[OAUTH-WG] Fwd: New Version Notification for draft-ietf-oauth-jwsreq-17.txt
n-sakimura <n-sakimura@nri.co.jp> Sun, 21 October 2018 14:21 UTC
Return-Path: <n-sakimura@nri.co.jp>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA2F7126CB6 for <oauth@ietfa.amsl.com>; Sun, 21 Oct 2018 07:21:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.699
X-Spam-Level:
X-Spam-Status: No, score=-1.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_INVALID=0.1, DKIM_SIGNED=0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1024-bit key) reason="fail (message has been altered)" header.d=nri365.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lOS-KZ7D55iE for <oauth@ietfa.amsl.com>; Sun, 21 Oct 2018 07:21:07 -0700 (PDT)
Received: from nrifs03.index.or.jp (nrigw01.index.or.jp [133.250.250.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6C888124C04 for <oauth@ietf.org>; Sun, 21 Oct 2018 07:21:06 -0700 (PDT)
Received: from nrimmfm052.index.or.jp (unknown [172.19.246.144]) by nrifs03.index.or.jp (Postfix) with ESMTP id C727117EA43 for <oauth@ietf.org>; Sun, 21 Oct 2018 23:21:05 +0900 (JST)
Received: from index.or.jp (unknown [172.19.246.151]) by nrimmfm052.index.or.jp (Postfix) with ESMTP id 553AF4E0046 for <oauth@ietf.org>; Sun, 21 Oct 2018 23:21:05 +0900 (JST)
Received: from nriea03.index.or.jp (localhost.localdomain [127.0.0.1]) by pps.mf051 (8.15.0.59/8.15.0.59) with SMTP id w9LEL5jI026991 for <oauth@ietf.org>; Sun, 21 Oct 2018 23:21:05 +0900
Received: from nrims00b.nri.co.jp ([192.50.135.12]) by nriea03.index.or.jp with ESMTP id w9LEL4cu026990 for <oauth@ietf.org>; Sun, 21 Oct 2018 23:21:05 +0900
Received: from nrims00b.nri.co.jp (localhost.localdomain [127.0.0.1]) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id w9LEL6HK008825; Sun, 21 Oct 2018 23:21:06 +0900
Received: (from mailnull@localhost) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.0/Submit) id w9LEL6sV008824; Sun, 21 Oct 2018 23:21:06 +0900
X-Authentication-Warning: nrims00b.nri.co.jp: mailnull set sender to n-sakimura@nri.co.jp using -f
Received: from nrizmf12.index.or.jp ([172.100.25.21]) by nrims00b.nri.co.jp (Switch-3.3.4/Switch-3.3.4) with ESMTP id w9LEL6b7008821 for <oauth@ietf.org>; Sun, 21 Oct 2018 23:21:06 +0900
Received: from CUEXE01PA.cu.nri.co.jp (192.51.23.31) by CUEXM07PA.cu.nri.co.jp (172.159.253.49) with Microsoft SMTP Server (TLS) id 15.0.1367.3; Sun, 21 Oct 2018 23:21:04 +0900
Received: from JPN01-OS2-obe.outbound.protection.outlook.com (23.103.139.150) by ex.nri.co.jp (192.51.23.33) with Microsoft SMTP Server (TLS) id 15.0.1367.3; Sun, 21 Oct 2018 23:21:03 +0900
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nri365.onmicrosoft.com; s=selector1-cu-nri-co-jp; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=EbWoCQNzeT2ZpfZiDsAwi/FJmXVdZcxzIddgV9GNGxI=; b=LcUcKElylXvB+bNfX4T+fAH87DTIRH+QABfIj5yT3uKw1qyh9aYZ1+nF02PdGd4GkEzKLPEi56Q4ShCrxx/Dquc9lh8Hgzf3hsJK7C2RXjov1R5kjaA7q/A/EvdYAgC2f4hnmojsg0qCWR76nVfMzDXk0RNIFp+sK85pPIFfvBA=
Received: from OSBPR01MB2869.jpnprd01.prod.outlook.com (52.134.253.15) by OSBPR01MB2326.jpnprd01.prod.outlook.com (52.134.252.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1250.30; Sun, 21 Oct 2018 14:21:03 +0000
Received: from OSBPR01MB2869.jpnprd01.prod.outlook.com ([fe80::d1ae:ff36:e681:ce6c]) by OSBPR01MB2869.jpnprd01.prod.outlook.com ([fe80::d1ae:ff36:e681:ce6c%3]) with mapi id 15.20.1250.028; Sun, 21 Oct 2018 14:21:03 +0000
From: n-sakimura <n-sakimura@nri.co.jp>
To: "oauth@ietf.org" <oauth@ietf.org>
Thread-Topic: New Version Notification for draft-ietf-oauth-jwsreq-17.txt
Thread-Index: AQHUaUjOzrpKfTh0102tz7uURKq6EaUpv0/Q
Date: Sun, 21 Oct 2018 14:21:03 +0000
Message-ID: <OSBPR01MB28696106DAD6B52DF77A46BBF9FB0@OSBPR01MB2869.jpnprd01.prod.outlook.com>
References: <154013144839.10665.17922444927183639100.idtracker@ietfa.amsl.com>
In-Reply-To: <154013144839.10665.17922444927183639100.idtracker@ietfa.amsl.com>
Accept-Language: ja-JP, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [40.67.185.125]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; OSBPR01MB2326; 6:5eBeJtEAZNgijH6CUi7bevThZEV6pcvlm1wVLh1FqO0t5pHscgDKLcoOcN/XndyXVFK4QrNryfSB32lsibyPMcMepnJr6c5BC6mIAa5Fu757m+zKYvRicFjC5JH0in01vGm0+W8UCeDSDlku0htAOkwKBUUFA4ivxjDKfmUVV9qPYZREsxjpPMR9ATJzCuNrB69jRz6xyDwSKxFfZU/OmeNMAotB31/ThzT9Ur1TXkLGWlr/yq8l28CbRGU2mgGL5q957PwMwPN1icg5/ifdhadnVzeWN5MLgxMUsU5YowQqMJCdZb/9c3N6H1CITpDOQUXNqfYX1LeHn5bxk9B4w4HX4cuSVdg8CZ2oGmBO+uCOsqcAwMfw3E0PlkLUeYdNS9dCVgMSq2a7RzjLWBzqbXp1+tk0zYe5qvR+hgPAXvlTK8tN9UC+V9LkUBpAVYeZrd1iBX/AO367ZlJpo5lTDw==; 5:kjgkB5CLVOhRHxYcJvQRzxxpd1+r4WWtZQED1NTyTxWo9U2PBMIxmGCuADoErURmNxv+xmLp9RuSkenXmqNbs55eRmk+fhHjtvqNmwZdRKvm8t95E+hqQke52ygce3xUkpcR8YDS7cLhtOotN0imK4v1fC4V78J8AXZxGqTv7uc=; 7:3XMvVwtyFBB9GbhxIFxEv1QtCQ5liUF2Lf2wOgCZCmoMreOPN5NkmAvQOPENLxIrcEmGxz+59fHqjiBiVl837IDRQ3WGmg2GLTG6HjsvwcF31pxL66i0vTJFR0jmxruYreVpm91etcXrEDMSBIWgqE4mipcV0PUitf8glzOyUJQ/z32l9lasjJ2t4bnffMf15QN04JYA66bx16cTfz4oxQasEUsaG7OLm3xwC3JeWc9FAjzBqxjyboFUBm70pIIR
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 0bfc0d05-5df4-4036-6b71-08d637606eab
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(7021145)(8989299)(5600074)(711020)(4534185)(7022145)(4603075)(4627221)(201702281549075)(8990200)(7048125)(7024125)(7027125)(7023125)(2017052603328)(7153060)(7193020); SRVR:OSBPR01MB2326;
x-ms-traffictypediagnostic: OSBPR01MB2326:
x-microsoft-antispam-prvs: <OSBPR01MB2326979AE1A82F1DA50C101BF9FB0@OSBPR01MB2326.jpnprd01.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(120809045254105)(111885846020525);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(93006095)(93001095)(10201501046)(3002001)(3231355)(944501410)(52105095)(148016)(149066)(150057)(6041310)(2016111802025)(20161123558120)(20161123562045)(20161123564045)(20161123560045)(6043046)(201708071742011)(7699051)(76991095); SRVR:OSBPR01MB2326; BCL:0; PCL:0; RULEID:; SRVR:OSBPR01MB2326;
x-forefront-prvs: 083289FD26
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(136003)(396003)(366004)(346002)(376002)(39830400003)(189003)(199004)(55016002)(66066001)(68736007)(6436002)(8676002)(1730700003)(5660300001)(81156014)(81166006)(6916009)(8936002)(5640700003)(5250100002)(33656002)(97736004)(316002)(71190400001)(71200400001)(7736002)(74482002)(74316002)(102836004)(3846002)(6506007)(6116002)(2501003)(2906002)(6346003)(2900100001)(26005)(4001150100001)(99286004)(76176011)(2351001)(7696005)(15650500001)(186003)(229853002)(14444005)(11346002)(446003)(86362001)(476003)(25786009)(486006)(256004)(14454004)(966005)(106356001)(6306002)(9686003)(2473003)(54896002)(105586002)(53936002)(508600001); DIR:OUT; SFP:1102; SCL:1; SRVR:OSBPR01MB2326; H:OSBPR01MB2869.jpnprd01.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:0;
received-spf: None (protection.outlook.com: cu.nri.co.jp does not designate permitted sender hosts)
authentication-results: spf=none (sender IP is ) smtp.mailfrom=n-sakimura@cu.nri.co.jp;
x-microsoft-antispam-message-info: aq7FyKeRyNIbN8PTQH5yE9BDwhBFPBLaKkPA3rtjSsNZqSoH6lh3SrSuRZHiTZJC1HWYNmORfZr+OWR3d0m9QuOTjlztYhklq/Sq22yN9KhdLcXPnd3uRMgmRglme4l6gdSUhwLypnRXi5fVPjUFBg2Ta4zhavQWVm+itWAwel5tTOGturVr/6P5ax2nsgBRFI8UKt6QQFONNnCuhF4hasjsqck4pFSrsOVlm2u3476WfnaFRjsxa53doRD1tLKzcgs+dEKwYIrJtDDdIHllbyZX4X5WhIE19KCz95Ol4r/tt00hsYP4mUEduuMtwKKqgig6oUuBc9WE0FKDqrzx5gpoy85Zw6YB+GW970IyJr4=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_OSBPR01MB28696106DAD6B52DF77A46BBF9FB0OSBPR01MB2869jpnp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 0bfc0d05-5df4-4036-6b71-08d637606eab
X-MS-Exchange-CrossTenant-originalarrivaltime: 21 Oct 2018 14:21:03.2307 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: e3e360d9-7e7f-48d5-ac33-3c5de61f0a75
X-MS-Exchange-Transport-CrossTenantHeadersStamped: OSBPR01MB2326
X-OrganizationHeadersPreserved: OSBPR01MB2326.jpnprd01.prod.outlook.com
X-CrossPremisesHeadersPromoted: CUEXE01PA.cu.nri.co.jp
X-CrossPremisesHeadersFiltered: CUEXE01PA.cu.nri.co.jp
X-OriginatorOrg: cu.nri.co.jp
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/tO7SonY8R1x_EbsS7jYhSFZpQB0>
Subject: [OAUTH-WG] Fwd: New Version Notification for draft-ietf-oauth-jwsreq-17.txt
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 21 Oct 2018 14:21:10 -0000
Just updated a typo that was pointed out. BTW, the spec has not progressed for a long time. I wonder what can I do to push it through. Nat ________________________________ 差出人: internet-drafts@ietf.org 送信日時: 日曜日, 10月 21, 2018 11:17 午後 宛先: Nat Sakimura; John Bradley 件名: New Version Notification for draft-ietf-oauth-jwsreq-17.txt A new version of I-D, draft-ietf-oauth-jwsreq-17.txt has been successfully submitted by Nat Sakimura and posted to the IETF repository. Name: draft-ietf-oauth-jwsreq Revision: 17 Title: The OAuth 2.0 Authorization Framework: JWT Secured Authorization Request (JAR) Document date: 2018-10-21 Group: oauth Pages: 27 URL: https://www.ietf.org/internet-drafts/draft-ietf-oauth-jwsreq-17.txt Status: https://datatracker.ietf.org/doc/draft-ietf-oauth-jwsreq/ Htmlized: https://tools.ietf.org/html/draft-ietf-oauth-jwsreq-17 Htmlized: https://datatracker.ietf.org/doc/html/draft-ietf-oauth-jwsreq Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-oauth-jwsreq-17 Abstract: The authorization request in OAuth 2.0 described in RFC 6749 utilizes query parameter serialization, which means that Authorization Request parameters are encoded in the URI of the request and sent through user agents such as web browsers. While it is easy to implement, it means that (a) the communication through the user agents are not integrity protected and thus the parameters can be tainted, and (b) the source of the communication is not authenticated. Because of these weaknesses, several attacks to the protocol have now been put forward. This document introduces the ability to send request parameters in a JSON Web Token (JWT) instead, which allows the request to be signed with JSON Web Signature (JWS) and encrypted with JSON Web Encryption (JWE) so that the integrity, source authentication and confidentiality property of the Authorization Request is attained. The request can be sent by value or by reference. Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat