[OAUTH-WG] OAuth and OpenID Connect enterprise profiles
"Peck, Michael A" <mpeck@mitre.org> Mon, 02 March 2020 19:54 UTC
Return-Path: <mpeck@mitre.org>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9B9263A105B for <oauth@ietfa.amsl.com>; Mon, 2 Mar 2020 11:54:34 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.1
X-Spam-Level:
X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mitre.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xt6pwsINtDDs for <oauth@ietfa.amsl.com>; Mon, 2 Mar 2020 11:54:32 -0800 (PST)
Received: from smtpvbsrv1.mitre.org (smtpvbsrv1.mitre.org [198.49.146.234]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 971263A1060 for <oauth@ietf.org>; Mon, 2 Mar 2020 11:54:32 -0800 (PST)
Received: from smtpvbsrv1.mitre.org (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id B1B69332005 for <oauth@ietf.org>; Mon, 2 Mar 2020 14:54:31 -0500 (EST)
Received: from smtprhbv1.mitre.org (unknown [129.83.19.196]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by smtpvbsrv1.mitre.org (Postfix) with ESMTPS id A8269332009 for <oauth@ietf.org>; Mon, 2 Mar 2020 14:54:31 -0500 (EST)
Received: from mbfesmtp-mgt.mitre.org (unknown [198.49.146.235]) by smtprhbv1.mitre.org (Postfix) with ESMTP id 9BF8280EF3F for <oauth@ietf.org>; Mon, 2 Mar 2020 14:54:31 -0500 (EST)
Received: by mbfesmtp-mgt.mitre.org (Postfix, from userid 600) id 48WW7W4QLszlNP; Mon, 2 Mar 2020 19:53:53 +0000 (UTC)
Received: from GCC02-DM3-obe.outbound.protection.outlook.com (mail-dm3gcc02lp2108.outbound.protection.outlook.com [104.47.65.108]) by mbfesmtp-mgt.mitre.org (Postfix) with ESMTPS id 48WW6k0SB4zlP3 for <oauth@ietf.org>; Mon, 2 Mar 2020 19:53:50 +0000 (UTC)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=WmO9IeSb7U+qCBbY9iMIUphDHssacfnZGv/RQC6lsLiJ8jQlEu+02fogRN85ka4zA+BsAxws/U/KcWqoKeTbKHcbYvsNlqkcipzsjp1jXXN8K2hQK3yjJBgoe9QY15dI3mm74FCsIUIq167MTDjq11RmraaHoJHscaZMvecqP5ONHs9RWl7Eit91FH349PfVhYpHm2O0LQpqTYsDU4kERH3pd4JIgngrQA8WkZ9iTBTYoxPVHvnOrgRdOR1pmTdiIhmtl+7Ono9viIrbQAT/oS7z+mknJyZKbTzYQmcgjS9FyklSUxCVTy1QXUA3FHEtwTnWicDD/13xYyfFeHW6Zw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=1G7ARRoZf0LWTvMtNcuC9+xrSCcHUWq/QtwFuHTpDCU=; b=HZ5CNk/NqSozqLp4+mHGR5aQK26PNYGWRX0ImQ4MolV1R9bi5E9Vs9I60+svCM83wrgg1b8T7SwpwL3gYRDcmbhslBz0hWzcYeCoBmUuWlpn9uhvWK4v2dayL2woMPeGoyyj5MlriCCa4J7j7S//6niIYt+iiL5dEDi+QHAGMadl8PTVHu2e0Y2khboZLiOZSRaVSCtnx1I/2hSSfN5woAv6X1FRcsMpcKD6K8pCVG8cnQQ1H1YtG9kJmT+0g31rrruids1B5m4RrCD4Z3L0IbdSDCGM+OfILGc5neU1nzph3LxgYpvLv/1xhqqzLKaLI/7n6lrzYtBxp9hZMnJuXQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=mitre.org; dmarc=pass action=none header.from=mitre.org; dkim=pass header.d=mitre.org; arc=none
Received: from DM6PR09MB3434.namprd09.prod.outlook.com (2603:10b6:5:16e::27) by DM6PR09MB4384.namprd09.prod.outlook.com (2603:10b6:5:1bc::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2772.14; Mon, 2 Mar 2020 19:53:48 +0000
Received: from DM6PR09MB3434.namprd09.prod.outlook.com ([fe80::545:c39:15d9:b7f8]) by DM6PR09MB3434.namprd09.prod.outlook.com ([fe80::545:c39:15d9:b7f8%7]) with mapi id 15.20.2772.019; Mon, 2 Mar 2020 19:53:48 +0000
From: "Peck, Michael A" <mpeck@mitre.org>
To: "oauth@ietf.org" <oauth@ietf.org>
CC: OAuthOIDCProfiles <OAuthOIDCProfiles@groups.mitre.org>
Thread-Topic: OAuth and OpenID Connect enterprise profiles
Thread-Index: AQHV8MxK4N72hnjg8EGRYGZwOeXZNQ==
Date: Mon, 02 Mar 2020 19:53:48 +0000
Message-ID: <1E8E2EDD-D87E-442B-9FDD-28145AD3350C@mitre.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.22.0.200209
authentication-results: spf=none (sender IP is ) smtp.mailfrom=mpeck@mitre.org;
x-originating-ip: [192.80.55.89]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 9d6290f9-4d00-44b9-25e9-08d7bee36cbf
x-ms-traffictypediagnostic: DM6PR09MB4384:
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <DM6PR09MB43848FF9C90B6104A98EE379B9E70@DM6PR09MB4384.namprd09.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 033054F29A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(136003)(376002)(366004)(396003)(39860400002)(199004)(189003)(66476007)(66446008)(107886003)(64756008)(66556008)(76116006)(91956017)(66946007)(2906002)(5660300002)(71200400001)(86362001)(36756003)(6916009)(186003)(6486002)(966005)(81166006)(8936002)(26005)(81156014)(6512007)(2616005)(4326008)(4744005)(8676002)(33656002)(316002)(478600001)(6506007); DIR:OUT; SFP:1101; SCL:1; SRVR:DM6PR09MB4384; H:DM6PR09MB3434.namprd09.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: mitre.org does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: aQ3E2iRtwt5j7QczdraPO/UXYZZlbHc1vBvM1q8kocDbHIt33jZiD55B8K59beTHR96wZSqtAYwjXGa1hEBf2sCHm/6/tubmlqmwCExrvKnF+RtxQQ/lQx4utPH4IaR853m8+avoOKKLHzSQSygTBB9FquInUyGWOg8EGXNdLFwDVLTCA+Midozzlg5iIAqtkfcO5Wz6/z0VAwbCigStVH8onvA9TYLX3yk22Iz1yu9OZ+szNAcsoJbzqQGsVFGMCnxKeTG3QADq5iO2nDJEXsnnNMDwo3/HZzOpVQPjPxPtMTxqXwS3YPF/LsiKYOMxm9jTH5+6sXli96kccVhhPC/bBwITjnntxBVpzEXGkhyNKQXyQDaBDn3NwPnWgHTgINcE1F42zyC0xhF9tOLRcC6OTvSgmVEGHKp2iAG2ct1szJciJchC/KQMFYZ5fCekgPLkJqwM4VacNYQPQJ1xaD7Q8NOUu1lmX2mK1MP0Hrc=
x-ms-exchange-antispam-messagedata: 3+5nfxwFkVnnPV8LXu6cyAi9v6w2EANKDaFGc9QckfAsKNqpg42xJMYRUo7Eku+MUm3F/J2uFPsi7U5lZsjiD7VYH5xB7KkXSUfXlvmZuaDveC9f1X3e3Eg7yoQVlL0Gf/R5M1YUtQ0MZvqAVOUSZw==
Content-Type: text/plain; charset="utf-8"
Content-ID: <BD692D47FAA06B45A62B156F6D6EB9C8@namprd09.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: mitre.org
X-MS-Exchange-CrossTenant-Network-Message-Id: 9d6290f9-4d00-44b9-25e9-08d7bee36cbf
X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Mar 2020 19:53:48.6445 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: c620dc48-1d50-4952-8b39-df4d54d74d82
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Q9Srca4xJWh1IV+Y8zVzaRdZtGwsJghk+ibB6HeCGmy6c0I0Rd8W1Sf7jWEChDte
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR09MB4384
X-MITRE: 8GQsMWxq66rxk57w
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mitre.org; h=from:to:cc:subject:date:message-id:content-type:content-id:content-transfer-encoding:mime-version;s=selector1; bh=1G7ARRoZf0LWTvMtNcuC9+xrSCcHUWq/QtwFuHTpDCU=; b=IVp4CbgU3QBi6UMbMPH+vcYLd+UlIFj8e4AYr/1NzbB+SFJTnWNt0pS3bTVRylRxmAcUakiQEl1y6HsJ/syQ3VHaxmzah9R4pJHCoa5B1ODoH8103K2h0pcLhpO+PoZAvkzef6tSpSJLdx4CyrWRZX4emrx85AvI/oF33NtgvjQ=
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/YiGWfqiopyF-LrCr9-eGSFkYF_I>
Subject: [OAUTH-WG] OAuth and OpenID Connect enterprise profiles
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Mar 2020 19:54:42 -0000
Hello all, For anyone who may be interested: MITRE, in support of the U.S. Government, has developed tailored OAuth and OpenID Connect profiles for use in enterprise environments. We have leveraged previous standards efforts (e.g. work in the IETF and in the OpenID Foundation) and have detailed requirements to use the standards in a secure and interoperable manner to address enterprise environment use cases. These profiles should be considered informational as we seek feedback from subject matter experts. We’re interested in working with standards bodies and others to move these concepts forward. We welcome any comments and suggestions at OAuthOIDCProfiles@groups.mitre.org . The profiles can be found at: https://www.mitre.org/publications/technical-papers/enterprise-mission-tailored-oauth-20-and-openid-connect-profiles Michael Peck The MITRE Corporation
- [OAUTH-WG] OAuth and OpenID Connect enterprise pr… Peck, Michael A
- Re: [OAUTH-WG] OAuth and OpenID Connect enterpris… Daniel Fett
- Re: [OAUTH-WG] OAuth and OpenID Connect enterpris… Peck, Michael A