IETF Logo Mail Archive

Re: [OAUTH-WG] Call for agenda items

William Denniss <wdenniss@google.com> Mon, 05 March 2018 18:30 UTC

Return-Path: <wdenniss@google.com>
X-Original-To: oauth@ietfa.amsl.com
Delivered-To: oauth@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD30812DA42 for <oauth@ietfa.amsl.com>; Mon, 5 Mar 2018 10:30:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.009
X-Spam-Level:
X-Spam-Status: No, score=-2.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zthwAMGqochU for <oauth@ietfa.amsl.com>; Mon, 5 Mar 2018 10:30:35 -0800 (PST)
Received: from mail-vk0-x235.google.com (mail-vk0-x235.google.com [IPv6:2607:f8b0:400c:c05::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5C68712DA2B for <oauth@ietf.org>; Mon, 5 Mar 2018 10:30:35 -0800 (PST)
Received: by mail-vk0-x235.google.com with SMTP id s1so10539251vke.5 for <oauth@ietf.org>; Mon, 05 Mar 2018 10:30:35 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=yIJcBWL4CbFxa6srVm3jn0aJ23g2PqFNRAEbb64vjE4=; b=jyVN+N0WhXFZdZXIi1MS++tBC3GCmSq97EuN0jlEo2AYjf14bPW19wiAqmkrVgpPY+ 2EfQrBC7gcCFratwL357gSnaWKRmh5+ByoAl0wOH6/iFicLzp+PB5z4aJlCYQesw27oA Ai7w+asIbik1L5wIcaXy8/9LUu79S284FWvOc5ctda4Q7eqv678BGrlzim3Z/pTxtk8D SnfPM7tGXQK5PMqtly2ObQrGeuRbqv1buNRUXM1lMDlT6M7k1JPXvY6mmuUDa5zyW8at kQwDzLGwQzf99Lxww0/kxGPXWfqKcTB2dFXf0XFT66cPwyvYELg6xtcb2PnCAl7UPR27 TRaA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=yIJcBWL4CbFxa6srVm3jn0aJ23g2PqFNRAEbb64vjE4=; b=T6JBNyhG1CGQ6nv+M9n6cBPbP4q1i3w/kLcMfieawCDAtAheN3h4LyJU1kF97chr3s UVpKWejFth+ssKdj1Z4HNJQWsnTbmYvcO/8QyCldO2cVw6nvT23/vgsxT0D1KJzu1go8 Sr34En6E8xyinMqd8zhawWg7P7wM779IrW/RlDpH9IFzvycYuruiuH8f8agW/jKqhLIF Qo9YpffoLn3a3znidk6jZNFpiE+Rvvy/Zg79wGMPTUGQUM/TgicVSbRdOYZGguIIs0V3 FrnTB47Ol1u4tw5eASneQSv+8ckgCGfFY7L3Ymf7jC927eL/FHr23ftZbmpcTrUBooIy PrQg==
X-Gm-Message-State: APf1xPCseJiMnavZTppgcFghmw7dCrmpkVX+wid20tPLuPSJuwr9ZOWn 0To401Uyqs7+2Jw6eHU3i7DMZBAK130HtcmiQR4KICL+6eU=
X-Google-Smtp-Source: AG47ELvrllHbXoofjSqtkW9ZzzkfB1+r+Skhrm7mIzz8J7oMhR9FSb6ip3ZtJ9Kz6sEHGMtdd0N8TdfgQxfKmmGehB4=
X-Received: by 10.31.84.70 with SMTP id i67mr10675224vkb.56.1520274633438; Mon, 05 Mar 2018 10:30:33 -0800 (PST)
MIME-Version: 1.0
References: <AM4PR0801MB270614990E501071CDB3A2F9FAE40@AM4PR0801MB2706.eurprd08.prod.outlook.com>
In-Reply-To: <AM4PR0801MB270614990E501071CDB3A2F9FAE40@AM4PR0801MB2706.eurprd08.prod.outlook.com>
From: William Denniss <wdenniss@google.com>
Date: Mon, 05 Mar 2018 18:30:22 +0000
Message-ID: <CAAP42hAy8iFHDa9hQxNMxytiWjf=MyrCDRzZ4MjvRq8xi0+Baw@mail.gmail.com>
To: Hannes Tschofenig <Hannes.Tschofenig@arm.com>
Cc: oauth <oauth@ietf.org>
Content-Type: multipart/alternative; boundary="001a114e61907d74540566ae850f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/oauth/xDV1YANd4ptEw_lXPlLwLApvWyU>
Subject: Re: [OAUTH-WG] Call for agenda items
X-BeenThere: oauth@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: OAUTH WG <oauth.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/oauth>, <mailto:oauth-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/oauth/>
List-Post: <mailto:oauth@ietf.org>
List-Help: <mailto:oauth-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/oauth>, <mailto:oauth-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 05 Mar 2018 18:30:38 -0000

Hannes & Rifaat,

I would like the opportunity to present on OAuth 2.0 Incremental
Authorization (draft-wdenniss-oauth-incremental-auth) [an update for which
will be posted today] and "OAuth 2.0 Device Posture Signals"
(draft-wdenniss-oauth-device-posture).

I can also give an update on the status of Device Flow
(draft-ietf-oauth-device-flow). I expect that to be short now that WGLC has
concluded and the document has advanced.

Little late to this thread and I see we already have 2 sessions in the
draft agenda, but I'd like to add my support to keeping both sessions,
there's always a lot to discuss and in the past we've been able to use any
spare time to discuss the security topics of the day.

Regards,
William




On Tue, Jan 30, 2018 at 4:40 AM Hannes Tschofenig <Hannes.Tschofenig@arm.com>
wrote:

> Hi all,
>
>
>
> It is time already to think about the agenda for the next IETF meeting.
> Rifaat and I were wondering whether we need one or two sessions. We would
> like to make the decision based on the topics we will discuss. Below you
> can find a first version of the agenda with a few remarks. Let us know if
> you have comments or suggestions for additional agenda items.
>
>
>
> Ciao
> Hannes & Rifaat
>
>
>
> OAuth Agenda
>
> ------------
>
>
>
> - Welcome and Status Update  (Chairs)
>
>
>
>   * OAuth Security Workshop Report
>
>
>
>   * Documents in IESG processing
>
>      # draft-ietf-oauth-device-flow-07
>
>      # draft-ietf-oauth-discovery-08
>
>      # draft-ietf-oauth-jwsreq-15
>
>      # draft-ietf-oauth-token-exchange-11
>
>
>
>        Remark: Status updates only if needed.
>
>
>
> -  JSON Web Token Best Current Practices
>
>    # draft-ietf-oauth-jwt-bcp-00
>
>
>
>    Remark: We are lacking reviews on this document.
>
>    Most likely we will not get them during the f2f meeting
>
>    but rather by reaching out to individuals ahead of time.
>
>
>
> -  OAuth 2.0 Mutual TLS Client Authentication and Certificate Bound Access
> Tokens
>
>    # draft-ietf-oauth-mtls-06
>
>
>
>    Remark: Could be completed by the time of the IETF meeting.
>
>
>
> - OAuth Security Topics
>
>   # draft-ietf-oauth-security-topics-04
>
>
>
>   Remark: We could do a consensus call on parts of the document soon.
>
>
>
> - OAuth 2.0 Token Binding
>
>   # draft-ietf-oauth-token-binding-05
>
>
>
>   Remark: Document is moving along but we are lacking implementations.
>
>
>
> - OAuth 2.0 Device Posture Signals
>
>   # draft-wdenniss-oauth-device-posture-01
>
>
>
>   Remark: Interest in the work but we are lacking content (maybe even
>
>   expertise in the group)
>
>
>
> - Reciprocal OAuth
>
>   # draft-hardt-oauth-mutual-02
>
>
>
>   Remark: We had a virtual interim meeting on this topic and there is
>
>   interest in this work and apparently no competing solutions. The plan
>
>   is to run a call for adoption once we are allowed to add a new milestone
>
>   to our charter.
>
>
>
> - Distributed OAuth
>
>   # draft-hardt-oauth-distributed-00
>
>
>
>   Remark: We had a virtual interim meeting on this topic and there is
>
>   interest in this work. Further work on the scope is needed.
> IMPORTANT NOTICE: The contents of this email and any attachments are
> confidential and may also be privileged. If you are not the intended
> recipient, please notify the sender immediately and do not disclose the
> contents to any other person, use it for any purpose, or store or copy the
> information in any medium. Thank you.
> _______________________________________________
> OAuth mailing list
> OAuth@ietf.org
> https://www.ietf.org/mailman/listinfo/oauth
>

v2.23.0 | Report a Bug | By Email