[OAUTH-WG] Fwd: New Version Notification for draft-campbell-oauth-mtls-00.txt

Brian Campbell <bcampbell@pingidentity.com> Thu, 30 March 2017 21:16 UTC

Return-Path: <bcampbell@pingidentity.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BF53D124B0A for <oauth@ietfa.amsl.com>; Thu, 30 Mar 2017 14:16:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=pingidentity.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OvMS-Trwv1_c for <oauth@ietfa.amsl.com>; Thu, 30 Mar 2017 14:16:51 -0700 (PDT)
Received: from mail-pg0-x232.google.com (mail-pg0-x232.google.com [IPv6:2607:f8b0:400e:c05::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2690112963F for <oauth@ietf.org>; Thu, 30 Mar 2017 14:16:05 -0700 (PDT)
Received: by mail-pg0-x232.google.com with SMTP id 81so50545202pgh.2 for <oauth@ietf.org>; Thu, 30 Mar 2017 14:16:05 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pingidentity.com; s=gmail; h=mime-version:in-reply-to:references:from:date:message-id:subject:to; bh=xUvzku3Rugi+TCkQrruUBNrOpxARAY1MT9hQw4NyQww=; b=QCz/MuuVidLzJVJ7VrBGHjXZyrRW4dV36RcpiZBTr9ZqYv7eyHY5+gEVrsoDAjCfaP I3dMm0zVuz+/Ag8UKIFEg4BPbsdAEBuG7zSpr1K59hBZOPZgprypjwhX2yXzuWcusirI fSx0IC2uzzk/fmtwax1PF3WK0a6+5gWmf5cM8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to; bh=xUvzku3Rugi+TCkQrruUBNrOpxARAY1MT9hQw4NyQww=; b=SkIWJvJgxtYSnWLE16nWjfoEvVv85u8RlWjtKvD1FxLhdHnFrif7thfjcI6v8zaLnY kQeUELLjMQmBlcr5A7KUeoyk56cOuPBQ3IW69NGMaOK2ZKoKB5GgUkJLWJYOxpiy/QqV mgQsy4A+nC6jaH/gcC2ck41CTI0q+HG25AZLXMrTlxNQ5ZWwBFNbdc3H98wJ/rIFWK6y hBA9+OawhlOR6B1Jn9ot6NV3kdf1y2WOqb9J8wtcpYqfHGq+LUYt1sor67uqR6pEPa+r kt4dutWNdX0ELlEERWRJQo7zvfhtLFF/YoBBVmvaHOvM6JhLyU7CLCX+OiBmeFEJ6wXO LzcA==
X-Gm-Message-State: AFeK/H0rGLp61is2dcyjkuDDWJWFE2nLsrYiPTPLeedwwQ0YX4/da5Ag2kBHEb/vllwOgT3GdebdmahpbymbaT8D
X-Received: by 10.99.147.68 with SMTP id w4mr1262489pgm.32.1490908564481; Thu, 30 Mar 2017 14:16:04 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.100.165.172 with HTTP; Thu, 30 Mar 2017 14:15:34 -0700 (PDT)
In-Reply-To: <CAAX2Qa1OAoY0TOPX-19XgVrxq_63GN5obbh9VB_7851YXERfXA@mail.gmail.com>
References: <149090694651.9027.6337833834024757190.idtracker@ietfa.amsl.com> <CAAX2Qa1OAoY0TOPX-19XgVrxq_63GN5obbh9VB_7851YXERfXA@mail.gmail.com>
From: Brian Campbell <bcampbell@pingidentity.com>
Date: Thu, 30 Mar 2017 16:15:34 -0500
Message-ID: <CA+k3eCTZ=6vG=vpL2ZR3oDMG+LJBT8xMSoTsam8fR_0bbXf6OQ@mail.gmail.com>
To: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary=f403045d44066133e7054bf9337c
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/boHLNyIcm6OBLr7C0bTn-V2ZHDU>
Subject: [OAUTH-WG] Fwd: New Version Notification for draft-campbell-oauth-mtls-00.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Mar 2017 21:16:54 -0000

This document, which I hope to present and discuss briefly at tomorrow's
meeting, replaces (but keeps the feature) the Mutual TLS Authentication for
OAuth Clients
<https://tools.ietf.org/html/draft-campbell-oauth-tls-client-auth-00> that
was published leading up to the Seoul meeting
<https://www.ietf.org/mail-archive/web/oauth/current/msg16704.html> and
adds mutual TLS sender constrained access to OAuth protected resources. The
concept for the latter was largely derived from one of the options in the
JPOP draft <https://tools.ietf.org/html/draft-sakimura-oauth-jpop-04>. I
apologize for the 11th hour publication but hope some folks will have a
chance to read it.

---------- Forwarded message ----------
From: <internet-drafts@ietf.org>
Date: Thu, Mar 30, 2017 at 3:49 PM
Subject: New Version Notification for draft-campbell-oauth-mtls-00.txt
To: Brian Campbell <brian.d.campbell@gmail.com>om>, Nat Sakimura <
n-sakimura@nri.co.jp>gt;, Torsten Lodderstedt <torsten@lodderstedt.net>et>, John
Bradley <ve7jtb@ve7jtb.com>



A new version of I-D, draft-campbell-oauth-mtls-00.txt
has been successfully submitted by Brian Campbell and posted to the
IETF repository.

Name:           draft-campbell-oauth-mtls
Revision:       00
Title:          Mutual TLS Profiles for OAuth Clients
Document date:  2017-03-30
Group:          Individual Submission
Pages:          10
URL:            https://www.ietf.org/internet-drafts/draft-campbell-oauth-mt
ls-00.txt
Status:         https://datatracker.ietf.org/doc/draft-campbell-oauth-mtls/
Htmlized:       https://tools.ietf.org/html/draft-campbell-oauth-mtls-00
Htmlized:       https://datatracker.ietf.org/doc/html/draft-campbell-oauth-
mtls-00


Abstract:
   This document describes Transport Layer Security (TLS) mutual
   authentication using X.509 certificates as a mechanism for both OAuth
   client authentication to the token endpoint as well as for sender
   constrained access to OAuth protected resources.




Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat