Re: [stir] JWTClaimConstraints syntax PR
Sean Turner <sean@sn3rd.com> Fri, 21 April 2017 00:40 UTC
Return-Path: <sean@sn3rd.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7BA1128B4E for <stir@ietfa.amsl.com>; Thu, 20 Apr 2017 17:40:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sn3rd.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EC8Xm_ku4wMm for <stir@ietfa.amsl.com>; Thu, 20 Apr 2017 17:40:53 -0700 (PDT)
Received: from mail-qt0-x22a.google.com (mail-qt0-x22a.google.com [IPv6:2607:f8b0:400d:c0d::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 466A212EAAF for <stir@ietf.org>; Thu, 20 Apr 2017 17:40:49 -0700 (PDT)
Received: by mail-qt0-x22a.google.com with SMTP id c45so59026994qtb.1 for <stir@ietf.org>; Thu, 20 Apr 2017 17:40:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sn3rd.com; s=google; h=from:content-transfer-encoding:mime-version:subject:date:references :to:in-reply-to:message-id; bh=WlDYDIwtlWQf580ur/cSxwyp6Lgn7ZK3ChJuBgk52ao=; b=DsrFZcSzZ3ozwkmGSyk0gHDcj551QjgMJH8xr5d4EaJNR+SWcwLO0mMdJ3xSbO7XGe 2AcixH1hTRtB7a2vB1eWqZenGivFLZbfvB7BnG5WTFWhtoO2BWwP9xBJSjyArMOTUcpB 4V6ZWAN0Blf0vNkui+kLEPTedzOnODfoaSsiI=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:content-transfer-encoding:mime-version :subject:date:references:to:in-reply-to:message-id; bh=WlDYDIwtlWQf580ur/cSxwyp6Lgn7ZK3ChJuBgk52ao=; b=Pg0wv23fXoSCoinvrTaoPOtDXZpJfC5YC1NtC0in1hm6CqiaR4ogR2HPczqt9XupYn rY3eGWRawp3prrTAltK220o1l58riUvBweFy1UevT0szkfYFZMGN/HIYjPKiljvaNNz6 61uExFF1y/ERwvkLeYB3uL8/4Sd8f3FyyNvdQI85RUiG0CO2oaUoyVoafJzH7BE6+kDw 69GU9qPaof/w4QGeLJlMjA/3tvnZCTdIjCFmcz1f32JGFcXz2Y5dOrPEno+a7t9/U22Y guUGdRkusFL255B+e8mMx3DvN0IAwi2rmFx6RcsevxR4D4OahZkKy0/lilH5M4UCndY0 HbqQ==
X-Gm-Message-State: AN3rC/7ivTvcyLrKGWDHd3ly04mjsBmy1GGaPkaRcbq+Op6TXXm3rl1h CKX2s22v6pdy740Wzsg=
X-Received: by 10.200.40.84 with SMTP id 20mr10665204qtr.169.1492735248200; Thu, 20 Apr 2017 17:40:48 -0700 (PDT)
Received: from [172.16.0.18] ([96.231.229.219]) by smtp.gmail.com with ESMTPSA id x67sm5281341qkd.67.2017.04.20.17.40.47 for <stir@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 20 Apr 2017 17:40:47 -0700 (PDT)
From: Sean Turner <sean@sn3rd.com>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Mime-Version: 1.0 (Mac OS X Mail 10.3 \(3273\))
Date: Thu, 20 Apr 2017 20:40:44 -0400
References: <D1C3BED7-A5D2-476B-825C-7C7F6F6D88D9@sn3rd.com>
To: stir@ietf.org
In-Reply-To: <D1C3BED7-A5D2-476B-825C-7C7F6F6D88D9@sn3rd.com>
Message-Id: <4AE9FF2B-4B27-4CED-B81F-7A4988581E77@sn3rd.com>
X-Mailer: Apple Mail (2.3273)
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/J5mf6IeQs1fm5tR-jbBV3qieNCU>
Subject: Re: [stir] JWTClaimConstraints syntax PR
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Apr 2017 00:40:56 -0000
I’ve updated the PR with revised text to introduce the JWTClaimConstraints syntax. Please review it as I wasn’t present at the meeting and I’m not entirely sure I’ve properly captured the words that go with the syntax: https://github.com/stirwg/certificates/pull/2 One question: Was mkey specifically dropped as a baseline claim? mkey was previously a baseline claim but it wasn’t noted in the syntax so I assumed it’s no longer considered a baseline claim. spt > On Apr 12, 2017, at 18:53, Sean Turner <sean@sn3rd.com> wrote: > > All, > > I’ve created a github repo for the stir-certificates draft: > https://github.com/stirwg/certificates > > I also created an issue: > https://github.com/stirwg/certificates/issues/1 > and a PR (pull request) to address that issue making the change to the JWTClaimConstraints syntax: > https://github.com/stirwg/certificates/pull/2 > > Please note the text that introduces the ASN.1 will also need to be revised, but I wanted to make sure I got the syntax right before going to far down the line. > > spt
- Re: [stir] JWTClaimConstraints syntax PR Sean Turner
- [stir] JWTClaimConstraints syntax PR Sean Turner