[stir] Alexey Melnikov's No Objection on draft-ietf-stir-passport-10: (with COMMENT)

"Alexey Melnikov" <aamelnikov@fastmail.fm> Tue, 01 November 2016 14:43 UTC

Return-Path: <aamelnikov@fastmail.fm>
X-Original-To: stir@ietf.org
Delivered-To: stir@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 04D5512973E; Tue, 1 Nov 2016 07:43:44 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: Alexey Melnikov <aamelnikov@fastmail.fm>
To: The IESG <iesg@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 6.37.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <147801142397.23904.2715782511883042181.idtracker@ietfa.amsl.com>
Date: Tue, 01 Nov 2016 07:43:43 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/w5HNLdAhQQK3x1-iO_OoKidu7oY>
Cc: stir@ietf.org, rjsparks@nostrum.com, stir-chairs@ietf.org, draft-ietf-stir-passport@ietf.org
Subject: [stir] Alexey Melnikov's No Objection on draft-ietf-stir-passport-10: (with COMMENT)
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.17
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Nov 2016 14:43:44 -0000

Alexey Melnikov has entered the following ballot position for
draft-ietf-stir-passport-10: No Objection

When responding, please keep the subject line intact and reply to all
email addresses included in the To and CC lines. (Feel free to cut this
introductory paragraph, however.)

Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
for more information about IESG DISCUSS and COMMENT positions.

The document, along with other ballot positions, can be found here:


This is generally a well written and detailed document. Thank you.

I have some minor comments:

5.1.1.  "iat" - Issued At claim

   The JSON claim MUST include the "iat" [RFC7519] Section 4.1.6 defined
   claim Issued At.  As defined the "iat" should be set to the date and
   time of issuance of the JWT and MUST the origination

I think a verb is missing between "MUST" and "the origination"

   of the personal

5.2.2.  "mky" - Media Key claim

   2.  Sort the lines based on the UTF8 encoding

UTF-8 needs a normative reference (RFC 3629).

       of the concatenation of
       the "alg" and "dig" claim value strings.

7.1.  Example Compact form PASSporT Token


I decoded this and it looks reasonable:



OpenSSL produced the following:


this looks like a truncated value. Is something wrong with the value or
is this an OpenSSL bug?