoVp3ohSpta2 uzsMQvRgEHh33oxBFp66Mpp+4wTuu9OI9+8FLNi0n3lsLy7zK1lgACxY1DAqNy7AaePO1yM 2dYwTQmxDYb3YQPeXqsJh3MWA7jXAhPUfVpCCHcU7pCs9wiva0W7wpV2VMCcYTPU40KFjkY ZNzdMqfs8uOmncSaoCm3Q==
Archived-At: http://mailarchive.ietf.org/arch/msg/oauth/LeL3Yvx7xI33COtwpz79bPcyAio
Subject: [OAUTH-WG] OAuth Proof-of-Possession Work
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jul 2014 16:12:05 -0000
Hi all, Kathleen just confirmed the milestone update and as part of our work on the security part (which we called "proof-of-possession"). We replaced one milestone (containing one document, namely the MAC token spec) with one milestone for the proof-of-possession work (now containing a number of documents). We have been discussing this work for a while and now we will hopefully manage to conclude the work. If you haven't paid attention then you might want to take a quick look at my summary presentation from the last Internet Identity Workshop, see http://www.tschofenig.priv.at/oauth/IETF-OAuth-PoP.pptx. In any case, there are still a number of open issues that need to get resolved as well. Needless to say that these documents are input to the working group and will change based on the consensus of the group. Ciao Hannes
- [OAUTH-WG] OAuth Proof-of-Possession Work Hannes Tschofenig