IETF Logo Mail Archive

Re: [stir] JWT/JSON (was - Re: Review of: draft-ietf-stir-passport-05)

Christer Holmberg <christer.holmberg@ericsson.com> Tue, 23 August 2016 19:14 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 64FEF12D984 for <stir@ietfa.amsl.com>; Tue, 23 Aug 2016 12:14:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.221
X-Spam-Level:
X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SKe_yniYYbqY for <stir@ietfa.amsl.com>; Tue, 23 Aug 2016 12:14:43 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5B92012DA7E for <stir@ietf.org>; Tue, 23 Aug 2016 12:12:26 -0700 (PDT)
X-AuditID: c1b4fb3a-c7bff700000009bd-d7-57bca01765fe
Received: from ESESSHC011.ericsson.se (Unknown_Domain [153.88.183.51]) by (Symantec Mail Security) with SMTP id 27.84.02493.710ACB75; Tue, 23 Aug 2016 21:12:24 +0200 (CEST)
Received: from ESESSMB209.ericsson.se ([169.254.9.179]) by ESESSHC011.ericsson.se ([153.88.183.51]) with mapi id 14.03.0301.000; Tue, 23 Aug 2016 21:12:23 +0200
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: "dcrocker@bbiw.net" <dcrocker@bbiw.net>, Eric Rescorla <ekr@rtfm.com>
Thread-Topic: [stir] JWT/JSON (was - Re: Review of: draft-ietf-stir-passport-05)
Thread-Index: AQHR/JI0ubFrdbKggkCO9F2iW0BZU6BWhCyAgAABtACAACpqMP//4L4AgABXHuA=
Date: Tue, 23 Aug 2016 19:12:22 +0000
Message-ID: <7594FB04B1934943A5C02806D1A2204B4BC35CC8@ESESSMB209.ericsson.se>
References: <07e0eb16-6758-cdf1-c571-1f1ed768e741@dcrocker.net> <D3C152B2.1A69BA%jon.peterson@neustar.biz> <b096b541-c8af-9617-c9d7-5a1beb5230e8@dcrocker.net> <D3C16040.1A6A09%jon.peterson@neustar.biz> <d66d91f0-9ea2-6295-e749-e48ea37b4892@dcrocker.net> <cfd714ce-6145-1b60-aca2-ae702a8c133d@dcrocker.net> <CABcZeBNQgsjDOrW2k4WOucTVXSMHjEUjKgGkhYT119Z3yoUv1g@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B4BC29AD9@ESESSMB209.ericsson.se> <72ca2036-610e-2226-ed4f-34efbf0e9552@dcrocker.net> <D3E21244.D708%christer.holmberg@ericsson.com> <31ee21c4-ac59-2dec-3ce2-82ae650ea7c8@dcrocker.net> <7594FB04B1934943A5C02806D1A2204B4BC3506B@ESESSMB209.ericsson.se> <3b89d32f-3090-d883-b0d1-26c021f94ce9@dcrocker.net>
In-Reply-To: <3b89d32f-3090-d883-b0d1-26c021f94ce9@dcrocker.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.148]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmphkeLIzCtJLcpLzFFi42KZGbHdWFdiwZ5wg7kTDSx+f/rAZrHi9Tl2 i+VrtzE5MHtc2nmSzWPJkp9MHpMftzEHMEdx2aSk5mSWpRbp2yVwZfxvSi+4xlnx60Q/SwPj ZfYuRk4OCQETiSWNF1i6GLk4hATWM0ps3fwYylnCKDF7wW/GLkYODjYBC4nuf9ogDSICnhJ7 Wi6wgtjMAuoSLx69ARskLBAosXLrChaImiCJky9eskPYfhLH1t9jBLFZBFQl7p34C1TDzsEr 4Cux1BVi011WiUUdm8BGcgo4SBydvAbMZhQQk/h+ag0TxCpxiVtP5jNB3CwgsWTPeWYIW1Ti 5eN/rBC2kkTjkidQp+lILNj9iQ3C1pZYtvA1WD2vgKDEyZlPWCYwis5CMnYWkpZZSFpmIWlZ wMiyilG0OLW4ODfdyEgvtSgzubg4P08vL7VkEyMwbg5u+W21g/Hgc8dDjAIcjEo8vA/C9oQL sSaWFVfmHmKU4GBWEuHVmgMU4k1JrKxKLcqPLyrNSS0+xCjNwaIkzuv/UjFcSCA9sSQ1OzW1 ILUIJsvEwSnVwFiqs7Fr7k6VKRNbEqaruj39f2rlvzL7moIfG44t3NNVEGX+xOqQ0UKVS34O 64V4jfMsT6o7m91ry/bhPyeednCm6ke+7HNRxZl7BXPFY9dyrPWyml3isDZmn9jSDf8amLie mT/IjdGSyvr9eCNH07VMrwOH/4Q7PD/B1SDJlCwT4vJ2xY01P5VYijMSDbWYi4oTAZJPKyOX AgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/KD48xx1LqvAdi8tYxwF4Yeu_bHA>
Cc: IETF STIR Mail List <stir@ietf.org>
Subject: Re: [stir] JWT/JSON (was - Re: Review of: draft-ietf-stir-passport-05)
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 23 Aug 2016 19:14:44 -0000

Hi,

>>> Why isn't it just stuffed into a single header field, like STIR-Signature: or the like?
>> That was my question too. Something like:
>>
>> 	Identity:<the-whole-piece>
>>
>> But, at the end of the day, I want something that works, and Jon promised to 
>> describe how the "splitting" works in the next revision of the draft.
>
> Not just how, but why.
>
> What you and I are describing is simple and direct.  Splitting things adds another step.  Extra steps need justification.

I guess Jon should reply to that question, but one reasons was related to the suggestion (I don't think that WG has made a decision, but please correct me if I'm wrong) that it should be optional to send the headers representation of the JWS, as that information (cipher suite etc) can be found in other SIP elements. However, Appendix F of RFC 7575 is unclear on whether it's allowed remove the headers representation from the JWS - the Appendix seems to only talk about not sending the payload representation (which, in the case of SIP, can also be found in other SIP elements). So, there could be cases were one would only send the signature representation of the JWS. 

Regards,

Christer

v2.23.0 | Report a Bug | By Email