[OAUTH-WG] Proof-of-Possession Key Semantics for JWTs spec addressing remaining comments
Mike Jones <Michael.Jones@microsoft.com> Sat, 19 December 2015 04:19 UTC
Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CB19C1A1B81 for <oauth@ietfa.amsl.com>; Fri, 18 Dec 2015 20:19:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dzQ_9ZotDJn3 for <oauth@ietfa.amsl.com>; Fri, 18 Dec 2015 20:18:56 -0800 (PST)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bon0797.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::1:797]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 765A11A1B7F for <oauth@ietf.org>; Fri, 18 Dec 2015 20:18:56 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector1; h=From:To:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=/q3AX4kLndROMqdAZfB1KutdEtbBIgOccaTNV2HCjJU=; b=c+X4kg6qWxqpqxtxJpM9SqCvMo9h1XIMH3iGA9EXlyCWGtBUyqpR//9jurFEUItTCqs9/emXTlJozPekeKsNwGTpuyD+AiKMafAedWS5irqbDa9teHifdeuQwLDi7ih2+Yy4GHIlaIlu5wJbdkX4F/Flk7GVXWOmzKN7Y6i7RA8=
Received: from BY2PR03MB442.namprd03.prod.outlook.com (10.141.141.145) by BY2PR03MB442.namprd03.prod.outlook.com (10.141.141.145) with Microsoft SMTP Server (TLS) id 15.1.355.16; Sat, 19 Dec 2015 04:18:38 +0000
Received: from BY2PR03MB442.namprd03.prod.outlook.com ([10.141.141.145]) by BY2PR03MB442.namprd03.prod.outlook.com ([10.141.141.145]) with mapi id 15.01.0355.012; Sat, 19 Dec 2015 04:18:38 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "oauth@ietf.org" <oauth@ietf.org>
Thread-Topic: Proof-of-Possession Key Semantics for JWTs spec addressing remaining comments
Thread-Index: AdE6CHm8w2dY6rTWSU+ghKOWbgZ10g==
Date: Sat, 19 Dec 2015 04:18:37 +0000
Message-ID: <BY2PR03MB4425323FBC27D5636C6D59CF5E20@BY2PR03MB442.namprd03.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [50.47.85.157]
x-microsoft-exchange-diagnostics: 1; BY2PR03MB442; 5:3hpMOv2NjWn/0rNoXa5Okq6LJ4eOmyx8VDIdQcVf1Hwggeaei53dV1cqZaB1unTv1+1K9yuNmelVPkXoJs7cvt9VvNDVcWI1xkQvM0hW6COiDAsXN0m/vfNyBZWE5udoZqaLlM1QYZ+/sqzGqoWUwA==; 24:tQISqTWSzHMyB3cyBSX9KA+rZzyrwQPlhq5Q1sN7o0fa1u5/gj/HYViJJhwWiyAZftANFiYzGEGpQHfKWvnhwaiUmGnIuKx4Ra7BIyy+asc=
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY2PR03MB442;
x-microsoft-antispam-prvs: <BY2PR03MB442F97D0A288299FB164B19F5E20@BY2PR03MB442.namprd03.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:;
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(61425038)(601004)(2401047)(520078)(5005006)(8121501046)(3002001)(10201501046)(61426038)(61427038); SRVR:BY2PR03MB442; BCL:0; PCL:0; RULEID:; SRVR:BY2PR03MB442;
x-forefront-prvs: 07954CC105
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(209900001)(189002)(199003)(74316001)(99286002)(106356001)(11100500001)(110136002)(105586002)(189998001)(97736004)(86612001)(50986999)(19617315012)(5002640100001)(86362001)(81156007)(33656002)(5001960100002)(10400500002)(5005710100001)(10290500002)(19625215002)(101416001)(5003600100002)(5004730100002)(230783001)(10090500001)(8990500004)(19300405004)(19580395003)(229853001)(16236675004)(2351001)(790700001)(92566002)(102836003)(3846002)(1730700002)(2900100001)(15975445007)(586003)(77096005)(6116002)(66066001)(1220700001)(1096002)(2501003)(76576001)(122556002)(5008740100001)(54356999)(87936001)(40100003)(6606295002); DIR:OUT; SFP:1102; SCL:1; SRVR:BY2PR03MB442; H:BY2PR03MB442.namprd03.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
spamdiagnosticoutput: 1:23
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_BY2PR03MB4425323FBC27D5636C6D59CF5E20BY2PR03MB442namprd_"
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Dec 2015 04:18:37.8221 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY2PR03MB442
Archived-At: <http://mailarchive.ietf.org/arch/msg/oauth/fm53zvcepcBIYuIqsfSTcXj7t18>
Cc: Chris Lonvick <lonvick.ietf@gmail.com>
Subject: [OAUTH-WG] Proof-of-Possession Key Semantics for JWTs spec addressing remaining comments
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 19 Dec 2015 04:19:01 -0000
Proof-of-Possession Key Semantics for JWTs draft -11 addresses Sec-Dir review comments by Chris Lonvick and ballot comments by Stephen Farrell. This should enable clearing the "point raised" status from yesterday's IESG telechat and progressing the document to the RFC Editor. The specification is available at: * http://tools.ietf.org/html/draft-ietf-oauth-proof-of-possession-11 An HTML-formatted version is also available at: * http://self-issued.info/docs/draft-ietf-oauth-proof-of-possession-11.html -- Mike P.S. This note was also posted at http://self-issued.info/?p=1518 and as @selfissued<https://twitter.com/selfissued>.