IETF Logo Mail Archive

Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-00.txt

Christer Holmberg <christer.holmberg@ericsson.com> Tue, 28 May 2019 18:42 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 054DA120121 for <sipcore@ietfa.amsl.com>; Tue, 28 May 2019 11:42:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.009
X-Spam-Level:
X-Spam-Status: No, score=-2.009 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id s9fcPLhTtSxx for <sipcore@ietfa.amsl.com>; Tue, 28 May 2019 11:42:29 -0700 (PDT)
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-eopbgr20088.outbound.protection.outlook.com [40.107.2.88]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D7FD0120020 for <sipcore@ietf.org>; Tue, 28 May 2019 11:42:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hJ0fCnhvmdYbsQsfazDAN9zCr15DrCPtpOLjF9hks4w=; b=E4tqQ/7Ku9Fp5RYZHHx/uZTkmZv0PUUBbgGejnMG4wdBk1jS+dxOrSq0CNlIZG8cs2PN5lFBJRCMAq/hm172E9lhBpR3mwCBnsPYmS5yYmM7IRGiYz9PtHO9T8fMDCH4osxtLSB+BiGF9RqpdkaM432x5FRv9IXNVTZTLYJLxaA=
Received: from HE1PR07MB3161.eurprd07.prod.outlook.com (10.170.245.23) by HE1PR07MB3499.eurprd07.prod.outlook.com (10.170.247.158) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1943.10; Tue, 28 May 2019 18:42:25 +0000
Received: from HE1PR07MB3161.eurprd07.prod.outlook.com ([fe80::c999:f848:9abc:d321]) by HE1PR07MB3161.eurprd07.prod.outlook.com ([fe80::c999:f848:9abc:d321%6]) with mapi id 15.20.1943.016; Tue, 28 May 2019 18:42:25 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>
CC: SIPCORE <sipcore@ietf.org>
Thread-Topic: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-00.txt
Thread-Index: AQHVFWp0gg1fmQ2EoUCoIrqqxeWP1qaAw88AgAA4moD//9E+AIAAQ/6A
Date: Tue, 28 May 2019 18:42:25 +0000
Message-ID: <57658322-1400-4A23-AF47-2D2F32C1F4C4@ericsson.com>
References: <155905748376.25697.10287747269016979905@ietfa.amsl.com> <CAGL6epKcPW55GDZ0f65okQoaoQbT8XWVAfXUMU2PUCY4fKqCTg@mail.gmail.com> <7FE4D8D8-A62E-4322-B87C-973CF77C1141@ericsson.com> <CAGL6epJx4xYaZx1dtBuytRzBNgnWWxAMUGme7Re+n1Mi2KQsvg@mail.gmail.com>
In-Reply-To: <CAGL6epJx4xYaZx1dtBuytRzBNgnWWxAMUGme7Re+n1Mi2KQsvg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.19.0.190512
authentication-results: spf=none (sender IP is ) smtp.mailfrom=christer.holmberg@ericsson.com;
x-originating-ip: [79.134.118.162]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 38992fc7-903e-4c5f-baeb-08d6e39c3aac
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600148)(711020)(4605104)(1401327)(2017052603328)(7193020); SRVR:HE1PR07MB3499;
x-ms-traffictypediagnostic: HE1PR07MB3499:
x-ms-exchange-purlcount: 5
x-microsoft-antispam-prvs: <HE1PR07MB3499738829A8E86E8025D121931E0@HE1PR07MB3499.eurprd07.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8882;
x-forefront-prvs: 00514A2FE6
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(366004)(136003)(396003)(39860400002)(346002)(189003)(199004)(66066001)(6916009)(83716004)(14444005)(256004)(99286004)(3846002)(71200400001)(81166006)(7736002)(81156014)(8676002)(2906002)(71190400001)(68736007)(8936002)(58126008)(86362001)(25786009)(5660300002)(82746002)(2616005)(11346002)(486006)(508600001)(4326008)(446003)(53936002)(186003)(6486002)(53386004)(66946007)(66556008)(229853002)(6436002)(6246003)(76116006)(66476007)(66446008)(64756008)(33656002)(6116002)(76176011)(36756003)(606006)(53546011)(6506007)(102836004)(66574012)(44832011)(316002)(6512007)(54896002)(6306002)(26005)(236005)(14454004)(73956011)(476003)(966005); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR07MB3499; H:HE1PR07MB3161.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: xcAGipo4br+FuqkiQzHhZsI6tSQD7VDAOkVEXR/bKi1DQ3jfDP+hSDt4IXvH3xjjCjDs6+p18KklDCG/G7Qwli3xYemTxNvB4yNFw05DzuPvYXjm2dfOftvxWF2uYOgEFd/nLwgk1skfc6yJJ0/AhI6iAJY1BCCzK3rO30ajk6kZHImv+V0LWojI6Zct7NEYdeYl1ZLl7XDh+47CltI3EoZQbVvG9I15crqJNXbKh9NeRfDsQRH2/3zrojvkhml0TaJjIxN1Y8Ew7Rosm07RWWd6zoSEx5Rsr6M5E07MRfamlX2AG/FjnBkajieIKiy/6ra3patnEq38EueT4T+d6XGEtXc6xhr8+wJ0OlUI6oW8XFwuWdeF8JQVHcI3csq0xEbNxlhH3H1ZX4YCP9YjsDRKpKBEdv4NCuPQgX3LctA=
Content-Type: multipart/alternative; boundary="_000_5765832214004A23AF472D2F32C1F4C4ericssoncom_"
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 38992fc7-903e-4c5f-baeb-08d6e39c3aac
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 May 2019 18:42:25.6876 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: christer.holmberg@ericsson.com
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR07MB3499
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/2Am6qo6WJJy4N68ox4QOAcWnCf4>
Subject: Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-00.txt
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 May 2019 18:42:32 -0000

Fair enough – I forgot about the security section.

But, having said that, I still want to point out that this is not new stuff.

Regards,

Christer

From: Rifaat Shekh-Yusef <rifaat.ietf@gmail.com>
Date: Tuesday, 28 May 2019 at 20.39
To: Christer Holmberg <christer.holmberg@ericsson.com>
Cc: "sipcore@ietf.org" <sipcore@ietf.org>
Subject: Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-00.txt

There is some technical addition related to the type of token being issued (JWT).
Also, the security section is still empty.
I would like to first hear from the WG about their view of the details of the draft.

So, I do not think the draft is ready to go WGLC at this point.

Regards,
 Rifaat



On Tue, May 28, 2019 at 1:26 PM Christer Holmberg <christer.holmberg@ericsson.com<mailto:christer.holmberg@ericsson.com>> wrote:
Hi,

As far as I know, there should not be anything technically new in this draft: it contains the stuff we agreed to move from draft-ietf-sipcore-sip-authn into a separate draft.

So, my suggestion would be to give interested people a couple of weeks to refresh their minds what it’s all about, and if nothing major comes up then go for WGLC.

Regards,

Christer

From: sipcore <sipcore-bounces@ietf.org<mailto:sipcore-bounces@ietf.org>> on behalf of Rifaat Shekh-Yusef <rifaat.ietf@gmail.com<mailto:rifaat.ietf@gmail.com>>
Date: Tuesday, 28 May 2019 at 20.04
To: "sipcore@ietf.org<mailto:sipcore@ietf.org>" <sipcore@ietf.org<mailto:sipcore@ietf.org>>
Subject: Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-token-authnz-00.txt

All,

We have just submitted this draft as one of the drafts that will replace the draft-ietf-sipcore-sip-authn draft.
This is based on the discussion of separating the existing draft into two new drafts that address the different use cases in the original draft.

Please, take a look and let us know what you think.

Regards,
 Rifaat


On Tue, May 28, 2019 at 11:31 AM <internet-drafts@ietf.org<mailto:internet-drafts@ietf.org>> wrote:

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Session Initiation Protocol Core WG of the IETF.

        Title           : Third-Party Token-based Authentication and Authorization for Session Initiation Protocol (SIP)
        Authors         : Rifaat Shekh-Yusef
                          Christer Holmberg
                          Victor Pascual
        Filename        : draft-ietf-sipcore-sip-token-authnz-00.txt
        Pages           : 8
        Date            : 2019-05-28

Abstract:
   This document defines a mechanism for SIP, that is based on the OAuth
   2.0 and OpenID Connect Core 1.0 specifications, to enable the
   delegation of the user authentication and SIP registration
   authorization to a dedicated third-party entity that is separate from
   the SIP network elements that provide the SIP service.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-sipcore-sip-token-authnz/

There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-sipcore-sip-token-authnz-00
https://datatracker.ietf..org/doc/html/draft-ietf-sipcore-sip-token-authnz-00<https://datatracker.ietf.org/doc/html/draft-ietf-sipcore-sip-token-authnz-00>


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org<http://tools.ietf.org>.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
sipcore mailing list
sipcore@ietf.org<mailto:sipcore@ietf.org>
https://www.ietf.org/mailman/listinfo/sipcore

v2.23.0 | Report a Bug | By Email