Re: [stir] [EXTERNAL] Re: PASSporT extensions: order of claims

"Gorman, Pierce A [CTO]" <Pierce.Gorman@sprint.com> Wed, 14 March 2018 19:09 UTC

Return-Path: <Pierce.Gorman@sprint.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2FC87124BE8 for <stir@ietfa.amsl.com>; Wed, 14 Mar 2018 12:09:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.01
X-Spam-Level:
X-Spam-Status: No, score=-1.01 tagged_above=-999 required=5 tests=[HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n3xipnh7dFO5 for <stir@ietfa.amsl.com>; Wed, 14 Mar 2018 12:09:50 -0700 (PDT)
Received: from NAM02-CY1-obe.outbound.protection.outlook.com (mail-cys01nam02on0096.outbound.protection.outlook.com [104.47.37.96]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E3E79124C27 for <stir@ietf.org>; Wed, 14 Mar 2018 12:09:49 -0700 (PDT)
Received: from SN4PR0501CA0074.namprd05.prod.outlook.com (2603:10b6:803:22::12) by BY1PR0501MB1192.namprd05.prod.outlook.com (2a01:111:e400:4806::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.588.7; Wed, 14 Mar 2018 19:09:48 +0000
Received: from SN1NAM01FT043.eop-nam01.prod.protection.outlook.com (2a01:111:f400:7e40::204) by SN4PR0501CA0074.outlook.office365.com (2603:10b6:803:22::12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384) id 15.20.609.6 via Frontend Transport; Wed, 14 Mar 2018 19:09:48 +0000
Authentication-Results: spf=pass (sender IP is 144.230.172.36) smtp.mailfrom=sprint.com; team.neustar; dkim=none (message not signed) header.d=none;team.neustar; dmarc=bestguesspass action=none header.from=sprint.com;
Received-SPF: Pass (protection.outlook.com: domain of sprint.com designates 144.230.172.36 as permitted sender) receiver=protection.outlook.com; client-ip=144.230.172.36; helo=plsapdm1.corp.sprint.com;
Received: from plsapdm1.corp.sprint.com (144.230.172.36) by SN1NAM01FT043.mail.protection.outlook.com (10.152.65.216) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.20.567.18 via Frontend Transport; Wed, 14 Mar 2018 19:09:47 +0000
Received: from pps.filterd (plsapdm1.corp.sprint.com [127.0.0.1]) by plsapdm1.corp.sprint.com (8.16.0.21/8.16.0.21) with SMTP id w2EHw5WX031909; Wed, 14 Mar 2018 14:09:47 -0500
Received: from pps.reinject (localhost [127.0.0.1]) by plsapdm1.corp.sprint.com with ESMTP id 2gmdvm0qfj-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Wed, 14 Mar 2018 14:09:47 -0500
Received: from plsapdm1.corp.sprint.com (plsapdm1.corp.sprint.com [127.0.0.1]) by pps.reinject (8.16.0.20/8.16.0.20) with SMTP id w2EJ9laF001653; Wed, 14 Mar 2018 14:09:47 -0500
Received: from prewe13m04.ad.sprint.com (prewe13m04.corp.sprint.com [144.226.128.23]) by plsapdm1.corp.sprint.com with ESMTP id 2gmdvm0qf9-3 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-SHA384 bits=256 verify=NOT); Wed, 14 Mar 2018 14:09:47 -0500
Received: from PLSWE13M04.ad.sprint.com (2002:90e5:d617::90e5:d617) by PREWE13M04.ad.sprint.com (2002:90e2:8017::90e2:8017) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Wed, 14 Mar 2018 15:09:45 -0400
Received: from PLSWE13M04.ad.sprint.com ([fe80::2c01:fcb8:e729:4a7a]) by plswe13m04.ad.sprint.com ([fe80::2c01:fcb8:e729:4a7a%24]) with mapi id 15.00.1347.000; Wed, 14 Mar 2018 14:09:45 -0500
From: "Gorman, Pierce A [CTO]" <Pierce.Gorman@sprint.com>
To: "Politz, Ken" <Kenneth.Politz@team.neustar>, Chris Wendt <chris-ietf@chriswendt.net>, Christer Holmberg <christer.holmberg@ericsson.com>
CC: "stir@ietf.org" <stir@ietf.org>, "adam@nostrum.com" <adam@nostrum.com>
Thread-Topic: [stir] [EXTERNAL] Re: PASSporT extensions: order of claims
Thread-Index: AQHTu8GKHaP97jojikmMyd1iHk2zZqPQFfqQ
Date: Wed, 14 Mar 2018 19:09:44 +0000
Message-ID: <ed7ff4de91c94af2a12bea3d4a03dddd@plswe13m04.ad.sprint.com>
References: <7594FB04B1934943A5C02806D1A2204B6C1D17C1@ESESSMB109.ericsson.se> <7594FB04B1934943A5C02806D1A2204B6C1D1804@ESESSMB109.ericsson.se> <8B0E0275-68BD-41E9-B128-589F13C06D66@chriswendt.net> <7594FB04B1934943A5C02806D1A2204B6C2007A0@ESESSMB109.ericsson.se> <46946849EEFF3043A8FBCC3D102A2C1A3FCADE50@stntexmb13.cis.neustar.com> <7594FB04B1934943A5C02806D1A2204B6C200A0A@ESESSMB109.ericsson.se> <08B1E835-CA5E-4636-AE0E-983F3EFA82C1@chriswendt.net> <46946849EEFF3043A8FBCC3D102A2C1A3FCAF4E9@stntexmb13.cis.neustar.com>
In-Reply-To: <46946849EEFF3043A8FBCC3D102A2C1A3FCAF4E9@stntexmb13.cis.neustar.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.214.116.26]
Content-Type: multipart/alternative; boundary="_000_ed7ff4de91c94af2a12bea3d4a03ddddplswe13m04adsprintcom_"
MIME-Version: 1.0
X-EOPAttributedMessage: 0
X-MS-Office365-Filtering-HT: Tenant
X-Forefront-Antispam-Report: CIP:144.230.172.36; IPV:NLI; CTRY:US; EFV:NLI; SFV:NSPM; SFS:(10019020)(396003)(39860400002)(346002)(376002)(39380400002)(2980300002)(438002)(199004)(189003)(7736002)(3846002)(8936002)(229853002)(4546004)(97736004)(72206003)(478600001)(426003)(790700001)(2950100002)(5250100002)(606006)(6116002)(2906002)(14454004)(106466001)(356003)(966005)(76176011)(86362001)(575784001)(7696005)(108616005)(33964004)(24736004)(102836004)(106002)(59450400001)(54906003)(6246003)(16586007)(110136005)(53546011)(8676002)(54896002)(68736007)(186003)(53936002)(6306002)(84326002)(93886005)(81156014)(81166006)(26005)(2900100001)(316002)(5660300001)(336012)(4326008)(236005); DIR:OUT; SFP:1102; SCL:1; SRVR:BY1PR0501MB1192; H:plsapdm1.corp.sprint.com; FPR:; SPF:Pass; PTR:InfoDomainNonexistent; A:1; MX:1; LANG:en;
X-Microsoft-Exchange-Diagnostics: 1; SN1NAM01FT043; 1:SJdVsN096DGEoWW1aQyarFAF9FHYXstL0MfM3wWjsz+MD6/GTDy0HrTivAKXv3oOx5sAMFibwtmxkrBWHB8wkpZ+igIQ9nik+hN3OTHuZh5jTkg0t3KN6aar7JiQ+85n
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: e5e7acda-633e-4abc-a2b6-08d589df2796
X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(7020095)(4652020)(8989060)(5600026)(4604075)(4608076)(4534165)(4627221)(201703031133081)(201702281549075)(8990040)(2017052603328)(7153060)(7193020); SRVR:BY1PR0501MB1192;
X-Microsoft-Exchange-Diagnostics: 1; BY1PR0501MB1192; 3:rxT9O5d81AM+E8OQ6qVQ94793z43NxfFHDkxTZRNA8HuCfD7gGJ6UaR06EAcKKl2BbNJh2pFAl1ZdFyrqTtCRHONfjJnicA6ArSnSd+06y3Xygt3Lvltkd6eSnu1Si0FWE99hpZgArp6hK1nhXuWyWd6v4XLxbU9yxnUfZGsmPzHBPf3F0O4Qj2YCF5q5GABJinhT9s8VzwY4bubhx9ngrw022Ufrqggou6rGF+EIZ2wmpVFyLtANJK9Oltr0QmkSb1qFxkaZk9FOXKI9q0FP/8v0iv1BHguAYCqPJ1JbUOW64Cp+HI5SSEFvwfoBuDRIDW5YhMlPpEuRBcR0K8myITLOi2RXt9JYzUHiyrgcng=; 25:GveE5LKXf/hsbKffeVws48Wlz1g5Arq/I8d0PTN8K3aQCjCzh65V6BV6K/kAlWGAvb8UhTG0HX+fdY0ZVNKQQne2TMhn3J6uCvCg2SRHNbGkr69FAVzDcDgWh4HWkfFxcprhGVO9zeu6JlRxQFiItGpgsPTgHViDqwYnnkKrZX57zyQbhiUCPPbvrnSbRYLy7Yf2lSrMQCrIzl7gfh4grJdigMVNKe9W5wWLQFACzPbRej91Zkt4KnPk7Yv1s8M2dsPgnqLY+m0W1nGwSwPvd8h4dSPLmLkAKGiUEow+Z3IK/HPgKM+83fxnK3ULK3lIWc0jh1rB8eg9tZBk2/qD9w==
X-MS-TrafficTypeDiagnostic: BY1PR0501MB1192:
X-Microsoft-Exchange-Diagnostics: 1; BY1PR0501MB1192; 31:+IAuN5JnITLTHlVxCB+JpXby0hctyaQimHe1GYL65DFYLoWWVkI8J/Wyb52iKXeR2/SKEc4OW2C+4lCCGUOS/Zm1wvVipGQv4fGVEx+ZKRFrHxanibut3nVO880/RwKRXb1GZxYDCQ0Bm9gJsmouYFfdg0qER3EU8392RAuK4268yQViz5d74WvW98W9qxgtw94kp91setOttYoo/6TA68nyfXo4+vtUfGVnPc+CqZE=; 20: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
X-Microsoft-Antispam-PRVS: <BY1PR0501MB119296B3C7F06EC12AB6B06F89D10@BY1PR0501MB1192.namprd05.prod.outlook.com>
X-Exchange-Antispam-Report-Test: UriScan:(37575265505322)(28532068793085)(10436049006162)(21748063052155);
X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(5005006)(8121501046)(93006095)(93004095)(3231221)(944501244)(52105095)(3002001)(10201501046)(6055026)(6041310)(20161123558120)(20161123560045)(20161123562045)(20161123564045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(6072148)(201708071742011); SRVR:BY1PR0501MB1192; BCL:0; PCL:0; RULEID:; SRVR:BY1PR0501MB1192;
X-Microsoft-Exchange-Diagnostics: 1; BY1PR0501MB1192; 4:AwUen+qM9hb8PGaK9xvPSneRXQ67vugjplt244mF7OWx8hjcdvcNRN0svLwqzu/Pr+cZcMPOi0aTAqwteWUthp0ksCEEmkqcImtSO+XaDFRHp4LjfjAOs2eoW92ruXb2XEQpj5p1vSojj3bTnUiPJyqs7urqiCaVHScSo/wNlDtzR6k96QRwNCrZuArtFAx1qsFV6mQmiw/GBlDeijl2iCbv2Gxtt8Q0MB6M/bk0GOy8oo/2gcJ89H06VAmAgcu3go/fpMZjj3kK073tVcHbD+XGBfXm1lP2oiibv2S7pY9zVRepzjupgxlUfFeh2WYY5iGMeaa2FhcuyXjp8CJhBN4lhOYKSbh2EMmZDh1quPvypItIpew2TJIrqx4xI6uzosfunfZNIv37JUkvX61y3FrVxQZPTTy/oZ42+uRK7LA=
X-Forefront-PRVS: 0611A21987
X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; BY1PR0501MB1192; 23:J1LtM8czyP9aaxM/vXafqhfnL0vOfFwSS5dLRjF?= =?us-ascii?Q?G+Af9SLKMCFFF/Ojd/i+k/oApCpZhrcPmgVnearGqR29rlflE/Djc1ViBeTJ?= =?us-ascii?Q?7/yaroOaIc2FT1T5mjAT+aXwwnQtvSQPnqePqsfGKr0plXaHI/q9TPVvxMTw?= =?us-ascii?Q?IQIA3nZp57ju2KRWWXd6T9A7SWHVwq2ZTT1k6yN8WSaPKaDwx+1Wr/3QO3sl?= =?us-ascii?Q?+bGl2f2yuYS2th55jKzGVTJcgC1V6vgdwlmQeafytqyE5g6im05PeqL4aWgL?= =?us-ascii?Q?CtWAIZ2V0ucEujegz2bjkRhWdoMUMxWLjEibdrWVtMXvd8m0hlhE9DbpESfm?= =?us-ascii?Q?5wx8xR6Z1mbLZDAl4e36AvSjLm9d2C53wk8I8aHb4NEx1BtfQ9B9J0zs8gfV?= =?us-ascii?Q?EnkUZB/SStHy05lJ1kD2auNTkOiJCp+LKoxWX/qSvDj/IaLgNh0z1RbWpaoR?= =?us-ascii?Q?AKE72BrCsgivFU+ePOuP7d3/gLYwmIeK9NFeVbKjW73HmDVQb83LrpE6nfvJ?= =?us-ascii?Q?4xz87NEVP52Lh35OZIexhoDF82AsEhx/VT66qC3lb2HlKxtKoC2DJnL+sPPG?= =?us-ascii?Q?hgvnYB+/JnxKThoSiDYZO6Niotw/97hBWCWab7GcupOwK06HCKC/HN5sjQI7?= =?us-ascii?Q?sJTfCOicLbOmybpeVBqbwNxYw4EWiPNmtYbfJZ3nqf7ILKz8PUO66vIhnBNP?= =?us-ascii?Q?kvZNG2QOzH5nSbzIuLrLmiw6LNlrtLVlcT9h9z/4tLg5nezB9/ki+D8ZciWx?= =?us-ascii?Q?9VziXX6oKzuacSarWIGUmelHRe4CyATWyGBXh7nMSw3zSVe7nA0QFgu+o3yi?= =?us-ascii?Q?TsrustbEM+6SbWHUhuPb9PLTECyHwyx7UfsJrDuNLLR0psocbYuwDkfQpJFT?= =?us-ascii?Q?JfrRFaIagycCOSuD/vsiH4O0cHjJOC3U4bVIgpR3imNi9W2U//4IqaCBUd/d?= =?us-ascii?Q?2chNou33qH8qvur4n/ayeQ2WhVdkyJcRAdIddktvQhlBXRBWVulUa9P9ywK7?= =?us-ascii?Q?DuUSUqpnwUgh5y7B4ExIkWYlZT4HB85ypkL8w/FGXMmuJJcO+Aafpof2RCNf?= =?us-ascii?Q?PWQveW2HrvZ8kgY2goRyiCkptGLuPf5memxf8JWFdVdbwp+PhmjzIcy6WMNV?= =?us-ascii?Q?/VbfRieis+g4UAM6/34CfWYg/GKvtFAR4uzofATptiNIziQnZtzs8HeB/C25?= =?us-ascii?Q?WI8tyhdqg8y9ubydsmfE5FTm+z8ov9wyhlNi1n+In/DcyUl2GZ59SwNOXyvD?= =?us-ascii?Q?UyL5OBC2q0/bp8QiA1wjgKh6QrAfRVpp9+Uq+nTqjfvv1Ucmq3r9oWa6gTII?= =?us-ascii?Q?5yVRLFgprPJfAhcbNy5bj+NAKkyVE+TtptZn9LDxAsubxAt2xLWCDTpfvM+e?= =?us-ascii?Q?+s4FMrg=3D=3D?=
X-Microsoft-Antispam-Message-Info: AvmdjCxnpQxqxA+0qE1Tb/qGpdBKAlsODiRzK4Po6soKRaGpEqyvZJRcpkHt0TM/VdtobWWCia7BqfhWVmhe75QXQanVgvI/K1jLn2QKY0W+9AOY01ENh+rHcnCRTl7wQwXWB02nn+SAU2g4oSsT60TnUbwGR7MFXxE0Wa71a/0QlQN/R7oLXfHZQ+qa416Y
X-Microsoft-Exchange-Diagnostics: 1; BY1PR0501MB1192; 6:rBLJfx4hnY+1ua0Nn7LijZ2xii4+I+OX0lMH00WHGRCTc9e0/Rl2LFWwmKIZwjm1V+mUc98LrLWFV+OugQjvb//3x2PbAYZizAtl5zpWx31kigCmFblvCNpnwpJqBmN+2SobbXkBd8zD12kUXEydokUsrnjUm0+jKCSWj5CNBalfxnbLHlJdjwhniFvWwmYL0trmNzBzXvsY7YlUId1mv8ccMTtXfXq/99w7gJQDjDP45t3GuDtGwcObXuHGuMkYUqhJMHOfGeAWz7Kzk3WEvMwl9WHX1/DOfrcI2BIWomDLF7s8RSt9l/ZZgwaHzW6Ez7IrYT3aFeYv2crf+LNp59vHjlP6DbT2GA0e5Yqr3z8=; 5:/YULOx3b2l/wD1/hnc7uBR7DvNCgF3S9PDgUs1F3i7M+9EOAzfRfMYPI4m0tNbuBH5BlAPmT6teSuUiYQUCKo9K3+SWYTj5S7aTmQFN5bkK3MWCktPG5+09Q4/LyVkgy/5+ihhMsoSi8adPGkXLW9kI1vBw8LFKFvBA/DFTmH/Q=; 24:QzTklzqrheivOXOCfYHvohL9cc3Kk+xEvmyVpqi1B5zHgbINlIcbsDjgUva5B/rwbXjNi68g+lqYQmk1gWkNb/kGvT9qdTQxTZTLnf5v/7A=; 7:6hs+IVvjHXeF1Lr0zpA5qVTJ1jG5XHifnlvktQz+ijtVs1iMZevHKFfCrRmpPztzb4ltQ0KBlb/G3RIbct6MKTxuizeR+tz1YAl5VDkAChzplOiQT/Rfjxk9d0ZaYryiwiCXcw78lSnYHf3QKPxlN+ZlO/LOWRmvbHvNFlmXNVdaJ02oVzoyEI4deG0lM9490rTlACoEFAIKprJ6j5Zn7QPxbatFhUDGxSLpFf5rD/qJvdzC0d2sBA0YIYZY7G4e
SpamDiagnosticOutput: 1:99
SpamDiagnosticMetadata: NSPM
X-OriginatorOrg: sprint.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 14 Mar 2018 19:09:47.5501 (UTC)
X-MS-Exchange-CrossTenant-Network-Message-Id: e5e7acda-633e-4abc-a2b6-08d589df2796
X-MS-Exchange-CrossTenant-Id: 4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf
X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf; Ip=[144.230.172.36]; Helo=[plsapdm1.corp.sprint.com]
X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY1PR0501MB1192
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/ungvbngBoWolGSynq6642R_U1SE>
Subject: Re: [stir] [EXTERNAL] Re: PASSporT extensions: order of claims
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Mar 2018 19:09:54 -0000

Chris,

The collective body of work from TN PoP, RPH extension, the recent SIPcoin and call-back RFC drafts make me think future innovation involving multiple Identity headers and/or a need of order of JSON keys is more likely than not.  Is this a bad assumption?

Pierce

From: Politz, Ken [mailto:Kenneth.Politz@team.neustar]
Sent: Wednesday, March 14, 2018 8:43 AM
To: Chris Wendt <chris-ietf@chriswendt.net>;; Christer Holmberg <christer.holmberg@ericsson.com>;
Cc: stir@ietf.org; adam@nostrum.com
Subject: Re: [stir] [EXTERNAL] Re: PASSporT extensions: order of claims

All I can say is that, with relatively limited SHAKEN industry testing, JSON key order has come up twice.  As new extensions get added and for interoperability purposes, I would request that clarity be provided in related specs with consistent examples for implementers.  Thanks, Ken.

From: Chris Wendt [mailto:chris-ietf@chriswendt.net]
Sent: Wednesday, March 14, 2018 7:36 AM
To: Christer Holmberg <christer.holmberg@ericsson.com<mailto:christer.holmberg@ericsson.com>>
Cc: Politz, Ken <Kenneth.Politz@team.neustar<mailto:Kenneth.Politz@team.neustar>>; stir@ietf.org<mailto:stir@ietf.org>; adam@nostrum.com<mailto:adam@nostrum.com>
Subject: [EXTERNAL] Re: [stir] PASSporT extensions: order of claims

Perhaps its a bit over prescriptive, i think the intention was only to say that it should be documented what claims and provide order and examples.  It wasn’t to imply that it would be different or there would be implications of order or anything.

To step up a level, in general, JSON object key order never matters, it’s a key value object that you index on key, so order in most cases is arbitrary.  For PASSporT, we have a short form that is supported in RFC8224, where you don’t need to send the header/claims because those objects are already in the SIP INVITE.  So we needed a way to have the header/claims to be reconstructed in a predictable and reproducible way.  An therefore the dependency on order.

So again, yes we say you should say order in RFC8225, which i would say would inherently be the case with an example at a minimum.  A MUST might have been a bit strong, but i don’t see this as a huge concern.  I’d be curious to hear from others whether they think this is a real concern or not.


On Mar 13, 2018, at 3:58 PM, Christer Holmberg <christer.holmberg@ericsson.com<mailto:christer.holmberg@ericsson.com>> wrote:

Hi,

>Try RFC 8225, Section 9, perhaps?

Ok, so if that’s a generic rule, why the statement saying that PASSporT extensions must specify the order?

Regards,

Christer

From: Christer Holmberg [mailto:christer.holmberg@ericsson.com]
Sent: Tuesday, March 13, 2018 2:47 PM
To: Chris Wendt <chris-ietf@chriswendt.net<mailto:chris-ietf@chriswendt.net>>
Cc: stir@ietf.org<mailto:stir@ietf.org>; adam@nostrum.com<mailto:adam@nostrum.com>
Subject: Re: [stir] PASSporT extensions: order of claims

Hi,

>I would agree with the text, the only caveat i would point out is that the extension definition has
>no choice to the order other than alphabetic order, so the order is essentially implied.  So, it’s sort
>of a technicality that maybe we didn’t anticipate, but i think technically you are correct.

Not sure I understand the has-no-choice part. Where is it said that the claims must be ordered in alphabetic order? We could for sure specify it that way, but based on your e-mail it seems like it is already specified somewhere?

Regards,

Christer


On Mar 10, 2018, at 8:27 AM, Christer Holmberg <christer.holmberg@ericsson.com<mailto:christer.holmberg@ericsson.com>> wrote:

Section 8.3 of RFC 8225, that is.

From: stir [mailto:stir-bounces@ietf.org] On Behalf Of Christer Holmberg
Sent: 10 March 2018 15:26
To: stir@ietf.org<mailto:stir@ietf.org>
Cc: adam@nostrum.com<mailto:adam@nostrum.com>
Subject: [stir] PASSporT extensions: order of claims

Hi,

Section  says:

   “Specifications that define extensions to the PASSporT mechanism MUST
   explicitly specify what claims they include beyond the base set of
   claims from this document, the order in which they will appear,…”

When looking at the extensions we are currently working on:

draft-ietf-stir-rph-03
draft-ietf-stir-passport-shaken-01
draft-ietf-stir-passport-divert-02

…I don’t see anything about the order in any of the documents.

I think it would be good to have a dedicated “Order of claims” section, or something similar, in each extension specification.

When looking at the examples in the drafts above, it seems like even the base claims are in different orders. Not sure whether there is an explicit requirement that they need to be in order, thought.

Regards,

Christer


_______________________________________________
stir mailing list
stir@ietf.org<mailto:stir@ietf.org>
https://www.ietf.org/mailman/listinfo/stir<https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_stir&d=DwMGaQ&c=MOptNlVtIETeDALC_lULrw&r=ww1S9BHEcpE4MMUbgGQrsoL-SK3UCGY33Koaj2h9zYw&m=_DBdmUKpkUAUVv120PuHoMt-TVtTuzOHsfFQdAWmeFs&s=yYY6kvNSlx7W84nXLfYP7n4PSH0S7Uiq3VK2FI6iwEU&e=>


________________________________

This e-mail may contain Sprint proprietary information intended for the sole use of the recipient(s). Any use by others is prohibited. If you are not the intended recipient, please contact the sender and delete all copies of the message.